Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/tCcVniVCDeg6LtM9p15p_fNBMKk.roa
File: tCcVniVCDeg6LtM9p15p_fNBMKk.roa (raw, json)
Hash identifier: N+h6/aVQxvDu6mcUyuJXZZwK2eWjZhQRmFp1kTDdzHQ=
Subject key identifier: B4:27:15:9E:25:42:0D:E8:3A:2E:D3:3D:A7:5E:69:FD:F3:41:30:A9
Certificate issuer: /CN=fd21cb4baa15862d1b5773bf2be60ca5f4fc24d4
Certificate serial: 0224A189
Authority key identifier: FD:21:CB:4B:AA:15:86:2D:1B:57:73:BF:2B:E6:0C:A5:F4:FC:24:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/tCcVniVCDeg6LtM9p15p_fNBMKk.roa
Signing time: Sat 01 Jan 2022 15:55:24 +0000
ROA not before: Sat 01 Jan 2022 15:55:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211360
IP address blocks: 193.84.108.0/24 maxlen: 24
2a10:ba80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35955081 (0x224a189)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd21cb4baa15862d1b5773bf2be60ca5f4fc24d4
Validity
Not Before: Jan 1 15:55:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b427159e25420de83a2ed33da75e69fdf34130a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:eb:80:c9:f5:f0:7b:41:e9:6e:66:40:2b:3e:
fd:70:d8:fa:bc:91:f7:b3:f1:e1:f7:7e:62:10:18:
88:75:e5:98:c3:01:d7:3f:e0:83:f0:1e:a6:63:f1:
a6:79:9d:0d:aa:51:b0:45:ca:e3:5d:1b:33:65:4b:
6f:82:ed:55:46:a3:4b:87:8a:02:e8:35:8d:13:51:
23:5f:7e:18:b7:8a:e3:b8:5d:27:27:c0:0e:0c:d7:
7e:26:cb:8e:10:e6:c4:2b:db:15:5b:b7:7c:e7:aa:
83:dc:2a:c7:b3:72:3f:1e:50:24:f7:13:8a:fc:4f:
c4:0f:96:7e:b1:72:5a:b3:bb:04:1d:b8:bb:5c:54:
03:87:5e:1d:19:cf:e7:ce:b8:9e:e1:50:78:9c:d7:
15:e0:ce:33:9c:1b:f5:6c:72:64:19:5d:1e:db:e8:
b0:ac:98:bd:0d:5d:9a:3f:86:6a:eb:47:2f:4f:13:
49:37:b8:fa:bd:f3:fe:62:5e:0e:12:97:d8:6d:04:
8b:82:16:19:32:5d:59:1b:14:ed:17:2d:ac:ea:00:
b1:4b:0a:23:43:b8:7a:7b:e0:95:5a:78:39:89:71:
8b:6f:19:97:bd:76:e5:76:3f:89:f2:ff:d8:6f:81:
34:c4:7a:f6:1b:6f:42:cb:af:8a:69:bd:7c:eb:29:
6c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:27:15:9E:25:42:0D:E8:3A:2E:D3:3D:A7:5E:69:FD:F3:41:30:A9
X509v3 Authority Key Identifier:
keyid:FD:21:CB:4B:AA:15:86:2D:1B:57:73:BF:2B:E6:0C:A5:F4:FC:24:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/tCcVniVCDeg6LtM9p15p_fNBMKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.108.0/24
IPv6:
2a10:ba80::/29
Signature Algorithm: sha256WithRSAEncryption
79:d0:84:29:ba:f1:f9:9d:0f:3c:16:64:b7:58:02:ce:7d:e1:
d5:01:98:7b:84:e0:0c:7e:02:41:f5:66:95:6f:c9:51:53:2a:
50:1e:1e:81:86:a5:34:d3:25:87:0a:55:0d:b8:ef:9a:93:ae:
b4:a4:4f:5a:10:52:3c:40:8b:42:5c:e8:dc:86:14:57:47:42:
d3:6b:5f:cd:07:f7:78:62:3e:fe:e2:78:ce:33:8f:17:0d:29:
16:06:0b:3d:8f:33:bd:a3:b8:e0:4a:dc:32:06:a0:02:38:2f:
a8:86:ec:1a:d6:29:b9:81:d3:7d:51:02:f3:88:ae:c7:d7:8c:
3f:39:a9:c2:96:c5:b1:46:65:ac:3e:62:ca:11:54:da:1d:f4:
e5:67:ff:45:cd:31:53:ac:97:46:74:59:de:2d:33:60:35:97:
5e:34:fa:28:d1:a3:8f:01:13:5d:3e:d4:19:ae:7c:12:a0:1f:
ac:40:29:f6:1f:e2:ff:f0:17:2f:f0:63:7f:b3:e6:ff:1b:9c:
93:4c:76:09:1a:75:2e:b4:a0:02:70:9e:48:31:6e:75:6e:8f:
62:9c:11:22:a4:71:71:ac:6a:43:82:51:0b:c0:97:67:8e:3b:
f1:54:db:21:0f:54:35:42:19:11:53:e3:a4:ab:31:ea:bc:e2:
59:8d:88:d0
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAiShiTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZDIxY2I0YmFhMTU4NjJkMWI1NzczYmYyYmU2MGNhNWY0ZmMyNGQ0MB4XDTIyMDEw
MTE1NTUyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjQyNzE1OWUyNTQy
MGRlODNhMmVkMzNkYTc1ZTY5ZmRmMzQxMzBhOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKvrgMn18HtB6W5mQCs+/XDY+ryR97Px4fd+YhAYiHXlmMMB
1z/gg/AepmPxpnmdDapRsEXK410bM2VLb4LtVUajS4eKAug1jRNRI19+GLeK47hd
JyfADgzXfibLjhDmxCvbFVu3fOeqg9wqx7NyPx5QJPcTivxPxA+WfrFyWrO7BB24
u1xUA4deHRnP5864nuFQeJzXFeDOM5wb9WxyZBldHtvosKyYvQ1dmj+GautHL08T
STe4+r3z/mJeDhKX2G0Ei4IWGTJdWRsU7RctrOoAsUsKI0O4envglVp4OYlxi28Z
l7125XY/ifL/2G+BNMR69htvQsuvimm9fOspbCcCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBS0JxWeJUIN6Dou0z2nXmn980EwqTAfBgNVHSMEGDAWgBT9IctLqhWGLRtX
c78r5gyl9Pwk1DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19TSExTNm9WaGkwYlYzT19LLVlNcGZUOEpOUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTcvMzI2NjA2LTE0YmEtNDQzNi05OTg1LWJlNTUyMGE1YzgyMS8x
L3RDY1ZuaVZDRGVnNkx0TTlwMTVwX2ZOQk1Lay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTcv
MzI2NjA2LTE0YmEtNDQzNi05OTg1LWJlNTUyMGE1YzgyMS8xL19TSExTNm9WaGkw
YlYzT19LLVlNcGZUOEpOUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAMFUbDANBAIAAjAHAwUDKhC6gDAN
BgkqhkiG9w0BAQsFAAOCAQEAedCEKbrx+Z0PPBZkt1gCzn3h1QGYe4TgDH4CQfVm
lW/JUVMqUB4egYalNNMlhwpVDbjvmpOutKRPWhBSPECLQlzo3IYUV0dC02tfzQf3
eGI+/uJ4zjOPFw0pFgYLPY8zvaO44ErcMgagAjgvqIbsGtYpuYHTfVEC84iux9eM
PzmpwpbFsUZlrD5iyhFU2h305Wf/Rc0xU6yXRnRZ3i0zYDWXXjT6KNGjjwETXT7U
Ga58EqAfrEAp9h/i//AXL/Bjf7Pm/xuck0x2CRp1LrSgAnCeSDFudW6PYpwRIqRx
caxqQ4JRC8CXZ4478VTbIQ9UNUIZEVPjpKsx6rziWY2I0A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:51 2024 by rpki-client on console-ams.rpki-client.org