Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/e8ecd1-1e2b-42d5-af71-391d10ff947c/1/V-0_d9-0pmb6TQZ1M6uhNmcBn4c.roa
File: V-0_d9-0pmb6TQZ1M6uhNmcBn4c.roa (raw, json)
Hash identifier: exkMFUPOqolX4d9+o6kBI+Y+UexFfx+KU29sbYZmVJU=
Subject key identifier: 57:ED:3F:77:DF:B4:A6:66:FA:4D:06:75:33:AB:A1:36:67:01:9F:87
Certificate issuer: /CN=72f7f1476ff8291efaf2849cd3f214672267b001
Certificate serial: 0D81B44D
Authority key identifier: 72:F7:F1:47:6F:F8:29:1E:FA:F2:84:9C:D3:F2:14:67:22:67:B0:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvfxR2_4KR768oSc0_IUZyJnsAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/e8ecd1-1e2b-42d5-af71-391d10ff947c/1/V-0_d9-0pmb6TQZ1M6uhNmcBn4c.roa
Signing time: Sat 01 Jan 2022 06:53:32 +0000
ROA not before: Sat 01 Jan 2022 06:53:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15879
IP address blocks: 193.104.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226604109 (0xd81b44d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72f7f1476ff8291efaf2849cd3f214672267b001
Validity
Not Before: Jan 1 06:53:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57ed3f77dfb4a666fa4d067533aba13667019f87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:39:61:7c:b8:d3:75:92:44:eb:d9:48:52:8f:
b3:8c:ba:51:f2:78:56:52:75:ec:43:ff:e8:a9:4b:
49:fc:90:79:de:1e:69:a8:91:1e:1a:b4:2c:16:c6:
c2:14:29:88:4f:56:93:f4:71:3d:8a:78:13:bb:ae:
30:e5:2d:88:5f:9d:14:80:62:ff:e9:5f:2a:2d:32:
aa:62:7c:41:5e:f1:6c:ea:9a:4e:8c:e2:b7:97:98:
2d:a5:3c:43:75:96:65:90:38:79:6b:f0:c1:bb:25:
93:3c:de:04:03:37:2f:9c:4b:45:a4:85:75:55:73:
90:ff:fd:cf:22:59:9b:81:6e:35:b7:f7:fa:88:77:
eb:4a:39:a4:3c:ab:22:36:6d:8b:36:e3:da:9d:86:
f1:03:18:38:17:19:39:0b:4a:7b:ac:5e:4e:46:6e:
f1:4a:50:68:09:fb:33:6b:39:3b:98:98:30:bb:91:
d7:6c:29:9e:5d:dc:92:e9:7a:8a:d6:31:92:8b:58:
0e:2d:9e:49:f7:a8:3b:3d:7e:87:03:1c:ea:08:be:
02:4d:37:b8:ee:ca:23:f7:ea:e7:7a:73:c3:72:7e:
2d:b6:c7:93:4c:ea:93:d5:c2:17:4d:20:85:f0:18:
00:f2:ec:b3:67:88:ec:c9:97:2e:0b:34:18:0a:86:
f7:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:ED:3F:77:DF:B4:A6:66:FA:4D:06:75:33:AB:A1:36:67:01:9F:87
X509v3 Authority Key Identifier:
keyid:72:F7:F1:47:6F:F8:29:1E:FA:F2:84:9C:D3:F2:14:67:22:67:B0:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvfxR2_4KR768oSc0_IUZyJnsAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/e8ecd1-1e2b-42d5-af71-391d10ff947c/1/V-0_d9-0pmb6TQZ1M6uhNmcBn4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/e8ecd1-1e2b-42d5-af71-391d10ff947c/1/cvfxR2_4KR768oSc0_IUZyJnsAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.111.0/24
Signature Algorithm: sha256WithRSAEncryption
19:a9:04:dd:6c:d7:04:37:ab:7b:02:7b:b7:70:47:75:84:c8:
9c:49:dd:8c:55:7d:f8:fc:57:82:37:42:db:fa:4b:08:5b:d8:
6c:82:4f:00:0f:16:29:0e:3a:95:04:d6:61:85:1e:f3:fd:99:
c9:8b:90:91:10:c4:57:d9:55:e6:a2:36:d6:5c:f4:08:f2:f1:
e5:4c:ae:82:a9:6d:46:61:67:34:df:8a:f9:e6:f0:61:7e:89:
71:0b:a8:83:53:6d:9f:a7:48:42:ed:70:67:42:08:52:c3:a4:
9c:f8:14:4e:89:c0:df:78:c8:49:f1:5e:0e:12:33:2b:30:bb:
12:a0:5f:62:c1:ee:97:87:a4:1c:6e:db:fe:d3:1f:b7:0a:c9:
41:19:3c:ca:ab:d5:fd:ce:6f:91:b4:0f:63:b6:3a:0c:6b:0c:
69:58:f3:32:32:e7:54:a6:79:93:7e:7e:41:93:8d:a9:59:1c:
ec:17:6d:e0:72:ac:e3:fd:e1:90:5a:7b:bc:22:21:0f:f4:05:
ba:fd:23:c9:e7:bf:83:26:3b:0f:b3:50:76:17:ed:28:7a:95:
c6:b0:11:32:ec:8d:fb:3f:06:eb:09:58:88:e9:18:c7:f0:0f:
3b:99:ad:bc:0e:03:9e:26:0f:b3:06:ef:f5:a3:9c:50:57:48:
2b:bb:81:3e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDYG0TTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MmY3ZjE0NzZmZjgyOTFlZmFmMjg0OWNkM2YyMTQ2NzIyNjdiMDAxMB4XDTIyMDEw
MTA2NTMzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTdlZDNmNzdkZmI0
YTY2NmZhNGQwNjc1MzNhYmExMzY2NzAxOWY4NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMc5YXy403WSROvZSFKPs4y6UfJ4VlJ17EP/6KlLSfyQed4e
aaiRHhq0LBbGwhQpiE9Wk/RxPYp4E7uuMOUtiF+dFIBi/+lfKi0yqmJ8QV7xbOqa
Tozit5eYLaU8Q3WWZZA4eWvwwbslkzzeBAM3L5xLRaSFdVVzkP/9zyJZm4FuNbf3
+oh360o5pDyrIjZtizbj2p2G8QMYOBcZOQtKe6xeTkZu8UpQaAn7M2s5O5iYMLuR
12wpnl3ckul6itYxkotYDi2eSfeoOz1+hwMc6gi+Ak03uO7KI/fq53pzw3J+LbbH
k0zqk9XCF00ghfAYAPLss2eI7MmXLgs0GAqG9zMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRX7T9337SmZvpNBnUzq6E2ZwGfhzAfBgNVHSMEGDAWgBRy9/FHb/gpHvry
hJzT8hRnImewATAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2N2ZnhSMl80S1I3NjhvU2MwX0lVWnlKbnNBRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWYvZThlY2QxLTFlMmItNDJkNS1hZjcxLTM5MWQxMGZmOTQ3Yy8x
L1YtMF9kOS0wcG1iNlRRWjFNNnVoTm1jQm40Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWYv
ZThlY2QxLTFlMmItNDJkNS1hZjcxLTM5MWQxMGZmOTQ3Yy8xL2N2ZnhSMl80S1I3
NjhvU2MwX0lVWnlKbnNBRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMFobzANBgkqhkiG9w0BAQsFAAOC
AQEAGakE3WzXBDerewJ7t3BHdYTInEndjFV9+PxXgjdC2/pLCFvYbIJPAA8WKQ46
lQTWYYUe8/2ZyYuQkRDEV9lV5qI21lz0CPLx5UyugqltRmFnNN+K+ebwYX6JcQuo
g1Ntn6dIQu1wZ0IIUsOknPgUTonA33jISfFeDhIzKzC7EqBfYsHul4ekHG7b/tMf
twrJQRk8yqvV/c5vkbQPY7Y6DGsMaVjzMjLnVKZ5k35+QZONqVkc7Bdt4HKs4/3h
kFp7vCIhD/QFuv0jyee/gyY7D7NQdhftKHqVxrARMuyN+z8G6wlYiOkYx/APO5mt
vA4DniYPswbv9aOcUFdIK7uBPg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:14 2024 by rpki-client on console-fra.rpki-client.org