Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/i06uqDJdycNanRXJCmbfymB0R5I.roa
File: i06uqDJdycNanRXJCmbfymB0R5I.roa (raw, json)
Hash identifier: zEx9Kr9d1coN089RI9i3bWX6ggSE4JZCJM5YYfqQ4vo=
Subject key identifier: 8B:4E:AE:A8:32:5D:C9:C3:5A:9D:15:C9:0A:66:DF:CA:60:74:47:92
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0F7C3DB6
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/i06uqDJdycNanRXJCmbfymB0R5I.roa
Signing time: Sat 01 Jan 2022 08:05:00 +0000
ROA not before: Sat 01 Jan 2022 08:05:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43832
IP address blocks: 193.232.160.0/24 maxlen: 24
2a0c:a9c7:160::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 259800502 (0xf7c3db6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 1 08:05:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b4eaea8325dc9c35a9d15c90a66dfca60744792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:47:5b:fc:7c:b9:23:82:76:fe:06:c8:f1:1b:
5e:e2:18:39:dc:bc:7f:e3:00:35:20:56:43:6b:2b:
a1:87:ed:31:3d:33:1c:88:ea:22:88:6d:21:20:dc:
4e:68:eb:95:78:70:5d:fc:8b:fb:9e:a1:61:8d:ff:
b4:e8:b9:59:9f:a1:eb:10:73:c1:35:68:55:b4:ca:
34:1a:90:ea:80:04:13:56:9f:0f:7c:69:6e:04:c4:
16:d2:49:8c:84:bc:3f:2e:7f:02:2c:b8:89:62:da:
6e:81:09:29:c7:9e:d5:6a:12:b2:66:b8:06:c0:cd:
2f:fd:84:b5:81:12:af:4e:eb:ce:ca:73:8c:5d:14:
23:37:b1:4c:de:ec:fa:ad:3a:3f:6c:f5:58:83:f2:
66:e1:e7:52:0d:de:0a:d6:7e:18:3f:f9:45:2e:3a:
a8:8a:0a:91:e7:59:f0:b8:9a:0b:e1:44:76:8e:6c:
7f:b2:f4:77:66:fb:3c:f0:ce:b2:6a:b0:58:88:35:
ae:bb:4b:6a:ef:a2:71:42:ee:07:39:b9:49:c2:8e:
8b:39:8d:8d:45:c6:4f:2b:81:55:17:73:12:20:0c:
7e:9c:d0:df:ef:b8:be:42:d4:6a:4c:90:94:e1:53:
23:f0:e3:ee:d1:46:54:91:51:54:82:ce:57:62:b1:
26:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:4E:AE:A8:32:5D:C9:C3:5A:9D:15:C9:0A:66:DF:CA:60:74:47:92
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/i06uqDJdycNanRXJCmbfymB0R5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.160.0/24
IPv6:
2a0c:a9c7:160::/48
Signature Algorithm: sha256WithRSAEncryption
a1:7e:35:57:46:49:c0:c3:18:f6:6f:be:78:3e:56:cc:35:7a:
b4:e9:c8:aa:a3:b8:56:bf:ce:f6:dc:a4:1d:5d:7b:82:24:06:
2e:7e:ad:88:9e:c1:ee:4c:18:4e:f7:83:f1:27:da:94:1d:d8:
55:0e:9a:84:1f:5b:6c:e8:c9:47:69:4f:5e:e1:5d:68:64:07:
60:2a:61:52:90:13:de:b4:b3:fb:3e:49:52:57:48:69:ba:45:
8f:03:ea:7c:83:ab:5a:c1:e2:44:76:0c:a4:30:a8:71:a7:35:
c9:73:e7:56:31:39:a0:b3:a8:cf:fc:72:aa:dc:73:ea:59:04:
59:28:c9:49:92:d5:0e:2f:7c:ec:21:68:1b:78:8b:df:19:44:
d8:9b:92:e7:00:c0:b1:be:33:db:7f:8b:91:f7:17:44:56:d4:
45:a5:ff:a8:57:a7:be:8e:f6:c8:ce:8d:88:40:d2:9f:ef:7f:
98:fa:19:92:c3:e8:14:59:ec:f3:45:3a:c1:97:24:7b:ae:ff:
97:8e:8f:bd:3c:c0:26:e8:0e:61:b9:22:9e:be:87:62:38:cb:
fe:ff:07:18:bf:ea:81:98:c4:e0:93:cf:fb:ec:04:0a:60:dd:
37:d6:1b:50:f4:4f:6d:09:9b:de:52:06:05:ec:99:11:51:33:
73:66:8f:31
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIED3w9tjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NTNhM2I1ZjUxODA4MTY4YzIxMmMwOTRhMmJhYWZmMzhlMTY0NjRhMB4XDTIyMDEw
MTA4MDUwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGI0ZWFlYTgzMjVk
YzljMzVhOWQxNWM5MGE2NmRmY2E2MDc0NDc5MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALlHW/x8uSOCdv4GyPEbXuIYOdy8f+MANSBWQ2sroYftMT0z
HIjqIohtISDcTmjrlXhwXfyL+56hYY3/tOi5WZ+h6xBzwTVoVbTKNBqQ6oAEE1af
D3xpbgTEFtJJjIS8Py5/Aiy4iWLaboEJKcee1WoSsma4BsDNL/2EtYESr07rzspz
jF0UIzexTN7s+q06P2z1WIPyZuHnUg3eCtZ+GD/5RS46qIoKkedZ8LiaC+FEdo5s
f7L0d2b7PPDOsmqwWIg1rrtLau+icULuBzm5ScKOizmNjUXGTyuBVRdzEiAMfpzQ
3++4vkLUakyQlOFTI/Dj7tFGVJFRVILOV2KxJk0CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBSLTq6oMl3Jw1qdFckKZt/KYHRHkjAfBgNVHSMEGDAWgBQlOjtfUYCBaMIS
wJSiuq/zjhZGSjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0pUbzdYMUdBZ1dqQ0VzQ1VvcnF2ODQ0V1Jrby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTEvOTc0NzRjLTFkYzItNDYyYy1hYWRkLTllOWExZTAzNzM4ZS8x
L2kwNnVxREpkeWNOYW5SWEpDbWJmeW1CMFI1SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEv
OTc0NzRjLTFkYzItNDYyYy1hYWRkLTllOWExZTAzNzM4ZS8xL0pUbzdYMUdBZ1dq
Q0VzQ1VvcnF2ODQ0V1Jrby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAMHooDAPBAIAAjAJAwcAKgypxwFg
MA0GCSqGSIb3DQEBCwUAA4IBAQChfjVXRknAwxj2b754PlbMNXq06ciqo7hWv872
3KQdXXuCJAYufq2InsHuTBhO94PxJ9qUHdhVDpqEH1ts6MlHaU9e4V1oZAdgKmFS
kBPetLP7PklSV0hpukWPA+p8g6taweJEdgykMKhxpzXJc+dWMTmgs6jP/HKq3HPq
WQRZKMlJktUOL3zsIWgbeIvfGUTYm5LnAMCxvjPbf4uR9xdEVtRFpf+oV6e+jvbI
zo2IQNKf73+Y+hmSw+gUWezzRTrBlyR7rv+Xjo+9PMAm6A5huSKevodiOMv+/wcY
v+qBmMTgk8/77AQKYN031htQ9E9tCZveUgYF7JkRUTNzZo8x
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org