Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/7_YfI87nFaFvJAh1u_gQIXGlES0.roa
File: 7_YfI87nFaFvJAh1u_gQIXGlES0.roa (raw, json)
Hash identifier: jDttW4myNhALtQo9Aw/XVApZmZ44MssZ5Inl0+tCzAI=
Subject key identifier: EF:F6:1F:23:CE:E7:15:A1:6F:24:08:75:BB:F8:10:21:71:A5:11:2D
Certificate issuer: /CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Certificate serial: 01846236653B152F01D0F75023DB6FA81231
Authority key identifier: D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/7_YfI87nFaFvJAh1u_gQIXGlES0.roa
Signing time: Thu 10 Nov 2022 15:44:02 +0000
ROA not before: Thu 10 Nov 2022 15:44:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 193.178.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:62:36:65:3b:15:2f:01:d0:f7:50:23:db:6f:a8:12:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Validity
Not Before: Nov 10 15:44:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eff61f23cee715a16f240875bbf8102171a5112d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d6:07:ab:cf:80:05:ad:5a:d6:2a:4d:bd:12:
d7:9e:a7:50:f9:45:7e:72:d2:b2:9b:5f:1a:1d:e1:
d7:bf:a9:44:9b:e4:1b:26:15:e4:3a:b0:42:32:63:
7c:1e:6a:68:4b:2b:c5:f6:f7:9d:d3:72:b2:f0:28:
85:56:1e:52:7b:c8:41:59:27:4e:c3:b1:5b:19:26:
59:c9:34:b7:ce:ff:b1:49:8c:9e:06:49:4a:a5:d0:
de:48:22:cc:d8:2b:0a:e6:ae:72:29:50:ce:a2:c1:
14:16:d4:b5:2f:8e:9d:d6:e3:46:39:7b:39:e4:5e:
83:75:23:f3:ae:24:5a:4b:4c:b4:08:82:06:86:98:
45:83:9c:98:e4:dc:c1:0c:b2:91:81:cd:0c:11:92:
25:13:74:3f:b1:fc:77:8a:1b:5a:d7:af:66:57:aa:
cf:41:8f:f4:b5:92:ab:7a:28:c5:44:72:c6:ec:3a:
1f:14:a4:52:1f:7d:77:84:3b:cc:61:5d:e3:5b:7c:
da:1c:0b:19:71:84:8e:a9:9e:07:35:a4:07:72:a5:
6b:47:92:37:69:39:3f:e9:ec:61:98:59:53:8c:18:
c5:61:cd:08:59:6b:f1:19:10:c3:21:1d:d3:69:cd:
c0:a7:3f:40:a6:c9:bc:c8:b7:96:34:8a:da:e5:b5:
bf:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F6:1F:23:CE:E7:15:A1:6F:24:08:75:BB:F8:10:21:71:A5:11:2D
X509v3 Authority Key Identifier:
keyid:D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/7_YfI87nFaFvJAh1u_gQIXGlES0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.31.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:dc:84:01:4e:d0:17:e0:3b:ce:cf:00:3c:5b:08:52:9b:d5:
02:68:27:31:36:57:95:10:93:4e:88:7e:a1:5d:81:e1:76:e5:
6d:de:fb:8d:27:53:4b:a2:ef:a9:cf:17:d9:ab:bb:6c:5c:a4:
70:bb:4a:27:f2:82:50:03:34:5a:e1:c5:d6:88:47:fa:d9:15:
ff:14:28:f6:b1:14:c7:20:2e:80:b8:46:86:52:fc:3f:4b:64:
a1:30:a8:b9:d9:ea:e0:29:92:4f:60:28:df:81:6d:3c:0f:a0:
00:2f:d4:63:86:41:d7:41:ca:28:cf:36:52:44:0b:77:82:48:
7a:1d:69:cc:fd:79:0e:e6:6f:96:5a:4a:de:e7:10:0f:fa:29:
7e:c0:80:5e:70:3c:94:74:a7:ee:c1:53:51:6a:61:31:cb:cf:
d0:17:dc:45:e4:f3:1a:31:d2:8b:f9:1c:8e:66:d7:11:fe:20:
43:3a:d4:ad:af:4f:15:5c:89:32:2c:18:3b:60:b4:c1:8b:6b:
a0:21:70:67:78:28:94:9b:90:1e:20:59:c6:e6:c6:67:bf:56:
28:f4:09:39:d0:1c:c3:45:34:b9:d0:2f:f5:69:db:c6:01:71:
18:59:dd:78:0c:15:98:91:8f:0b:a1:83:06:9b:72:41:41:9f:
a2:25:99:42
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRiNmU7FS8B0PdQI9tvqBIxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1ZjA2NWM4YmRiNzhmZjI5NGY3YzU0NTQ5NzFkYmZhYmZi
NmMxODQwHhcNMjIxMTEwMTU0NDAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZmY2MWYyM2NlZTcxNWExNmYyNDA4NzViYmY4MTAyMTcxYTUxMTJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm9YHq8+ABa1a1ipNvRLXnqdQ+UV+
ctKym18aHeHXv6lEm+QbJhXkOrBCMmN8HmpoSyvF9ved03Ky8CiFVh5Se8hBWSdO
w7FbGSZZyTS3zv+xSYyeBklKpdDeSCLM2CsK5q5yKVDOosEUFtS1L46d1uNGOXs5
5F6DdSPzriRaS0y0CIIGhphFg5yY5NzBDLKRgc0MEZIlE3Q/sfx3ihta169mV6rP
QY/0tZKreijFRHLG7DofFKRSH313hDvMYV3jW3zaHAsZcYSOqZ4HNaQHcqVrR5I3
aTk/6exhmFlTjBjFYc0IWWvxGRDDIR3Tac3Apz9Apsm8yLeWNIra5bW/fwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO/2HyPO5xWhbyQIdbv4ECFxpREtMB8GA1UdIwQY
MBaAFNXwZci9t4/ylPfFRUlx2/q/tsGEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWZCbHlMMjNqX0tVOThWRlNYSGItci0yd1lRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9mMjc3ZWEtNzI2YS00MDUyLThlNWIt
MzVhNWRjMmM3OTJjLzEvN19ZZkk4N25GYUZ2SkFoMXVfZ1FJWEdsRVMwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9mMjc3ZWEtNzI2YS00MDUyLThlNWItMzVhNWRjMmM3OTJj
LzEvMWZCbHlMMjNqX0tVOThWRlNYSGItci0yd1lRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbIfMA0G
CSqGSIb3DQEBCwUAA4IBAQAc3IQBTtAX4DvOzwA8WwhSm9UCaCcxNleVEJNOiH6h
XYHhduVt3vuNJ1NLou+pzxfZq7tsXKRwu0on8oJQAzRa4cXWiEf62RX/FCj2sRTH
IC6AuEaGUvw/S2ShMKi52ergKZJPYCjfgW08D6AAL9RjhkHXQcoozzZSRAt3gkh6
HWnM/XkO5m+WWkre5xAP+il+wIBecDyUdKfuwVNRamExy8/QF9xF5PMaMdKL+RyO
ZtcR/iBDOtStr08VXIkyLBg7YLTBi2ugIXBneCiUm5AeIFnG5sZnv1Yo9Ak50BzD
RTS50C/1advGAXEYWd14DBWYkY8LoYMGm3JBQZ+iJZlC
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:44 2023 by rpki-client on console-fra.rpki-client.org