Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/J7zRVr63qg3arIzaspLq-lTA3GA.roa
File: J7zRVr63qg3arIzaspLq-lTA3GA.roa (raw, json)
Hash identifier: /T5x+CVkP3Az3vy2OIQ2fW/eFPuAXzerHPrrSzlVnGU=
Subject key identifier: 27:BC:D1:56:BE:B7:AA:0D:DA:AC:8C:DA:B2:92:EA:FA:54:C0:DC:60
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 059E4696
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/J7zRVr63qg3arIzaspLq-lTA3GA.roa
Signing time: Sat 01 Jan 2022 07:04:01 +0000
ROA not before: Sat 01 Jan 2022 07:04:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49150
IP address blocks: 93.174.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94258838 (0x59e4696)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 07:04:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27bcd156beb7aa0ddaac8cdab292eafa54c0dc60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3c:47:a0:82:60:65:cc:00:0c:fc:3e:0d:ce:
97:e7:7b:39:2e:7e:53:24:24:4b:15:0b:9a:99:f6:
f3:30:c7:68:7a:e8:fe:19:9a:8a:94:2d:90:89:93:
46:1a:83:c4:61:03:57:cf:3f:c1:1e:a7:e9:63:26:
97:92:b7:71:e1:e7:95:2e:99:a4:ed:c7:f2:3b:cb:
55:6e:a2:81:d6:d9:70:f6:cf:c4:91:b5:dc:26:53:
2e:99:10:a9:a3:15:92:b9:c0:6b:9b:7b:ae:db:3c:
d5:e9:f4:34:73:e5:ad:51:d3:86:53:19:05:16:3d:
9f:ba:c0:92:25:8c:b3:6f:fc:d3:9f:dc:fc:e3:f3:
57:8d:4a:67:16:54:58:5c:c6:dc:2f:6e:87:3c:45:
90:9b:1d:7c:d0:0f:6d:a2:80:17:38:f8:75:64:05:
67:63:c1:7b:9c:46:68:9b:8e:09:15:2b:b4:ff:64:
fd:0f:41:0b:8b:28:4c:5e:53:65:f1:34:a2:e7:62:
e4:30:f0:1b:a8:4a:1a:41:97:c0:c2:18:26:50:58:
62:a3:7d:c2:58:67:85:11:6c:22:94:d1:5c:43:7e:
c1:74:13:a7:d6:6c:de:b0:87:66:5f:11:6a:c4:9a:
4a:d4:c2:c6:a1:ec:c1:fb:ee:b5:fe:a4:86:fd:75:
29:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:BC:D1:56:BE:B7:AA:0D:DA:AC:8C:DA:B2:92:EA:FA:54:C0:DC:60
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/J7zRVr63qg3arIzaspLq-lTA3GA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.174.161.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:57:2f:83:09:74:76:7d:09:54:a1:d8:39:6e:c1:62:98:ef:
cf:6b:00:42:ee:ac:a4:09:87:32:ce:1f:a6:9a:45:b6:5a:4d:
d9:3d:26:b5:ea:82:9a:7d:29:31:a9:30:26:1e:a4:1f:38:6c:
19:d3:ac:78:29:34:b9:42:ed:29:20:a8:ce:d2:17:9f:32:94:
c9:ed:80:f6:af:c5:6e:f8:d8:6a:63:de:9f:40:b4:8a:cf:f0:
4c:af:85:34:e3:51:4e:04:67:ac:27:6c:3a:29:88:85:07:8c:
7f:f2:9d:27:e2:f1:b7:60:d5:a9:09:40:73:86:23:7b:43:82:
fa:35:d6:0e:d5:23:51:cc:33:74:74:02:1b:be:09:88:ab:41:
93:1b:42:c7:31:a0:71:a3:80:41:81:95:ea:bc:37:e7:9f:d1:
a4:3a:82:9c:4d:1f:21:52:07:25:64:e6:49:3c:1f:6f:30:b8:
1f:e1:2e:77:44:21:d3:c9:e7:b1:9c:e7:61:93:86:ca:d9:7e:
60:bb:71:6a:86:43:77:96:a4:38:4e:65:ba:76:f3:08:e9:3d:
fb:99:ff:74:37:6e:f5:e8:c0:35:21:d4:6f:6f:45:5a:8d:f6:
d0:4e:cb:78:99:ba:62:4e:c1:df:2b:25:0b:f2:b0:ad:81:9f:
85:73:5b:79
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBZ5GljANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
Y2VmNThkNGNmYTM1NTQzZjg0ODhhMjc1NmU2OTI0ZTY0N2I0NTg5MB4XDTIyMDEw
MTA3MDQwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjdiY2QxNTZiZWI3
YWEwZGRhYWM4Y2RhYjI5MmVhZmE1NGMwZGM2MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMY8R6CCYGXMAAz8Pg3Ol+d7OS5+UyQkSxULmpn28zDHaHro
/hmaipQtkImTRhqDxGEDV88/wR6n6WMml5K3ceHnlS6ZpO3H8jvLVW6igdbZcPbP
xJG13CZTLpkQqaMVkrnAa5t7rts81en0NHPlrVHThlMZBRY9n7rAkiWMs2/805/c
/OPzV41KZxZUWFzG3C9uhzxFkJsdfNAPbaKAFzj4dWQFZ2PBe5xGaJuOCRUrtP9k
/Q9BC4soTF5TZfE0oudi5DDwG6hKGkGXwMIYJlBYYqN9wlhnhRFsIpTRXEN+wXQT
p9Zs3rCHZl8RasSaStTCxqHswfvutf6khv11KYECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQnvNFWvreqDdqsjNqykur6VMDcYDAfBgNVHSMEGDAWgBTc71jUz6NVQ/hI
iidW5pJOZHtFiTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNPOVkxTS1qVlVQNFNJb25WdWFTVG1SN1JZay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWEvZWE0NDU1LTc4MzYtNDRjNC1iMmEzLTJlY2UwNGUxODVjMi8x
L0o3elJWcjYzcWczYXJJemFzcExxLWxUQTNHQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWEv
ZWE0NDU1LTc4MzYtNDRjNC1iMmEzLTJlY2UwNGUxODVjMi8xLzNPOVkxTS1qVlVQ
NFNJb25WdWFTVG1SN1JZay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF2uoTANBgkqhkiG9w0BAQsFAAOC
AQEApVcvgwl0dn0JVKHYOW7BYpjvz2sAQu6spAmHMs4fpppFtlpN2T0mteqCmn0p
MakwJh6kHzhsGdOseCk0uULtKSCoztIXnzKUye2A9q/FbvjYamPen0C0is/wTK+F
NONRTgRnrCdsOimIhQeMf/KdJ+Lxt2DVqQlAc4Yje0OC+jXWDtUjUcwzdHQCG74J
iKtBkxtCxzGgcaOAQYGV6rw355/RpDqCnE0fIVIHJWTmSTwfbzC4H+Eud0Qh08nn
sZznYZOGytl+YLtxaoZDd5akOE5lunbzCOk9+5n/dDdu9ejANSHUb29FWo320E7L
eJm6Yk7B3yslC/KwrYGfhXNbeQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:01 2023 by rpki-client on console-fra.rpki-client.org