Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/sdxV223D1m2ABWDUci4RQIp1Yxo.roa
File: sdxV223D1m2ABWDUci4RQIp1Yxo.roa (raw, json)
Hash identifier: 4SYT+uMj+w79403tYJtzI6JLBgqaIsX79EuBoEL1sM8=
Subject key identifier: B1:DC:55:DB:6D:C3:D6:6D:80:05:60:D4:72:2E:11:40:8A:75:63:1A
Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Certificate serial: 03F073E7
Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/sdxV223D1m2ABWDUci4RQIp1Yxo.roa
Signing time: Sat 01 Jan 2022 08:54:52 +0000
ROA not before: Sat 01 Jan 2022 08:54:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57443
IP address blocks: 193.57.208.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66089959 (0x3f073e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Validity
Not Before: Jan 1 08:54:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1dc55db6dc3d66d800560d4722e11408a75631a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:58:e8:1e:fa:7f:58:d4:a5:67:57:7b:57:8c:
a5:77:e9:df:38:88:f4:80:bc:1b:79:99:e3:5a:5f:
3c:28:83:3c:21:4f:33:15:ff:c6:5d:ea:bc:b2:4a:
45:05:50:9b:06:5e:f9:ad:ac:50:5d:5e:94:67:b8:
43:be:d3:c0:3f:5e:0d:79:3d:e8:85:84:f2:20:9b:
77:21:34:5b:8a:b0:35:48:7e:49:95:9a:32:1c:e1:
bf:a9:58:45:64:26:e2:5e:93:f3:00:46:c6:3a:25:
e5:b9:5b:60:c5:0e:d8:b2:eb:84:02:09:31:8e:7d:
ae:0d:71:5a:be:89:f8:ee:18:ca:49:3e:5d:46:61:
d3:b8:85:ea:90:58:9b:b2:8a:b0:68:e1:f2:80:9d:
fd:f3:e3:ec:54:cf:6d:82:d9:13:2f:55:d0:f8:91:
f2:c8:13:3c:1c:52:ea:e7:68:ed:70:f7:d2:89:03:
52:87:1d:93:78:fc:62:8f:cf:de:24:df:ac:78:7c:
12:03:86:39:44:97:7e:40:7e:37:1f:a1:0b:d7:59:
7b:67:b9:8e:da:e3:a1:e8:00:0c:76:56:4a:9d:9e:
b6:78:07:ff:9f:e6:cf:92:b6:64:8f:b9:97:26:b6:
ab:84:a8:4d:41:76:6f:d8:41:0a:00:e5:f3:1a:0a:
46:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:DC:55:DB:6D:C3:D6:6D:80:05:60:D4:72:2E:11:40:8A:75:63:1A
X509v3 Authority Key Identifier:
keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/sdxV223D1m2ABWDUci4RQIp1Yxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.208.0/22
Signature Algorithm: sha256WithRSAEncryption
67:8b:2c:08:5a:8b:59:64:eb:b8:92:d0:86:bf:e0:7f:eb:10:
b0:4d:29:35:2a:5b:39:8f:ab:fd:4e:da:14:43:97:88:ee:a1:
fb:81:42:22:2f:57:fb:a9:2c:b5:2e:08:51:a3:b2:39:ca:71:
eb:60:3f:ab:c4:20:86:d7:9c:44:67:14:19:ab:62:c2:10:7a:
59:37:18:a6:f1:b0:d3:20:ea:6b:e8:1e:8e:39:b5:e7:7d:e5:
40:99:cb:26:40:f3:0f:79:35:7a:f5:94:6e:ee:19:f8:cc:34:
23:8a:65:c2:1d:19:02:ed:62:22:4e:6e:51:60:ce:83:76:76:
31:22:67:78:08:95:46:c5:1a:0d:a7:58:79:5f:75:14:68:56:
d1:ff:35:d6:40:83:df:b0:9f:d8:92:11:c2:5d:4f:63:31:c7:
43:30:25:4b:74:45:79:19:df:4a:1f:b0:8e:79:96:ae:43:bc:
c3:a0:7e:ff:6f:35:5f:be:33:f7:67:0b:8f:08:b4:f5:16:c3:
f5:eb:0a:2c:b0:c2:1d:8a:fa:66:d6:01:80:bc:53:00:17:7f:
ec:66:87:cb:28:03:80:4e:0c:ef:e7:7e:1d:37:25:f0:dd:c0:
b0:b5:c3:c9:84:23:e4:67:b6:17:80:3f:be:53:03:a3:11:72:
6e:eb:71:53
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA/Bz5zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NTg4ZmI0YjBmYjA3YjJiNTJlMzBkOTIxOTg5OGYyOGNmYmM5YTJkMB4XDTIyMDEw
MTA4NTQ1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjFkYzU1ZGI2ZGMz
ZDY2ZDgwMDU2MGQ0NzIyZTExNDA4YTc1NjMxYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL1Y6B76f1jUpWdXe1eMpXfp3ziI9IC8G3mZ41pfPCiDPCFP
MxX/xl3qvLJKRQVQmwZe+a2sUF1elGe4Q77TwD9eDXk96IWE8iCbdyE0W4qwNUh+
SZWaMhzhv6lYRWQm4l6T8wBGxjol5blbYMUO2LLrhAIJMY59rg1xWr6J+O4Yykk+
XUZh07iF6pBYm7KKsGjh8oCd/fPj7FTPbYLZEy9V0PiR8sgTPBxS6udo7XD30okD
Uocdk3j8Yo/P3iTfrHh8EgOGOUSXfkB+Nx+hC9dZe2e5jtrjoegADHZWSp2etngH
/5/mz5K2ZI+5lya2q4SoTUF2b9hBCgDl8xoKRssCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSx3FXbbcPWbYAFYNRyLhFAinVjGjAfBgNVHSMEGDAWgBSViPtLD7B7K1Lj
DZIZiY8oz7yaLTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2xZajdTdy13ZXl0UzR3MlNHWW1QS00tOG1pMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWMvZmI4NWQzLTY2NjAtNDMwZS05YWM3LTg2ZDJjMzExZGIxNy8x
L3NkeFYyMjNEMW0yQUJXRFVjaTRSUUlwMVl4by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWMv
ZmI4NWQzLTY2NjAtNDMwZS05YWM3LTg2ZDJjMzExZGIxNy8xL2xZajdTdy13ZXl0
UzR3MlNHWW1QS00tOG1pMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsE50DANBgkqhkiG9w0BAQsFAAOC
AQEAZ4ssCFqLWWTruJLQhr/gf+sQsE0pNSpbOY+r/U7aFEOXiO6h+4FCIi9X+6ks
tS4IUaOyOcpx62A/q8QghtecRGcUGatiwhB6WTcYpvGw0yDqa+gejjm1533lQJnL
JkDzD3k1evWUbu4Z+Mw0I4plwh0ZAu1iIk5uUWDOg3Z2MSJneAiVRsUaDadYeV91
FGhW0f811kCD37Cf2JIRwl1PYzHHQzAlS3RFeRnfSh+wjnmWrkO8w6B+/281X74z
92cLjwi09RbD9esKLLDCHYr6ZtYBgLxTABd/7GaHyygDgE4M7+d+HTcl8N3AsLXD
yYQj5Ge2F4A/vlMDoxFybutxUw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:07 2023 by rpki-client on console-fra.rpki-client.org