Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/IoiJIjQpqpoDAYJN9GFZGqawuz4.roa
File: IoiJIjQpqpoDAYJN9GFZGqawuz4.roa (raw, json)
Hash identifier: oS9HzONzKUlHXN+mwkEChQ8T8WsrL/u/acm583HZrvg=
Subject key identifier: 22:88:89:22:34:29:AA:9A:03:01:82:4D:F4:61:59:1A:A6:B0:BB:3E
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 01822541C4091002A22A70016CAC800F2D54
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/IoiJIjQpqpoDAYJN9GFZGqawuz4.roa
Signing time: Fri 22 Jul 2022 09:34:03 +0000
ROA not before: Fri 22 Jul 2022 09:34:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197890
IP address blocks: 92.53.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:25:41:c4:09:10:02:a2:2a:70:01:6c:ac:80:0f:2d:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Jul 22 09:34:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=228889223429aa9a0301824df461591aa6b0bb3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9e:83:49:54:22:54:9c:09:0e:07:41:a8:e5:
5e:d8:fe:7e:26:8f:c3:32:32:d2:8a:25:0d:5f:c7:
56:a1:c5:b1:29:c8:34:9a:c3:a1:67:6e:6e:c1:fc:
1e:6f:d1:21:8e:54:ee:c1:15:23:50:0f:a9:d8:1d:
de:72:6f:b5:ff:31:0f:17:1b:56:ce:89:82:64:db:
61:cc:4f:c5:40:ec:88:d1:df:1f:cd:03:b4:74:79:
bb:e2:95:56:77:cf:03:45:b7:da:ef:56:bf:15:ee:
7c:cd:c8:54:59:cb:14:fe:ff:b4:3a:8c:ec:87:07:
02:1a:d5:59:43:a7:47:c3:d9:93:4a:0e:0b:7a:fc:
22:0d:c5:cf:9e:05:66:38:34:b5:56:47:35:6c:7a:
1b:b3:7b:e6:ad:ea:4a:aa:ad:06:c6:b5:40:27:f7:
e8:23:f8:95:ae:c8:f6:18:3f:36:33:8f:fd:2f:9e:
92:3b:65:a2:13:11:eb:97:a7:85:6c:ed:a4:06:de:
02:68:09:fd:e5:a1:14:24:47:45:7d:fd:9a:a6:1b:
74:0c:83:a0:ed:85:a1:24:64:c6:11:21:bd:f9:61:
4e:4c:10:de:11:76:0a:d5:fb:32:e4:47:b0:a1:07:
ff:f4:cd:ec:cf:50:34:ec:70:df:1c:35:25:ce:b2:
6e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:88:89:22:34:29:AA:9A:03:01:82:4D:F4:61:59:1A:A6:B0:BB:3E
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/IoiJIjQpqpoDAYJN9GFZGqawuz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.172.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:73:fc:38:16:a3:87:1a:d6:bc:32:74:98:eb:3a:8c:be:24:
02:cf:6c:45:91:be:5d:b8:c1:e7:89:46:0c:83:69:b1:e1:22:
1b:b3:e9:20:fb:d7:32:f3:c4:e2:af:f1:e1:17:a5:2e:e6:f4:
bc:1b:94:9e:04:3b:26:2a:5c:3c:d2:ad:46:96:d7:a7:7c:7b:
d8:82:ed:cd:f7:ce:65:9d:3a:6d:08:cb:a2:1d:70:89:45:75:
48:52:2f:2f:34:9d:c1:a5:6d:1d:c2:34:ae:67:8d:af:9c:4d:
6b:51:70:ac:04:63:af:51:c0:ad:96:c0:d1:63:e8:ee:a6:6d:
eb:e8:d0:85:39:e2:2e:c9:bc:90:00:a9:84:7f:ef:97:50:ca:
e8:a2:3d:f1:35:e4:dd:54:d8:f4:7a:26:cc:81:7b:1a:df:91:
7f:dc:e2:84:70:e9:bd:de:5a:1a:ab:9b:22:39:d3:30:ef:27:
f2:7e:bb:9c:0e:50:ee:4a:9b:96:1d:21:63:65:5a:9a:07:04:
01:d4:32:90:43:fc:77:c7:4b:17:86:e6:e0:dc:fb:6d:8b:96:
28:0c:6f:00:99:ee:c9:72:e4:4a:35:4f:f5:7d:ed:fb:26:a4:
66:c9:11:e9:99:d8:84:ed:27:5c:d9:02:b4:61:c8:10:80:fe:
83:16:81:99
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIlQcQJEAKiKnABbKyADy1UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlNzc5ZTU2MjM4YjZmMmVhMDY4ZWRlNGUyMGFlZjAwYzkw
NDEzMmIwHhcNMjIwNzIyMDkzNDAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMjg4ODkyMjM0MjlhYTlhMDMwMTgyNGRmNDYxNTkxYWE2YjBiYjNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqp6DSVQiVJwJDgdBqOVe2P5+Jo/D
MjLSiiUNX8dWocWxKcg0msOhZ25uwfweb9EhjlTuwRUjUA+p2B3ecm+1/zEPFxtW
zomCZNthzE/FQOyI0d8fzQO0dHm74pVWd88DRbfa71a/Fe58zchUWcsU/v+0Oozs
hwcCGtVZQ6dHw9mTSg4LevwiDcXPngVmODS1Vkc1bHobs3vmrepKqq0GxrVAJ/fo
I/iVrsj2GD82M4/9L56SO2WiExHrl6eFbO2kBt4CaAn95aEUJEdFff2apht0DIOg
7YWhJGTGESG9+WFOTBDeEXYK1fsy5EewoQf/9M3sz1A07HDfHDUlzrJugwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCKIiSI0KaqaAwGCTfRhWRqmsLs+MB8GA1UdIwQY
MBaAFP53nlYji28uoGjt5OIK7wDJBBMrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX25lZVZpT0xieTZnYU8zazRncnZBTWtFRXlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS80ZGU1OTgtNmIwMy00YmVmLWFiMTQt
MzM4OTQ5MTNkY2I3LzEvSW9pSklqUXBxcG9EQVlKTjlHRlpHcWF3dXo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS80ZGU1OTgtNmIwMy00YmVmLWFiMTQtMzM4OTQ5MTNkY2I3
LzEvX25lZVZpT0xieTZnYU8zazRncnZBTWtFRXlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCXDWsMA0G
CSqGSIb3DQEBCwUAA4IBAQAqc/w4FqOHGta8MnSY6zqMviQCz2xFkb5duMHniUYM
g2mx4SIbs+kg+9cy88Tir/HhF6Uu5vS8G5SeBDsmKlw80q1GltenfHvYgu3N985l
nTptCMuiHXCJRXVIUi8vNJ3BpW0dwjSuZ42vnE1rUXCsBGOvUcCtlsDRY+jupm3r
6NCFOeIuybyQAKmEf++XUMrooj3xNeTdVNj0eibMgXsa35F/3OKEcOm93loaq5si
OdMw7yfyfrucDlDuSpuWHSFjZVqaBwQB1DKQQ/x3x0sXhubg3Ptti5YoDG8Ame7J
cuRKNU/1fe37JqRmyRHpmdiE7Sdc2QK0YcgQgP6DFoGZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:13 2024 by rpki-client on console-fra.rpki-client.org