Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/1-j9WwWyXGr0v7oCO_e9g6Zr5Ru0.roa
File: 1-j9WwWyXGr0v7oCO_e9g6Zr5Ru0.roa (raw, json)
Hash identifier: PKpSKF1uO6BsIk5NIwn0qIFrG7wryQtuzqdDtGUl/hc=
Subject key identifier: FA:3F:56:C1:6C:97:1A:BD:2F:EE:80:8E:FD:EF:60:E9:9A:F9:46:ED
Certificate issuer: /CN=58a86a6c71fb734c705b5e66e74ac1c56bb9605e
Certificate serial: 020BCF
Authority key identifier: 58:A8:6A:6C:71:FB:73:4C:70:5B:5E:66:E7:4A:C1:C5:6B:B9:60:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKhqbHH7c0xwW15m50rBxWu5YF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/1-j9WwWyXGr0v7oCO_e9g6Zr5Ru0.roa
Signing time: Mon 04 Jul 2022 21:59:07 +0000
ROA not before: Mon 04 Jul 2022 21:59:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57022
IP address blocks: 193.35.28.0/23 maxlen: 23
193.35.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134095 (0x20bcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a86a6c71fb734c705b5e66e74ac1c56bb9605e
Validity
Not Before: Jul 4 21:59:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa3f56c16c971abd2fee808efdef60e99af946ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:71:52:32:0d:a2:c1:56:c9:e5:09:ba:ae:55:
8f:f2:15:3e:9a:71:46:7a:08:41:98:99:a8:fa:6d:
b2:b3:4f:1c:14:d4:1c:32:9c:9a:b6:95:c3:de:f3:
7a:1b:b0:e9:d8:f9:b2:b7:ff:c6:da:73:66:8e:5f:
92:89:02:6c:f3:26:01:a6:81:23:44:ea:5b:fa:b3:
76:c9:35:f0:82:cc:91:f4:cf:9b:90:d2:0c:4e:4a:
4d:0c:33:84:af:12:c9:d1:73:78:f7:36:b5:96:54:
fe:fc:aa:74:c5:56:0d:b7:fd:43:72:d8:c9:9f:a4:
c7:ba:f6:01:c7:45:94:f2:45:d5:c1:b7:f6:0e:d9:
20:f7:08:43:f7:67:1e:4f:6d:84:5b:f4:e9:c4:f5:
01:7c:c2:d6:df:43:79:29:5a:eb:2a:a0:16:da:d7:
c4:ad:40:62:5c:21:83:18:3b:7a:0f:17:ee:f6:d7:
58:14:33:a7:d3:f7:61:4e:39:0a:95:3b:6d:30:ec:
7a:d6:14:e8:f3:48:48:c0:c2:52:78:e6:d9:c9:0d:
24:c5:0e:a3:f5:98:7e:24:5d:f9:82:22:de:5b:8c:
d9:0c:4c:a8:00:30:35:30:10:d3:94:6c:d1:f6:32:
9e:dc:d4:20:5f:68:9b:54:cf:37:6f:56:e7:a1:87:
f0:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:3F:56:C1:6C:97:1A:BD:2F:EE:80:8E:FD:EF:60:E9:9A:F9:46:ED
X509v3 Authority Key Identifier:
keyid:58:A8:6A:6C:71:FB:73:4C:70:5B:5E:66:E7:4A:C1:C5:6B:B9:60:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKhqbHH7c0xwW15m50rBxWu5YF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/1-j9WwWyXGr0v7oCO_e9g6Zr5Ru0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.28.0-193.35.30.255
Signature Algorithm: sha256WithRSAEncryption
8c:de:6d:ba:fd:02:ae:b1:1d:66:4c:23:c3:eb:d0:17:df:36:
a2:2f:af:2e:dc:d1:9b:21:c4:41:4d:34:69:c2:9e:32:4e:77:
5d:5c:a3:82:de:3c:ec:8d:d0:48:b7:43:73:f3:d3:83:e2:49:
b1:96:63:26:73:7e:b5:4b:50:05:79:55:cb:50:e1:13:47:16:
c2:48:38:8b:66:c8:17:76:f3:b8:0b:5b:05:61:f2:ba:1a:eb:
f8:eb:53:df:8c:59:43:75:e6:57:22:c5:3e:98:3e:97:fb:2d:
b6:b7:f4:51:0b:cf:b2:20:f8:1a:5c:ea:92:b8:ca:1c:59:8b:
c1:d4:12:c4:02:40:0e:5d:19:ac:1d:99:46:e4:5e:b8:85:de:
c5:36:f2:19:0b:4b:87:2e:f7:1c:77:b4:a5:e3:c0:da:c8:b5:
09:99:18:81:17:b9:1d:0e:8e:28:a4:4b:cb:01:9e:7f:8b:a2:
a9:cc:99:c5:f8:ac:ef:f2:59:a0:33:20:3b:2d:b2:4f:5b:a1:
a6:20:86:97:af:52:4e:3c:08:4d:24:6a:e3:68:7d:ce:06:a7:
97:a3:38:a5:85:b4:97:70:24:d6:07:3b:bf:80:64:43:e8:c2:
b0:80:7b:57:8e:0a:69:a0:ab:c0:d0:61:5d:39:82:b8:4b:c2:
77:52:e5:85
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIDAgvPMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDU4
YTg2YTZjNzFmYjczNGM3MDViNWU2NmU3NGFjMWM1NmJiOTYwNWUwHhcNMjIwNzA0
MjE1OTA3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhmYTNmNTZjMTZjOTcx
YWJkMmZlZTgwOGVmZGVmNjBlOTlhZjk0NmVkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA5nFSMg2iwVbJ5Qm6rlWP8hU+mnFGeghBmJmo+m2ys08cFNQc
MpyatpXD3vN6G7Dp2Pmyt//G2nNmjl+SiQJs8yYBpoEjROpb+rN2yTXwgsyR9M+b
kNIMTkpNDDOErxLJ0XN49za1llT+/Kp0xVYNt/1DctjJn6THuvYBx0WU8kXVwbf2
Dtkg9whD92ceT22EW/TpxPUBfMLW30N5KVrrKqAW2tfErUBiXCGDGDt6Dxfu9tdY
FDOn0/dhTjkKlTttMOx61hTo80hIwMJSeObZyQ0kxQ6j9Zh+JF35giLeW4zZDEyo
ADA1MBDTlGzR9jKe3NQgX2ibVM83b1bnoYfwGQIDAQABo4ICEjCCAg4wHQYDVR0O
BBYEFPo/VsFslxq9L+6Ajv3vYOma+UbtMB8GA1UdIwQYMBaAFFioamxx+3NMcFte
ZudKwcVruWBeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
V0tocWJISDdjMHh3VzE1bTUwckJ4V3U1WUY0LmNlcjCBjgYIKwYBBQUHAQsEgYEw
fzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iMS85YzQzNjUtYTk4Zi00M2ZlLTk5NTAtYTliMTNjMjgwMGFmLzEv
MS1qOVd3V3lYR3IwdjdvQ09fZTlnNlpyNVJ1MC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
OWM0MzY1LWE5OGYtNDNmZS05OTUwLWE5YjEzYzI4MDBhZi8xL1dLaHFiSEg3YzB4
d1cxNW01MHJCeFd1NVlGNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQCwSMcAwQAwSMeMA0GCSqGSIb3
DQEBCwUAA4IBAQCM3m26/QKusR1mTCPD69AX3zaiL68u3NGbIcRBTTRpwp4yTndd
XKOC3jzsjdBIt0Nz89OD4kmxlmMmc361S1AFeVXLUOETRxbCSDiLZsgXdvO4C1sF
YfK6Guv461PfjFlDdeZXIsU+mD6X+y22t/RRC8+yIPgaXOqSuMocWYvB1BLEAkAO
XRmsHZlG5F64hd7FNvIZC0uHLvccd7Sl48DayLUJmRiBF7kdDo4opEvLAZ5/i6Kp
zJnF+Kzv8lmgMyA7LbJPW6GmIIaXr1JOPAhNJGrjaH3OBqeXozilhbSXcCTWBzu/
gGRD6MKwgHtXjgppoKvA0GFdOYK4S8J3UuWF
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:17 2025 by rpki-client