Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/7KNhpFi5hcurmr9crHQSXPaFxys.roa
File: 7KNhpFi5hcurmr9crHQSXPaFxys.roa (raw, json)
Hash identifier: 0DvHXzhAZjvD1Goe8fTF2zK7nGD5YSJsDsFURqPkPN4=
Subject key identifier: EC:A3:61:A4:58:B9:85:CB:AB:9A:BF:5C:AC:74:12:5C:F6:85:C7:2B
Certificate issuer: /CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Certificate serial: 07F59872
Authority key identifier: BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/7KNhpFi5hcurmr9crHQSXPaFxys.roa
Signing time: Mon 28 Mar 2022 17:49:53 +0000
ROA not before: Mon 28 Mar 2022 17:49:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 193.31.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133535858 (0x7f59872)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Validity
Not Before: Mar 28 17:49:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eca361a458b985cbab9abf5cac74125cf685c72b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:6e:18:61:e6:e8:c5:b6:ef:bd:6c:c0:39:5a:
cf:80:c8:6b:dd:43:5d:b9:22:cd:8f:b0:68:7b:4d:
9c:33:0e:52:c4:97:b5:e7:ce:06:58:e1:28:e5:1d:
3a:0a:79:2c:3e:65:e3:64:4d:e0:26:06:fd:f2:99:
41:a6:a0:54:c3:e4:11:34:4f:ba:1c:6f:0c:64:c7:
e4:4a:43:fd:69:83:6c:52:19:21:06:ae:74:89:97:
b9:da:d1:c0:f9:fd:5e:20:61:45:18:bc:7e:f2:b8:
68:df:13:df:28:28:f7:a6:e6:d5:df:07:e3:3a:53:
a7:b8:74:a4:d1:44:58:0e:8b:8f:15:48:ee:28:7d:
aa:af:82:9f:06:48:41:5e:8e:a7:54:a0:ff:28:da:
02:e4:21:f5:0d:9f:03:c4:da:8a:a9:58:8e:16:ef:
47:a5:2c:48:7a:9d:3b:2f:c4:f0:cb:78:ca:af:7e:
ff:30:fc:d6:da:96:1f:52:ce:c4:0d:8b:9e:c4:a1:
51:7e:72:18:64:41:df:aa:91:c4:61:8d:9e:43:8c:
fe:c3:04:42:23:a7:ca:6a:65:db:b9:85:cc:24:78:
02:3f:27:77:7e:88:2e:bd:b8:6a:2c:23:07:e7:6f:
d9:20:4d:60:46:88:99:a7:67:41:89:8e:8f:13:99:
18:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:A3:61:A4:58:B9:85:CB:AB:9A:BF:5C:AC:74:12:5C:F6:85:C7:2B
X509v3 Authority Key Identifier:
keyid:BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/7KNhpFi5hcurmr9crHQSXPaFxys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.15.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:f8:37:90:97:bd:48:05:e0:16:61:82:80:3c:93:f9:e7:a9:
77:ea:dc:de:b5:b6:2f:9f:03:d7:3b:5d:14:f6:ac:d3:f5:e9:
f4:ab:d7:2d:0e:8c:5b:10:fd:f5:f1:8f:fe:36:87:4b:2e:1e:
bc:c0:cf:f3:01:85:6b:ef:44:a7:25:44:0c:a8:c0:c4:67:15:
52:c6:84:df:d1:0c:17:5b:09:ae:06:88:94:29:7d:0d:b0:6f:
f3:2f:8e:66:17:4e:71:63:3e:c5:43:fe:e2:30:55:fc:b3:b8:
eb:63:c4:9e:cc:a6:f1:4f:85:ae:a3:e7:0d:66:1e:85:4e:ca:
a7:b5:67:19:23:22:89:e2:cf:92:68:ff:1f:82:cb:d9:92:c5:
6a:8a:d4:11:47:ad:47:09:47:d8:4c:40:dd:71:e7:b8:bd:2a:
0b:85:29:b9:a1:bc:35:3e:d0:dc:13:f8:d5:fa:82:3a:63:12:
c4:83:be:24:23:a1:86:d4:a1:fd:c7:1f:43:0c:69:1d:64:02:
05:35:e8:47:3a:6c:72:de:08:67:bd:cd:96:b6:c8:08:c8:57:
e0:19:64:b3:3b:70:1a:b2:06:6a:20:16:3d:4b:14:07:21:e3:
76:fa:1c:07:ed:54:fc:a7:b1:ab:e2:66:ff:86:6e:9b:e6:a5:
46:b4:bc:1d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB/WYcjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZjFkNWZlYWZkMzkxNzQ3MjViZmU0YmVmOTFiZDI3YzdiMmY2ZjkxMB4XDTIyMDMy
ODE3NDk1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWNhMzYxYTQ1OGI5
ODVjYmFiOWFiZjVjYWM3NDEyNWNmNjg1YzcyYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPFuGGHm6MW2771swDlaz4DIa91DXbkizY+waHtNnDMOUsSX
tefOBljhKOUdOgp5LD5l42RN4CYG/fKZQaagVMPkETRPuhxvDGTH5EpD/WmDbFIZ
IQaudImXudrRwPn9XiBhRRi8fvK4aN8T3ygo96bm1d8H4zpTp7h0pNFEWA6LjxVI
7ih9qq+CnwZIQV6Op1Sg/yjaAuQh9Q2fA8TaiqlYjhbvR6UsSHqdOy/E8Mt4yq9+
/zD81tqWH1LOxA2LnsShUX5yGGRB36qRxGGNnkOM/sMEQiOnympl27mFzCR4Aj8n
d36ILr24aiwjB+dv2SBNYEaImadnQYmOjxOZGAECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTso2GkWLmFy6uav1ysdBJc9oXHKzAfBgNVHSMEGDAWgBS/HV/q/TkXRyW/
5L75G9J8ey9vkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Z4MWY2djA1RjBjbHYtUy0tUnZTZkhzdmI1RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjMvNjA2NWQyLTEwM2UtNGFiNy1iZmIzLTFhOGM4NDJhZmUyYS8x
LzdLTmhwRmk1aGN1cm1yOWNySFFTWFBhRnh5cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjMv
NjA2NWQyLTEwM2UtNGFiNy1iZmIzLTFhOGM4NDJhZmUyYS8xL3Z4MWY2djA1RjBj
bHYtUy0tUnZTZkhzdmI1RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEfDzANBgkqhkiG9w0BAQsFAAOC
AQEAPPg3kJe9SAXgFmGCgDyT+eepd+rc3rW2L58D1ztdFPas0/Xp9KvXLQ6MWxD9
9fGP/jaHSy4evMDP8wGFa+9EpyVEDKjAxGcVUsaE39EMF1sJrgaIlCl9DbBv8y+O
ZhdOcWM+xUP+4jBV/LO462PEnsym8U+FrqPnDWYehU7Kp7VnGSMiieLPkmj/H4LL
2ZLFaorUEUetRwlH2ExA3XHnuL0qC4UpuaG8NT7Q3BP41fqCOmMSxIO+JCOhhtSh
/ccfQwxpHWQCBTXoRzpsct4IZ73NlrbICMhX4BlksztwGrIGaiAWPUsUByHjdvoc
B+1U/Kexq+Jm/4Zum+alRrS8HQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:31 2024 by rpki-client on console-fra.rpki-client.org