Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a9f2b9-6e7d-4eea-a474-1f67d945b8b9/1/29Ja2KZwQVhnMk35ew9XQcux4aE.roa
File: 29Ja2KZwQVhnMk35ew9XQcux4aE.roa (raw, json)
Hash identifier: LUkbVy/TsG4j0eU6bR912vqTpcrgTpjVbfZIhuLGws0=
Subject key identifier: DB:D2:5A:D8:A6:70:41:58:67:32:4D:F9:7B:0F:57:41:CB:B1:E1:A1
Certificate issuer: /CN=6798580bb843519c104420e59c0b5c2403414607
Certificate serial: BDB6
Authority key identifier: 67:98:58:0B:B8:43:51:9C:10:44:20:E5:9C:0B:5C:24:03:41:46:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5hYC7hDUZwQRCDlnAtcJANBRgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a9f2b9-6e7d-4eea-a474-1f67d945b8b9/1/29Ja2KZwQVhnMk35ew9XQcux4aE.roa
Signing time: Thu 23 Jun 2022 10:27:25 +0000
ROA not before: Thu 23 Jun 2022 10:27:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24839
IP address blocks: 193.0.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48566 (0xbdb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6798580bb843519c104420e59c0b5c2403414607
Validity
Not Before: Jun 23 10:27:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbd25ad8a670415867324df97b0f5741cbb1e1a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fe:08:c7:22:fb:e3:81:87:47:5e:03:10:2b:
63:b7:2c:26:cb:e9:7a:3e:d8:af:81:51:48:9b:2a:
bd:c5:2a:b4:04:b2:df:4a:bb:fb:f8:21:57:8f:d3:
98:54:3d:48:43:8c:19:86:bf:cd:78:62:d9:29:fa:
5e:4e:4d:06:f7:44:eb:3b:60:42:f7:b8:33:44:87:
4d:7c:81:18:e1:0d:e6:45:b8:5f:6f:64:40:19:fe:
26:2b:64:77:e9:b9:19:33:b4:13:df:f6:ea:1f:5f:
62:da:56:fa:c6:3b:30:03:8f:76:66:4e:7f:ba:29:
bb:19:08:d7:1f:6c:17:1c:97:88:11:20:92:56:07:
f1:79:85:78:b4:0c:e5:d8:d6:0c:fa:41:2d:30:8b:
14:00:cc:be:38:a8:b8:67:10:e9:a7:45:c6:9f:4c:
4a:07:c0:76:ad:a5:d9:14:7a:88:5d:41:d3:35:99:
f5:10:97:49:26:08:19:31:d6:11:b6:b5:5c:35:5b:
d6:eb:f7:5b:3f:a3:6a:47:1c:a0:b9:b3:47:c3:8e:
be:b3:19:5b:5c:63:93:8f:66:3f:26:32:fe:12:6a:
0d:87:67:6b:25:ea:d9:74:50:5c:d1:7d:f4:4d:9f:
f0:5f:04:ff:85:c0:23:99:49:47:6d:16:42:02:77:
e0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:D2:5A:D8:A6:70:41:58:67:32:4D:F9:7B:0F:57:41:CB:B1:E1:A1
X509v3 Authority Key Identifier:
keyid:67:98:58:0B:B8:43:51:9C:10:44:20:E5:9C:0B:5C:24:03:41:46:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5hYC7hDUZwQRCDlnAtcJANBRgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a9f2b9-6e7d-4eea-a474-1f67d945b8b9/1/29Ja2KZwQVhnMk35ew9XQcux4aE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a9f2b9-6e7d-4eea-a474-1f67d945b8b9/1/Z5hYC7hDUZwQRCDlnAtcJANBRgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.225.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:8e:bf:60:03:94:b8:46:58:a1:1a:cd:dc:72:ab:2e:7d:67:
4c:b8:a1:9b:0e:55:ad:93:32:86:94:b9:13:0f:53:bc:b5:5c:
70:17:95:1e:0c:69:64:02:3d:04:e6:b9:25:b4:13:ef:7d:8b:
56:6a:48:4a:5e:28:21:cc:b7:7f:db:ba:ec:d7:a7:5c:d2:57:
93:6d:64:65:ec:d2:d5:45:c0:f6:5f:4a:df:68:1b:e3:92:56:
de:cf:c1:04:65:0e:e8:59:d7:c8:b6:98:10:84:62:a9:08:93:
9c:06:6d:9a:55:2d:90:04:7d:45:99:1c:3a:50:59:89:5a:0d:
0d:19:bf:81:fd:74:63:92:66:09:94:48:51:df:fa:f5:04:35:
08:4b:cf:61:dd:a6:1e:d7:c3:43:08:ed:fb:7d:2d:13:db:81:
d1:dd:b2:76:a0:0f:2b:39:2c:b1:cb:6a:78:58:a8:b8:67:1e:
e6:c8:d3:5f:5f:d1:2c:89:8a:56:50:91:c4:98:bb:83:5b:67:
68:48:96:48:f0:21:e0:17:74:48:52:a7:93:f7:d2:a8:b4:65:
5d:f5:19:56:96:40:93:f7:6b:9b:2d:88:64:b0:ec:67:da:22:
d1:c3:fe:45:5b:db:d4:ac:1b:3b:b7:f1:23:6a:24:9b:13:f1:
79:1e:63:fe
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAL22MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDY3
OTg1ODBiYjg0MzUxOWMxMDQ0MjBlNTljMGI1YzI0MDM0MTQ2MDcwHhcNMjIwNjIz
MTAyNzI1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhkYmQyNWFkOGE2NzA0
MTU4NjczMjRkZjk3YjBmNTc0MWNiYjFlMWExMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAqv4IxyL744GHR14DECtjtywmy+l6PtivgVFImyq9xSq0BLLf
Srv7+CFXj9OYVD1IQ4wZhr/NeGLZKfpeTk0G90TrO2BC97gzRIdNfIEY4Q3mRbhf
b2RAGf4mK2R36bkZM7QT3/bqH19i2lb6xjswA492Zk5/uim7GQjXH2wXHJeIESCS
VgfxeYV4tAzl2NYM+kEtMIsUAMy+OKi4ZxDpp0XGn0xKB8B2raXZFHqIXUHTNZn1
EJdJJggZMdYRtrVcNVvW6/dbP6NqRxygubNHw46+sxlbXGOTj2Y/JjL+EmoNh2dr
JerZdFBc0X30TZ/wXwT/hcAjmUlHbRZCAnfgtwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFNvSWtimcEFYZzJN+XsPV0HLseGhMB8GA1UdIwQYMBaAFGeYWAu4Q1GcEEQg
5ZwLXCQDQUYHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
WjVoWUM3aERVWndRUkNEbG5BdGNKQU5CUmdjLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iNC9hOWYyYjktNmU3ZC00ZWVhLWE0NzQtMWY2N2Q5NDViOGI5LzEv
MjlKYTJLWndRVmhuTWszNWV3OVhRY3V4NGFFLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9h
OWYyYjktNmU3ZC00ZWVhLWE0NzQtMWY2N2Q5NDViOGI5LzEvWjVoWUM3aERVWndR
UkNEbG5BdGNKQU5CUmdjLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQDhMA0GCSqGSIb3DQEBCwUAA4IB
AQBsjr9gA5S4RlihGs3ccqsufWdMuKGbDlWtkzKGlLkTD1O8tVxwF5UeDGlkAj0E
5rkltBPvfYtWakhKXighzLd/27rs16dc0leTbWRl7NLVRcD2X0rfaBvjklbez8EE
ZQ7oWdfItpgQhGKpCJOcBm2aVS2QBH1FmRw6UFmJWg0NGb+B/XRjkmYJlEhR3/r1
BDUIS89h3aYe18NDCO37fS0T24HR3bJ2oA8rOSyxy2p4WKi4Zx7myNNfX9EsiYpW
UJHEmLuDW2doSJZI8CHgF3RIUqeT99KotGVd9RlWlkCT92ubLYhksOxn2iLRw/5F
W9vUrBs7t/EjaiSbE/F5HmP+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:43 2024 by rpki-client on console-fra.rpki-client.org