Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/0e5a71-2c0b-4f04-9466-31411d91576a/1/1-AtLhKzSmDVkNCjVlKdLcBge_k8.roa
File: 1-AtLhKzSmDVkNCjVlKdLcBge_k8.roa (raw, json)
Hash identifier: f9h0EfSXznDw5waTZNGOhzuQJiltP1/R9AUchKu12AM=
Subject key identifier: F8:0B:4B:84:AC:D2:98:35:64:34:28:D5:94:A7:4B:70:18:1E:FE:4F
Certificate issuer: /CN=d5b80180b40d585b7366587dfb5de7bf3077843e
Certificate serial: 01856F0B719EEC4C86926092129F51FDF988
Authority key identifier: D5:B8:01:80:B4:0D:58:5B:73:66:58:7D:FB:5D:E7:BF:30:77:84:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1bgBgLQNWFtzZlh9-13nvzB3hD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/0e5a71-2c0b-4f04-9466-31411d91576a/1/1-AtLhKzSmDVkNCjVlKdLcBge_k8.roa
Signing time: Sun 01 Jan 2023 20:34:58 +0000
ROA not before: Sun 01 Jan 2023 20:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43891
IP address blocks: 193.186.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:71:9e:ec:4c:86:92:60:92:12:9f:51:fd:f9:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5b80180b40d585b7366587dfb5de7bf3077843e
Validity
Not Before: Jan 1 20:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f80b4b84acd29835643428d594a74b70181efe4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:27:20:b6:be:40:1c:15:2b:4e:70:62:e1:25:
0b:ba:0d:55:ca:42:84:8e:b9:b1:c2:57:48:31:1e:
7a:f6:ef:8e:b2:92:5f:75:15:2b:5b:cc:d8:51:b9:
79:0a:42:e7:25:03:4b:6e:c7:15:0c:b3:d5:bd:01:
82:88:53:d0:97:af:f0:3e:c4:52:19:2f:7f:af:10:
bf:7f:33:ed:32:bf:de:9c:73:ed:8f:09:81:64:cc:
3c:bc:d3:28:6b:ca:43:2b:fe:e7:cf:ad:e8:d0:a4:
ef:28:5d:b9:fe:9a:60:e3:04:bb:84:16:6b:5a:81:
44:5d:1c:c0:e2:55:c3:d1:0a:97:c7:86:d2:ee:57:
94:5d:9b:fb:a4:b0:e2:7a:cb:01:e1:67:b7:88:1a:
f2:37:e1:4b:d6:9d:29:cd:3e:89:05:45:00:47:e2:
05:ae:7f:37:8f:17:53:0a:a3:e4:1f:ee:05:a4:d9:
be:99:31:f9:dc:05:2b:26:ed:cb:7b:01:27:11:11:
b7:d8:9a:b1:91:5e:7a:68:27:02:c0:32:ed:84:d8:
3d:75:6d:ae:a1:77:15:30:b3:55:c9:5d:61:ad:31:
38:19:b4:11:4d:da:e7:95:78:f7:b2:c4:fc:55:8b:
e8:13:f0:86:cb:45:15:f5:ca:2c:e2:a4:78:b4:56:
57:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:0B:4B:84:AC:D2:98:35:64:34:28:D5:94:A7:4B:70:18:1E:FE:4F
X509v3 Authority Key Identifier:
keyid:D5:B8:01:80:B4:0D:58:5B:73:66:58:7D:FB:5D:E7:BF:30:77:84:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1bgBgLQNWFtzZlh9-13nvzB3hD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/0e5a71-2c0b-4f04-9466-31411d91576a/1/1-AtLhKzSmDVkNCjVlKdLcBge_k8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/0e5a71-2c0b-4f04-9466-31411d91576a/1/1bgBgLQNWFtzZlh9-13nvzB3hD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.186.10.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:43:9c:b9:3b:82:74:4a:12:ce:7f:1f:bf:c7:59:59:42:df:
ae:73:b2:2d:0e:17:bc:3e:87:12:86:51:4c:97:cd:07:a8:49:
de:8c:36:29:97:0b:13:b1:e2:e0:d8:4d:e3:77:3c:69:e0:74:
38:61:0f:17:d0:a8:41:1f:40:e7:0f:19:4b:61:31:26:f5:26:
17:a6:1d:74:6d:ae:13:ae:4f:e2:dc:d5:75:b8:ac:56:c5:89:
a1:89:cb:4f:f2:5b:ad:41:4d:5d:6a:c2:f0:bb:ec:7a:d0:b5:
07:4c:cb:22:a7:4a:48:54:f0:a0:81:6a:be:d0:a5:c6:78:a0:
a8:0a:77:99:42:d2:b6:87:ca:06:c2:11:58:e3:4c:a5:77:25:
0b:79:07:dd:df:e4:64:6d:86:04:66:3e:0f:d5:03:bd:96:30:
81:c3:b8:25:26:c8:51:3a:7a:af:81:30:d0:de:f8:31:bb:41:
c1:e6:20:a5:23:c3:72:bf:fe:6e:0a:44:6d:fa:0a:84:81:1b:
f3:e8:52:51:f7:1a:c7:40:de:e7:70:c4:91:34:c7:6a:c2:23:
d1:84:37:e3:90:9e:f3:3a:01:c1:8b:9b:bc:99:f4:25:1b:64:
b3:e8:2a:ab:67:f6:25:eb:c0:d6:e7:ea:62:e9:06:fb:dd:73:
48:9a:65:e1
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVvC3Ge7EyGkmCSEp9R/fmIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1YjgwMTgwYjQwZDU4NWI3MzY2NTg3ZGZiNWRlN2JmMzA3
Nzg0M2UwHhcNMjMwMTAxMjAzNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmODBiNGI4NGFjZDI5ODM1NjQzNDI4ZDU5NGE3NGI3MDE4MWVmZTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjScgtr5AHBUrTnBi4SULug1VykKE
jrmxwldIMR569u+OspJfdRUrW8zYUbl5CkLnJQNLbscVDLPVvQGCiFPQl6/wPsRS
GS9/rxC/fzPtMr/enHPtjwmBZMw8vNMoa8pDK/7nz63o0KTvKF25/ppg4wS7hBZr
WoFEXRzA4lXD0QqXx4bS7leUXZv7pLDiessB4We3iBryN+FL1p0pzT6JBUUAR+IF
rn83jxdTCqPkH+4FpNm+mTH53AUrJu3LewEnERG32JqxkV56aCcCwDLthNg9dW2u
oXcVMLNVyV1hrTE4GbQRTdrnlXj3ssT8VYvoE/CGy0UV9cos4qR4tFZXwwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPgLS4Ss0pg1ZDQo1ZSnS3AYHv5PMB8GA1UdIwQY
MBaAFNW4AYC0DVhbc2ZYfftd578wd4Q+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWJnQmdMUU5XRnR6WmxoOS0xM252ekIzaEQ0LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8wZTVhNzEtMmMwYi00ZjA0LTk0NjYt
MzE0MTFkOTE1NzZhLzEvMS1BdExoS3pTbURWa05DalZsS2RMY0JnZV9rOC5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYjYvMGU1YTcxLTJjMGItNGYwNC05NDY2LTMxNDExZDkxNTc2
YS8xLzFiZ0JnTFFOV0Z0elpsaDktMTNudnpCM2hENC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMG6CjAN
BgkqhkiG9w0BAQsFAAOCAQEAC0OcuTuCdEoSzn8fv8dZWULfrnOyLQ4XvD6HEoZR
TJfNB6hJ3ow2KZcLE7Hi4NhN43c8aeB0OGEPF9CoQR9A5w8ZS2ExJvUmF6YddG2u
E65P4tzVdbisVsWJoYnLT/JbrUFNXWrC8LvsetC1B0zLIqdKSFTwoIFqvtClxnig
qAp3mULStofKBsIRWONMpXclC3kH3d/kZG2GBGY+D9UDvZYwgcO4JSbIUTp6r4Ew
0N74MbtBweYgpSPDcr/+bgpEbfoKhIEb8+hSUfcax0De53DEkTTHasIj0YQ345Ce
8zoBwYubvJn0JRtks+gqq2f2JevA1ufqYukG+91zSJpl4Q==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:54 2025 by rpki-client