Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/cbYEo58Jy7A28DAvTZPkQfBzE5o.roa
File: cbYEo58Jy7A28DAvTZPkQfBzE5o.roa (raw, json)
Hash identifier: gJnrXoB5B/e1sI0GhzX4FMUhyhIbdMnKzGc5+cPVKgo=
Subject key identifier: 71:B6:04:A3:9F:09:CB:B0:36:F0:30:2F:4D:93:E4:41:F0:73:13:9A
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 180A01EA
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/cbYEo58Jy7A28DAvTZPkQfBzE5o.roa
Signing time: Sat 01 Jan 2022 07:00:36 +0000
ROA not before: Sat 01 Jan 2022 07:00:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205954
IP address blocks: 130.193.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403309034 (0x180a01ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: Jan 1 07:00:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71b604a39f09cbb036f0302f4d93e441f073139a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2c:14:05:08:e8:0d:c7:4f:97:d8:a3:af:41:
56:1d:98:b5:92:5f:8f:f8:1c:80:83:9f:a5:25:0b:
69:10:50:f9:ea:ba:6a:8f:b8:2f:f4:0f:1d:39:e2:
10:18:ed:43:c5:15:e9:2e:fc:32:4c:77:8f:1e:d7:
cb:6f:ee:a0:66:77:57:26:c4:e7:b0:e9:5a:bb:cd:
df:f4:d6:49:52:d3:39:86:1c:e5:af:8a:50:7a:55:
5e:9e:56:02:01:58:e8:20:be:63:49:be:48:58:d5:
2d:d5:2f:82:c2:69:f0:9f:4a:4e:60:8e:72:07:99:
33:a3:fe:3d:f2:1b:a1:cd:5f:9a:a8:31:e4:85:b1:
35:6d:81:0b:77:61:ed:76:84:fc:12:8b:67:71:c1:
e5:82:fd:b8:70:49:a3:d5:a1:89:e6:39:d0:84:87:
68:16:5b:6f:6f:12:3c:25:0f:c6:47:c9:66:e4:8a:
be:6a:52:aa:e8:76:25:00:66:d3:8d:3c:43:c1:06:
b0:3f:57:b9:21:d3:a5:28:ef:5f:b2:51:d6:df:61:
f4:29:d0:90:aa:0a:08:5e:6f:be:0e:b1:52:33:35:
66:95:d5:ec:60:34:e6:7f:23:ba:77:45:1c:05:a2:
f5:da:2a:7b:8b:b3:18:58:2f:f7:eb:d9:cc:c8:bb:
46:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B6:04:A3:9F:09:CB:B0:36:F0:30:2F:4D:93:E4:41:F0:73:13:9A
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/cbYEo58Jy7A28DAvTZPkQfBzE5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.69.0/24
Signature Algorithm: sha256WithRSAEncryption
55:e6:52:84:4f:79:f6:10:54:36:aa:7e:00:ee:84:ba:43:a6:
7c:f9:53:37:7a:1d:eb:77:19:86:68:49:04:12:fd:ab:3c:eb:
ec:b8:af:ee:61:d1:5a:b2:15:47:ec:d5:1c:ad:3a:e9:fc:35:
ae:3c:ad:21:9c:bb:c1:36:51:5d:a2:63:13:32:98:fb:99:94:
45:ed:e0:e9:50:32:2f:25:25:76:e5:10:3f:2e:7a:50:c2:aa:
76:4c:4c:87:ec:11:72:f0:4a:2e:fd:37:f7:53:3c:8b:91:2f:
a7:3c:93:2f:6f:a5:08:d5:da:e9:da:1f:3c:a2:c8:3d:51:2d:
2f:80:6b:2f:50:6d:89:14:fa:fb:a8:f8:28:c7:62:a1:4e:b8:
37:92:2e:7b:de:a3:cb:80:44:9d:a4:9e:27:90:6e:93:29:d7:
a6:ee:53:c6:a4:a1:81:dc:3e:84:46:b2:ae:a9:0e:da:0c:8e:
66:d6:48:31:2c:1f:b3:de:2b:0e:b5:65:ae:46:d0:68:78:f7:
98:53:af:69:c7:3f:9e:96:5b:82:71:cd:aa:96:26:ab:e7:27:
a9:70:de:c6:e3:ca:ec:86:56:85:09:0b:bf:3f:26:78:20:9d:
d6:f6:17:aa:50:9b:19:2c:76:24:46:ee:38:c6:f4:a7:89:02:
94:34:59:eb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGAoB6jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZGRjNTNkMWRlN2EyZWY3ZWIyYjkwYzgwOTE1NTQ0MTQwMDQyNDg4MB4XDTIyMDEw
MTA3MDAzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzFiNjA0YTM5ZjA5
Y2JiMDM2ZjAzMDJmNGQ5M2U0NDFmMDczMTM5YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJgsFAUI6A3HT5fYo69BVh2YtZJfj/gcgIOfpSULaRBQ+eq6
ao+4L/QPHTniEBjtQ8UV6S78Mkx3jx7Xy2/uoGZ3VybE57DpWrvN3/TWSVLTOYYc
5a+KUHpVXp5WAgFY6CC+Y0m+SFjVLdUvgsJp8J9KTmCOcgeZM6P+PfIboc1fmqgx
5IWxNW2BC3dh7XaE/BKLZ3HB5YL9uHBJo9WhieY50ISHaBZbb28SPCUPxkfJZuSK
vmpSquh2JQBm0408Q8EGsD9XuSHTpSjvX7JR1t9h9CnQkKoKCF5vvg6xUjM1ZpXV
7GA05n8jundFHAWi9doqe4uzGFgv9+vZzMi7Rl8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRxtgSjnwnLsDbwMC9Nk+RB8HMTmjAfBgNVHSMEGDAWgBQd3FPR3nou9+sr
kMgJFVRBQAQkiDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hkeFQwZDU2THZmcks1RElDUlZVUVVBRUpJZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjcvNTU3NDE0LWQ5OTMtNGNiZi04MTgxLTQ4NjcxZmI3ZDM4MC8x
L2NiWUVvNThKeTdBMjhEQXZUWlBrUWZCekU1by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjcv
NTU3NDE0LWQ5OTMtNGNiZi04MTgxLTQ4NjcxZmI3ZDM4MC8xL0hkeFQwZDU2THZm
cks1RElDUlZVUVVBRUpJZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAILBRTANBgkqhkiG9w0BAQsFAAOC
AQEAVeZShE959hBUNqp+AO6EukOmfPlTN3od63cZhmhJBBL9qzzr7Liv7mHRWrIV
R+zVHK066fw1rjytIZy7wTZRXaJjEzKY+5mURe3g6VAyLyUlduUQPy56UMKqdkxM
h+wRcvBKLv0391M8i5EvpzyTL2+lCNXa6dofPKLIPVEtL4BrL1BtiRT6+6j4KMdi
oU64N5Iue96jy4BEnaSeJ5BukynXpu5TxqShgdw+hEayrqkO2gyOZtZIMSwfs94r
DrVlrkbQaHj3mFOvacc/npZbgnHNqpYmq+cnqXDexuPK7IZWhQkLvz8meCCd1vYX
qlCbGSx2JEbuOMb0p4kClDRZ6w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:35 2023 by rpki-client on console-ams.rpki-client.org