Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/c4umJJBqRHTonbDV6cgYMRp9Z1E.roa
File: c4umJJBqRHTonbDV6cgYMRp9Z1E.roa (raw, json)
Hash identifier: NSH20rCgX7iFKJYRxsYXCeMl8aU5PhO+kWbdxEJHDqs=
Subject key identifier: 73:8B:A6:24:90:6A:44:74:E8:9D:B0:D5:E9:C8:18:31:1A:7D:67:51
Certificate issuer: /CN=895364dd8ff730a908b09b5f9913c153fc16aa3c
Certificate serial: 06D6297A
Authority key identifier: 89:53:64:DD:8F:F7:30:A9:08:B0:9B:5F:99:13:C1:53:FC:16:AA:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/c4umJJBqRHTonbDV6cgYMRp9Z1E.roa
Signing time: Sat 01 Jan 2022 12:02:00 +0000
ROA not before: Sat 01 Jan 2022 12:02:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44129
IP address blocks: 193.169.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114698618 (0x6d6297a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=895364dd8ff730a908b09b5f9913c153fc16aa3c
Validity
Not Before: Jan 1 12:02:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=738ba624906a4474e89db0d5e9c818311a7d6751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:82:97:d9:20:4c:33:8b:fd:c4:6b:5b:21:da:
b5:84:ce:66:74:d1:26:05:10:9a:3d:81:38:8b:ab:
46:0e:fc:78:b6:97:81:e3:bf:3a:4e:dc:78:ea:db:
2d:38:5a:dd:82:83:55:01:a1:e3:be:8d:3f:ef:b4:
3e:2a:8d:14:96:1e:c5:41:b8:aa:d8:77:ed:35:b8:
36:43:35:06:f1:7f:01:b7:55:0b:2e:88:e1:0f:15:
5a:63:6a:96:8e:26:39:2c:34:13:6d:70:9f:a6:b8:
0a:a2:e0:bf:73:ab:53:bc:c9:95:01:31:8a:0a:54:
d9:72:5b:bd:99:ad:f9:28:68:a1:c7:2d:4c:97:77:
9c:6d:03:ae:2a:88:52:cb:72:7d:e7:b5:c5:8d:1a:
eb:9e:e9:ab:17:a3:f4:66:0e:3b:79:96:63:d8:a8:
47:59:ca:8a:5b:c7:83:7e:57:b7:c9:40:1d:03:01:
12:b4:84:83:9a:4d:f7:f2:ac:59:c6:56:fa:4b:b9:
a0:41:d8:67:b6:b4:a7:36:eb:49:9f:52:84:2e:fc:
8a:56:36:50:cc:11:c0:08:74:b5:31:e1:87:9e:99:
b2:c4:d7:54:56:28:ec:ed:4a:d3:8b:70:3f:3c:43:
b5:09:43:d4:dc:bb:53:1a:4b:d6:b6:c8:62:de:59:
3a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:8B:A6:24:90:6A:44:74:E8:9D:B0:D5:E9:C8:18:31:1A:7D:67:51
X509v3 Authority Key Identifier:
keyid:89:53:64:DD:8F:F7:30:A9:08:B0:9B:5F:99:13:C1:53:FC:16:AA:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/c4umJJBqRHTonbDV6cgYMRp9Z1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.31.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:6d:17:3c:77:70:ad:d2:18:2d:36:d9:b2:12:59:ae:9b:1b:
5e:b5:35:9e:6a:d4:67:13:f5:e7:1d:e5:88:c9:ea:ef:13:0d:
93:a8:69:9f:21:22:16:1b:fc:0f:dc:5f:41:1b:b7:c6:a5:b2:
86:63:63:23:80:4a:22:bb:34:23:a2:7a:60:5a:e5:b7:b6:39:
2c:ad:68:fd:eb:fd:5b:b7:6a:fd:4e:44:56:7f:6a:31:e1:86:
37:f9:47:78:23:65:16:05:86:94:43:9b:ff:4b:a1:72:2f:27:
6e:52:c8:74:1f:bd:67:93:b5:ba:1b:1a:09:94:6e:9a:76:09:
45:59:f5:b4:de:0c:b2:65:9a:b6:9b:ce:5c:1d:7a:90:48:eb:
96:21:85:1e:3d:9c:c3:d6:ac:41:fd:55:a6:9c:5a:7d:d4:04:
d7:df:39:fb:74:01:4a:d4:a0:75:6e:06:37:7c:af:e9:e4:68:
54:d0:50:89:96:99:af:cd:66:8e:a3:51:0c:3c:50:67:c3:d2:
e7:91:51:49:7b:63:fe:ef:0e:98:2e:50:14:f9:23:09:79:a4:
b0:cf:f9:af:2a:23:27:b1:50:b1:52:27:ef:1c:81:f4:0d:74:
be:79:e3:18:c4:1e:37:53:f0:1b:c1:be:33:7a:d5:d7:ec:0e:
bc:6a:41:bd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBtYpejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
OTUzNjRkZDhmZjczMGE5MDhiMDliNWY5OTEzYzE1M2ZjMTZhYTNjMB4XDTIyMDEw
MTEyMDIwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzM4YmE2MjQ5MDZh
NDQ3NGU4OWRiMGQ1ZTljODE4MzExYTdkNjc1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALGCl9kgTDOL/cRrWyHatYTOZnTRJgUQmj2BOIurRg78eLaX
geO/Ok7ceOrbLTha3YKDVQGh476NP++0PiqNFJYexUG4qth37TW4NkM1BvF/AbdV
Cy6I4Q8VWmNqlo4mOSw0E21wn6a4CqLgv3OrU7zJlQExigpU2XJbvZmt+Shoocct
TJd3nG0DriqIUstyfee1xY0a657pqxej9GYOO3mWY9ioR1nKilvHg35Xt8lAHQMB
ErSEg5pN9/KsWcZW+ku5oEHYZ7a0pzbrSZ9ShC78ilY2UMwRwAh0tTHhh56ZssTX
VFYo7O1K04twPzxDtQlD1Ny7UxpL1rbIYt5ZOoMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRzi6YkkGpEdOidsNXpyBgxGn1nUTAfBgNVHSMEGDAWgBSJU2Tdj/cwqQiw
m1+ZE8FT/BaqPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lWTmszWV8zTUtrSXNKdGZtUlBCVV93V3Fqdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjcvOTIyYmNkLWYxYWQtNGQ2My04MjQzLTI5NGIxYWExNDg2Ni8x
L2M0dW1KSkJxUkhUb25iRFY2Y2dZTVJwOVoxRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjcv
OTIyYmNkLWYxYWQtNGQ2My04MjQzLTI5NGIxYWExNDg2Ni8xL2lWTmszWV8zTUtr
SXNKdGZtUlBCVV93V3Fqdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGpHzANBgkqhkiG9w0BAQsFAAOC
AQEAzG0XPHdwrdIYLTbZshJZrpsbXrU1nmrUZxP15x3liMnq7xMNk6hpnyEiFhv8
D9xfQRu3xqWyhmNjI4BKIrs0I6J6YFrlt7Y5LK1o/ev9W7dq/U5EVn9qMeGGN/lH
eCNlFgWGlEOb/0uhci8nblLIdB+9Z5O1uhsaCZRumnYJRVn1tN4MsmWatpvOXB16
kEjrliGFHj2cw9asQf1VppxafdQE1985+3QBStSgdW4GN3yv6eRoVNBQiZaZr81m
jqNRDDxQZ8PS55FRSXtj/u8OmC5QFPkjCXmksM/5ryojJ7FQsVIn7xyB9A10vnnj
GMQeN1PwG8G+M3rV1+wOvGpBvQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:10 2024 by rpki-client on console-ams.rpki-client.org