Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/122129-2226-4e97-b0a7-1aa500b9948a/1/27pBWaZdR49-CQkiOYUnUiaQPCo.roa
File: 27pBWaZdR49-CQkiOYUnUiaQPCo.roa (raw, json)
Hash identifier: LYiZ9Nnv1CnwzXXL2VqX6Za3NzkQvCvGyKNRmZue+F0=
Subject key identifier: DB:BA:41:59:A6:5D:47:8F:7E:09:09:22:39:85:27:52:26:90:3C:2A
Certificate issuer: /CN=32a03fed5dc7a0c34e4d85774ff7005d33e6ef13
Certificate serial: 015653
Authority key identifier: 32:A0:3F:ED:5D:C7:A0:C3:4E:4D:85:77:4F:F7:00:5D:33:E6:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MqA_7V3HoMNOTYV3T_cAXTPm7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/122129-2226-4e97-b0a7-1aa500b9948a/1/27pBWaZdR49-CQkiOYUnUiaQPCo.roa
Signing time: Thu 17 Mar 2022 15:00:49 +0000
ROA not before: Thu 17 Mar 2022 15:00:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31528
IP address blocks: 193.16.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87635 (0x15653)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32a03fed5dc7a0c34e4d85774ff7005d33e6ef13
Validity
Not Before: Mar 17 15:00:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbba4159a65d478f7e0909223985275226903c2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7e:91:05:8f:f4:fe:af:48:ca:de:90:e0:53:
31:51:19:b1:5d:fb:0c:e0:f7:4c:3b:e4:e2:20:e5:
3a:22:d7:f5:78:48:57:a4:e1:fb:a4:90:16:2d:df:
bd:c0:b9:d1:98:35:a0:63:83:dd:58:39:b1:dd:e9:
b3:5b:7a:e6:66:04:c4:28:cc:54:6b:da:8f:98:7b:
50:1a:c7:2b:71:5c:df:ca:92:35:06:91:b0:d7:cc:
20:f6:ee:12:a1:ac:fb:85:aa:4e:98:0d:ba:fa:82:
65:08:f6:58:d1:36:e4:77:57:ea:2a:4f:60:e6:df:
a5:f3:75:c2:35:0d:eb:56:8e:7c:c8:80:a5:6a:f8:
26:71:f2:36:14:18:61:bc:d0:d3:42:4d:d3:96:bc:
16:d6:f1:87:7f:b5:e9:28:cd:ef:65:27:4e:9f:ff:
fd:08:1c:61:1a:14:f1:5b:5b:48:bc:40:c3:f1:e5:
f3:2c:27:05:48:7c:aa:63:44:20:91:a3:b3:cb:cf:
34:d7:10:89:fe:91:c8:63:ce:bf:bd:8d:ce:2c:bb:
5b:d1:74:ba:7e:9f:1c:25:a5:e1:af:e4:4d:df:44:
a0:b7:5c:f7:d4:87:01:b9:55:16:ec:6e:c4:ea:b0:
a8:43:6e:53:54:ba:19:3e:34:3e:85:66:a1:16:17:
36:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:BA:41:59:A6:5D:47:8F:7E:09:09:22:39:85:27:52:26:90:3C:2A
X509v3 Authority Key Identifier:
keyid:32:A0:3F:ED:5D:C7:A0:C3:4E:4D:85:77:4F:F7:00:5D:33:E6:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MqA_7V3HoMNOTYV3T_cAXTPm7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/122129-2226-4e97-b0a7-1aa500b9948a/1/27pBWaZdR49-CQkiOYUnUiaQPCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/122129-2226-4e97-b0a7-1aa500b9948a/1/MqA_7V3HoMNOTYV3T_cAXTPm7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.107.0/24
Signature Algorithm: sha256WithRSAEncryption
78:9a:81:a0:b5:b9:9e:da:92:3f:27:d1:5d:0d:cf:11:cb:a9:
28:c1:47:aa:68:66:2a:25:2b:11:26:6f:22:15:47:0d:b4:13:
e3:fe:1c:da:c9:08:83:a7:cb:4e:26:d3:90:17:33:1f:80:0c:
ff:2f:c6:1e:e7:f3:2a:88:d5:45:b9:56:ab:04:41:99:35:0d:
4e:54:70:e6:5c:cd:45:20:91:d8:58:5e:b5:0c:96:9c:d6:be:
13:24:a1:19:17:bd:69:22:d3:74:af:81:6f:a2:a7:44:0e:96:
33:52:44:90:b7:ba:72:38:e1:2f:6b:cf:92:de:47:89:9f:dc:
a5:43:4b:34:e3:39:c3:a2:41:4f:dd:66:c0:30:0c:07:48:bf:
8b:79:68:35:a0:64:23:4d:5a:96:5e:12:74:25:f2:87:87:14:
8d:82:e9:91:02:22:cf:bc:57:e0:94:e6:99:08:62:49:49:a1:
12:6e:a9:00:df:8b:96:89:01:bd:dc:ac:13:7d:b5:ff:ee:8b:
09:2e:93:e5:b4:42:c8:03:24:97:d7:72:75:f0:64:dc:90:cb:
38:dc:39:fe:7f:4c:7a:84:7a:4b:b8:82:ce:44:e8:6d:dc:fd:
a2:35:86:f7:d6:2e:ca:a5:1d:64:38:54:14:61:bd:0d:fd:e9:
1a:78:0b:a6
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAVZTMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDMy
YTAzZmVkNWRjN2EwYzM0ZTRkODU3NzRmZjcwMDVkMzNlNmVmMTMwHhcNMjIwMzE3
MTUwMDQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhkYmJhNDE1OWE2NWQ0
NzhmN2UwOTA5MjIzOTg1Mjc1MjI2OTAzYzJhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAsn6RBY/0/q9Iyt6Q4FMxURmxXfsM4PdMO+TiIOU6Itf1eEhX
pOH7pJAWLd+9wLnRmDWgY4PdWDmx3emzW3rmZgTEKMxUa9qPmHtQGscrcVzfypI1
BpGw18wg9u4Soaz7hapOmA26+oJlCPZY0Tbkd1fqKk9g5t+l83XCNQ3rVo58yICl
avgmcfI2FBhhvNDTQk3TlrwW1vGHf7XpKM3vZSdOn//9CBxhGhTxW1tIvEDD8eXz
LCcFSHyqY0QgkaOzy8801xCJ/pHIY86/vY3OLLtb0XS6fp8cJaXhr+RN30Sgt1z3
1IcBuVUW7G7E6rCoQ25TVLoZPjQ+hWahFhc2EQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFNu6QVmmXUePfgkJIjmFJ1ImkDwqMB8GA1UdIwQYMBaAFDKgP+1dx6DDTk2F
d0/3AF0z5u8TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
TXFBXzdWM0hvTU5PVFlWM1RfY0FYVFBtN3hNLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iOC8xMjIxMjktMjIyNi00ZTk3LWIwYTctMWFhNTAwYjk5NDhhLzEv
MjdwQldhWmRSNDktQ1FraU9ZVW5VaWFRUENvLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC8x
MjIxMjktMjIyNi00ZTk3LWIwYTctMWFhNTAwYjk5NDhhLzEvTXFBXzdWM0hvTU5P
VFlWM1RfY0FYVFBtN3hNLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRBrMA0GCSqGSIb3DQEBCwUAA4IB
AQB4moGgtbme2pI/J9FdDc8Ry6kowUeqaGYqJSsRJm8iFUcNtBPj/hzayQiDp8tO
JtOQFzMfgAz/L8Ye5/MqiNVFuVarBEGZNQ1OVHDmXM1FIJHYWF61DJac1r4TJKEZ
F71pItN0r4FvoqdEDpYzUkSQt7pyOOEva8+S3keJn9ylQ0s04znDokFP3WbAMAwH
SL+LeWg1oGQjTVqWXhJ0JfKHhxSNgumRAiLPvFfglOaZCGJJSaESbqkA34uWiQG9
3KwTfbX/7osJLpPltELIAySX13J18GTckMs43Dn+f0x6hHpLuILOROht3P2iNYb3
1i7KpR1kOFQUYb0N/ekaeAum
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:37 2023 by rpki-client on console-ams.rpki-client.org