Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/s0mS-HSoC0A7DcVCm9MhPF_wIZs.roa
File: s0mS-HSoC0A7DcVCm9MhPF_wIZs.roa (raw, json)
Hash identifier: 91d8Hstc0we9ANIaEtlTnaOKg4I+ay3RYrw1SJ7urY4=
Subject key identifier: B3:49:92:F8:74:A8:0B:40:3B:0D:C5:42:9B:D3:21:3C:5F:F0:21:9B
Certificate issuer: /CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Certificate serial: 7B6B76
Authority key identifier: 12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/s0mS-HSoC0A7DcVCm9MhPF_wIZs.roa
Signing time: Sat 01 Jan 2022 03:52:38 +0000
ROA not before: Sat 01 Jan 2022 03:52:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61414
IP address blocks: 193.3.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8088438 (0x7b6b76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Validity
Not Before: Jan 1 03:52:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b34992f874a80b403b0dc5429bd3213c5ff0219b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:72:f2:c7:e3:4d:75:b6:82:0a:6e:15:60:b2:
28:3c:47:44:a8:06:2f:69:6f:93:56:48:2f:30:d4:
c0:b7:77:70:23:6a:5b:c8:84:3c:fa:8e:bd:ef:aa:
bb:b4:bd:7b:c1:1e:3e:a2:90:86:01:ba:4c:52:3b:
82:10:f7:fb:b8:39:7e:21:8b:92:85:17:32:96:0a:
f6:3a:e3:86:d7:d1:c1:53:dd:23:ff:a4:0e:7f:06:
79:9b:ea:c4:34:28:cb:7b:3d:84:67:34:61:7c:a9:
88:8a:53:99:23:a9:5c:fe:90:91:30:4e:b8:c9:36:
26:23:28:07:dc:69:2d:a2:3e:bb:d9:f0:ca:fd:40:
3e:6e:b7:11:f2:d9:09:17:25:87:d7:11:b1:e4:cd:
51:64:04:0c:d4:d0:f8:7a:34:b5:ee:00:d8:47:de:
2b:af:34:80:04:31:36:60:d3:b6:06:95:b0:95:d2:
f2:84:9b:4e:5a:3d:34:8d:a9:ac:bd:8c:3e:0c:a4:
e3:05:5e:ff:7d:ef:33:dd:8a:e1:7f:5f:a2:d5:23:
98:7b:37:f1:20:07:81:18:40:e3:41:60:40:3b:8f:
82:f8:92:8a:92:9d:d7:8f:ea:96:6c:69:ff:3e:3d:
93:8b:52:9a:61:7c:ef:d1:44:b8:32:16:ff:e6:e9:
82:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:49:92:F8:74:A8:0B:40:3B:0D:C5:42:9B:D3:21:3C:5F:F0:21:9B
X509v3 Authority Key Identifier:
keyid:12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/s0mS-HSoC0A7DcVCm9MhPF_wIZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/EiDdK5LaKExjzsRvb2pBwBOpyIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.191.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:7e:23:95:b5:69:62:5b:72:cd:6b:07:f6:9e:d0:e1:2a:ff:
1d:15:3d:81:d4:78:b2:d1:3a:90:b5:a7:72:20:5f:22:6d:1f:
0a:97:fd:1a:ec:54:cc:09:af:70:dc:a9:5e:d7:ea:73:56:ae:
dd:47:43:43:fb:c9:5a:f2:34:ac:a5:d8:55:d5:2f:42:af:6b:
75:07:17:98:42:c2:3e:37:32:b7:71:2c:6e:92:c2:7d:82:f2:
b9:be:1f:b4:ed:6d:b5:7f:7b:2c:5a:66:58:f4:8d:ed:ac:3a:
ad:8c:ed:3d:66:9d:a8:fc:1f:13:65:c0:13:42:60:9b:40:ad:
79:e4:4d:bb:e8:ca:21:0b:49:9c:eb:9a:13:e7:2f:13:b0:7b:
ee:d2:bd:79:87:08:e1:3f:91:13:26:3f:8e:3e:f3:6d:b1:f5:
66:31:a6:b0:b3:70:15:28:b6:47:c1:b7:05:bf:72:c7:a6:06:
cb:51:3d:b2:6b:8b:58:4e:9d:7f:27:59:89:84:4e:2d:47:26:
ac:a9:64:96:7d:79:22:76:a6:5c:87:77:2a:62:20:eb:f4:a0:
ab:1f:33:cd:cf:7d:d9:4b:65:58:a6:f8:ca:4d:a1:7e:cc:5e:
54:d3:cf:a8:eb:e8:6f:f2:07:5b:4e:05:60:e1:18:2f:e4:67:
09:4b:c2:19
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDe2t2MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDEy
MjBkZDJiOTJkYTI4NGM2M2NlYzQ2ZjZmNmE0MWMwMTNhOWM4ODEwHhcNMjIwMTAx
MDM1MjM4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiMzQ5OTJmODc0YTgw
YjQwM2IwZGM1NDI5YmQzMjEzYzVmZjAyMTliMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAzXLyx+NNdbaCCm4VYLIoPEdEqAYvaW+TVkgvMNTAt3dwI2pb
yIQ8+o6976q7tL17wR4+opCGAbpMUjuCEPf7uDl+IYuShRcylgr2OuOG19HBU90j
/6QOfwZ5m+rENCjLez2EZzRhfKmIilOZI6lc/pCRME64yTYmIygH3Gktoj672fDK
/UA+brcR8tkJFyWH1xGx5M1RZAQM1ND4ejS17gDYR94rrzSABDE2YNO2BpWwldLy
hJtOWj00jamsvYw+DKTjBV7/fe8z3Yrhf1+i1SOYezfxIAeBGEDjQWBAO4+C+JKK
kp3Xj+qWbGn/Pj2Ti1KaYXzv0US4Mhb/5umC8QIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFLNJkvh0qAtAOw3FQpvTITxf8CGbMB8GA1UdIwQYMBaAFBIg3SuS2ihMY87E
b29qQcATqciBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
RWlEZEs1TGFLRXhqenNSdmIycEJ3Qk9weUlFLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iOC8zYjhmM2ItZWJmMC00Y2I3LWE0OWItYTg1ODU4NDliZTE0LzEv
czBtUy1IU29DMEE3RGNWQ205TWhQRl93SVpzLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC8z
YjhmM2ItZWJmMC00Y2I3LWE0OWItYTg1ODU4NDliZTE0LzEvRWlEZEs1TGFLRXhq
enNSdmIycEJ3Qk9weUlFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQO/MA0GCSqGSIb3DQEBCwUAA4IB
AQB+fiOVtWliW3LNawf2ntDhKv8dFT2B1Hiy0TqQtadyIF8ibR8Kl/0a7FTMCa9w
3Kle1+pzVq7dR0ND+8la8jSspdhV1S9Cr2t1BxeYQsI+NzK3cSxuksJ9gvK5vh+0
7W21f3ssWmZY9I3trDqtjO09Zp2o/B8TZcATQmCbQK155E276MohC0mc65oT5y8T
sHvu0r15hwjhP5ETJj+OPvNtsfVmMaaws3AVKLZHwbcFv3LHpgbLUT2ya4tYTp1/
J1mJhE4tRyasqWSWfXkidqZch3cqYiDr9KCrHzPNz33ZS2VYpvjKTaF+zF5U08+o
6+hv8gdbTgVg4Rgv5GcJS8IZ
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-fra.rpki-client.org