Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/C2_rkr8O9mSSFvi3EG0te4G8Mq0.roa
File: C2_rkr8O9mSSFvi3EG0te4G8Mq0.roa (raw, json)
Hash identifier: KkGjD0F92XfIwlfieOmV7hFslmOiF3XRVhcVt67blFs=
Subject key identifier: 0B:6F:EB:92:BF:0E:F6:64:92:16:F8:B7:10:6D:2D:7B:81:BC:32:AD
Certificate issuer: /CN=1c7ad7754795ddd605f28838bb7cc359df7a266a
Certificate serial: 3813A705
Authority key identifier: 1C:7A:D7:75:47:95:DD:D6:05:F2:88:38:BB:7C:C3:59:DF:7A:26:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHrXdUeV3dYF8og4u3zDWd96Jmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/C2_rkr8O9mSSFvi3EG0te4G8Mq0.roa
Signing time: Sat 01 Jan 2022 09:53:44 +0000
ROA not before: Sat 01 Jan 2022 09:53:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208814
IP address blocks: 193.138.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940812037 (0x3813a705)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7ad7754795ddd605f28838bb7cc359df7a266a
Validity
Not Before: Jan 1 09:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b6feb92bf0ef6649216f8b7106d2d7b81bc32ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:51:e8:b3:d7:1b:36:20:18:7b:75:c7:78:ed:
46:a5:ed:0c:27:31:73:64:a3:f8:de:49:00:fa:ca:
2e:06:72:85:25:d8:7e:44:68:94:dd:c9:69:fb:94:
8b:73:be:d4:23:8f:e0:93:9a:48:c7:91:08:fc:53:
bb:c4:17:d0:6a:dd:58:d0:d4:13:a9:1b:ed:ed:a3:
0b:c7:9d:87:e8:b4:3c:bc:72:63:49:19:49:f2:d1:
c4:bd:78:7c:65:8d:22:c3:33:29:ad:39:4d:28:ee:
77:ba:b9:23:1c:98:da:e1:74:6f:4b:f9:cf:e5:65:
48:76:e4:56:51:8a:87:96:3b:f0:cc:6b:dc:3b:50:
a1:93:a7:f1:55:ea:c6:95:4d:8f:23:0d:c6:34:42:
e8:0a:b4:b5:e9:ba:b7:84:16:37:18:70:40:52:04:
9b:9e:cf:13:cb:33:dd:d0:11:91:fe:5f:82:8c:f8:
68:86:af:64:84:ec:e4:ba:48:36:b9:0f:b1:a5:5c:
e1:d5:df:18:0f:d8:98:14:18:ac:e3:09:77:1f:26:
86:98:bd:c9:fd:f4:61:bd:a9:70:cf:13:39:04:b3:
d8:a7:02:02:2b:32:d8:48:25:f4:71:ef:b7:eb:1f:
b3:71:74:c3:07:c8:fe:be:fb:77:4f:0e:fb:b7:2b:
6f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:6F:EB:92:BF:0E:F6:64:92:16:F8:B7:10:6D:2D:7B:81:BC:32:AD
X509v3 Authority Key Identifier:
keyid:1C:7A:D7:75:47:95:DD:D6:05:F2:88:38:BB:7C:C3:59:DF:7A:26:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHrXdUeV3dYF8og4u3zDWd96Jmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/C2_rkr8O9mSSFvi3EG0te4G8Mq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/HHrXdUeV3dYF8og4u3zDWd96Jmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.81.0/24
Signature Algorithm: sha256WithRSAEncryption
66:e6:c4:cf:4c:c2:55:96:5d:d4:86:ea:cc:41:50:16:93:6c:
5b:74:bc:a4:d4:a7:3f:2a:3c:96:c9:f6:a3:43:ef:38:bb:84:
4e:01:8f:d3:10:cc:a6:c6:ca:82:40:2a:12:f1:98:d6:ed:ad:
9a:d0:9a:18:f3:c3:0b:77:6f:79:0c:f5:9e:48:f6:08:77:9c:
a9:5f:ff:67:0f:82:37:4d:9d:2c:ad:0d:1c:ec:4e:db:9b:f7:
aa:7e:4e:3d:54:b6:83:92:57:8c:33:87:c5:81:ac:56:12:f6:
cb:b6:d6:fd:a3:39:bd:7f:8f:ee:71:36:6f:15:8b:dd:9b:9c:
29:5f:6c:36:c4:7e:6a:c5:38:c1:9c:f3:b7:31:21:8b:1d:60:
9c:5c:ac:63:8a:0e:bf:29:2c:85:4b:54:12:a3:9a:fc:72:94:
35:2b:e4:d6:fe:e0:e1:00:15:66:e3:a4:c6:6e:bc:88:29:e3:
bd:da:d2:7c:2b:9e:b9:ce:25:b4:aa:f7:b9:a0:eb:ac:b2:7c:
bc:cd:26:01:1d:15:c1:5e:e7:e8:f5:53:dc:f0:b3:9e:0f:ce:
46:79:91:cb:a0:9c:0b:b6:65:f6:29:b1:70:14:3b:ec:85:35:
ca:94:cf:66:04:74:28:68:63:50:0d:5c:37:9d:58:ab:e0:a1:
dd:52:12:50
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOBOnBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YzdhZDc3NTQ3OTVkZGQ2MDVmMjg4MzhiYjdjYzM1OWRmN2EyNjZhMB4XDTIyMDEw
MTA5NTM0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGI2ZmViOTJiZjBl
ZjY2NDkyMTZmOGI3MTA2ZDJkN2I4MWJjMzJhZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKpR6LPXGzYgGHt1x3jtRqXtDCcxc2Sj+N5JAPrKLgZyhSXY
fkRolN3JafuUi3O+1COP4JOaSMeRCPxTu8QX0GrdWNDUE6kb7e2jC8edh+i0PLxy
Y0kZSfLRxL14fGWNIsMzKa05TSjud7q5IxyY2uF0b0v5z+VlSHbkVlGKh5Y78Mxr
3DtQoZOn8VXqxpVNjyMNxjRC6Aq0tem6t4QWNxhwQFIEm57PE8sz3dARkf5fgoz4
aIavZITs5LpINrkPsaVc4dXfGA/YmBQYrOMJdx8mhpi9yf30Yb2pcM8TOQSz2KcC
Aisy2Egl9HHvt+sfs3F0wwfI/r77d08O+7crb50CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQLb+uSvw72ZJIW+LcQbS17gbwyrTAfBgNVHSMEGDAWgBQcetd1R5Xd1gXy
iDi7fMNZ33omajAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hIclhkVWVWM2RZRjhvZzR1M3pEV2Q5Nkptby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmEvYzVhOWUzLTY3MjItNGI2YS1iZTU4LWFkYTVjMjBlM2Y3Yi8x
L0MyX3JrcjhPOW1TU0Z2aTNFRzB0ZTRHOE1xMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmEv
YzVhOWUzLTY3MjItNGI2YS1iZTU4LWFkYTVjMjBlM2Y3Yi8xL0hIclhkVWVWM2RZ
RjhvZzR1M3pEV2Q5Nkptby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGKUTANBgkqhkiG9w0BAQsFAAOC
AQEAZubEz0zCVZZd1IbqzEFQFpNsW3S8pNSnPyo8lsn2o0PvOLuETgGP0xDMpsbK
gkAqEvGY1u2tmtCaGPPDC3dveQz1nkj2CHecqV//Zw+CN02dLK0NHOxO25v3qn5O
PVS2g5JXjDOHxYGsVhL2y7bW/aM5vX+P7nE2bxWL3ZucKV9sNsR+asU4wZzztzEh
ix1gnFysY4oOvykshUtUEqOa/HKUNSvk1v7g4QAVZuOkxm68iCnjvdrSfCueuc4l
tKr3uaDrrLJ8vM0mAR0VwV7n6PVT3PCzng/ORnmRy6CcC7Zl9imxcBQ77IU1ypTP
ZgR0KGhjUA1cN51Yq+Ch3VISUA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:52 2023 by rpki-client on console-fra.rpki-client.org