Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/75ca1a-6828-4e6d-9fea-5e47cf199dff/1/K0zU5K7DnB-1M8LT2tZohKfAT-4.roa
File: K0zU5K7DnB-1M8LT2tZohKfAT-4.roa (raw, json)
Hash identifier: SskOEpA5t4A4dbgDjmXWi2+UCu+rfmd0MffPV1DHAo0=
Subject key identifier: 2B:4C:D4:E4:AE:C3:9C:1F:B5:33:C2:D3:DA:D6:68:84:A7:C0:4F:EE
Certificate issuer: /CN=367465ffdba3c05c21be5b15f0d915efccb069e5
Certificate serial: E7A0
Authority key identifier: 36:74:65:FF:DB:A3:C0:5C:21:BE:5B:15:F0:D9:15:EF:CC:B0:69:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NnRl_9ujwFwhvlsV8NkV78ywaeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/75ca1a-6828-4e6d-9fea-5e47cf199dff/1/K0zU5K7DnB-1M8LT2tZohKfAT-4.roa
Signing time: Thu 28 Apr 2022 07:55:56 +0000
ROA not before: Thu 28 Apr 2022 07:55:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199802
IP address blocks: 193.8.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59296 (0xe7a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=367465ffdba3c05c21be5b15f0d915efccb069e5
Validity
Not Before: Apr 28 07:55:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b4cd4e4aec39c1fb533c2d3dad66884a7c04fee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a8:de:67:06:aa:9e:ae:cf:2c:c4:fa:df:5d:
0a:31:f2:14:db:05:63:34:72:33:fd:ad:de:c1:92:
e7:61:c5:4c:58:c7:2e:7b:84:c7:d5:a0:82:2f:32:
fd:7d:91:fc:b3:08:72:62:95:af:83:ec:98:53:9b:
e7:3e:ea:93:31:6d:28:0b:47:3a:b3:68:98:95:1c:
78:25:27:24:48:55:a2:d7:e0:1c:80:a7:c1:ae:62:
59:e1:df:89:a4:c5:f8:61:38:57:90:6e:5a:a4:36:
56:8d:32:e7:1f:af:c2:ef:c0:dc:b7:77:54:2f:f6:
52:62:bf:05:52:c8:f3:a8:f3:61:32:67:3b:5a:ff:
7c:50:f0:d4:44:f6:d1:08:54:95:c3:e9:b9:68:13:
ca:e5:23:8c:42:b6:33:0f:0a:c8:ba:71:84:ab:9c:
7a:04:23:c9:20:02:4a:a5:79:b9:8b:40:9b:a1:f0:
01:65:a4:5a:53:d1:36:19:1d:82:0f:4f:64:bf:13:
79:4a:2d:52:78:91:c8:4a:57:22:1c:fe:6b:4e:76:
e2:2c:43:97:51:71:9f:5b:e6:b4:d0:d2:ee:1e:00:
9f:23:90:e9:3a:4f:35:28:3a:eb:97:d9:83:aa:7a:
b6:e9:14:75:f1:24:ba:f0:43:b3:b8:2a:67:b4:49:
dc:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:4C:D4:E4:AE:C3:9C:1F:B5:33:C2:D3:DA:D6:68:84:A7:C0:4F:EE
X509v3 Authority Key Identifier:
keyid:36:74:65:FF:DB:A3:C0:5C:21:BE:5B:15:F0:D9:15:EF:CC:B0:69:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NnRl_9ujwFwhvlsV8NkV78ywaeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/75ca1a-6828-4e6d-9fea-5e47cf199dff/1/K0zU5K7DnB-1M8LT2tZohKfAT-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/75ca1a-6828-4e6d-9fea-5e47cf199dff/1/NnRl_9ujwFwhvlsV8NkV78ywaeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.174.0/24
Signature Algorithm: sha256WithRSAEncryption
59:a3:dc:a8:5c:41:c5:01:8e:5e:84:23:8b:1a:2e:75:54:70:
05:bf:8e:7c:a3:ac:63:f1:58:c9:50:96:fb:23:fb:63:dd:e0:
45:35:92:3c:5b:5e:cb:ff:13:bc:78:56:96:a2:8a:07:59:e3:
d9:87:5a:bd:ba:5f:55:e9:dd:30:7e:36:eb:eb:5a:50:65:a2:
8b:95:64:70:1b:1b:c2:73:6d:89:33:ea:60:63:64:f1:4d:59:
d8:c1:02:eb:55:c0:0e:08:d7:2d:f5:8c:96:4d:d6:52:7b:67:
7a:5c:55:60:64:e9:42:cb:ea:69:77:9b:31:50:26:9f:d7:91:
18:d0:15:39:c9:c4:5f:55:f3:4f:cf:a9:b4:6a:58:5d:1a:39:
96:55:4c:d7:66:c5:d3:6e:7a:f6:57:56:ab:b2:d0:b4:8a:81:
53:67:be:f9:0b:ee:f6:c9:78:72:de:29:8b:9b:3e:ac:fe:ff:
43:d6:df:f6:7d:6a:6d:28:9c:a3:4b:47:c2:29:94:74:21:55:
e0:c1:6a:3e:d8:3a:bf:57:e5:2d:3e:43:14:eb:a1:7e:84:c5:
79:25:d8:fd:78:71:ec:f5:af:62:1f:eb:f9:ed:01:9a:56:aa:
98:a7:88:ca:52:cc:8b:60:46:70:ca:48:39:11:64:7c:7d:f3:
0a:28:63:b9
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAOegMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDM2
NzQ2NWZmZGJhM2MwNWMyMWJlNWIxNWYwZDkxNWVmY2NiMDY5ZTUwHhcNMjIwNDI4
MDc1NTU2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygyYjRjZDRlNGFlYzM5
YzFmYjUzM2MyZDNkYWQ2Njg4NGE3YzA0ZmVlMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtKjeZwaqnq7PLMT6310KMfIU2wVjNHIz/a3ewZLnYcVMWMcu
e4TH1aCCLzL9fZH8swhyYpWvg+yYU5vnPuqTMW0oC0c6s2iYlRx4JSckSFWi1+Ac
gKfBrmJZ4d+JpMX4YThXkG5apDZWjTLnH6/C78Dct3dUL/ZSYr8FUsjzqPNhMmc7
Wv98UPDURPbRCFSVw+m5aBPK5SOMQrYzDwrIunGEq5x6BCPJIAJKpXm5i0CbofAB
ZaRaU9E2GR2CD09kvxN5Si1SeJHISlciHP5rTnbiLEOXUXGfW+a00NLuHgCfI5Dp
Ok81KDrrl9mDqnq26RR18SS68EOzuCpntEncMQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFCtM1OSuw5wftTPC09rWaISnwE/uMB8GA1UdIwQYMBaAFDZ0Zf/bo8BcIb5b
FfDZFe/MsGnlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Tm5SbF85dWp3RndodmxzVjhOa1Y3OHl3YWVVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iZi83NWNhMWEtNjgyOC00ZTZkLTlmZWEtNWU0N2NmMTk5ZGZmLzEv
SzB6VTVLN0RuQi0xTThMVDJ0Wm9oS2ZBVC00LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83
NWNhMWEtNjgyOC00ZTZkLTlmZWEtNWU0N2NmMTk5ZGZmLzEvTm5SbF85dWp3Rndo
dmxzVjhOa1Y3OHl3YWVVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQiuMA0GCSqGSIb3DQEBCwUAA4IB
AQBZo9yoXEHFAY5ehCOLGi51VHAFv458o6xj8VjJUJb7I/tj3eBFNZI8W17L/xO8
eFaWoooHWePZh1q9ul9V6d0wfjbr61pQZaKLlWRwGxvCc22JM+pgY2TxTVnYwQLr
VcAOCNct9YyWTdZSe2d6XFVgZOlCy+ppd5sxUCaf15EY0BU5ycRfVfNPz6m0alhd
GjmWVUzXZsXTbnr2V1arstC0ioFTZ775C+72yXhy3imLmz6s/v9D1t/2fWptKJyj
S0fCKZR0IVXgwWo+2Dq/V+UtPkMU66F+hMV5Jdj9eHHs9a9iH+v57QGaVqqYp4jK
UsyLYEZwykg5EWR8ffMKKGO5
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:49 2024 by rpki-client on console-ams.rpki-client.org