Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/6c353e-817d-4be9-b43f-c9fb9bb611b0/1/0wYcv522LrL5uEwiMJDci3jDb4Y.roa
File: 0wYcv522LrL5uEwiMJDci3jDb4Y.roa (raw, json)
Hash identifier: ZFMoco1NVMpztYhVswRq89RGPZ0GxrxlZ4cmJjBx+3g=
Subject key identifier: D3:06:1C:BF:9D:B6:2E:B2:F9:B8:4C:22:30:90:DC:8B:78:C3:6F:86
Certificate issuer: /CN=29e123c1852d347cbd279e3045377c9cd510284a
Certificate serial: 9561B6
Authority key identifier: 29:E1:23:C1:85:2D:34:7C:BD:27:9E:30:45:37:7C:9C:D5:10:28:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeEjwYUtNHy9J54wRTd8nNUQKEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/6c353e-817d-4be9-b43f-c9fb9bb611b0/1/0wYcv522LrL5uEwiMJDci3jDb4Y.roa
Signing time: Sat 01 Jan 2022 02:53:49 +0000
ROA not before: Sat 01 Jan 2022 02:53:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.3.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9789878 (0x9561b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29e123c1852d347cbd279e3045377c9cd510284a
Validity
Not Before: Jan 1 02:53:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3061cbf9db62eb2f9b84c223090dc8b78c36f86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0d:fa:04:7d:bc:93:ba:60:52:77:af:3d:04:
33:60:e7:98:5c:25:77:75:f2:58:6a:81:0a:e8:ed:
c2:71:83:63:64:8e:0e:91:8d:d6:29:cc:1c:48:85:
b1:ad:62:dc:a7:43:86:18:9c:75:70:c9:04:02:d7:
5e:a1:ca:f3:28:fa:d6:04:97:9d:06:be:fd:f3:84:
56:f0:1d:fd:c3:00:e4:fd:e9:70:9c:c6:69:ee:f0:
76:e5:5d:eb:4c:27:ee:f8:09:f9:2a:0d:19:cd:41:
87:92:95:a9:1f:7d:08:ff:b7:ac:5e:b1:90:82:d5:
d2:34:7e:ee:01:00:a7:08:f1:78:b1:9d:bf:ce:42:
33:34:4e:be:d8:43:d6:64:7f:73:58:95:7b:cd:df:
0e:25:d0:84:a3:e1:71:f0:7b:dc:96:93:88:39:35:
2f:52:ed:1f:2b:71:91:3b:23:c2:c6:94:68:d2:b2:
fa:a5:b3:67:dc:7e:66:bf:52:49:48:d4:b6:9e:0e:
ab:4e:82:6b:4a:b2:71:0d:39:80:a6:97:66:e8:09:
63:6b:4d:fc:74:a1:98:c0:bf:5c:b9:da:5a:5e:1d:
7b:03:75:8d:dc:6f:30:83:4a:b3:14:de:91:70:cd:
c4:fc:51:52:f0:0d:da:79:1d:aa:8c:b8:ff:0c:92:
a9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:06:1C:BF:9D:B6:2E:B2:F9:B8:4C:22:30:90:DC:8B:78:C3:6F:86
X509v3 Authority Key Identifier:
keyid:29:E1:23:C1:85:2D:34:7C:BD:27:9E:30:45:37:7C:9C:D5:10:28:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeEjwYUtNHy9J54wRTd8nNUQKEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/6c353e-817d-4be9-b43f-c9fb9bb611b0/1/0wYcv522LrL5uEwiMJDci3jDb4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/6c353e-817d-4be9-b43f-c9fb9bb611b0/1/KeEjwYUtNHy9J54wRTd8nNUQKEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.169.0/24
Signature Algorithm: sha256WithRSAEncryption
70:64:5a:53:78:0b:ce:3a:ee:5f:ec:91:c2:bb:90:71:56:ce:
53:08:48:fb:25:69:af:97:3b:ae:b8:9f:73:35:17:1b:9c:e7:
2b:80:ff:6c:9a:4a:1f:15:10:28:5b:08:37:77:62:c8:10:ea:
d6:32:b1:29:d3:20:9c:55:3b:d9:f0:68:dd:05:3c:04:f3:44:
7c:35:30:11:b9:be:ee:93:83:4e:5b:9b:7c:43:b3:69:95:ff:
8f:22:34:cf:c2:3c:10:ce:a9:c1:f4:8a:51:52:0a:c8:8e:96:
b9:6d:32:48:b9:78:4d:e1:20:fa:e0:7a:72:db:92:8f:71:28:
f2:d6:08:29:37:5b:37:7b:19:3a:45:fb:74:da:ce:f5:e2:cb:
1a:ed:de:37:ee:33:ef:56:43:02:58:84:11:de:ac:ae:d7:02:
b2:91:e6:ef:a3:43:40:7b:ca:3f:3e:eb:3c:5d:25:d8:bc:e8:
37:97:a1:cf:ca:2f:bc:8e:72:50:ff:84:78:a5:03:4a:4a:06:
99:c5:22:6e:fa:00:cc:c4:7b:62:11:18:1d:b4:e6:bc:8e:5a:
af:a4:ef:a9:2b:d7:2c:2e:ca:be:a2:0f:3b:2f:f0:2a:ec:c5:
27:9f:b4:6d:fe:69:91:f6:aa:f1:87:30:8f:be:dd:60:4f:ed:
e0:46:e4:f1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAJVhtjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OWUxMjNjMTg1MmQzNDdjYmQyNzllMzA0NTM3N2M5Y2Q1MTAyODRhMB4XDTIyMDEw
MTAyNTM0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDMwNjFjYmY5ZGI2
MmViMmY5Yjg0YzIyMzA5MGRjOGI3OGMzNmY4NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALEN+gR9vJO6YFJ3rz0EM2DnmFwld3XyWGqBCujtwnGDY2SO
DpGN1inMHEiFsa1i3KdDhhicdXDJBALXXqHK8yj61gSXnQa+/fOEVvAd/cMA5P3p
cJzGae7wduVd60wn7vgJ+SoNGc1Bh5KVqR99CP+3rF6xkILV0jR+7gEApwjxeLGd
v85CMzROvthD1mR/c1iVe83fDiXQhKPhcfB73JaTiDk1L1LtHytxkTsjwsaUaNKy
+qWzZ9x+Zr9SSUjUtp4Oq06Ca0qycQ05gKaXZugJY2tN/HShmMC/XLnaWl4dewN1
jdxvMINKsxTekXDNxPxRUvAN2nkdqoy4/wySqUcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTTBhy/nbYusvm4TCIwkNyLeMNvhjAfBgNVHSMEGDAWgBQp4SPBhS00fL0n
njBFN3yc1RAoSjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tlRWp3WVV0Tkh5OUo1NHdSVGQ4bk5VUUtFby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzIvNmMzNTNlLTgxN2QtNGJlOS1iNDNmLWM5ZmI5YmI2MTFiMC8x
LzB3WWN2NTIyTHJMNXVFd2lNSkRjaTNqRGI0WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzIv
NmMzNTNlLTgxN2QtNGJlOS1iNDNmLWM5ZmI5YmI2MTFiMC8xL0tlRWp3WVV0Tkh5
OUo1NHdSVGQ4bk5VUUtFby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEDqTANBgkqhkiG9w0BAQsFAAOC
AQEAcGRaU3gLzjruX+yRwruQcVbOUwhI+yVpr5c7rrifczUXG5znK4D/bJpKHxUQ
KFsIN3diyBDq1jKxKdMgnFU72fBo3QU8BPNEfDUwEbm+7pODTlubfEOzaZX/jyI0
z8I8EM6pwfSKUVIKyI6WuW0ySLl4TeEg+uB6ctuSj3Eo8tYIKTdbN3sZOkX7dNrO
9eLLGu3eN+4z71ZDAliEEd6srtcCspHm76NDQHvKPz7rPF0l2LzoN5ehz8ovvI5y
UP+EeKUDSkoGmcUibvoAzMR7YhEYHbTmvI5ar6TvqSvXLC7KvqIPOy/wKuzFJ5+0
bf5pkfaq8Ycwj77dYE/t4Ebk8Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:26 2023 by rpki-client on console-fra.rpki-client.org