Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/d46d25-5d8f-4989-b557-c16baedf6fa6/1/sx7Q82eiBuV_mgjVttVKbrVI8Cw.roa
File: sx7Q82eiBuV_mgjVttVKbrVI8Cw.roa (raw, json)
Hash identifier: jyoVFQncTI6di8qlBfQFmnOoky93si6VeNHTL1P5YZw=
Subject key identifier: B3:1E:D0:F3:67:A2:06:E5:7F:9A:08:D5:B6:D5:4A:6E:B5:48:F0:2C
Certificate issuer: /CN=f89df56248f9777fa22d5da6c04b5fb332a4b350
Certificate serial: 07AF48D7
Authority key identifier: F8:9D:F5:62:48:F9:77:7F:A2:2D:5D:A6:C0:4B:5F:B3:32:A4:B3:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-J31Ykj5d3-iLV2mwEtfszKks1A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/d46d25-5d8f-4989-b557-c16baedf6fa6/1/sx7Q82eiBuV_mgjVttVKbrVI8Cw.roa
Signing time: Sat 01 Jan 2022 04:02:15 +0000
ROA not before: Sat 01 Jan 2022 04:02:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28853
IP address blocks: 193.138.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128927959 (0x7af48d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f89df56248f9777fa22d5da6c04b5fb332a4b350
Validity
Not Before: Jan 1 04:02:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b31ed0f367a206e57f9a08d5b6d54a6eb548f02c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:09:fb:37:6b:97:ba:ee:2a:25:5b:5b:f1:c7:
a8:ec:91:05:76:ba:f7:2b:f3:f4:8c:c5:88:d5:7a:
62:08:1f:8b:ae:c3:22:7d:9e:fa:b3:0b:a9:48:ec:
63:f3:1a:4c:71:4b:af:54:68:16:32:c3:7e:0d:eb:
a0:5c:e0:b8:8f:e3:93:d1:f8:44:c2:ac:72:70:93:
39:70:64:ef:89:3e:13:b4:f0:e6:f7:45:3c:ed:97:
87:79:1a:9e:1b:fb:57:6e:63:ed:93:a6:e6:3d:55:
66:49:df:50:9c:ca:5f:7d:ce:b1:e6:ea:da:12:41:
a9:12:0f:e1:58:46:c5:1e:e2:cb:2e:7f:cc:5d:6e:
be:55:af:bb:ca:01:d1:6b:65:5a:42:06:b8:72:e8:
5b:0d:17:19:57:2f:30:69:cd:3a:80:ed:12:d2:49:
ab:ac:8e:74:8e:a4:97:53:4d:45:5f:c2:35:5b:fd:
87:84:3f:77:4e:5f:6a:68:04:ea:ad:52:0b:1b:3e:
30:a5:d5:1e:60:6b:62:a0:7f:54:1b:17:e0:43:93:
7f:dc:b0:da:5b:5e:e6:9f:18:fe:39:48:5d:47:03:
d2:d5:d0:43:30:22:66:36:56:22:76:09:37:96:93:
65:74:13:3b:8d:4c:fd:75:76:e7:8f:21:16:a0:fd:
3f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:1E:D0:F3:67:A2:06:E5:7F:9A:08:D5:B6:D5:4A:6E:B5:48:F0:2C
X509v3 Authority Key Identifier:
keyid:F8:9D:F5:62:48:F9:77:7F:A2:2D:5D:A6:C0:4B:5F:B3:32:A4:B3:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-J31Ykj5d3-iLV2mwEtfszKks1A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d46d25-5d8f-4989-b557-c16baedf6fa6/1/sx7Q82eiBuV_mgjVttVKbrVI8Cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d46d25-5d8f-4989-b557-c16baedf6fa6/1/1-J31Ykj5d3-iLV2mwEtfszKks1A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.103.0/24
Signature Algorithm: sha256WithRSAEncryption
37:28:db:7e:7c:b6:79:54:b5:05:0b:79:4c:25:87:b5:ff:e0:
74:cb:d6:03:57:fa:b1:94:c2:76:2d:85:e7:98:9c:b3:26:49:
b0:16:cc:03:cd:49:9a:72:92:b9:46:43:3a:c1:15:d6:03:f3:
43:92:f9:72:40:3d:c1:fe:4d:80:80:88:f6:36:f0:68:81:82:
cc:05:b0:ae:a5:0d:f0:42:c9:0e:18:76:60:3c:5d:30:75:ef:
8b:ff:eb:23:94:3e:59:2a:b4:ba:d6:af:c6:ab:8f:2c:93:ba:
60:42:43:52:0d:6f:92:a3:ed:3f:a4:81:27:12:a3:5a:22:d1:
20:87:03:87:7b:6a:48:ea:a4:87:d8:8c:7a:c5:55:1f:35:ae:
d2:ce:e5:ae:23:5c:0f:8b:1e:20:16:2f:1e:16:a4:45:62:d5:
f5:c2:78:24:c0:67:5e:dc:dd:46:71:a0:64:fb:3e:19:5b:e0:
62:a3:93:4a:82:7e:27:2b:27:51:ba:94:4d:3c:58:d8:bd:cb:
b8:12:28:6f:0a:98:eb:8d:6b:ed:d4:60:b0:de:e1:2e:4e:db:
7d:01:24:46:e2:d4:59:77:91:7c:96:76:be:e0:cb:be:fa:3e:
59:02:d6:e6:a9:76:62:44:52:03:e6:d1:08:57:1a:4a:b9:98:
68:24:03:b0
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEB69I1zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ODlkZjU2MjQ4Zjk3NzdmYTIyZDVkYTZjMDRiNWZiMzMyYTRiMzUwMB4XDTIyMDEw
MTA0MDIxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjMxZWQwZjM2N2Ey
MDZlNTdmOWEwOGQ1YjZkNTRhNmViNTQ4ZjAyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKUJ+zdrl7ruKiVbW/HHqOyRBXa69yvz9IzFiNV6Yggfi67D
In2e+rMLqUjsY/MaTHFLr1RoFjLDfg3roFzguI/jk9H4RMKscnCTOXBk74k+E7Tw
5vdFPO2Xh3kanhv7V25j7ZOm5j1VZknfUJzKX33Osebq2hJBqRIP4VhGxR7iyy5/
zF1uvlWvu8oB0WtlWkIGuHLoWw0XGVcvMGnNOoDtEtJJq6yOdI6kl1NNRV/CNVv9
h4Q/d05famgE6q1SCxs+MKXVHmBrYqB/VBsX4EOTf9yw2lte5p8Y/jlIXUcD0tXQ
QzAiZjZWInYJN5aTZXQTO41M/XV2548hFqD9P30CAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBSzHtDzZ6IG5X+aCNW21UputUjwLDAfBgNVHSMEGDAWgBT4nfViSPl3f6It
XabAS1+zMqSzUDAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtSjMxWWtqNWQzLWlMVjJtd0V0ZnN6S2tzMUEuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL2M1L2Q0NmQyNS01ZDhmLTQ5ODktYjU1Ny1jMTZiYWVkZjZmYTYv
MS9zeDdRODJlaUJ1Vl9tZ2pWdHRWS2JyVkk4Q3cucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M1
L2Q0NmQyNS01ZDhmLTQ5ODktYjU1Ny1jMTZiYWVkZjZmYTYvMS8xLUozMVlrajVk
My1pTFYybXdFdGZzektrczFBLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwYpnMA0GCSqGSIb3DQEBCwUA
A4IBAQA3KNt+fLZ5VLUFC3lMJYe1/+B0y9YDV/qxlMJ2LYXnmJyzJkmwFswDzUma
cpK5RkM6wRXWA/NDkvlyQD3B/k2AgIj2NvBogYLMBbCupQ3wQskOGHZgPF0wde+L
/+sjlD5ZKrS61q/Gq48sk7pgQkNSDW+So+0/pIEnEqNaItEghwOHe2pI6qSH2Ix6
xVUfNa7SzuWuI1wPix4gFi8eFqRFYtX1wngkwGde3N1GcaBk+z4ZW+Bio5NKgn4n
KydRupRNPFjYvcu4EihvCpjrjWvt1GCw3uEuTtt9ASRG4tRZd5F8lna+4Mu++j5Z
AtbmqXZiRFID5tEIVxpKuZhoJAOw
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:39 2023 by rpki-client on console-fra.rpki-client.org