Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/74940a-d9fa-4552-be5c-a7ade434d451/1/LIpxFRtAwkfsmYD2aqwDck-9Ieg.roa
File: LIpxFRtAwkfsmYD2aqwDck-9Ieg.roa (raw, json)
Hash identifier: rkXFZttqI7hdXRcU6z6LMsOE41VwRdlMTOklfYkIp0E=
Subject key identifier: 2C:8A:71:15:1B:40:C2:47:EC:99:80:F6:6A:AC:03:72:4F:BD:21:E8
Certificate issuer: /CN=beb12ce6a91030e27d5abad146df27bc2880652b
Certificate serial: 069CEDB9
Authority key identifier: BE:B1:2C:E6:A9:10:30:E2:7D:5A:BA:D1:46:DF:27:BC:28:80:65:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrEs5qkQMOJ9WrrRRt8nvCiAZSs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/74940a-d9fa-4552-be5c-a7ade434d451/1/LIpxFRtAwkfsmYD2aqwDck-9Ieg.roa
Signing time: Sat 01 Jan 2022 09:55:46 +0000
ROA not before: Sat 01 Jan 2022 09:55:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207734
IP address blocks: 193.186.199.0/24 maxlen: 24
5.11.23.0/24 maxlen: 24
5.11.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110947769 (0x69cedb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beb12ce6a91030e27d5abad146df27bc2880652b
Validity
Not Before: Jan 1 09:55:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c8a71151b40c247ec9980f66aac03724fbd21e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:84:f7:ad:8d:be:65:e4:fe:46:fa:a1:f9:6d:
f9:09:51:e6:b8:03:22:80:b9:10:a7:ab:0b:fa:4e:
63:19:bf:64:de:35:33:37:29:b5:70:89:62:3b:bc:
00:c8:9f:31:01:0f:7e:b4:d0:9c:7d:81:20:6c:d8:
76:ce:1d:e1:c6:17:d1:d2:c0:9f:af:7d:18:0a:2e:
aa:8f:43:54:bf:2f:68:ed:07:32:08:42:ba:81:0e:
09:39:60:8a:62:c2:5d:ac:46:65:4f:59:ed:15:50:
c7:3b:c1:69:c3:98:df:ce:d0:54:75:cf:87:8f:f5:
7d:b5:d9:33:ea:a9:4f:d2:3a:d9:01:a3:d8:9c:3a:
ac:e1:69:19:37:aa:2e:70:94:e7:07:2c:ed:52:2a:
63:02:01:89:37:a8:a1:4d:92:a2:b9:8e:86:68:22:
0e:68:67:7a:f0:4a:57:3c:e3:4e:90:a1:d6:76:a1:
c9:ee:7c:9f:6a:1d:37:28:20:6b:b9:1e:2f:aa:9d:
0b:b5:9f:53:19:5d:85:9e:11:1e:cf:b8:f5:9e:de:
b3:fb:87:dc:35:f3:ad:d2:20:40:08:ae:7e:6d:3f:
4e:ad:c5:02:f6:01:15:39:08:59:c6:a3:fd:22:8d:
ab:d4:ff:a2:4d:81:0c:29:8c:40:84:94:dd:9a:ba:
ec:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:8A:71:15:1B:40:C2:47:EC:99:80:F6:6A:AC:03:72:4F:BD:21:E8
X509v3 Authority Key Identifier:
keyid:BE:B1:2C:E6:A9:10:30:E2:7D:5A:BA:D1:46:DF:27:BC:28:80:65:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrEs5qkQMOJ9WrrRRt8nvCiAZSs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/74940a-d9fa-4552-be5c-a7ade434d451/1/LIpxFRtAwkfsmYD2aqwDck-9Ieg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/74940a-d9fa-4552-be5c-a7ade434d451/1/vrEs5qkQMOJ9WrrRRt8nvCiAZSs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.11.20.0/24
5.11.23.0/24
193.186.199.0/24
Signature Algorithm: sha256WithRSAEncryption
52:a3:2a:82:f2:72:c0:c7:3a:25:01:e8:0f:ec:5c:69:9b:fb:
ed:1f:17:3d:ca:af:8d:aa:1f:47:11:8a:22:3c:16:78:79:50:
e0:62:72:be:9d:fc:1b:dd:c0:cc:61:40:1b:f0:ba:a5:e3:ce:
07:09:06:7f:42:af:2d:2d:67:ac:03:65:e1:a6:31:51:12:84:
03:11:66:78:bf:92:0d:47:c2:90:9d:86:b5:41:55:4c:1b:c9:
d8:e4:4d:7f:03:db:ed:37:9c:cf:5a:07:74:c9:22:5a:d7:43:
a2:56:b2:54:51:37:09:aa:2d:0f:8d:82:82:93:7a:bf:9a:6b:
f0:16:b4:dc:39:f7:4e:f7:93:be:13:3a:9f:d0:27:ad:9c:34:
db:da:71:47:a9:83:20:cb:04:46:f2:5b:2f:f1:ad:92:4d:65:
43:0e:c8:e5:d8:8e:74:e8:b8:4d:8c:86:e2:53:b5:25:cd:77:
11:8b:49:a1:9a:0f:d0:63:99:88:82:d3:56:ce:76:5e:f3:77:
6c:4b:fe:23:98:d3:d9:9d:2d:2b:45:fd:2b:f4:78:77:52:af:
31:64:76:8d:7d:34:31:cd:e5:23:d2:d3:eb:3e:82:b2:aa:41:
ad:8b:db:a7:ca:18:7a:60:77:0c:9f:d5:81:13:2b:c2:65:26:
08:df:88:9f
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBpztuTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZWIxMmNlNmE5MTAzMGUyN2Q1YWJhZDE0NmRmMjdiYzI4ODA2NTJiMB4XDTIyMDEw
MTA5NTU0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmM4YTcxMTUxYjQw
YzI0N2VjOTk4MGY2NmFhYzAzNzI0ZmJkMjFlODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMaE962NvmXk/kb6oflt+QlR5rgDIoC5EKerC/pOYxm/ZN41
MzcptXCJYju8AMifMQEPfrTQnH2BIGzYds4d4cYX0dLAn699GAouqo9DVL8vaO0H
MghCuoEOCTlgimLCXaxGZU9Z7RVQxzvBacOY387QVHXPh4/1fbXZM+qpT9I62QGj
2Jw6rOFpGTeqLnCU5wcs7VIqYwIBiTeooU2SormOhmgiDmhnevBKVzzjTpCh1nah
ye58n2odNygga7keL6qdC7WfUxldhZ4RHs+49Z7es/uH3DXzrdIgQAiufm0/Tq3F
AvYBFTkIWcaj/SKNq9T/ok2BDCmMQISU3Zq67LkCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBQsinEVG0DCR+yZgPZqrANyT70h6DAfBgNVHSMEGDAWgBS+sSzmqRAw4n1a
utFG3ye8KIBlKzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZyRXM1cWtRTU9KOVdyclJSdDhudkNpQVpTcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvNzQ5NDBhLWQ5ZmEtNDU1Mi1iZTVjLWE3YWRlNDM0ZDQ1MS8x
L0xJcHhGUnRBd2tmc21ZRDJhcXdEY2stOUllZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
NzQ5NDBhLWQ5ZmEtNDU1Mi1iZTVjLWE3YWRlNDM0ZDQ1MS8xL3ZyRXM1cWtRTU9K
OVdyclJSdDhudkNpQVpTcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAAULFAMEAAULFwMEAMG6xzANBgkq
hkiG9w0BAQsFAAOCAQEAUqMqgvJywMc6JQHoD+xcaZv77R8XPcqvjaofRxGKIjwW
eHlQ4GJyvp38G93AzGFAG/C6pePOBwkGf0KvLS1nrANl4aYxURKEAxFmeL+SDUfC
kJ2GtUFVTBvJ2ORNfwPb7Tecz1oHdMkiWtdDolayVFE3CaotD42CgpN6v5pr8Ba0
3Dn3TveTvhM6n9AnrZw029pxR6mDIMsERvJbL/Gtkk1lQw7I5diOdOi4TYyG4lO1
Jc13EYtJoZoP0GOZiILTVs52XvN3bEv+I5jT2Z0tK0X9K/R4d1KvMWR2jX00Mc3l
I9LT6z6CsqpBrYvbp8oYemB3DJ/VgRMrwmUmCN+Inw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:52 2023 by rpki-client on console-fra.rpki-client.org