Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/a2be14-aec9-4ada-8784-debe5747b293/1/bcWxssEgB2HPpmZVtIUpZfOoSpM.roa
File: bcWxssEgB2HPpmZVtIUpZfOoSpM.roa (raw, json)
Hash identifier: NrFSmyK9uf4hoqytph5Rp8p5eshAPY4bLM5G8gOARk8=
Subject key identifier: 6D:C5:B1:B2:C1:20:07:61:CF:A6:66:55:B4:85:29:65:F3:A8:4A:93
Certificate issuer: /CN=113f03bf1451eee62ea72405fa8b64abfae3c4e9
Certificate serial: 01FA71BF
Authority key identifier: 11:3F:03:BF:14:51:EE:E6:2E:A7:24:05:FA:8B:64:AB:FA:E3:C4:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ET8DvxRR7uYupyQF-otkq_rjxOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/a2be14-aec9-4ada-8784-debe5747b293/1/bcWxssEgB2HPpmZVtIUpZfOoSpM.roa
Signing time: Sat 01 Jan 2022 09:00:18 +0000
ROA not before: Sat 01 Jan 2022 09:00:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60627
IP address blocks: 193.228.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33190335 (0x1fa71bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=113f03bf1451eee62ea72405fa8b64abfae3c4e9
Validity
Not Before: Jan 1 09:00:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6dc5b1b2c1200761cfa66655b4852965f3a84a93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b1:73:39:ad:31:59:8e:c8:38:6a:88:11:3e:
4a:a1:56:00:d0:f3:90:48:c6:df:5c:82:6a:37:c8:
9d:b5:62:8e:41:ac:ec:e3:72:94:ba:27:89:f9:01:
da:46:f0:db:ff:dc:fa:c7:f8:f0:4f:9b:0b:3c:eb:
8b:4d:b2:06:a6:f3:e4:55:44:b0:44:46:63:dd:d2:
38:15:f6:37:38:50:c8:19:62:e3:8f:28:2a:0e:48:
f4:00:3e:8e:6c:8c:ba:80:9d:ed:97:df:a8:9d:16:
67:2b:e5:b8:ed:e8:6f:31:52:78:66:98:35:97:3a:
ad:ad:5c:d9:87:5c:1a:a1:4e:fe:41:c3:da:5e:61:
4e:2d:a2:00:b8:0a:91:51:39:c1:0d:2e:cd:11:da:
3a:b8:9f:86:bb:4d:56:a3:97:a4:41:0f:32:ad:b2:
d3:9d:5f:fa:10:28:86:fa:54:04:7b:fc:33:53:15:
77:f6:5f:40:db:09:37:ae:b3:08:c3:6f:12:31:b2:
4e:1a:18:ce:f4:96:f9:16:cc:b2:0c:07:fd:88:81:
76:2e:8b:01:68:16:5a:01:db:cf:c4:48:93:83:d7:
92:86:91:82:8e:41:71:c1:51:43:78:65:5b:32:e7:
01:46:13:f8:85:cb:1b:f6:f7:12:70:5f:b4:5f:8f:
b8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:C5:B1:B2:C1:20:07:61:CF:A6:66:55:B4:85:29:65:F3:A8:4A:93
X509v3 Authority Key Identifier:
keyid:11:3F:03:BF:14:51:EE:E6:2E:A7:24:05:FA:8B:64:AB:FA:E3:C4:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ET8DvxRR7uYupyQF-otkq_rjxOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a2be14-aec9-4ada-8784-debe5747b293/1/bcWxssEgB2HPpmZVtIUpZfOoSpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a2be14-aec9-4ada-8784-debe5747b293/1/ET8DvxRR7uYupyQF-otkq_rjxOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.136.0/24
Signature Algorithm: sha256WithRSAEncryption
71:b3:14:e3:c0:e4:e6:24:f1:ce:ce:df:ab:46:b1:67:6d:97:
ea:9e:3c:ac:07:2d:00:9d:c2:5c:4e:ba:0e:d4:1f:73:2a:fe:
9d:59:9a:05:2f:9c:5e:ba:1a:1b:35:65:96:40:d1:f4:43:9e:
1b:e3:59:56:72:d2:01:0a:46:61:44:71:d7:3c:d8:98:94:be:
34:93:fd:a4:33:19:0d:cf:ca:54:75:3e:c9:f5:3f:4b:e7:00:
8f:31:d3:76:5f:38:77:ee:7c:09:95:80:c5:bd:55:1e:52:43:
24:3b:e2:d8:01:e1:40:89:fc:1f:02:1b:00:e7:21:94:6c:c2:
1b:79:5d:af:ab:14:76:c1:02:aa:b5:19:b1:ca:03:c2:5b:8e:
51:56:7a:f9:28:31:99:f5:4b:03:c9:18:f3:42:a9:40:5b:4c:
24:5e:2f:61:ff:5b:5d:5e:46:57:46:51:1c:c5:40:8c:90:76:
d1:c3:3a:9d:24:7e:03:6a:41:1a:7c:41:80:af:02:1f:45:88:
5b:ea:83:76:0f:0b:f2:06:67:68:2b:2a:41:14:ef:59:0c:34:
11:bc:e3:33:7d:d3:ce:9e:b4:18:c7:51:ea:98:19:e5:ac:5c:
73:50:19:5f:80:8c:b1:fc:00:3b:ec:63:2f:64:53:88:25:a5:
14:af:2e:bf
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAfpxvzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MTNmMDNiZjE0NTFlZWU2MmVhNzI0MDVmYThiNjRhYmZhZTNjNGU5MB4XDTIyMDEw
MTA5MDAxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmRjNWIxYjJjMTIw
MDc2MWNmYTY2NjU1YjQ4NTI5NjVmM2E4NGE5MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMSxczmtMVmOyDhqiBE+SqFWANDzkEjG31yCajfInbVijkGs
7ONylLonifkB2kbw2//c+sf48E+bCzzri02yBqbz5FVEsERGY93SOBX2NzhQyBli
448oKg5I9AA+jmyMuoCd7ZffqJ0WZyvluO3obzFSeGaYNZc6ra1c2YdcGqFO/kHD
2l5hTi2iALgKkVE5wQ0uzRHaOrifhrtNVqOXpEEPMq2y051f+hAohvpUBHv8M1MV
d/ZfQNsJN66zCMNvEjGyThoYzvSW+RbMsgwH/YiBdi6LAWgWWgHbz8RIk4PXkoaR
go5BccFRQ3hlWzLnAUYT+IXLG/b3EnBftF+PuBMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRtxbGywSAHYc+mZlW0hSll86hKkzAfBgNVHSMEGDAWgBQRPwO/FFHu5i6n
JAX6i2Sr+uPE6TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VUOER2eFJSN3VZdXB5UUYtb3RrcV9yanhPay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2EvYTJiZTE0LWFlYzktNGFkYS04Nzg0LWRlYmU1NzQ3YjI5My8x
L2JjV3hzc0VnQjJIUHBtWlZ0SVVwWmZPb1NwTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Ev
YTJiZTE0LWFlYzktNGFkYS04Nzg0LWRlYmU1NzQ3YjI5My8xL0VUOER2eFJSN3VZ
dXB5UUYtb3RrcV9yanhPay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMHkiDANBgkqhkiG9w0BAQsFAAOC
AQEAcbMU48Dk5iTxzs7fq0axZ22X6p48rActAJ3CXE66DtQfcyr+nVmaBS+cXroa
GzVllkDR9EOeG+NZVnLSAQpGYURx1zzYmJS+NJP9pDMZDc/KVHU+yfU/S+cAjzHT
dl84d+58CZWAxb1VHlJDJDvi2AHhQIn8HwIbAOchlGzCG3ldr6sUdsECqrUZscoD
wluOUVZ6+SgxmfVLA8kY80KpQFtMJF4vYf9bXV5GV0ZRHMVAjJB20cM6nSR+A2pB
GnxBgK8CH0WIW+qDdg8L8gZnaCsqQRTvWQw0EbzjM33Tzp60GMdR6pgZ5axcc1AZ
X4CMsfwAO+xjL2RTiCWlFK8uvw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:59 2023 by rpki-client on console-fra.rpki-client.org