Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/IueiyRmAUwcljl5V26j9rS0MOsQ.roa
File: IueiyRmAUwcljl5V26j9rS0MOsQ.roa (raw, json)
Hash identifier: xfr2bBTFbokCm7Hc95eq60PE5gymmFTkW6dK1JemSFc=
Subject key identifier: 22:E7:A2:C9:19:80:53:07:25:8E:5E:55:DB:A8:FD:AD:2D:0C:3A:C4
Certificate issuer: /CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Certificate serial: 018536317B30CA74E8EBD346D49B76BEBE48
Authority key identifier: DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/IueiyRmAUwcljl5V26j9rS0MOsQ.roa
Signing time: Wed 21 Dec 2022 19:38:10 +0000
ROA not before: Wed 21 Dec 2022 19:38:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208046
IP address blocks: 193.142.147.0/24 maxlen: 24
193.142.146.0/24 maxlen: 24
193.142.59.0/24 maxlen: 24
2a0f:ca80:1338::/48 maxlen: 48
2a0f:ca80:618::/48 maxlen: 48
2a0f:ca86::/40 maxlen: 40
2a0f:ca80:1::/48 maxlen: 48
2a0f:ca80:1337::/48 maxlen: 48
2a0f:ca80:617::/48 maxlen: 48
2a0f:ca83:1337::/48 maxlen: 48
2a0f:ca84::/40 maxlen: 40
2a0f:ca80:1200::/40 maxlen: 40
2a0f:ca80:1100::/40 maxlen: 40
2a0f:ca80::/48 maxlen: 48
2a0f:ca80:619::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:36:31:7b:30:ca:74:e8:eb:d3:46:d4:9b:76:be:be:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Validity
Not Before: Dec 21 19:38:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22e7a2c919805307258e5e55dba8fdad2d0c3ac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2d:64:60:40:19:77:07:e5:74:bc:4b:20:c5:
14:b6:d6:10:03:3b:87:ab:ca:81:76:4c:13:d4:e9:
12:f6:3a:bd:ff:61:eb:e4:b6:15:a1:0a:54:16:7b:
4e:3e:b8:16:af:1b:b6:cf:6e:82:ad:8d:4d:02:a2:
ce:af:5c:d5:3e:9c:fe:c2:88:9f:d4:b2:25:4c:2e:
a2:83:e8:07:87:fe:8a:7f:ba:4c:bd:fc:3d:d1:7d:
bb:d8:43:37:20:65:05:ed:04:10:f0:8c:9a:14:cb:
86:75:10:bc:73:a0:10:c0:75:b2:4e:87:7d:8b:de:
cf:81:aa:72:92:43:68:74:b7:eb:40:15:79:55:5d:
41:26:b2:6a:76:4e:b8:f0:1a:bb:09:78:1c:4e:75:
0c:40:5f:5c:c6:9d:c6:f2:a7:34:aa:a0:78:cf:bc:
76:82:a4:77:c8:14:b4:b6:bf:d0:1d:77:5d:ab:4c:
27:c2:ce:0e:41:3e:b4:53:74:a0:72:60:1e:8e:e1:
b5:8c:a4:46:64:4c:9b:c2:c1:76:d0:42:fd:cc:af:
93:9f:d6:3b:77:a0:f8:0b:d4:d9:05:7e:ed:59:14:
b0:f7:0f:40:a2:c4:5f:57:05:c3:ed:c7:d2:7f:9c:
7d:4f:7b:a4:5e:f5:8f:b2:92:8f:47:b6:f5:46:a7:
29:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E7:A2:C9:19:80:53:07:25:8E:5E:55:DB:A8:FD:AD:2D:0C:3A:C4
X509v3 Authority Key Identifier:
keyid:DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/IueiyRmAUwcljl5V26j9rS0MOsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.59.0/24
193.142.146.0/23
IPv6:
2a0f:ca80::/47
2a0f:ca80:617::-2a0f:ca80:619:ffff:ffff:ffff:ffff:ffff
2a0f:ca80:1100::-2a0f:ca80:12ff:ffff:ffff:ffff:ffff:ffff
2a0f:ca80:1337::-2a0f:ca80:1338:ffff:ffff:ffff:ffff:ffff
2a0f:ca83:1337::/48
2a0f:ca84::/40
2a0f:ca86::/40
Signature Algorithm: sha256WithRSAEncryption
35:cf:20:42:0a:97:e9:46:96:bc:58:ad:93:95:e1:09:40:75:
df:5a:92:cd:ba:3b:86:9d:12:f0:9b:99:fc:9e:aa:0d:12:f5:
be:6c:df:6d:1d:5a:e8:46:27:1a:57:83:c3:cb:d5:8b:a0:f2:
3e:69:ff:d9:5d:a7:b5:d0:f7:a9:c0:d6:37:d9:19:99:d0:f9:
1b:85:43:c1:c7:6d:14:c9:63:30:9c:c3:56:63:3e:fb:db:0f:
cf:8a:60:17:fd:50:1b:fe:a2:ea:89:bd:43:55:71:27:eb:ee:
85:43:8c:0a:c5:70:df:ef:36:71:34:69:8e:42:ad:65:60:05:
c0:46:4c:14:59:f0:2a:39:89:11:df:bb:39:16:2b:6c:be:b2:
80:8d:0e:05:a7:7b:b4:ce:fd:83:88:dd:a5:aa:a8:29:bd:6a:
59:ee:79:4a:f7:ee:b7:53:60:4f:3a:ce:73:31:32:66:93:26:
17:60:7c:5f:c8:ea:ac:e2:aa:7a:c5:bf:a0:96:5d:55:d7:52:
0d:a6:7f:24:73:00:e6:f0:20:8e:5d:22:8a:56:1a:74:1f:53:
9e:90:c2:72:ce:8f:45:17:af:10:f8:ad:8f:b5:3e:b0:2d:59:
96:c7:3a:a5:de:9d:7c:03:01:14:c9:5d:cc:82:2d:79:be:d6:
d5:c3:bd:54
-----BEGIN CERTIFICATE-----
MIIFaDCCBFCgAwIBAgISAYU2MXswynTo69NG1Jt2vr5IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiZTZhYjhlMGM0NmU4NDFiNDRkMmI5YzZiMDNiYjY1ZjU2
MjFkYjEwHhcNMjIxMjIxMTkzODEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMmU3YTJjOTE5ODA1MzA3MjU4ZTVlNTVkYmE4ZmRhZDJkMGMzYWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxC1kYEAZdwfldLxLIMUUttYQAzuH
q8qBdkwT1OkS9jq9/2Hr5LYVoQpUFntOPrgWrxu2z26CrY1NAqLOr1zVPpz+woif
1LIlTC6ig+gHh/6Kf7pMvfw90X272EM3IGUF7QQQ8IyaFMuGdRC8c6AQwHWyTod9
i97PgapykkNodLfrQBV5VV1BJrJqdk648Bq7CXgcTnUMQF9cxp3G8qc0qqB4z7x2
gqR3yBS0tr/QHXddq0wnws4OQT60U3SgcmAejuG1jKRGZEybwsF20EL9zK+Tn9Y7
d6D4C9TZBX7tWRSw9w9AosRfVwXD7cfSf5x9T3ukXvWPspKPR7b1RqcpfwIDAQAB
o4ICdDCCAnAwHQYDVR0OBBYEFCLnoskZgFMHJY5eVduo/a0tDDrEMB8GA1UdIwQY
MBaAFNvmq44MRuhBtE0rnGsDu2X1Yh2xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMi1hcmpneEc2RUcwVFN1Y2F3TzdaZlZpSGJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS85NjQzNmMtZjZmYS00MGJhLWEyN2Mt
ZmIxMDMwNjUxMDY3LzEvSXVlaXlSbUFVd2Nsamw1VjI2ajlyUzBNT3NRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS85NjQzNmMtZjZmYS00MGJhLWEyN2MtZmIxMDMwNjUxMDY3
LzEvMi1hcmpneEc2RUcwVFN1Y2F3TzdaZlZpSGJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGJBggrBgEFBQcBBwEB/wR6MHgwEgQCAAEwDAMEAMGOOwME
AcGOkjBiBAIAAjBcAwcBKg/KgAAAMBIDBwAqD8qABhcDBwEqD8qABhgwEAMGACoP
yoARAwYAKg/KgBIwEgMHACoPyoATNwMHACoPyoATOAMHACoPyoMTNwMGACoPyoQA
AwYAKg/KhgAwDQYJKoZIhvcNAQELBQADggEBADXPIEIKl+lGlrxYrZOV4QlAdd9a
ks26O4adEvCbmfyeqg0S9b5s320dWuhGJxpXg8PL1Yug8j5p/9ldp7XQ96nA1jfZ
GZnQ+RuFQ8HHbRTJYzCcw1ZjPvvbD8+KYBf9UBv+ouqJvUNVcSfr7oVDjArFcN/v
NnE0aY5CrWVgBcBGTBRZ8Co5iRHfuzkWK2y+soCNDgWne7TO/YOI3aWqqCm9alnu
eUr37rdTYE86znMxMmaTJhdgfF/I6qziqnrFv6CWXVXXUg2mfyRzAObwII5dIopW
GnQfU56QwnLOj0UXrxD4rY+1PrAtWZbHOqXenXwDARTJXcyCLXm+1tXDvVQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:46 2024 by rpki-client on console-ams.rpki-client.org