Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/6234c0-a78c-439c-a6ee-5ccf6f4b7920/1/3KSVQsybF993AS2F6wpz0jixwd0.roa
File: 3KSVQsybF993AS2F6wpz0jixwd0.roa (raw, json)
Hash identifier: wM5waCU5rq6sd6vPECabPhUqvqlEkmrJSOeUIQbvukc=
Subject key identifier: DC:A4:95:42:CC:9B:17:DF:77:01:2D:85:EB:0A:73:D2:38:B1:C1:DD
Certificate issuer: /CN=fdd0fd68c1b6b569b9f7c4813ac12ded6ae5e8ab
Certificate serial: 01845DE839192FCB4833F60A9617E580C846
Authority key identifier: FD:D0:FD:68:C1:B6:B5:69:B9:F7:C4:81:3A:C1:2D:ED:6A:E5:E8:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_dD9aMG2tWm598SBOsEt7Wrl6Ks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/6234c0-a78c-439c-a6ee-5ccf6f4b7920/1/3KSVQsybF993AS2F6wpz0jixwd0.roa
Signing time: Wed 09 Nov 2022 19:40:10 +0000
ROA not before: Wed 09 Nov 2022 19:40:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21100
IP address blocks: 193.106.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5d:e8:39:19:2f:cb:48:33:f6:0a:96:17:e5:80:c8:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdd0fd68c1b6b569b9f7c4813ac12ded6ae5e8ab
Validity
Not Before: Nov 9 19:40:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dca49542cc9b17df77012d85eb0a73d238b1c1dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:59:33:39:1b:8e:95:a3:5a:c5:32:81:50:12:
43:50:54:63:5e:0a:f3:08:a6:b3:38:14:db:64:3e:
48:e9:ee:57:cd:46:c6:34:13:a9:38:9b:84:90:a7:
1d:b8:d5:d7:f4:f9:1a:ee:a4:42:84:95:31:a8:c4:
06:bc:96:6f:4f:f2:f0:48:1c:45:b5:29:5e:8e:b4:
d1:d6:52:94:7c:0a:9c:22:81:21:da:6c:c4:66:0d:
45:8a:29:ad:e1:b4:3b:39:81:3e:9f:86:0f:a9:7c:
64:d7:e6:75:c1:3c:64:c3:e8:57:54:e5:29:a3:9b:
7c:41:5e:09:76:c2:4e:5d:6c:6c:bd:23:10:a8:6f:
5c:ed:42:4e:c4:87:98:ff:fb:82:62:1e:cf:d6:33:
78:cc:cb:40:92:5e:9c:38:76:c2:81:4e:8c:8d:ed:
58:7a:9e:42:cd:f6:8c:4a:4b:a5:f2:79:bd:e8:97:
f9:67:28:ae:e4:87:1c:51:50:d5:6c:db:a3:a4:87:
62:f6:da:32:dc:b7:4d:c0:eb:7e:62:7b:40:37:32:
a1:5f:6d:2d:3b:3d:75:92:a3:8b:83:97:6a:b0:be:
03:10:bf:e8:2a:5b:85:48:43:3a:f1:a9:b9:55:c8:
86:ed:b6:61:3a:e5:b3:29:a8:3e:8e:fb:00:fc:d5:
d6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:A4:95:42:CC:9B:17:DF:77:01:2D:85:EB:0A:73:D2:38:B1:C1:DD
X509v3 Authority Key Identifier:
keyid:FD:D0:FD:68:C1:B6:B5:69:B9:F7:C4:81:3A:C1:2D:ED:6A:E5:E8:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_dD9aMG2tWm598SBOsEt7Wrl6Ks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/6234c0-a78c-439c-a6ee-5ccf6f4b7920/1/3KSVQsybF993AS2F6wpz0jixwd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/6234c0-a78c-439c-a6ee-5ccf6f4b7920/1/_dD9aMG2tWm598SBOsEt7Wrl6Ks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.150.0/24
Signature Algorithm: sha256WithRSAEncryption
40:ab:09:0a:21:25:16:17:7a:d1:90:17:c9:62:ec:4e:9c:95:
85:5e:dc:e7:c3:f3:b6:52:19:a2:3e:1f:4a:3a:e7:6f:c9:92:
48:1a:4f:37:14:29:55:28:9a:65:cc:74:5e:a7:d1:20:d2:03:
e2:1c:e3:be:80:ef:35:0b:50:04:88:90:f4:fc:e6:8b:2a:65:
2b:69:a1:5d:97:31:9d:c1:25:43:3f:b3:11:b5:6b:b9:13:90:
28:5b:a1:f1:05:c9:7a:1e:0c:8f:cd:d1:12:ad:5e:04:5c:41:
fa:cb:33:ef:f2:f7:de:a4:d2:26:74:3e:5e:36:d9:70:8a:b7:
16:83:a2:ae:bc:88:84:49:a2:a7:4b:1b:0c:58:15:a1:96:43:
06:44:dc:2d:b6:de:b1:7f:5b:bc:6d:c4:e7:7d:8b:9b:f8:a6:
90:dc:d6:e5:58:e7:b4:4b:b9:0f:38:d4:cd:c6:f1:23:4d:2a:
40:08:f6:6e:9c:32:94:75:8b:45:24:6b:8d:1e:93:76:84:7a:
af:13:f8:fc:17:f7:43:eb:74:33:7f:d6:40:93:6d:7d:44:f9:
d0:49:c1:f0:ab:76:a3:7c:eb:f7:30:4f:72:27:f8:cf:f4:f9:
a6:a4:72:d9:a2:35:50:65:5d:dd:79:de:f1:36:92:13:45:aa:
17:92:e5:6f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRd6DkZL8tIM/YKlhflgMhGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkZDBmZDY4YzFiNmI1NjliOWY3YzQ4MTNhYzEyZGVkNmFl
NWU4YWIwHhcNMjIxMTA5MTk0MDEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkY2E0OTU0MmNjOWIxN2RmNzcwMTJkODVlYjBhNzNkMjM4YjFjMWRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi1kzORuOlaNaxTKBUBJDUFRjXgrz
CKazOBTbZD5I6e5XzUbGNBOpOJuEkKcduNXX9Pka7qRChJUxqMQGvJZvT/LwSBxF
tSlejrTR1lKUfAqcIoEh2mzEZg1Fiimt4bQ7OYE+n4YPqXxk1+Z1wTxkw+hXVOUp
o5t8QV4JdsJOXWxsvSMQqG9c7UJOxIeY//uCYh7P1jN4zMtAkl6cOHbCgU6Mje1Y
ep5CzfaMSkul8nm96Jf5Zyiu5IccUVDVbNujpIdi9toy3LdNwOt+YntANzKhX20t
Oz11kqOLg5dqsL4DEL/oKluFSEM68am5VciG7bZhOuWzKag+jvsA/NXWhQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNyklULMmxffdwEthesKc9I4scHdMB8GA1UdIwQY
MBaAFP3Q/WjBtrVpuffEgTrBLe1q5eirMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2REOWFNRzJ0V201OThTQk9zRXQ3V3JsNktzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC82MjM0YzAtYTc4Yy00MzljLWE2ZWUt
NWNjZjZmNGI3OTIwLzEvM0tTVlFzeWJGOTkzQVMyRjZ3cHowaml4d2QwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC82MjM0YzAtYTc4Yy00MzljLWE2ZWUtNWNjZjZmNGI3OTIw
LzEvX2REOWFNRzJ0V201OThTQk9zRXQ3V3JsNktzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWqWMA0G
CSqGSIb3DQEBCwUAA4IBAQBAqwkKISUWF3rRkBfJYuxOnJWFXtznw/O2UhmiPh9K
OudvyZJIGk83FClVKJplzHRep9Eg0gPiHOO+gO81C1AEiJD0/OaLKmUraaFdlzGd
wSVDP7MRtWu5E5AoW6HxBcl6HgyPzdESrV4EXEH6yzPv8vfepNImdD5eNtlwircW
g6KuvIiESaKnSxsMWBWhlkMGRNwttt6xf1u8bcTnfYub+KaQ3NblWOe0S7kPONTN
xvEjTSpACPZunDKUdYtFJGuNHpN2hHqvE/j8F/dD63Qzf9ZAk219RPnQScHwq3aj
fOv3ME9yJ/jP9PmmpHLZojVQZV3ded7xNpITRaoXkuVv
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:31 2023 by rpki-client on console-fra.rpki-client.org