Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/9cceef-c1da-467b-af24-49797b889454/1/6u7eF-aiWN7DTDT7JQZGwfNb2S4.roa
File: 6u7eF-aiWN7DTDT7JQZGwfNb2S4.roa (raw, json)
Hash identifier: izhQYDV+jBC4y5g3DeV1a1u6kFcjeJ3g+qEa7xHMFt4=
Subject key identifier: EA:EE:DE:17:E6:A2:58:DE:C3:4C:34:FB:25:06:46:C1:F3:5B:D9:2E
Certificate issuer: /CN=1f6dc71102ece756c1d9ac4fcbfc4f2bd847724c
Certificate serial: C1DD67
Authority key identifier: 1F:6D:C7:11:02:EC:E7:56:C1:D9:AC:4F:CB:FC:4F:2B:D8:47:72:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H23HEQLs51bB2axPy_xPK9hHckw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/9cceef-c1da-467b-af24-49797b889454/1/6u7eF-aiWN7DTDT7JQZGwfNb2S4.roa
Signing time: Sat 01 Jan 2022 13:54:47 +0000
ROA not before: Sat 01 Jan 2022 13:54:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203061
IP address blocks: 194.32.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12705127 (0xc1dd67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f6dc71102ece756c1d9ac4fcbfc4f2bd847724c
Validity
Not Before: Jan 1 13:54:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eaeede17e6a258dec34c34fb250646c1f35bd92e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:50:57:00:2e:a9:20:4e:0b:1e:1c:e0:63:d5:
cb:ec:7e:bb:63:28:39:ad:2e:75:ef:4a:fa:77:63:
87:a4:a9:09:66:ce:74:11:f4:48:49:d6:80:9f:4d:
64:cd:2e:5f:84:1f:62:a9:ae:3f:a9:dc:db:5a:07:
6f:8e:d3:01:42:39:05:97:7c:5c:90:e0:b7:cc:b3:
9c:f8:e2:a5:0a:88:38:83:2a:a4:09:f7:21:40:e4:
67:d8:3e:1a:06:a1:52:59:2c:39:5a:f0:a4:89:99:
2e:23:8a:7c:5b:71:85:a4:39:ee:4e:38:3b:c1:48:
9c:0c:86:a2:24:64:5b:ac:a5:6a:25:e8:0d:af:b3:
63:e7:24:fe:17:cf:25:1f:6b:36:ae:63:7b:7c:88:
aa:86:e2:61:d7:9c:31:b0:e7:d3:77:61:b3:1e:26:
0f:48:df:11:48:8a:66:a4:8a:e5:6a:09:11:db:d3:
51:a5:3e:b2:4f:14:a3:7f:0b:9d:8c:8d:aa:89:4c:
5d:bd:ec:fb:4b:25:bd:1e:8f:c8:74:6b:8a:aa:88:
3d:45:e2:b2:e6:9a:3b:b3:1b:04:62:31:94:60:b4:
0b:bf:ae:fa:a9:55:5f:f3:db:0c:48:8b:41:07:62:
a3:83:3b:cb:2c:1a:cf:62:e4:aa:4e:b2:61:e7:11:
da:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:EE:DE:17:E6:A2:58:DE:C3:4C:34:FB:25:06:46:C1:F3:5B:D9:2E
X509v3 Authority Key Identifier:
keyid:1F:6D:C7:11:02:EC:E7:56:C1:D9:AC:4F:CB:FC:4F:2B:D8:47:72:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H23HEQLs51bB2axPy_xPK9hHckw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/9cceef-c1da-467b-af24-49797b889454/1/6u7eF-aiWN7DTDT7JQZGwfNb2S4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/9cceef-c1da-467b-af24-49797b889454/1/H23HEQLs51bB2axPy_xPK9hHckw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.106.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:ae:0e:25:9d:8f:bd:68:b1:2b:dd:e9:80:30:05:a4:b1:40:
05:18:ff:14:6c:65:34:90:eb:fe:3a:42:50:c2:39:2c:14:50:
58:d8:5e:48:67:cf:20:32:d0:46:b0:00:80:40:fa:11:ac:52:
36:06:2c:c3:dd:4a:92:f5:ec:e7:59:23:95:45:d4:8b:1e:1c:
7d:11:5e:55:d3:d3:3a:fa:ca:0f:7a:b3:d4:59:c2:18:e4:aa:
c0:36:1c:d3:9b:fc:f5:3c:d8:95:fe:42:70:23:2d:53:4e:4d:
58:d1:f2:3e:4c:06:e0:85:01:e5:0a:11:ac:7e:ce:c8:03:a0:
47:4a:2f:10:ae:73:56:ca:f7:93:4f:89:5f:16:9c:40:c6:f1:
ad:c8:36:0f:60:0a:54:13:cf:2d:23:04:32:dc:e4:05:87:16:
5e:ec:d5:0d:45:ac:3e:90:0b:59:ed:72:f7:03:a9:20:ec:b1:
bc:08:3c:35:d4:30:00:ef:38:17:20:5c:d1:4e:ae:df:af:92:
0d:1c:3e:3f:d0:77:1d:6a:aa:22:16:6e:04:f9:4e:99:8a:7e:
8a:79:d3:db:4a:c7:68:d8:9b:2f:49:0a:09:1c:e3:77:75:67:
8b:3b:18:88:90:77:87:9e:b3:9a:7e:3e:fd:cf:5d:7b:21:b8:
1b:42:5c:e2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAMHdZzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZjZkYzcxMTAyZWNlNzU2YzFkOWFjNGZjYmZjNGYyYmQ4NDc3MjRjMB4XDTIyMDEw
MTEzNTQ0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWFlZWRlMTdlNmEy
NThkZWMzNGMzNGZiMjUwNjQ2YzFmMzViZDkyZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANJQVwAuqSBOCx4c4GPVy+x+u2MoOa0ude9K+ndjh6SpCWbO
dBH0SEnWgJ9NZM0uX4QfYqmuP6nc21oHb47TAUI5BZd8XJDgt8yznPjipQqIOIMq
pAn3IUDkZ9g+GgahUlksOVrwpImZLiOKfFtxhaQ57k44O8FInAyGoiRkW6ylaiXo
Da+zY+ck/hfPJR9rNq5je3yIqobiYdecMbDn03dhsx4mD0jfEUiKZqSK5WoJEdvT
UaU+sk8Uo38LnYyNqolMXb3s+0slvR6PyHRriqqIPUXisuaaO7MbBGIxlGC0C7+u
+qlVX/PbDEiLQQdio4M7yywaz2Lkqk6yYecR2iMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTq7t4X5qJY3sNMNPslBkbB81vZLjAfBgNVHSMEGDAWgBQfbccRAuznVsHZ
rE/L/E8r2EdyTDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0gyM0hFUUxzNTFiQjJheFB5X3hQSzloSGNrdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDQvOWNjZWVmLWMxZGEtNDY3Yi1hZjI0LTQ5Nzk3Yjg4OTQ1NC8x
LzZ1N2VGLWFpV043RFREVDdKUVpHd2ZOYjJTNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDQv
OWNjZWVmLWMxZGEtNDY3Yi1hZjI0LTQ5Nzk3Yjg4OTQ1NC8xL0gyM0hFUUxzNTFi
QjJheFB5X3hQSzloSGNrdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIgajANBgkqhkiG9w0BAQsFAAOC
AQEAmq4OJZ2PvWixK93pgDAFpLFABRj/FGxlNJDr/jpCUMI5LBRQWNheSGfPIDLQ
RrAAgED6EaxSNgYsw91KkvXs51kjlUXUix4cfRFeVdPTOvrKD3qz1FnCGOSqwDYc
05v89TzYlf5CcCMtU05NWNHyPkwG4IUB5QoRrH7OyAOgR0ovEK5zVsr3k0+JXxac
QMbxrcg2D2AKVBPPLSMEMtzkBYcWXuzVDUWsPpALWe1y9wOpIOyxvAg8NdQwAO84
FyBc0U6u36+SDRw+P9B3HWqqIhZuBPlOmYp+innT20rHaNibL0kKCRzjd3VnizsY
iJB3h56zmn4+/c9deyG4G0Jc4g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:31 2023 by rpki-client on console-fra.rpki-client.org