Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/rRBiaGrWPpgHEoImZ1fkv5AzUMg.roa
File: rRBiaGrWPpgHEoImZ1fkv5AzUMg.roa (raw, json)
Hash identifier: X7UxZLh2/Mm3bD5XHC3BrPP1Zf/HTGHegyARApdxEK4=
Subject key identifier: AD:10:62:68:6A:D6:3E:98:07:12:82:26:67:57:E4:BF:90:33:50:C8
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 428E4466
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/rRBiaGrWPpgHEoImZ1fkv5AzUMg.roa
Signing time: Sat 01 Jan 2022 14:03:29 +0000
ROA not before: Sat 01 Jan 2022 14:03:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207448
IP address blocks: 193.235.64.0/24 maxlen: 24
2a01:280:358::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1116619878 (0x428e4466)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad1062686ad63e98071282266757e4bf903350c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6a:b7:37:b6:73:3b:99:8d:3e:60:94:fb:94:
81:c3:9f:fd:e0:95:89:31:c8:6b:b4:91:9c:92:97:
8c:69:d3:0c:39:67:e7:bd:c8:67:16:f4:bc:6b:e7:
28:dd:00:d0:96:66:6e:22:9d:90:bc:fd:48:15:f8:
84:44:4f:a6:a8:b4:8d:9a:36:b0:68:55:ef:a6:ab:
42:a4:d0:bc:63:46:b6:c3:13:c7:e1:2a:ec:94:33:
b7:06:1c:71:af:52:05:3f:5f:33:ac:e3:75:ea:8a:
61:42:8a:22:24:bc:81:73:68:b9:1c:05:9a:f1:c9:
04:cc:af:f8:c8:b7:71:3b:2c:6b:ee:26:5f:26:89:
ae:6b:f9:5f:1c:82:9f:fb:f0:60:71:f8:30:3d:1e:
06:f8:53:ed:a1:82:ff:b9:87:1e:3e:7d:f9:01:2c:
32:46:40:f9:55:58:13:35:03:bf:65:a7:4a:d8:f0:
d3:8f:4e:ac:95:e7:86:7f:c9:5f:ee:24:45:e3:df:
d3:a0:58:42:f2:ab:85:d4:01:4c:29:49:f0:e0:15:
19:45:9e:2c:2f:66:1c:d7:22:62:71:d0:6d:fc:cf:
d3:0a:98:11:c2:e1:8a:4a:aa:6c:19:eb:b4:7e:3a:
81:9f:2e:df:4f:de:ee:c1:08:4c:23:52:1d:4f:dc:
81:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:10:62:68:6A:D6:3E:98:07:12:82:26:67:57:E4:BF:90:33:50:C8
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/rRBiaGrWPpgHEoImZ1fkv5AzUMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.235.64.0/24
IPv6:
2a01:280:358::/48
Signature Algorithm: sha256WithRSAEncryption
21:a1:d2:30:47:e4:cd:d0:6a:48:c5:45:f0:87:2e:f0:7b:6d:
69:48:78:6a:cf:a0:07:9c:bd:3d:52:82:3a:08:9c:05:7c:e2:
29:3a:bb:84:1f:97:90:66:38:b4:63:c2:fc:37:c5:9c:5b:b5:
30:d5:f9:63:d1:1b:c7:56:af:ee:3e:b3:9d:16:4f:6d:c2:5e:
0f:b4:9b:4d:ef:53:b6:69:f9:ab:e3:59:f1:66:8e:95:94:e9:
40:37:0d:8b:ae:17:cb:2d:55:d9:28:05:34:06:ba:2b:b6:5b:
30:81:52:28:e1:07:29:33:60:a7:24:9a:ba:c1:c8:d4:b7:8e:
f7:dc:8d:0e:c5:1f:86:88:05:4d:dc:38:1a:0e:86:c6:d4:7f:
8f:da:0b:0c:ac:54:4f:2b:b1:44:aa:ce:6a:0e:8a:e0:ca:f4:
c9:26:80:02:1c:ee:26:31:33:35:bb:f8:86:94:57:34:c6:e2:
0f:75:50:ce:c6:29:a0:a2:1d:84:7a:c6:20:b6:8b:72:88:1c:
a9:72:69:b9:c1:73:df:db:6b:7c:75:08:fb:3d:f7:cf:16:7d:
f9:f1:cb:f6:9a:a2:ba:47:52:95:af:6a:8b:df:43:4b:d7:94:
81:e0:da:6c:32:66:2f:7c:bf:6e:4f:10:eb:f7:c5:fc:8d:ad:
a6:f3:23:d4
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEQo5EZjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MTM1YzdmNTcxZWVmZWI2NzQwNGFiNmM0NWZkNDc1NTUxYWRhZjFiMB4XDTIyMDEw
MTE0MDMyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWQxMDYyNjg2YWQ2
M2U5ODA3MTI4MjI2Njc1N2U0YmY5MDMzNTBjODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKNqtze2czuZjT5glPuUgcOf/eCViTHIa7SRnJKXjGnTDDln
573IZxb0vGvnKN0A0JZmbiKdkLz9SBX4hERPpqi0jZo2sGhV76arQqTQvGNGtsMT
x+Eq7JQztwYcca9SBT9fM6zjdeqKYUKKIiS8gXNouRwFmvHJBMyv+Mi3cTssa+4m
XyaJrmv5XxyCn/vwYHH4MD0eBvhT7aGC/7mHHj59+QEsMkZA+VVYEzUDv2WnStjw
049OrJXnhn/JX+4kRePf06BYQvKrhdQBTClJ8OAVGUWeLC9mHNciYnHQbfzP0wqY
EcLhikqqbBnrtH46gZ8u30/e7sEITCNSHU/cgZsCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBStEGJoatY+mAcSgiZnV+S/kDNQyDAfBgNVHSMEGDAWgBQhNcf1ce7+tnQE
q2xF/UdVUa2vGzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lUWEg5WEh1X3JaMEJLdHNSZjFIVlZHdHJ4cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDkvNjgwYjc4LTk2YWYtNGE4NS1hYzAyLTk0M2QwMzMyMTMyNi8x
L3JSQmlhR3JXUHBnSEVvSW1aMWZrdjVBelVNZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkv
NjgwYjc4LTk2YWYtNGE4NS1hYzAyLTk0M2QwMzMyMTMyNi8xL0lUWEg5WEh1X3Ja
MEJLdHNSZjFIVlZHdHJ4cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAMHrQDAPBAIAAjAJAwcAKgECgANY
MA0GCSqGSIb3DQEBCwUAA4IBAQAhodIwR+TN0GpIxUXwhy7we21pSHhqz6AHnL09
UoI6CJwFfOIpOruEH5eQZji0Y8L8N8WcW7Uw1flj0RvHVq/uPrOdFk9twl4PtJtN
71O2afmr41nxZo6VlOlANw2LrhfLLVXZKAU0BrortlswgVIo4QcpM2CnJJq6wcjU
t4733I0OxR+GiAVN3DgaDobG1H+P2gsMrFRPK7FEqs5qDorgyvTJJoACHO4mMTM1
u/iGlFc0xuIPdVDOximgoh2EesYgtotyiBypcmm5wXPf22t8dQj7PffPFn358cv2
mqK6R1KVr2qL30NL15SB4NpsMmYvfL9uTxDr98X8ja2m8yPU
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:47 2023 by rpki-client on console-fra.rpki-client.org