Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/30d69e-f0e7-46f3-9759-ed32c5612840/1/tmyhkAzx8cFJxASdcGtfKFMk89Q.roa
File: tmyhkAzx8cFJxASdcGtfKFMk89Q.roa (raw, json)
Hash identifier: AsZuP13wY3FYQmK19L4ipUIjFo56YMbedkwqezpBJoY=
Subject key identifier: B6:6C:A1:90:0C:F1:F1:C1:49:C4:04:9D:70:6B:5F:28:53:24:F3:D4
Certificate issuer: /CN=2528b71f1e7ca69531dd5df2559513598db1c7f3
Certificate serial: 0B175B65
Authority key identifier: 25:28:B7:1F:1E:7C:A6:95:31:DD:5D:F2:55:95:13:59:8D:B1:C7:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JSi3Hx58ppUx3V3yVZUTWY2xx_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/30d69e-f0e7-46f3-9759-ed32c5612840/1/tmyhkAzx8cFJxASdcGtfKFMk89Q.roa
Signing time: Sat 01 Jan 2022 05:56:48 +0000
ROA not before: Sat 01 Jan 2022 05:56:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205376
IP address blocks: 193.141.67.0/24 maxlen: 24
2001:67c:2e58::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186080101 (0xb175b65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2528b71f1e7ca69531dd5df2559513598db1c7f3
Validity
Not Before: Jan 1 05:56:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b66ca1900cf1f1c149c4049d706b5f285324f3d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:15:da:27:e0:f9:7d:3b:42:0e:31:b4:46:88:
5d:ee:82:d4:c4:29:da:d8:01:fd:53:a4:15:79:69:
76:50:3f:42:76:d0:28:15:d8:ba:1d:e5:f0:2b:a2:
1c:44:6e:ba:35:97:ee:23:37:08:ee:67:e8:ba:82:
7d:b7:73:a3:e9:d9:82:3f:a5:c5:9a:8a:b4:21:3a:
5e:15:c8:60:b4:ad:2d:1f:2e:66:fb:0f:68:a5:3d:
b2:0f:4a:90:b1:66:4a:69:80:07:ff:08:eb:f9:97:
3c:63:59:85:4e:59:55:89:5d:7b:80:38:c1:63:0b:
51:7d:55:ca:d7:b5:39:52:06:0c:e1:a6:8a:33:ab:
a6:94:9f:5a:30:e9:01:dd:40:ae:d5:5b:9d:b8:ec:
46:63:68:ca:17:a5:67:4b:90:9c:81:35:7d:b7:7e:
11:1b:3c:70:e1:c8:a3:1a:90:66:93:a6:9a:47:2a:
33:61:69:40:b6:f1:72:6a:7f:de:b0:6a:aa:a3:04:
12:0f:5f:f9:1d:8b:33:fe:b3:62:28:b8:1f:0d:69:
61:a7:04:ff:7a:29:43:ea:87:c1:be:80:1b:79:aa:
b2:ad:6d:ee:98:8a:52:22:69:f9:a6:fd:d9:a4:b8:
e3:59:9c:87:74:5e:13:e1:51:c0:c3:b6:88:54:bd:
b7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:6C:A1:90:0C:F1:F1:C1:49:C4:04:9D:70:6B:5F:28:53:24:F3:D4
X509v3 Authority Key Identifier:
keyid:25:28:B7:1F:1E:7C:A6:95:31:DD:5D:F2:55:95:13:59:8D:B1:C7:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JSi3Hx58ppUx3V3yVZUTWY2xx_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/30d69e-f0e7-46f3-9759-ed32c5612840/1/tmyhkAzx8cFJxASdcGtfKFMk89Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/30d69e-f0e7-46f3-9759-ed32c5612840/1/JSi3Hx58ppUx3V3yVZUTWY2xx_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.141.67.0/24
IPv6:
2001:67c:2e58::/48
Signature Algorithm: sha256WithRSAEncryption
1d:3a:11:88:f5:d5:a7:5a:c1:25:fb:19:63:af:1e:ac:11:e3:
c6:e7:26:e0:d0:24:ef:6e:d1:ff:7a:10:7b:f7:da:da:f6:1d:
09:54:f4:7a:a2:af:ee:f9:62:b1:85:4b:e5:f2:cd:a6:87:f3:
29:0e:db:2b:d4:f2:98:b2:a3:43:23:ed:d1:27:db:57:0b:14:
7c:3e:b0:2c:05:e0:29:3a:74:b2:c8:83:82:2c:97:3c:fe:4e:
f1:eb:95:3b:2f:dd:cc:da:41:1a:da:06:1a:01:35:48:15:e5:
62:4f:39:ab:d8:e4:31:47:33:53:3b:b2:62:91:4a:31:6b:53:
a0:67:23:eb:c1:6a:01:08:77:8b:e3:c6:70:2f:f6:6e:28:f5:
93:7a:3e:41:ab:77:db:27:81:bc:00:d7:b7:13:9b:33:29:d9:
cc:c4:49:88:1d:24:e2:91:94:d8:20:27:08:03:7a:83:f8:97:
2a:fa:f4:cf:64:5a:06:ae:b9:84:f5:0a:13:fb:c4:6b:65:b6:
0d:47:62:c1:df:55:3b:c2:66:c3:94:c1:cb:6c:ba:09:82:be:
9a:20:2d:fc:e4:cb:9b:e9:8e:ab:f1:a0:8c:b1:f4:62:16:12:
26:66:6b:f6:c8:b5:12:e2:d0:f5:57:b1:81:e4:0a:7c:5e:c6:
a5:62:a0:51
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIECxdbZTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NTI4YjcxZjFlN2NhNjk1MzFkZDVkZjI1NTk1MTM1OThkYjFjN2YzMB4XDTIyMDEw
MTA1NTY0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjY2Y2ExOTAwY2Yx
ZjFjMTQ5YzQwNDlkNzA2YjVmMjg1MzI0ZjNkNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI4V2ifg+X07Qg4xtEaIXe6C1MQp2tgB/VOkFXlpdlA/QnbQ
KBXYuh3l8CuiHERuujWX7iM3CO5n6LqCfbdzo+nZgj+lxZqKtCE6XhXIYLStLR8u
ZvsPaKU9sg9KkLFmSmmAB/8I6/mXPGNZhU5ZVYlde4A4wWMLUX1Vyte1OVIGDOGm
ijOrppSfWjDpAd1ArtVbnbjsRmNoyhelZ0uQnIE1fbd+ERs8cOHIoxqQZpOmmkcq
M2FpQLbxcmp/3rBqqqMEEg9f+R2LM/6zYii4Hw1pYacE/3opQ+qHwb6AG3mqsq1t
7piKUiJp+ab92aS441mch3ReE+FRwMO2iFS9t/sCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBS2bKGQDPHxwUnEBJ1wa18oUyTz1DAfBgNVHSMEGDAWgBQlKLcfHnymlTHd
XfJVlRNZjbHH8zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0pTaTNIeDU4cHBVeDNWM3lWWlVUV1kyeHhfTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGEvMzBkNjllLWYwZTctNDZmMy05NzU5LWVkMzJjNTYxMjg0MC8x
L3RteWhrQXp4OGNGSnhBU2RjR3RmS0ZNazg5US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGEv
MzBkNjllLWYwZTctNDZmMy05NzU5LWVkMzJjNTYxMjg0MC8xL0pTaTNIeDU4cHBV
eDNWM3lWWlVUV1kyeHhfTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAMGNQzAPBAIAAjAJAwcAIAEGfC5Y
MA0GCSqGSIb3DQEBCwUAA4IBAQAdOhGI9dWnWsEl+xljrx6sEePG5ybg0CTvbtH/
ehB799ra9h0JVPR6oq/u+WKxhUvl8s2mh/MpDtsr1PKYsqNDI+3RJ9tXCxR8PrAs
BeApOnSyyIOCLJc8/k7x65U7L93M2kEa2gYaATVIFeViTzmr2OQxRzNTO7JikUox
a1OgZyPrwWoBCHeL48ZwL/ZuKPWTej5Bq3fbJ4G8ANe3E5szKdnMxEmIHSTikZTY
ICcIA3qD+Jcq+vTPZFoGrrmE9QoT+8RrZbYNR2LB31U7wmbDlMHLbLoJgr6aIC38
5Mub6Y6r8aCMsfRiFhImZmv2yLUS4tD1V7GB5Ap8XsalYqBR
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:41 2023 by rpki-client on console-ams.rpki-client.org