Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/89ufk0CRJV4pUliZcrjuL_QMKhE.roa
File: 89ufk0CRJV4pUliZcrjuL_QMKhE.roa (raw, json)
Hash identifier: vOK4U5KN8R6qNO68jAJ2eJDfATIYGGXq5a04E3iAgOc=
Subject key identifier: F3:DB:9F:93:40:91:25:5E:29:52:58:99:72:B8:EE:2F:F4:0C:2A:11
Certificate issuer: /CN=925069a5d764da255954db2ee9d1243de16b9101
Certificate serial: 02D01312
Authority key identifier: 92:50:69:A5:D7:64:DA:25:59:54:DB:2E:E9:D1:24:3D:E1:6B:91:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klBppddk2iVZVNsu6dEkPeFrkQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/89ufk0CRJV4pUliZcrjuL_QMKhE.roa
Signing time: Thu 27 Jan 2022 09:23:17 +0000
ROA not before: Thu 27 Jan 2022 09:23:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3561
IP address blocks: 193.168.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47190802 (0x2d01312)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=925069a5d764da255954db2ee9d1243de16b9101
Validity
Not Before: Jan 27 09:23:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3db9f934091255e2952589972b8ee2ff40c2a11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c2:f4:7f:36:2e:58:a5:75:3b:cd:71:78:f6:
52:2e:c5:06:ef:a6:67:7c:ee:15:8c:a8:89:33:1d:
8e:03:df:c6:fd:ce:a3:01:d8:a1:ed:1f:0f:a9:c9:
92:b1:9c:d9:e7:eb:81:e2:1a:e4:4f:59:f7:70:fd:
ec:40:36:13:6b:5c:e0:d1:e1:60:32:e1:af:99:e4:
65:c5:a8:18:9e:03:ef:96:0f:2a:ca:11:09:f9:a2:
0e:0d:e2:b0:25:2d:b0:82:7c:c3:85:18:0a:58:40:
a3:d6:59:dc:10:0d:b1:fa:1d:4e:34:4b:68:c1:c9:
14:4e:48:08:d6:88:f5:56:bb:21:14:7f:84:e6:e9:
4b:6f:9e:17:99:40:17:da:fa:7d:1a:f7:39:b8:69:
3f:97:b8:83:38:41:42:b1:18:04:07:e1:ce:79:62:
1d:05:32:cb:f8:75:98:6a:a1:a0:3f:14:46:cf:a3:
4a:02:56:80:10:1a:6d:bf:8d:54:55:80:8a:fb:99:
c9:99:37:4c:77:c2:eb:b6:16:4a:f8:a8:1b:4b:eb:
58:10:9f:fb:26:74:a8:93:24:92:3e:fa:2f:f1:cc:
05:26:cb:c0:7b:cc:ed:ee:3d:76:57:fb:63:7a:fa:
4d:ba:74:8e:16:f7:14:49:73:74:61:b6:60:0a:e9:
3f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:DB:9F:93:40:91:25:5E:29:52:58:99:72:B8:EE:2F:F4:0C:2A:11
X509v3 Authority Key Identifier:
keyid:92:50:69:A5:D7:64:DA:25:59:54:DB:2E:E9:D1:24:3D:E1:6B:91:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klBppddk2iVZVNsu6dEkPeFrkQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/89ufk0CRJV4pUliZcrjuL_QMKhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6788f5-4889-4be7-bb19-a9b8de611a96/1/klBppddk2iVZVNsu6dEkPeFrkQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.140.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:77:e9:18:51:c6:e9:29:d6:2d:db:dd:fc:cd:84:fb:b5:13:
97:e7:44:9d:45:21:7e:bf:df:cd:c4:1b:29:8a:b8:e0:78:28:
a4:ad:d1:c5:8b:80:94:cb:9b:e9:19:96:ed:16:4c:26:2e:9e:
22:06:71:80:6c:d8:2f:09:52:09:04:2a:49:cd:50:9c:8f:0f:
7d:e9:3a:bf:e6:47:23:e2:f0:93:8c:10:f7:27:ed:42:80:e4:
ed:fd:12:f5:09:bd:42:1c:51:40:f6:17:14:85:b0:63:42:90:
02:4d:ae:dc:c7:6e:2a:93:0f:0c:a2:58:ff:27:7b:bc:31:27:
fd:9f:d9:97:20:ec:34:d9:3c:2a:73:5a:dc:26:b9:93:e3:29:
eb:04:3b:fc:c5:5e:cc:96:cf:83:73:cc:d8:b7:7c:01:f0:75:
9c:1a:eb:d5:b5:e0:95:51:50:29:55:0b:54:8b:d9:f3:c2:8f:
72:24:58:dd:96:0a:93:4e:f2:32:7e:09:67:3a:b6:8a:18:1b:
41:92:e2:10:76:f6:6a:64:00:a9:be:1c:de:68:d3:91:1e:86:
4d:b1:4e:9d:93:e7:f6:8f:03:28:1e:66:c6:27:55:a2:c5:69:
11:9d:93:57:cb:64:0d:4a:74:7b:28:25:45:2a:25:11:f6:5b:
c9:ba:d2:13
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAtATEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MjUwNjlhNWQ3NjRkYTI1NTk1NGRiMmVlOWQxMjQzZGUxNmI5MTAxMB4XDTIyMDEy
NzA5MjMxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjNkYjlmOTM0MDkx
MjU1ZTI5NTI1ODk5NzJiOGVlMmZmNDBjMmExMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANrC9H82LlildTvNcXj2Ui7FBu+mZ3zuFYyoiTMdjgPfxv3O
owHYoe0fD6nJkrGc2efrgeIa5E9Z93D97EA2E2tc4NHhYDLhr5nkZcWoGJ4D75YP
KsoRCfmiDg3isCUtsIJ8w4UYClhAo9ZZ3BANsfodTjRLaMHJFE5ICNaI9Va7IRR/
hObpS2+eF5lAF9r6fRr3ObhpP5e4gzhBQrEYBAfhznliHQUyy/h1mGqhoD8URs+j
SgJWgBAabb+NVFWAivuZyZk3THfC67YWSvioG0vrWBCf+yZ0qJMkkj76L/HMBSbL
wHvM7e49dlf7Y3r6Tbp0jhb3FElzdGG2YArpP/kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTz25+TQJElXilSWJlyuO4v9AwqETAfBgNVHSMEGDAWgBSSUGml12TaJVlU
2y7p0SQ94WuRATAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2tsQnBwZGRrMmlWWlZOc3U2ZEVrUGVGcmtRRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGUvNjc4OGY1LTQ4ODktNGJlNy1iYjE5LWE5YjhkZTYxMWE5Ni8x
Lzg5dWZrMENSSlY0cFVsaVpjcmp1TF9RTUtoRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGUv
Njc4OGY1LTQ4ODktNGJlNy1iYjE5LWE5YjhkZTYxMWE5Ni8xL2tsQnBwZGRrMmlW
WlZOc3U2ZEVrUGVGcmtRRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsGojDANBgkqhkiG9w0BAQsFAAOC
AQEAs3fpGFHG6SnWLdvd/M2E+7UTl+dEnUUhfr/fzcQbKYq44HgopK3RxYuAlMub
6RmW7RZMJi6eIgZxgGzYLwlSCQQqSc1QnI8Pfek6v+ZHI+Lwk4wQ9yftQoDk7f0S
9Qm9QhxRQPYXFIWwY0KQAk2u3MduKpMPDKJY/yd7vDEn/Z/ZlyDsNNk8KnNa3Ca5
k+Mp6wQ7/MVezJbPg3PM2Ld8AfB1nBrr1bXglVFQKVULVIvZ88KPciRY3ZYKk07y
Mn4JZzq2ihgbQZLiEHb2amQAqb4c3mjTkR6GTbFOnZPn9o8DKB5mxidVosVpEZ2T
V8tkDUp0eyglRSolEfZbybrSEw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:34 2024 by rpki-client on console-fra.rpki-client.org