Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/P-YPYU-MFxlq5BEE9JL3fmJGfSw.roa
File: P-YPYU-MFxlq5BEE9JL3fmJGfSw.roa (raw, json)
Hash identifier: ZHoNsdOiilq8iKaVXt7b5eW8m0zDMYwRDOVCooy57X4=
Subject key identifier: 3F:E6:0F:61:4F:8C:17:19:6A:E4:11:04:F4:92:F7:7E:62:46:7D:2C
Certificate issuer: /CN=41fc55ee2488fb9401c4b668abac54110ebb8092
Certificate serial: 03A91459
Authority key identifier: 41:FC:55:EE:24:88:FB:94:01:C4:B6:68:AB:AC:54:11:0E:BB:80:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QfxV7iSI-5QBxLZoq6xUEQ67gJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/P-YPYU-MFxlq5BEE9JL3fmJGfSw.roa
Signing time: Sat 01 Jan 2022 14:05:53 +0000
ROA not before: Sat 01 Jan 2022 14:05:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198949
IP address blocks: 193.29.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61412441 (0x3a91459)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41fc55ee2488fb9401c4b668abac54110ebb8092
Validity
Not Before: Jan 1 14:05:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fe60f614f8c17196ae41104f492f77e62467d2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:a5:6e:8f:e4:4d:d0:41:3a:11:62:a7:cc:d5:
2c:96:24:16:f7:87:a1:ab:91:f7:c7:a2:9f:ed:87:
2d:19:28:32:00:6e:d6:3c:25:1a:3b:5f:93:77:23:
65:cf:fd:a6:f1:2d:42:65:9b:07:a2:a4:19:1a:ed:
28:b7:67:83:95:5c:49:54:96:c3:96:9f:aa:22:88:
23:b9:79:ee:4f:a6:88:e6:c7:36:c4:97:e5:50:f3:
2c:1e:5c:52:c0:88:b1:30:c7:4a:70:8b:30:ba:b0:
a4:a0:09:eb:a8:66:57:e6:58:e3:2f:f8:23:6c:ef:
cc:15:4d:e0:b7:c3:ae:9c:aa:9f:ee:9e:db:f3:03:
da:2d:1d:8d:c4:73:0b:78:59:88:9f:5e:29:37:b2:
e9:47:c1:9a:0d:c4:45:47:f1:fb:39:06:6c:b1:fa:
32:d7:66:9b:2e:78:84:21:8c:e9:48:d8:1f:30:17:
33:d4:70:09:51:e7:3c:f7:86:f6:0b:44:46:83:83:
31:76:2b:83:a1:e2:05:4f:84:25:a9:ec:e4:0b:40:
96:d4:3f:e8:b9:60:b2:df:4a:30:6e:78:ac:10:4f:
8e:70:0a:7e:d2:d8:16:32:60:13:c6:92:bb:80:69:
4f:ae:78:d6:d8:80:b8:ec:52:f8:d4:5e:07:8e:fb:
ff:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:E6:0F:61:4F:8C:17:19:6A:E4:11:04:F4:92:F7:7E:62:46:7D:2C
X509v3 Authority Key Identifier:
keyid:41:FC:55:EE:24:88:FB:94:01:C4:B6:68:AB:AC:54:11:0E:BB:80:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QfxV7iSI-5QBxLZoq6xUEQ67gJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/P-YPYU-MFxlq5BEE9JL3fmJGfSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/QfxV7iSI-5QBxLZoq6xUEQ67gJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.38.0/24
Signature Algorithm: sha256WithRSAEncryption
37:d5:05:5b:d8:37:9f:83:d3:d4:64:ad:04:6e:1d:a8:89:fe:
17:8e:44:11:61:66:76:da:95:86:7f:59:c8:fa:30:d6:cc:55:
6a:94:09:23:c8:6e:79:48:06:a2:47:d6:a2:71:f3:ea:d8:d9:
e7:c5:30:ee:24:6d:2e:ea:03:89:20:e8:0b:76:e0:b1:21:de:
ca:98:84:0d:bb:9f:25:30:96:46:be:07:1d:1d:ec:d5:56:3d:
fb:f7:52:bc:81:67:4a:4d:06:2a:88:f4:c7:e6:4b:dd:11:83:
fd:01:6a:ed:d1:0e:d4:73:5c:60:4c:01:d1:c1:d0:13:ae:f4:
08:1b:0b:a4:31:a2:b6:94:30:48:d3:30:7c:5b:8d:39:f7:4c:
90:0a:39:d4:bb:77:4b:81:db:6b:c0:ac:09:02:9b:a1:70:0c:
0a:bd:f7:1e:ff:53:45:9a:07:c6:0a:fa:e6:a0:2c:84:a8:16:
ca:c8:0b:56:58:81:6b:85:a4:f1:36:23:5a:c4:d1:f6:30:92:
14:a9:18:85:c6:4a:49:2e:7d:4f:98:1f:de:92:74:c2:ec:2f:
04:c9:20:74:df:0c:3f:73:67:93:29:72:14:bb:b8:fd:a2:87:
c2:70:5d:c4:96:a1:4c:72:20:f9:df:8e:31:17:ee:13:b6:47:
bb:f8:7b:c5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA6kUWTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MWZjNTVlZTI0ODhmYjk0MDFjNGI2NjhhYmFjNTQxMTBlYmI4MDkyMB4XDTIyMDEw
MTE0MDU1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2ZlNjBmNjE0Zjhj
MTcxOTZhZTQxMTA0ZjQ5MmY3N2U2MjQ2N2QyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPKlbo/kTdBBOhFip8zVLJYkFveHoauR98ein+2HLRkoMgBu
1jwlGjtfk3cjZc/9pvEtQmWbB6KkGRrtKLdng5VcSVSWw5afqiKII7l57k+miObH
NsSX5VDzLB5cUsCIsTDHSnCLMLqwpKAJ66hmV+ZY4y/4I2zvzBVN4LfDrpyqn+6e
2/MD2i0djcRzC3hZiJ9eKTey6UfBmg3ERUfx+zkGbLH6Mtdmmy54hCGM6UjYHzAX
M9RwCVHnPPeG9gtERoODMXYrg6HiBU+EJans5AtAltQ/6Llgst9KMG54rBBPjnAK
ftLYFjJgE8aSu4BpT6541tiAuOxS+NReB477/4MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ/5g9hT4wXGWrkEQT0kvd+YkZ9LDAfBgNVHSMEGDAWgBRB/FXuJIj7lAHE
tmirrFQRDruAkjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FmeFY3aVNJLTVRQnhMWm9xNnhVRVE2N2dKSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGYvYWEzNjYxLWRlYjMtNDVhNC04NjkzLTM4ODFhOGI4MjdhYy8x
L1AtWVBZVS1NRnhscTVCRUU5SkwzZm1KR2ZTdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGYv
YWEzNjYxLWRlYjMtNDVhNC04NjkzLTM4ODFhOGI4MjdhYy8xL1FmeFY3aVNJLTVR
QnhMWm9xNnhVRVE2N2dKSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEdJjANBgkqhkiG9w0BAQsFAAOC
AQEAN9UFW9g3n4PT1GStBG4dqIn+F45EEWFmdtqVhn9ZyPow1sxVapQJI8hueUgG
okfWonHz6tjZ58Uw7iRtLuoDiSDoC3bgsSHeypiEDbufJTCWRr4HHR3s1VY9+/dS
vIFnSk0GKoj0x+ZL3RGD/QFq7dEO1HNcYEwB0cHQE670CBsLpDGitpQwSNMwfFuN
OfdMkAo51Lt3S4Hba8CsCQKboXAMCr33Hv9TRZoHxgr65qAshKgWysgLVliBa4Wk
8TYjWsTR9jCSFKkYhcZKSS59T5gf3pJ0wuwvBMkgdN8MP3NnkylyFLu4/aKHwnBd
xJahTHIg+d+OMRfuE7ZHu/h7xQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:58 2023 by rpki-client on console-ams.rpki-client.org