Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/41fe1b-2f0e-4faa-9fd4-ca746867dac8/1/_xNL7ThlQC4iRh0WXsY9pX8WLYA.roa
File: _xNL7ThlQC4iRh0WXsY9pX8WLYA.roa (raw, json)
Hash identifier: xzl2htkgWvB5dGfIaLyV/R8U+iYmiIsove0MALK/0hA=
Subject key identifier: FF:13:4B:ED:38:65:40:2E:22:46:1D:16:5E:C6:3D:A5:7F:16:2D:80
Certificate issuer: /CN=97aaf892b8991e8c02779cb2db864d321eebe905
Certificate serial: D8DE
Authority key identifier: 97:AA:F8:92:B8:99:1E:8C:02:77:9C:B2:DB:86:4D:32:1E:EB:E9:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l6r4kriZHowCd5yy24ZNMh7r6QU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/41fe1b-2f0e-4faa-9fd4-ca746867dac8/1/_xNL7ThlQC4iRh0WXsY9pX8WLYA.roa
Signing time: Thu 28 Apr 2022 12:28:11 +0000
ROA not before: Thu 28 Apr 2022 12:28:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 193.135.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55518 (0xd8de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97aaf892b8991e8c02779cb2db864d321eebe905
Validity
Not Before: Apr 28 12:28:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff134bed3865402e22461d165ec63da57f162d80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:73:5a:72:aa:74:aa:6b:2e:0a:1f:f1:ad:fd:
e6:17:d6:d2:fa:f0:d7:7b:e3:ee:e9:73:cd:a6:8e:
e6:c8:74:06:b6:c3:29:fb:a3:3e:c8:99:8d:18:4c:
b0:a7:06:da:15:b2:f4:7f:d2:a7:5c:8a:7c:1e:9c:
37:73:67:80:95:9e:06:dc:75:9c:8c:f0:f1:bf:10:
4b:12:4a:1d:bd:13:1a:45:7a:9a:c9:a6:83:b6:71:
66:c6:89:2d:9c:11:ca:3f:0a:9b:ad:c8:d1:bd:37:
16:85:45:63:62:5a:47:96:4c:a3:0d:a4:3a:4c:8c:
c0:12:7a:35:ee:ca:b4:4b:98:ea:fa:a2:a8:db:8c:
de:a0:80:47:ef:5e:25:ee:4f:24:93:4c:6a:b3:a5:
46:5c:d0:bb:2f:f6:e0:9f:4c:b6:ee:ce:bc:83:08:
ea:c9:26:08:d9:ac:d8:ea:9b:37:fa:a2:ec:8a:be:
60:b4:20:9b:8a:21:9c:8e:3b:aa:b8:de:aa:dd:92:
b3:72:66:8d:71:6a:37:ec:55:b7:b6:20:2d:8d:6e:
c1:1c:37:a0:16:8d:63:ef:14:78:eb:25:c7:f7:e4:
5b:22:2e:87:c7:96:3a:96:90:94:b4:cd:ec:52:29:
3e:62:8b:01:85:ba:d1:67:96:e8:77:8a:f9:a6:3a:
fa:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:13:4B:ED:38:65:40:2E:22:46:1D:16:5E:C6:3D:A5:7F:16:2D:80
X509v3 Authority Key Identifier:
keyid:97:AA:F8:92:B8:99:1E:8C:02:77:9C:B2:DB:86:4D:32:1E:EB:E9:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l6r4kriZHowCd5yy24ZNMh7r6QU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/41fe1b-2f0e-4faa-9fd4-ca746867dac8/1/_xNL7ThlQC4iRh0WXsY9pX8WLYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/41fe1b-2f0e-4faa-9fd4-ca746867dac8/1/l6r4kriZHowCd5yy24ZNMh7r6QU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.219.0/24
Signature Algorithm: sha256WithRSAEncryption
39:cc:4f:99:f3:e6:3b:81:51:4e:47:05:9e:eb:49:ef:48:90:
fd:21:71:a0:63:ec:54:50:cb:c7:1b:9c:b8:a0:4a:ba:9c:ba:
86:5f:9f:61:b0:8e:0e:e8:be:52:20:69:0f:f6:4c:66:67:c3:
23:e6:f5:68:42:12:b5:fa:b0:64:52:be:88:e5:8b:75:84:0c:
58:c4:d9:94:bb:13:eb:80:91:9b:d1:00:f3:49:9f:ac:dc:b6:
83:6f:51:c2:cf:ac:4d:46:a7:17:e8:f2:ac:8c:ae:4f:d6:df:
00:e9:ec:33:25:75:a9:67:2a:45:46:18:17:79:bc:52:ff:02:
d5:99:fd:1a:2b:2c:75:ff:c9:da:c5:08:67:a4:1b:fe:7f:49:
70:fb:eb:a3:57:29:4b:f9:17:57:ad:d6:25:9e:8e:32:7f:23:
11:60:ae:70:b2:71:84:00:88:5d:55:75:e5:2a:1c:0d:aa:3a:
9e:af:22:a4:40:c1:e1:e7:e7:55:25:89:52:26:c9:2b:8e:d6:
92:22:13:4f:41:80:05:44:21:21:ec:2e:ca:45:df:c1:3a:4d:
ee:52:12:cd:ad:f3:b2:50:bc:ad:cc:8e:f9:38:80:07:a4:2e:
56:4f:f1:0f:45:4c:79:67:fc:fd:1c:46:a3:43:1e:bd:58:8e:
e3:3b:25:3b
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDANjeMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDk3
YWFmODkyYjg5OTFlOGMwMjc3OWNiMmRiODY0ZDMyMWVlYmU5MDUwHhcNMjIwNDI4
MTIyODExWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhmZjEzNGJlZDM4NjU0
MDJlMjI0NjFkMTY1ZWM2M2RhNTdmMTYyZDgwMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA7HNacqp0qmsuCh/xrf3mF9bS+vDXe+Pu6XPNpo7myHQGtsMp
+6M+yJmNGEywpwbaFbL0f9KnXIp8Hpw3c2eAlZ4G3HWcjPDxvxBLEkodvRMaRXqa
yaaDtnFmxoktnBHKPwqbrcjRvTcWhUVjYlpHlkyjDaQ6TIzAEno17sq0S5jq+qKo
24zeoIBH714l7k8kk0xqs6VGXNC7L/bgn0y27s68gwjqySYI2azY6ps3+qLsir5g
tCCbiiGcjjuquN6q3ZKzcmaNcWo37FW3tiAtjW7BHDegFo1j7xR46yXH9+RbIi6H
x5Y6lpCUtM3sUik+YosBhbrRZ5bod4r5pjr6VwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFP8TS+04ZUAuIkYdFl7GPaV/Fi2AMB8GA1UdIwQYMBaAFJeq+JK4mR6MAnec
stuGTTIe6+kFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
bDZyNGtyaVpIb3dDZDV5eTI0Wk5NaDdyNlFVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9lMC80MWZlMWItMmYwZS00ZmFhLTlmZDQtY2E3NDY4NjdkYWM4LzEv
X3hOTDdUaGxRQzRpUmgwV1hzWTlwWDhXTFlBLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC80
MWZlMWItMmYwZS00ZmFhLTlmZDQtY2E3NDY4NjdkYWM4LzEvbDZyNGtyaVpIb3dD
ZDV5eTI0Wk5NaDdyNlFVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwYfbMA0GCSqGSIb3DQEBCwUAA4IB
AQA5zE+Z8+Y7gVFORwWe60nvSJD9IXGgY+xUUMvHG5y4oEq6nLqGX59hsI4O6L5S
IGkP9kxmZ8Mj5vVoQhK1+rBkUr6I5Yt1hAxYxNmUuxPrgJGb0QDzSZ+s3LaDb1HC
z6xNRqcX6PKsjK5P1t8A6ewzJXWpZypFRhgXebxS/wLVmf0aKyx1/8naxQhnpBv+
f0lw++ujVylL+RdXrdYlno4yfyMRYK5wsnGEAIhdVXXlKhwNqjqeryKkQMHh5+dV
JYlSJskrjtaSIhNPQYAFRCEh7C7KRd/BOk3uUhLNrfOyULytzI75OIAHpC5WT/EP
RUx5Z/z9HEajQx69WI7jOyU7
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:38 2024 by rpki-client on console-ams.rpki-client.org