Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/8e43fa-e91f-4818-b83f-17a1f86c6804/1/Ov5SqTkB-iJty8-L2b7pUesIhEU.roa
File: Ov5SqTkB-iJty8-L2b7pUesIhEU.roa (raw, json)
Hash identifier: YC027BeYKRIZx4RZ7KYK0d9z5BtAp6p58xKqHQzO8kc=
Subject key identifier: 3A:FE:52:A9:39:01:FA:22:6D:CB:CF:8B:D9:BE:E9:51:EB:08:84:45
Certificate issuer: /CN=edaf0ed1e3091e7b5c99ce43cac1031055b0f385
Certificate serial: 06DF53E7
Authority key identifier: ED:AF:0E:D1:E3:09:1E:7B:5C:99:CE:43:CA:C1:03:10:55:B0:F3:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7a8O0eMJHntcmc5DysEDEFWw84U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/8e43fa-e91f-4818-b83f-17a1f86c6804/1/Ov5SqTkB-iJty8-L2b7pUesIhEU.roa
Signing time: Sat 01 Jan 2022 04:03:30 +0000
ROA not before: Sat 01 Jan 2022 04:03:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3212
IP address blocks: 193.9.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115299303 (0x6df53e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edaf0ed1e3091e7b5c99ce43cac1031055b0f385
Validity
Not Before: Jan 1 04:03:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3afe52a93901fa226dcbcf8bd9bee951eb088445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:2f:58:e8:64:2a:71:24:83:f1:14:59:57:08:
7f:2f:cf:5d:d3:61:83:20:f9:6b:72:b9:45:e9:61:
9c:e2:aa:40:64:21:c1:f4:21:c1:95:b0:0e:06:51:
59:ca:30:eb:a3:d5:c9:1f:cd:03:e9:99:d7:9f:15:
c1:6e:ff:69:cc:1b:97:bc:46:7e:12:61:36:56:da:
c1:90:14:ba:9f:5a:c6:36:da:c6:cb:a6:ac:36:6f:
8d:da:48:68:f4:83:d1:8a:13:42:b2:48:fd:b4:63:
c6:0a:61:49:5b:df:27:13:e5:14:f4:a8:c6:fc:7a:
7d:5f:b5:df:06:7f:e9:a4:9d:56:7d:33:f6:e9:72:
d4:36:02:78:cb:99:88:5a:c5:f6:5a:2a:25:ed:67:
24:ed:90:42:ce:7b:4e:9d:16:87:4c:ff:28:c1:73:
36:3e:a0:59:e4:8e:f4:b7:28:b1:b9:8f:8b:41:3a:
92:aa:6b:70:e9:68:94:f3:35:fa:94:08:d2:50:32:
aa:64:fd:c0:45:83:77:41:8a:4d:bb:8a:99:23:8f:
e0:c3:30:f6:c3:3e:23:25:e8:0d:b8:c6:68:50:dd:
01:9f:b0:af:8b:09:93:9e:7c:01:85:f9:90:a5:9f:
74:b5:3e:98:a2:3b:0e:a0:ae:01:23:60:89:d5:c2:
42:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:FE:52:A9:39:01:FA:22:6D:CB:CF:8B:D9:BE:E9:51:EB:08:84:45
X509v3 Authority Key Identifier:
keyid:ED:AF:0E:D1:E3:09:1E:7B:5C:99:CE:43:CA:C1:03:10:55:B0:F3:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a8O0eMJHntcmc5DysEDEFWw84U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/8e43fa-e91f-4818-b83f-17a1f86c6804/1/Ov5SqTkB-iJty8-L2b7pUesIhEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/8e43fa-e91f-4818-b83f-17a1f86c6804/1/7a8O0eMJHntcmc5DysEDEFWw84U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.19.0/24
Signature Algorithm: sha256WithRSAEncryption
74:ce:b2:29:94:1c:91:35:25:4d:1b:f7:23:34:fd:48:d6:f1:
4a:91:5f:1a:62:e9:47:94:f4:ed:43:75:2a:76:c0:17:20:cc:
b8:02:de:89:c4:bd:a4:f4:b7:0e:38:c3:a3:6e:9c:ac:b2:e3:
31:57:01:ed:54:53:41:7c:bb:18:83:51:1d:33:76:46:2d:c9:
b4:04:6a:d7:a1:c9:28:0f:00:1a:62:8d:57:51:4e:ca:d9:4c:
b5:1f:eb:e0:d1:a5:d6:fc:98:ad:76:fe:9b:0e:1d:b8:ac:83:
f1:bd:8b:67:f4:d7:d8:89:55:28:5c:6b:f0:93:6d:06:1c:51:
2d:4b:23:4d:b8:64:82:b3:fe:1f:0f:4b:9e:0c:d6:15:e7:8a:
c5:28:ad:d9:b5:af:60:f3:39:6b:5b:9b:8f:82:2b:81:3b:ba:
e0:06:47:ed:2d:89:5d:48:e0:e0:44:13:51:bc:50:b9:6e:70:
a7:cd:5f:ae:92:67:83:30:84:f9:28:79:d5:40:a6:6f:63:a4:
15:a1:7a:78:29:4e:15:70:f9:79:ef:1c:fc:a1:cf:67:bd:e4:
19:ae:e6:cb:c7:d3:c3:90:12:3b:2c:55:25:af:49:a4:55:43:
43:a1:63:22:7c:ff:c6:e6:80:75:dd:40:b3:70:e2:8b:7c:65:
18:24:24:bb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBt9T5zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ZGFmMGVkMWUzMDkxZTdiNWM5OWNlNDNjYWMxMDMxMDU1YjBmMzg1MB4XDTIyMDEw
MTA0MDMzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2FmZTUyYTkzOTAx
ZmEyMjZkY2JjZjhiZDliZWU5NTFlYjA4ODQ0NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANovWOhkKnEkg/EUWVcIfy/PXdNhgyD5a3K5RelhnOKqQGQh
wfQhwZWwDgZRWcow66PVyR/NA+mZ158VwW7/acwbl7xGfhJhNlbawZAUup9axjba
xsumrDZvjdpIaPSD0YoTQrJI/bRjxgphSVvfJxPlFPSoxvx6fV+13wZ/6aSdVn0z
9uly1DYCeMuZiFrF9loqJe1nJO2QQs57Tp0Wh0z/KMFzNj6gWeSO9LcosbmPi0E6
kqprcOlolPM1+pQI0lAyqmT9wEWDd0GKTbuKmSOP4MMw9sM+IyXoDbjGaFDdAZ+w
r4sJk558AYX5kKWfdLU+mKI7DqCuASNgidXCQp8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ6/lKpOQH6Im3Lz4vZvulR6wiERTAfBgNVHSMEGDAWgBTtrw7R4wkee1yZ
zkPKwQMQVbDzhTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzdhOE8wZU1KSG50Y21jNUR5c0VERUZXdzg0VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTIvOGU0M2ZhLWU5MWYtNDgxOC1iODNmLTE3YTFmODZjNjgwNC8x
L092NVNxVGtCLWlKdHk4LUwyYjdwVWVzSWhFVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTIv
OGU0M2ZhLWU5MWYtNDgxOC1iODNmLTE3YTFmODZjNjgwNC8xLzdhOE8wZU1KSG50
Y21jNUR5c0VERUZXdzg0VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEJEzANBgkqhkiG9w0BAQsFAAOC
AQEAdM6yKZQckTUlTRv3IzT9SNbxSpFfGmLpR5T07UN1KnbAFyDMuALeicS9pPS3
DjjDo26crLLjMVcB7VRTQXy7GINRHTN2Ri3JtARq16HJKA8AGmKNV1FOytlMtR/r
4NGl1vyYrXb+mw4duKyD8b2LZ/TX2IlVKFxr8JNtBhxRLUsjTbhkgrP+Hw9LngzW
FeeKxSit2bWvYPM5a1ubj4IrgTu64AZH7S2JXUjg4EQTUbxQuW5wp81frpJngzCE
+Sh51UCmb2OkFaF6eClOFXD5ee8c/KHPZ73kGa7my8fTw5ASOyxVJa9JpFVDQ6Fj
Inz/xuaAdd1As3Dii3xlGCQkuw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:15 2023 by rpki-client on console-ams.rpki-client.org