Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/1d2823-3474-4d85-95e9-acf093226b07/1/23zCC9eODRZtV2XADB5DpuaSGk8.roa
File: 23zCC9eODRZtV2XADB5DpuaSGk8.roa (raw, json)
Hash identifier: 07CI8X39y23ZWr0+TQqdCsLzedi6WKt6q+tM0AKK01M=
Subject key identifier: DB:7C:C2:0B:D7:8E:0D:16:6D:57:65:C0:0C:1E:43:A6:E6:92:1A:4F
Certificate issuer: /CN=fc9a7b7a2c28a0b3c0e0a588c3c892e52a59f0e6
Certificate serial: 0F0F4CD2
Authority key identifier: FC:9A:7B:7A:2C:28:A0:B3:C0:E0:A5:88:C3:C8:92:E5:2A:59:F0:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Jp7eiwooLPA4KWIw8iS5SpZ8OY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/1d2823-3474-4d85-95e9-acf093226b07/1/23zCC9eODRZtV2XADB5DpuaSGk8.roa
Signing time: Sat 01 Jan 2022 04:51:44 +0000
ROA not before: Sat 01 Jan 2022 04:51:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26125
IP address blocks: 193.27.47.0/24 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 252660946 (0xf0f4cd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc9a7b7a2c28a0b3c0e0a588c3c892e52a59f0e6
Validity
Not Before: Jan 1 04:51:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db7cc20bd78e0d166d5765c00c1e43a6e6921a4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7c:08:d3:ad:8e:f2:3e:13:4b:93:3b:90:ab:
11:cf:04:b0:66:3e:45:74:b2:ef:ff:cd:0f:11:db:
3d:22:65:54:59:4f:5c:8b:05:ba:b6:2a:37:ec:67:
77:7a:cf:f3:54:1a:9e:4f:48:51:31:35:72:91:ea:
6b:7d:99:a2:1f:6b:ba:f9:39:de:dc:f5:6b:e3:d2:
83:d5:51:73:47:71:6c:10:f8:ef:cc:7d:ef:2c:6e:
b6:97:26:09:c5:f5:b8:41:d1:83:29:b2:8b:db:cf:
a8:fa:c8:72:3c:62:72:c7:cf:30:7e:01:52:d4:9d:
03:18:74:10:5d:32:40:84:6f:9d:e2:3a:66:b3:b8:
54:54:ef:eb:2e:91:0b:86:3b:e2:d8:45:04:17:64:
c7:26:34:7e:25:cd:1d:cb:45:90:d5:f0:e3:23:d1:
ac:11:11:b6:01:4f:22:de:9e:ac:7e:e7:84:bd:55:
e5:7b:d9:8a:2f:11:de:6a:4f:47:44:2a:9c:61:9b:
f8:38:eb:af:95:ef:d1:90:59:7b:08:1e:fd:10:ef:
e7:18:a2:8d:c2:9e:fe:e2:a3:71:2f:41:78:a3:de:
ba:e6:40:22:d2:fa:81:54:08:76:45:e2:4e:23:e2:
94:09:26:ff:f0:ec:df:4e:c6:75:df:01:32:4c:e7:
ae:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:7C:C2:0B:D7:8E:0D:16:6D:57:65:C0:0C:1E:43:A6:E6:92:1A:4F
X509v3 Authority Key Identifier:
keyid:FC:9A:7B:7A:2C:28:A0:B3:C0:E0:A5:88:C3:C8:92:E5:2A:59:F0:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Jp7eiwooLPA4KWIw8iS5SpZ8OY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/1d2823-3474-4d85-95e9-acf093226b07/1/23zCC9eODRZtV2XADB5DpuaSGk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/1d2823-3474-4d85-95e9-acf093226b07/1/_Jp7eiwooLPA4KWIw8iS5SpZ8OY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.27.47.0/24
Signature Algorithm: sha256WithRSAEncryption
42:06:f4:c8:cb:22:9f:63:da:3b:f5:b7:1f:40:4a:c9:64:c4:
ed:b2:d3:f3:f0:d1:63:5b:4f:26:15:22:9d:59:ba:1e:69:d4:
3d:ae:56:bf:cc:a0:7e:d0:e9:7d:97:f2:29:ae:14:fc:4b:c2:
0f:19:6e:c5:2c:3f:c0:9a:40:b3:a0:9a:c6:01:46:57:59:46:
7f:0b:b6:81:b4:15:e2:d7:53:38:91:2c:cd:e0:fe:45:a0:f4:
1a:26:07:da:cf:13:cf:e6:d6:0c:68:1f:76:ac:a4:66:b5:fa:
e0:bc:75:10:f9:31:ec:f9:6a:e3:11:44:3d:d0:96:d8:2f:08:
9b:72:be:d1:8f:47:99:70:da:ca:54:f6:d0:8a:cc:25:55:75:
82:23:38:09:93:ac:cf:a8:88:76:e5:0a:1a:6d:6f:a1:fd:ee:
dd:f4:c2:c2:d3:63:3b:7e:81:63:ca:6a:ee:c4:19:df:32:e4:
cb:55:bf:22:f5:29:7e:d0:7d:87:f0:a1:d0:88:78:61:7d:e5:
c9:05:47:53:eb:ab:10:6f:35:02:3d:a0:5a:31:02:e8:fc:25:
f8:3c:b1:4b:de:a5:c2:f4:4e:47:1d:cf:ec:d6:62:03:4e:60:
1e:27:59:ff:de:79:40:a7:12:92:25:ca:91:9f:c6:79:b7:f2:
85:c6:47:e1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDw9M0jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YzlhN2I3YTJjMjhhMGIzYzBlMGE1ODhjM2M4OTJlNTJhNTlmMGU2MB4XDTIyMDEw
MTA0NTE0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGI3Y2MyMGJkNzhl
MGQxNjZkNTc2NWMwMGMxZTQzYTZlNjkyMWE0ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKl8CNOtjvI+E0uTO5CrEc8EsGY+RXSy7//NDxHbPSJlVFlP
XIsFurYqN+xnd3rP81Qank9IUTE1cpHqa32Zoh9ruvk53tz1a+PSg9VRc0dxbBD4
78x97yxutpcmCcX1uEHRgymyi9vPqPrIcjxicsfPMH4BUtSdAxh0EF0yQIRvneI6
ZrO4VFTv6y6RC4Y74thFBBdkxyY0fiXNHctFkNXw4yPRrBERtgFPIt6erH7nhL1V
5XvZii8R3mpPR0QqnGGb+Djrr5Xv0ZBZewge/RDv5xiijcKe/uKjcS9BeKPeuuZA
ItL6gVQIdkXiTiPilAkm//Ds307Gdd8BMkznro0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTbfMIL144NFm1XZcAMHkOm5pIaTzAfBgNVHSMEGDAWgBT8mnt6LCigs8Dg
pYjDyJLlKlnw5jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19KcDdlaXdvb0xQQTRLV0l3OGlTNVNwWjhPWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTUvMWQyODIzLTM0NzQtNGQ4NS05NWU5LWFjZjA5MzIyNmIwNy8x
LzIzekNDOWVPRFJadFYyWEFEQjVEcHVhU0drOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTUv
MWQyODIzLTM0NzQtNGQ4NS05NWU5LWFjZjA5MzIyNmIwNy8xL19KcDdlaXdvb0xQ
QTRLV0l3OGlTNVNwWjhPWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEbLzANBgkqhkiG9w0BAQsFAAOC
AQEAQgb0yMsin2PaO/W3H0BKyWTE7bLT8/DRY1tPJhUinVm6HmnUPa5Wv8ygftDp
fZfyKa4U/EvCDxluxSw/wJpAs6CaxgFGV1lGfwu2gbQV4tdTOJEszeD+RaD0GiYH
2s8Tz+bWDGgfdqykZrX64Lx1EPkx7Plq4xFEPdCW2C8Im3K+0Y9HmXDaylT20IrM
JVV1giM4CZOsz6iIduUKGm1vof3u3fTCwtNjO36BY8pq7sQZ3zLky1W/IvUpftB9
h/Ch0Ih4YX3lyQVHU+urEG81Aj2gWjEC6Pwl+DyxS96lwvRORx3P7NZiA05gHidZ
/955QKcSkiXKkZ/GebfyhcZH4Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:31 2024 by rpki-client on console-fra.rpki-client.org