Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/67dd9a-37e1-4285-95da-f288d2097a30/1/_b1Hjs98oLsVRgwdrU2zoO1P7es.roa
File: _b1Hjs98oLsVRgwdrU2zoO1P7es.roa (raw, json)
Hash identifier: BW4lZ2UXc6goazoFCOQRqz4txbHEqOUfVBgXPa/0Xxk=
Subject key identifier: FD:BD:47:8E:CF:7C:A0:BB:15:46:0C:1D:AD:4D:B3:A0:ED:4F:ED:EB
Certificate issuer: /CN=78ff9a330d53d621234a6d1498ce5a43303e9ef9
Certificate serial: 01823B016431FEFA49A4D375DBE656ECEFBD
Authority key identifier: 78:FF:9A:33:0D:53:D6:21:23:4A:6D:14:98:CE:5A:43:30:3E:9E:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eP-aMw1T1iEjSm0UmM5aQzA-nvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/67dd9a-37e1-4285-95da-f288d2097a30/1/_b1Hjs98oLsVRgwdrU2zoO1P7es.roa
Signing time: Tue 26 Jul 2022 14:55:23 +0000
ROA not before: Tue 26 Jul 2022 14:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15987
IP address blocks: 193.29.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3b:01:64:31:fe:fa:49:a4:d3:75:db:e6:56:ec:ef:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78ff9a330d53d621234a6d1498ce5a43303e9ef9
Validity
Not Before: Jul 26 14:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdbd478ecf7ca0bb15460c1dad4db3a0ed4fedeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c6:bf:fb:c4:21:b0:fa:dc:97:c9:a8:e4:1c:
0f:b5:10:49:d0:34:ab:d4:c2:36:1e:ec:f6:6d:c3:
65:de:5c:2f:04:fe:0d:86:1f:10:14:79:a3:3b:3d:
98:fa:9d:43:31:a1:2e:b8:e7:cb:e3:3a:9d:fa:d9:
29:11:7e:61:a8:e2:7b:f0:7e:65:0c:ab:ed:37:d9:
d4:a7:af:6b:d2:75:ed:4e:b3:5c:be:e2:ba:5a:8a:
59:d3:45:5f:98:05:8f:8b:ff:31:08:64:a2:4e:4f:
aa:8a:10:9d:a8:e4:76:a7:0e:9f:e2:0c:90:18:2d:
12:07:aa:b0:b3:fb:0c:03:ad:07:81:ab:5b:7a:52:
b3:b2:95:04:3f:f3:09:3e:48:b8:12:5c:95:58:ed:
9a:d8:8f:5b:01:20:fd:23:4a:3a:cc:9b:da:a4:77:
76:1a:e7:61:24:b9:34:e7:7a:69:fe:64:cb:76:ff:
25:27:cc:52:62:79:b2:9e:33:78:4d:91:4a:62:5a:
6b:25:39:13:a6:22:b8:64:7a:6b:ad:6d:39:df:c8:
fa:a1:eb:7c:84:d4:61:b7:36:fa:5e:ae:8e:cf:6d:
83:32:99:4e:70:d2:65:e1:5c:64:63:b8:65:05:a2:
b5:1e:c8:aa:01:25:3b:27:2c:91:6e:c4:91:e9:f3:
c4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:BD:47:8E:CF:7C:A0:BB:15:46:0C:1D:AD:4D:B3:A0:ED:4F:ED:EB
X509v3 Authority Key Identifier:
keyid:78:FF:9A:33:0D:53:D6:21:23:4A:6D:14:98:CE:5A:43:30:3E:9E:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eP-aMw1T1iEjSm0UmM5aQzA-nvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/67dd9a-37e1-4285-95da-f288d2097a30/1/_b1Hjs98oLsVRgwdrU2zoO1P7es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/67dd9a-37e1-4285-95da-f288d2097a30/1/eP-aMw1T1iEjSm0UmM5aQzA-nvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.25.0/24
Signature Algorithm: sha256WithRSAEncryption
00:bb:b4:64:26:2f:1a:ef:5b:15:9e:cd:a7:e4:87:1b:76:af:
54:07:14:ec:ba:13:12:23:63:23:94:8f:0c:bb:11:3d:57:aa:
8a:72:f9:c2:cb:1c:63:b4:fe:10:06:9b:e8:15:52:d7:58:2a:
c4:d9:a8:68:63:d9:da:33:19:85:30:61:45:44:04:fa:30:65:
ac:77:3d:cb:0a:d0:8f:c1:7a:62:af:d0:ce:e3:a2:d7:8f:aa:
97:71:be:21:02:60:fa:72:3f:18:80:0b:a4:c5:cb:8c:6a:5e:
4b:fd:34:d5:8d:41:e5:7b:98:cb:99:25:db:04:85:d6:b4:4d:
0d:7a:7f:7d:42:28:99:55:cc:ee:53:fe:83:5d:e9:dd:48:64:
6b:5c:32:5d:a9:7f:17:ee:a3:49:20:68:af:fd:0a:96:79:29:
81:44:8e:97:5c:e2:1d:df:b8:3d:6d:71:ba:c0:8c:10:74:04:
51:0b:3a:92:c7:9f:28:e4:23:cf:f6:b0:a4:e5:52:7a:5c:3a:
c7:97:8b:22:d0:a2:10:b7:9f:e4:17:e6:cc:8b:55:90:e8:4d:
31:84:16:f1:0f:97:2a:85:52:85:b5:42:cc:ac:de:a1:60:02:
6e:9f:11:62:80:de:0b:90:84:56:a1:67:8c:e6:75:42:43:28:
65:d2:79:22
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYI7AWQx/vpJpNN12+ZW7O+9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4ZmY5YTMzMGQ1M2Q2MjEyMzRhNmQxNDk4Y2U1YTQzMzAz
ZTllZjkwHhcNMjIwNzI2MTQ1NTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZGJkNDc4ZWNmN2NhMGJiMTU0NjBjMWRhZDRkYjNhMGVkNGZlZGViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8a/+8QhsPrcl8mo5BwPtRBJ0DSr
1MI2Huz2bcNl3lwvBP4Nhh8QFHmjOz2Y+p1DMaEuuOfL4zqd+tkpEX5hqOJ78H5l
DKvtN9nUp69r0nXtTrNcvuK6WopZ00VfmAWPi/8xCGSiTk+qihCdqOR2pw6f4gyQ
GC0SB6qws/sMA60HgatbelKzspUEP/MJPki4ElyVWO2a2I9bASD9I0o6zJvapHd2
GudhJLk053pp/mTLdv8lJ8xSYnmynjN4TZFKYlprJTkTpiK4ZHprrW0538j6oet8
hNRhtzb6Xq6Oz22DMplOcNJl4VxkY7hlBaK1HsiqASU7JyyRbsSR6fPE4QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP29R47PfKC7FUYMHa1Ns6DtT+3rMB8GA1UdIwQY
MBaAFHj/mjMNU9YhI0ptFJjOWkMwPp75MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVAtYU13MVQxaUVqU20wVW1NNWFRekEtbnZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS82N2RkOWEtMzdlMS00Mjg1LTk1ZGEt
ZjI4OGQyMDk3YTMwLzEvX2IxSGpzOThvTHNWUmd3ZHJVMnpvTzFQN2VzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS82N2RkOWEtMzdlMS00Mjg1LTk1ZGEtZjI4OGQyMDk3YTMw
LzEvZVAtYU13MVQxaUVqU20wVW1NNWFRekEtbnZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwR0ZMA0G
CSqGSIb3DQEBCwUAA4IBAQAAu7RkJi8a71sVns2n5Icbdq9UBxTsuhMSI2MjlI8M
uxE9V6qKcvnCyxxjtP4QBpvoFVLXWCrE2ahoY9naMxmFMGFFRAT6MGWsdz3LCtCP
wXpir9DO46LXj6qXcb4hAmD6cj8YgAukxcuMal5L/TTVjUHle5jLmSXbBIXWtE0N
en99QiiZVczuU/6DXendSGRrXDJdqX8X7qNJIGiv/QqWeSmBRI6XXOId37g9bXG6
wIwQdARRCzqSx58o5CPP9rCk5VJ6XDrHl4si0KIQt5/kF+bMi1WQ6E0xhBbxD5cq
hVKFtULMrN6hYAJunxFigN4LkIRWoWeM5nVCQyhl0nki
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:39 2024 by rpki-client on console-ams.rpki-client.org