Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/c0Z4IpKfWb8qoo_AN8kHw3MZW90.roa
File: c0Z4IpKfWb8qoo_AN8kHw3MZW90.roa (raw, json)
Hash identifier: 66rwMboaT5g8gLZfaFp4G2TANy1nNnlb520HwvbpB0Q=
Subject key identifier: 73:46:78:22:92:9F:59:BF:2A:A2:8F:C0:37:C9:07:C3:73:19:5B:DD
Certificate issuer: /CN=89693344638acb0536582fab089876578ef6bc56
Certificate serial: 12574626
Authority key identifier: 89:69:33:44:63:8A:CB:05:36:58:2F:AB:08:98:76:57:8E:F6:BC:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/c0Z4IpKfWb8qoo_AN8kHw3MZW90.roa
Signing time: Sat 01 Jan 2022 15:02:12 +0000
ROA not before: Sat 01 Jan 2022 15:02:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48890
IP address blocks: 193.23.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 307709478 (0x12574626)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89693344638acb0536582fab089876578ef6bc56
Validity
Not Before: Jan 1 15:02:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73467822929f59bf2aa28fc037c907c373195bdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:86:0d:58:3c:d5:a0:0d:b9:a9:3b:6c:2f:8a:
b6:e8:a1:5f:84:19:38:ea:1d:02:0d:5b:f8:8a:97:
fd:a7:1b:fa:82:23:c1:19:f9:5b:0c:b8:62:68:81:
ba:65:aa:7f:3e:27:d6:74:77:04:1c:6c:a8:24:86:
66:16:ec:83:5e:be:fe:ad:1b:6b:2a:4e:f9:d5:b0:
e3:dd:df:49:c6:27:c2:14:34:05:c7:f1:27:f7:4a:
30:c9:39:77:7f:fa:97:b2:18:e4:90:88:f9:ee:60:
49:a5:0b:1d:7f:93:ad:cb:0e:4c:94:f7:62:cc:d9:
1f:68:97:08:1a:1d:3c:e6:ce:1c:84:e2:3b:9d:e4:
a2:f1:8c:03:ff:12:51:1c:22:43:37:3c:b9:d3:0f:
32:79:9b:23:56:e1:e0:87:a6:c8:4f:37:2c:9e:43:
b7:45:be:21:92:20:11:98:10:3c:fa:4b:94:39:9f:
c6:c8:d7:97:b6:1e:9b:71:bf:0e:6a:17:51:6f:1a:
a4:ff:8f:33:b8:76:54:62:ec:74:bf:16:47:ae:55:
ed:dd:8f:0b:8e:36:6e:e2:75:a2:30:f3:5c:31:53:
62:8f:7d:08:3b:dc:93:a4:b3:13:50:d2:09:96:49:
46:9d:ad:61:9f:a5:57:d2:a8:75:ec:f8:ca:bd:75:
79:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:46:78:22:92:9F:59:BF:2A:A2:8F:C0:37:C9:07:C3:73:19:5B:DD
X509v3 Authority Key Identifier:
keyid:89:69:33:44:63:8A:CB:05:36:58:2F:AB:08:98:76:57:8E:F6:BC:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/c0Z4IpKfWb8qoo_AN8kHw3MZW90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.142.0/24
Signature Algorithm: sha256WithRSAEncryption
33:5a:dc:50:c0:1d:6a:90:83:a1:0e:49:0a:4c:f4:66:3a:20:
2a:cf:a6:c5:1f:55:d3:f8:1b:0c:4c:75:08:cf:18:8c:a3:72:
c7:f7:30:17:28:f2:9e:26:dc:c0:ba:15:d5:dc:6f:33:e0:a5:
9b:6f:8f:36:61:e8:8d:b4:43:3f:dd:da:bf:7c:64:88:87:1a:
53:57:32:30:14:2c:60:5e:41:18:ae:61:74:af:84:a1:a6:5e:
3d:75:8e:5c:d2:12:ce:94:4c:87:99:b2:a5:27:09:99:e8:f8:
7a:8f:e6:25:f2:fa:d8:93:13:a4:82:47:50:62:99:6d:49:31:
f1:cf:5d:4c:ee:f9:70:28:1e:37:8c:23:80:02:c4:41:57:0b:
2b:f9:42:71:dd:d7:ac:04:49:a5:e7:1f:51:1a:7d:70:2b:6c:
2d:0f:37:39:fa:46:0c:0e:cd:57:fa:18:d6:64:3d:03:db:5f:
e0:44:32:94:d1:54:f9:1d:bf:68:67:f8:d6:d2:44:36:62:10:
7e:f7:7f:a0:c0:be:e7:cd:57:1e:dd:ae:69:50:71:96:b7:3b:
77:6d:7c:92:cc:fd:a9:a7:c3:34:bb:1f:d0:ab:c9:26:97:3d:
fb:c3:8e:b1:88:dd:9f:2b:42:65:08:bc:db:60:03:0a:90:2a:
8a:ea:67:6b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEldGJjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
OTY5MzM0NDYzOGFjYjA1MzY1ODJmYWIwODk4NzY1NzhlZjZiYzU2MB4XDTIyMDEw
MTE1MDIxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzM0Njc4MjI5Mjlm
NTliZjJhYTI4ZmMwMzdjOTA3YzM3MzE5NWJkZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMCGDVg81aANuak7bC+KtuihX4QZOOodAg1b+IqX/acb+oIj
wRn5Wwy4YmiBumWqfz4n1nR3BBxsqCSGZhbsg16+/q0baypO+dWw493fScYnwhQ0
BcfxJ/dKMMk5d3/6l7IY5JCI+e5gSaULHX+TrcsOTJT3YszZH2iXCBodPObOHITi
O53kovGMA/8SURwiQzc8udMPMnmbI1bh4IemyE83LJ5Dt0W+IZIgEZgQPPpLlDmf
xsjXl7Yem3G/DmoXUW8apP+PM7h2VGLsdL8WR65V7d2PC442buJ1ojDzXDFTYo99
CDvck6SzE1DSCZZJRp2tYZ+lV9Kodez4yr11eSUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRzRngikp9Zvyqij8A3yQfDcxlb3TAfBgNVHSMEGDAWgBSJaTNEY4rLBTZY
L6sImHZXjva8VjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lXa3pSR09LeXdVMldDLXJDSmgyVjQ3MnZGWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTYvN2Q4OTAwLWJlNzYtNDBlMi04Yzk5LTcwZjk0M2VhYzRkYi8x
L2MwWjRJcEtmV2I4cW9vX0FOOGtIdzNNWlc5MC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTYv
N2Q4OTAwLWJlNzYtNDBlMi04Yzk5LTcwZjk0M2VhYzRkYi8xL2lXa3pSR09LeXdV
MldDLXJDSmgyVjQ3MnZGWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEXjjANBgkqhkiG9w0BAQsFAAOC
AQEAM1rcUMAdapCDoQ5JCkz0ZjogKs+mxR9V0/gbDEx1CM8YjKNyx/cwFyjynibc
wLoV1dxvM+Clm2+PNmHojbRDP93av3xkiIcaU1cyMBQsYF5BGK5hdK+EoaZePXWO
XNISzpRMh5mypScJmej4eo/mJfL62JMTpIJHUGKZbUkx8c9dTO75cCgeN4wjgALE
QVcLK/lCcd3XrARJpecfURp9cCtsLQ83OfpGDA7NV/oY1mQ9A9tf4EQylNFU+R2/
aGf41tJENmIQfvd/oMC+581XHt2uaVBxlrc7d218ksz9qafDNLsf0KvJJpc9+8OO
sYjdnytCZQi822ADCpAqiupnaw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:51 2024 by rpki-client on console-ams.rpki-client.org