Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/b34bb9-adbb-41e4-a041-5230b4002c27/1/cBeqxQReGQFAVo36wfcsBWjTV2o.roa
File: cBeqxQReGQFAVo36wfcsBWjTV2o.roa (raw, json)
Hash identifier: CbbVYaUlslOU6Np0vn+osAEKVPam4M2l841nYd9PUzo=
Subject key identifier: 70:17:AA:C5:04:5E:19:01:40:56:8D:FA:C1:F7:2C:05:68:D3:57:6A
Certificate issuer: /CN=dc62c84850750e2aa68930f164b0c522073aead8
Certificate serial: F95CE0
Authority key identifier: DC:62:C8:48:50:75:0E:2A:A6:89:30:F1:64:B0:C5:22:07:3A:EA:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GLISFB1DiqmiTDxZLDFIgc66tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/b34bb9-adbb-41e4-a041-5230b4002c27/1/cBeqxQReGQFAVo36wfcsBWjTV2o.roa
Signing time: Sat 01 Jan 2022 09:54:56 +0000
ROA not before: Sat 01 Jan 2022 09:54:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3170
IP address blocks: 194.69.165.0/24 maxlen: 24
2a11:2640::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16342240 (0xf95ce0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc62c84850750e2aa68930f164b0c522073aead8
Validity
Not Before: Jan 1 09:54:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7017aac5045e190140568dfac1f72c0568d3576a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:34:aa:9a:50:54:ea:f7:dc:84:3b:b3:82:6f:
bb:ef:2d:ea:45:f3:e8:2e:3b:86:34:8d:5b:dc:dd:
83:29:05:f1:8a:3c:96:55:0f:be:c9:87:f7:42:7d:
72:0b:a6:59:0c:ea:03:7f:e6:e7:72:0c:6c:15:71:
44:68:ef:43:18:75:6c:a7:98:e2:0f:92:de:e2:1d:
a5:a1:10:18:98:e0:d4:7c:cc:f7:dc:4c:73:ab:cd:
ba:56:3d:4d:2e:93:1c:22:5b:9f:dc:19:9d:c1:1a:
e8:81:1c:5c:74:7a:97:f6:fc:cc:10:1c:60:fb:7c:
83:d5:15:69:aa:62:cd:ec:08:99:94:20:cd:bc:4c:
59:2b:08:de:db:6c:13:a6:76:9c:f1:f9:fd:1e:7b:
84:6b:9b:6d:5b:ae:39:bc:62:79:96:f1:52:d1:0c:
fc:49:f9:e6:b9:34:f7:2f:0a:50:48:5c:d9:ab:07:
bc:ef:83:0d:11:58:20:8f:52:4b:53:0a:ca:21:13:
ea:b0:36:8b:f5:5b:99:37:aa:9a:b4:c6:5c:97:d2:
46:30:6c:4a:e6:aa:d6:f2:21:5e:0d:cc:b6:2a:7f:
7b:53:f1:96:6b:a9:24:61:41:88:53:d5:57:78:a6:
61:22:c0:32:19:26:e3:e9:17:21:d6:8b:08:cf:f1:
09:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:17:AA:C5:04:5E:19:01:40:56:8D:FA:C1:F7:2C:05:68:D3:57:6A
X509v3 Authority Key Identifier:
keyid:DC:62:C8:48:50:75:0E:2A:A6:89:30:F1:64:B0:C5:22:07:3A:EA:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GLISFB1DiqmiTDxZLDFIgc66tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/b34bb9-adbb-41e4-a041-5230b4002c27/1/cBeqxQReGQFAVo36wfcsBWjTV2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/b34bb9-adbb-41e4-a041-5230b4002c27/1/3GLISFB1DiqmiTDxZLDFIgc66tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.69.165.0/24
IPv6:
2a11:2640::/29
Signature Algorithm: sha256WithRSAEncryption
9a:c3:6b:0b:9b:81:d8:bc:38:7e:35:bb:d8:ad:6a:2d:79:c6:
2c:d0:84:de:37:e1:14:1b:2b:d7:5f:7f:4e:54:1a:48:53:e9:
02:24:54:6c:94:17:4e:fd:1d:e7:bc:3b:ab:b8:4c:c7:72:8f:
6a:b0:2d:11:5b:9c:76:9a:54:f0:d5:8c:87:11:db:f3:51:a0:
7d:44:11:2a:38:65:79:32:61:40:cc:34:72:b7:2c:de:bf:13:
9f:19:6a:1f:8f:f7:ef:88:35:26:1b:15:90:9d:75:1f:0d:e3:
37:c5:cf:73:0d:4b:6d:a6:e8:7e:3f:a9:f5:ea:60:2e:6c:72:
35:b7:3e:f2:46:ab:47:64:77:a7:b5:03:81:1a:4f:8f:ff:11:
6a:bc:95:94:d4:c6:cc:b7:c2:28:ea:a9:49:d6:51:b4:d2:d0:
0c:76:2c:39:07:77:a1:c8:bc:c5:2c:f6:52:74:83:97:3a:6a:
f8:46:89:33:a2:2a:75:33:2a:90:cc:7f:20:37:5a:32:e4:55:
1a:86:da:26:ad:94:f1:a2:72:d6:1c:de:d2:3a:e2:7f:66:d5:
f2:e5:ac:e1:ce:1a:4b:01:a6:44:90:28:44:f2:07:44:de:44:
04:89:bf:3c:4f:57:f0:0e:81:a8:68:4a:94:e9:0d:7d:31:c2:
80:14:68:25
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAPlc4DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YzYyYzg0ODUwNzUwZTJhYTY4OTMwZjE2NGIwYzUyMjA3M2FlYWQ4MB4XDTIyMDEw
MTA5NTQ1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzAxN2FhYzUwNDVl
MTkwMTQwNTY4ZGZhYzFmNzJjMDU2OGQzNTc2YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANA0qppQVOr33IQ7s4Jvu+8t6kXz6C47hjSNW9zdgykF8Yo8
llUPvsmH90J9cgumWQzqA3/m53IMbBVxRGjvQxh1bKeY4g+S3uIdpaEQGJjg1HzM
99xMc6vNulY9TS6THCJbn9wZncEa6IEcXHR6l/b8zBAcYPt8g9UVaapizewImZQg
zbxMWSsI3ttsE6Z2nPH5/R57hGubbVuuObxieZbxUtEM/En55rk09y8KUEhc2asH
vO+DDRFYII9SS1MKyiET6rA2i/VbmTeqmrTGXJfSRjBsSuaq1vIhXg3Mtip/e1Px
lmupJGFBiFPVV3imYSLAMhkm4+kXIdaLCM/xCeUCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRwF6rFBF4ZAUBWjfrB9ywFaNNXajAfBgNVHSMEGDAWgBTcYshIUHUOKqaJ
MPFksMUiBzrq2DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNHTElTRkIxRGlxbWlURHhaTERGSWdjNjZ0Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTYvYjM0YmI5LWFkYmItNDFlNC1hMDQxLTUyMzBiNDAwMmMyNy8x
L2NCZXF4UVJlR1FGQVZvMzZ3ZmNzQldqVFYyby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTYv
YjM0YmI5LWFkYmItNDFlNC1hMDQxLTUyMzBiNDAwMmMyNy8xLzNHTElTRkIxRGlx
bWlURHhaTERGSWdjNjZ0Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAMJFpTANBAIAAjAHAwUDKhEmQDAN
BgkqhkiG9w0BAQsFAAOCAQEAmsNrC5uB2Lw4fjW72K1qLXnGLNCE3jfhFBsr119/
TlQaSFPpAiRUbJQXTv0d57w7q7hMx3KParAtEVucdppU8NWMhxHb81GgfUQRKjhl
eTJhQMw0crcs3r8TnxlqH4/374g1JhsVkJ11Hw3jN8XPcw1Lbabofj+p9epgLmxy
Nbc+8karR2R3p7UDgRpPj/8RaryVlNTGzLfCKOqpSdZRtNLQDHYsOQd3oci8xSz2
UnSDlzpq+EaJM6IqdTMqkMx/IDdaMuRVGobaJq2U8aJy1hze0jrif2bV8uWs4c4a
SwGmRJAoRPIHRN5EBIm/PE9X8A6BqGhKlOkNfTHCgBRoJQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:37 2023 by rpki-client on console-fra.rpki-client.org