Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/awinw8b1CVxpQ2pTKrp6mIeAfu4.roa
File: awinw8b1CVxpQ2pTKrp6mIeAfu4.roa (raw, json)
Hash identifier: 4RGsMdY2pT7DSDVHXSwqMkJX6eHPiXyAil7u8JjXv6k=
Subject key identifier: 6B:08:A7:C3:C6:F5:09:5C:69:43:6A:53:2A:BA:7A:98:87:80:7E:EE
Certificate issuer: /CN=d31dd1a514d3a7e3dfdb8bfb75d7d24ed98d479f
Certificate serial: 387133D2
Authority key identifier: D3:1D:D1:A5:14:D3:A7:E3:DF:DB:8B:FB:75:D7:D2:4E:D9:8D:47:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0x3RpRTTp-Pf24v7ddfSTtmNR58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/awinw8b1CVxpQ2pTKrp6mIeAfu4.roa
Signing time: Sat 01 Jan 2022 03:56:45 +0000
ROA not before: Sat 01 Jan 2022 03:56:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 193.58.222.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 946942930 (0x387133d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d31dd1a514d3a7e3dfdb8bfb75d7d24ed98d479f
Validity
Not Before: Jan 1 03:56:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b08a7c3c6f5095c69436a532aba7a9887807eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ec:64:90:d1:bf:8b:e7:46:f5:50:8b:1f:7b:
e0:fd:29:0e:c6:70:4a:84:e3:a6:ab:1c:fe:92:2f:
9b:cf:07:c7:11:b4:79:0d:0c:af:df:4f:60:ef:b4:
b7:ca:f4:81:12:07:f8:54:e1:44:fa:f9:61:0c:a9:
28:d2:d4:bc:07:24:44:11:ad:99:fb:f7:ac:e1:3d:
df:1c:d7:32:dc:f0:50:df:d4:ba:e6:5c:b6:80:37:
23:8c:01:8a:16:bc:36:e8:a9:c1:98:48:eb:27:ac:
19:01:c0:c6:47:a2:61:ac:a0:ff:37:c2:5a:b9:91:
ca:6b:f6:f6:51:aa:0e:4e:d3:24:06:aa:32:d2:24:
b4:95:86:81:c4:0b:a9:0a:7f:50:6b:e9:70:e5:0b:
00:b9:28:81:b9:02:5d:4c:39:d0:3e:9a:21:51:70:
26:cf:0d:12:8d:a0:ec:55:3b:a6:15:bd:ca:6a:ee:
e6:4c:2a:1b:fd:7c:fa:73:53:e5:5b:b1:a7:b2:b8:
b4:54:1d:26:28:fb:4e:4a:72:37:da:c1:51:af:06:
5d:9d:b2:73:44:77:ca:ac:a1:0b:22:91:54:d1:d3:
b0:88:6d:2a:2c:4a:6d:06:0b:21:10:ae:33:dc:dd:
26:f1:dd:4e:d2:aa:b9:fb:96:72:0c:76:48:d8:10:
e1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:08:A7:C3:C6:F5:09:5C:69:43:6A:53:2A:BA:7A:98:87:80:7E:EE
X509v3 Authority Key Identifier:
keyid:D3:1D:D1:A5:14:D3:A7:E3:DF:DB:8B:FB:75:D7:D2:4E:D9:8D:47:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0x3RpRTTp-Pf24v7ddfSTtmNR58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/awinw8b1CVxpQ2pTKrp6mIeAfu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/f2478f-c503-42c2-94b2-b166ae2ef287/1/0x3RpRTTp-Pf24v7ddfSTtmNR58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.222.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:ce:cb:fb:23:df:ce:e4:8b:3e:df:18:37:18:23:32:c2:31:
a0:a8:64:57:5f:ec:e7:f5:03:e7:a0:d9:ec:f2:5c:9f:40:c8:
ea:c7:f6:d2:84:ba:19:ec:27:ef:fd:e3:2b:2c:d6:e6:e3:14:
ed:4e:52:9d:25:13:71:e3:bd:27:45:3c:19:7a:74:00:0a:db:
0e:5f:8b:56:e2:33:c5:f5:cb:cc:cc:66:ba:41:bd:ce:21:76:
85:69:45:04:b9:29:61:59:39:03:51:7a:67:ac:1e:8b:ca:bd:
29:63:89:2b:4d:95:bb:bd:1f:30:cf:ff:37:94:9a:61:47:22:
2f:1b:20:51:46:61:11:66:64:93:53:20:1c:f8:3a:d0:a9:9a:
89:21:56:40:56:e7:5e:dd:ba:68:ef:dc:c0:4e:cc:aa:c7:b9:
7e:82:8e:eb:46:a6:7f:fa:8d:6f:dc:1e:3a:ed:7a:ad:84:eb:
9e:47:7d:8e:c0:4f:07:42:44:72:1b:15:2b:25:4f:56:05:01:
a1:92:29:44:e5:0e:a2:10:5c:0a:dd:78:59:02:a0:09:39:f6:
a1:9f:4b:21:2a:7d:c3:3c:ee:c5:c6:d8:08:7c:07:cc:64:d1:
bd:b5:b1:17:25:5c:79:27:9d:96:f9:61:e8:5e:f5:19:f4:ba:
11:ef:fb:24
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOHEz0jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MzFkZDFhNTE0ZDNhN2UzZGZkYjhiZmI3NWQ3ZDI0ZWQ5OGQ0NzlmMB4XDTIyMDEw
MTAzNTY0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmIwOGE3YzNjNmY1
MDk1YzY5NDM2YTUzMmFiYTdhOTg4NzgwN2VlZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALLsZJDRv4vnRvVQix974P0pDsZwSoTjpqsc/pIvm88HxxG0
eQ0Mr99PYO+0t8r0gRIH+FThRPr5YQypKNLUvAckRBGtmfv3rOE93xzXMtzwUN/U
uuZctoA3I4wBiha8NuipwZhI6yesGQHAxkeiYayg/zfCWrmRymv29lGqDk7TJAaq
MtIktJWGgcQLqQp/UGvpcOULALkogbkCXUw50D6aIVFwJs8NEo2g7FU7phW9ymru
5kwqG/18+nNT5Vuxp7K4tFQdJij7TkpyN9rBUa8GXZ2yc0R3yqyhCyKRVNHTsIht
KixKbQYLIRCuM9zdJvHdTtKqufuWcgx2SNgQ4WcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRrCKfDxvUJXGlDalMqunqYh4B+7jAfBgNVHSMEGDAWgBTTHdGlFNOn49/b
i/t119JO2Y1HnzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzB4M1JwUlRUcC1QZjI0djdkZGZTVHRtTlI1OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWUvZjI0NzhmLWM1MDMtNDJjMi05NGIyLWIxNjZhZTJlZjI4Ny8x
L2F3aW53OGIxQ1Z4cFEycFRLcnA2bUllQWZ1NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWUv
ZjI0NzhmLWM1MDMtNDJjMi05NGIyLWIxNjZhZTJlZjI4Ny8xLzB4M1JwUlRUcC1Q
ZjI0djdkZGZTVHRtTlI1OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcE63jANBgkqhkiG9w0BAQsFAAOC
AQEAbc7L+yPfzuSLPt8YNxgjMsIxoKhkV1/s5/UD56DZ7PJcn0DI6sf20oS6Gewn
7/3jKyzW5uMU7U5SnSUTceO9J0U8GXp0AArbDl+LVuIzxfXLzMxmukG9ziF2hWlF
BLkpYVk5A1F6Z6wei8q9KWOJK02Vu70fMM//N5SaYUciLxsgUUZhEWZkk1MgHPg6
0KmaiSFWQFbnXt26aO/cwE7Mqse5foKO60amf/qNb9weOu16rYTrnkd9jsBPB0JE
chsVKyVPVgUBoZIpROUOohBcCt14WQKgCTn2oZ9LISp9wzzuxcbYCHwHzGTRvbWx
FyVceSedlvlh6F71GfS6Ee/7JA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:58 2023 by rpki-client on console-ams.rpki-client.org