Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/b81d08-66c9-4be9-a221-aff871b5b5f7/1/iJcwZ76p8v-EDnY8-zzO5tWHzdc.roa
File: iJcwZ76p8v-EDnY8-zzO5tWHzdc.roa (raw, json)
Hash identifier: fUtznSB/Ixn3sw3OL3jTOMYXkQvMYSoAC4LWd1ydQUo=
Subject key identifier: 88:97:30:67:BE:A9:F2:FF:84:0E:76:3C:FB:3C:CE:E6:D5:87:CD:D7
Certificate issuer: /CN=61edfe7a4fc64de529d162df2fed0780c6e5e1a8
Certificate serial: 018480038024014B71C6F9219ACB12E8F060
Authority key identifier: 61:ED:FE:7A:4F:C6:4D:E5:29:D1:62:DF:2F:ED:07:80:C6:E5:E1:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ye3-ek_GTeUp0WLfL-0HgMbl4ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/b81d08-66c9-4be9-a221-aff871b5b5f7/1/iJcwZ76p8v-EDnY8-zzO5tWHzdc.roa
Signing time: Wed 16 Nov 2022 10:37:03 +0000
ROA not before: Wed 16 Nov 2022 10:37:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 193.134.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:80:03:80:24:01:4b:71:c6:f9:21:9a:cb:12:e8:f0:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61edfe7a4fc64de529d162df2fed0780c6e5e1a8
Validity
Not Before: Nov 16 10:37:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88973067bea9f2ff840e763cfb3ccee6d587cdd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1d:58:6f:85:c1:5a:6b:1e:76:5d:da:8e:af:
a8:5c:b4:a6:16:00:46:03:26:10:d8:72:3c:bd:b6:
53:83:d3:05:b1:7d:68:f6:15:51:8d:cd:0f:6e:8f:
bb:4a:cb:1b:8c:69:df:d6:b7:53:f7:bc:aa:d8:f2:
62:21:33:ee:07:a2:fa:4a:56:59:41:49:5c:7b:ab:
66:ee:3e:99:a6:2e:db:70:24:6f:32:8b:d9:ac:ed:
fb:9f:47:95:92:fe:35:48:07:7f:55:24:fa:0c:5f:
79:4f:d2:6a:b0:a7:b2:6c:6a:23:31:f0:b3:21:f6:
70:05:96:96:25:1d:cc:eb:32:bb:b8:95:67:bc:da:
6f:1b:60:27:05:b6:92:72:de:9a:b1:86:4f:22:30:
0c:38:fb:a9:15:f0:93:dd:05:f4:f5:40:11:05:fa:
d4:af:d8:56:31:3c:ac:65:6a:54:26:6f:58:dc:4a:
7c:8d:9c:c9:fc:ab:05:cd:52:c2:a0:16:42:2d:d1:
e1:94:99:bb:53:8c:b1:19:7e:0e:b7:90:15:ee:66:
f4:17:3a:11:c1:2d:37:8e:e8:e3:aa:d6:e4:e8:85:
6c:00:dd:84:ee:be:1a:f8:53:b4:55:6f:a7:b4:b5:
51:2b:cd:ad:4b:da:04:a8:5b:e5:92:39:e0:7f:40:
ce:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:97:30:67:BE:A9:F2:FF:84:0E:76:3C:FB:3C:CE:E6:D5:87:CD:D7
X509v3 Authority Key Identifier:
keyid:61:ED:FE:7A:4F:C6:4D:E5:29:D1:62:DF:2F:ED:07:80:C6:E5:E1:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ye3-ek_GTeUp0WLfL-0HgMbl4ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b81d08-66c9-4be9-a221-aff871b5b5f7/1/iJcwZ76p8v-EDnY8-zzO5tWHzdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b81d08-66c9-4be9-a221-aff871b5b5f7/1/Ye3-ek_GTeUp0WLfL-0HgMbl4ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.134.252.0/24
Signature Algorithm: sha256WithRSAEncryption
be:22:ee:a1:7a:a3:00:6b:66:00:bc:57:78:4f:bf:61:57:10:
ee:81:4c:cc:ff:29:76:5f:66:89:20:e0:5e:02:18:6a:79:35:
79:16:46:ed:5c:ce:95:76:cd:49:9b:f3:bc:3c:00:a9:2a:98:
d8:0b:91:ff:06:c4:b8:bd:4d:c9:b3:c3:9a:4c:3f:73:9a:d9:
fb:68:a2:f6:48:cf:d9:f4:32:1e:85:39:95:bc:a7:4f:7b:aa:
86:2c:92:16:db:eb:8f:ad:b1:e3:2a:27:c1:12:f0:a9:f8:5c:
49:2b:b0:41:ed:34:6d:47:11:3e:06:a4:c8:5c:ad:12:d2:d7:
49:fa:6c:23:57:79:71:28:07:70:97:77:ee:b4:57:2d:27:ce:
b6:c0:29:19:6f:3c:66:ec:cd:f0:a4:62:aa:6a:a3:d6:81:40:
67:9e:d5:a3:a4:ba:7c:09:8e:43:bc:f3:da:81:89:82:cf:5a:
b5:1c:83:5c:37:46:10:e3:d1:6b:52:19:02:2b:53:71:46:5f:
c4:dc:d8:f3:32:39:bd:f2:b3:65:2f:f2:7c:ec:d4:10:7f:12:
c1:a7:75:c7:b8:2d:12:74:b4:88:1e:07:92:76:cf:f8:5a:82:
50:06:55:c5:32:4f:77:55:e4:b1:c9:0a:15:85:ee:1a:b0:72:
0a:d0:a0:0d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSAA4AkAUtxxvkhmssS6PBgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxZWRmZTdhNGZjNjRkZTUyOWQxNjJkZjJmZWQwNzgwYzZl
NWUxYTgwHhcNMjIxMTE2MTAzNzAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODk3MzA2N2JlYTlmMmZmODQwZTc2M2NmYjNjY2VlNmQ1ODdjZGQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzR1Yb4XBWmsedl3ajq+oXLSmFgBG
AyYQ2HI8vbZTg9MFsX1o9hVRjc0Pbo+7SssbjGnf1rdT97yq2PJiITPuB6L6SlZZ
QUlce6tm7j6Zpi7bcCRvMovZrO37n0eVkv41SAd/VST6DF95T9JqsKeybGojMfCz
IfZwBZaWJR3M6zK7uJVnvNpvG2AnBbaSct6asYZPIjAMOPupFfCT3QX09UARBfrU
r9hWMTysZWpUJm9Y3Ep8jZzJ/KsFzVLCoBZCLdHhlJm7U4yxGX4Ot5AV7mb0FzoR
wS03jujjqtbk6IVsAN2E7r4a+FO0VW+ntLVRK82tS9oEqFvlkjngf0DO+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIiXMGe+qfL/hA52PPs8zubVh83XMB8GA1UdIwQY
MBaAFGHt/npPxk3lKdFi3y/tB4DG5eGoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWUzLWVrX0dUZVVwMFdMZkwtMEhnTWJsNGFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9iODFkMDgtNjZjOS00YmU5LWEyMjEt
YWZmODcxYjViNWY3LzEvaUpjd1o3NnA4di1FRG5ZOC16ek81dFdIemRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy9iODFkMDgtNjZjOS00YmU5LWEyMjEtYWZmODcxYjViNWY3
LzEvWWUzLWVrX0dUZVVwMFdMZkwtMEhnTWJsNGFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwYb8MA0G
CSqGSIb3DQEBCwUAA4IBAQC+Iu6heqMAa2YAvFd4T79hVxDugUzM/yl2X2aJIOBe
AhhqeTV5FkbtXM6Vds1Jm/O8PACpKpjYC5H/BsS4vU3Js8OaTD9zmtn7aKL2SM/Z
9DIehTmVvKdPe6qGLJIW2+uPrbHjKifBEvCp+FxJK7BB7TRtRxE+BqTIXK0S0tdJ
+mwjV3lxKAdwl3futFctJ862wCkZbzxm7M3wpGKqaqPWgUBnntWjpLp8CY5DvPPa
gYmCz1q1HINcN0YQ49FrUhkCK1NxRl/E3NjzMjm98rNlL/J87NQQfxLBp3XHuC0S
dLSIHgeSds/4WoJQBlXFMk93VeSxyQoVhe4asHIK0KAN
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:23 2023 by rpki-client on console-fra.rpki-client.org