Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/1QnqK74C0kimG5ty6NsQLAJU_JM.roa
File: 1QnqK74C0kimG5ty6NsQLAJU_JM.roa (raw, json)
Hash identifier: euhXmV4x0w9pIRGKloclGZHWQMyk+J81f1FiTZafKE0=
Subject key identifier: D5:09:EA:2B:BE:02:D2:48:A6:1B:9B:72:E8:DB:10:2C:02:54:FC:93
Certificate issuer: /CN=b53ba18d5ceb8e794c8139ce02a791b8501825ef
Certificate serial: 0295E0
Authority key identifier: B5:3B:A1:8D:5C:EB:8E:79:4C:81:39:CE:02:A7:91:B8:50:18:25:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTuhjVzrjnlMgTnOAqeRuFAYJe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/1QnqK74C0kimG5ty6NsQLAJU_JM.roa
Signing time: Wed 06 Apr 2022 13:55:09 +0000
ROA not before: Wed 06 Apr 2022 13:55:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15375
IP address blocks: 193.108.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169440 (0x295e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b53ba18d5ceb8e794c8139ce02a791b8501825ef
Validity
Not Before: Apr 6 13:55:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d509ea2bbe02d248a61b9b72e8db102c0254fc93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:68:69:26:ea:3c:64:61:8c:27:ff:ae:a3:7b:
3a:b8:bd:50:db:0c:f5:ac:c7:dc:8b:8f:df:3b:e6:
5f:30:ac:5b:6f:2e:61:8a:70:ed:a6:00:e2:e2:fd:
19:11:a9:65:df:cd:4d:f2:40:7d:47:c5:c3:6d:ac:
06:a0:d6:cc:0b:8b:bd:f2:5a:0d:fc:4a:c6:3d:d0:
ee:b5:dc:63:34:09:52:08:0c:61:f3:ee:c5:62:64:
33:92:a1:29:c7:f5:4b:a0:38:91:a5:d8:41:53:bc:
e3:79:7f:64:2d:1c:3d:e6:7e:63:2e:88:63:4b:b0:
50:28:d3:fe:10:a0:1c:09:b4:09:30:a9:6e:08:77:
a9:e4:64:5d:41:0b:5b:9d:89:7d:2d:93:0d:81:a4:
df:ed:b6:8a:87:19:e6:21:d9:56:90:8b:7f:0b:a7:
a0:94:bb:cd:17:e4:9d:44:19:6a:ef:1b:1f:8a:98:
42:ec:cd:93:74:4a:97:76:9a:ba:b4:12:e1:eb:89:
e6:fe:c1:83:df:09:a9:7f:dd:20:b1:98:d4:06:44:
02:a9:1e:f9:ea:1f:e3:b9:cd:e2:2c:1c:b2:51:e4:
fe:74:f1:68:0e:58:7e:6f:9c:8a:d6:d5:b6:aa:50:
45:d4:cd:70:e7:ed:dd:25:0e:c6:8c:59:97:04:79:
4e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:09:EA:2B:BE:02:D2:48:A6:1B:9B:72:E8:DB:10:2C:02:54:FC:93
X509v3 Authority Key Identifier:
keyid:B5:3B:A1:8D:5C:EB:8E:79:4C:81:39:CE:02:A7:91:B8:50:18:25:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTuhjVzrjnlMgTnOAqeRuFAYJe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/1QnqK74C0kimG5ty6NsQLAJU_JM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/tTuhjVzrjnlMgTnOAqeRuFAYJe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.159.0/24
Signature Algorithm: sha256WithRSAEncryption
92:7e:b1:ec:b9:a4:7b:b3:65:4b:c3:86:a0:46:78:9c:39:6c:
a8:df:41:36:8f:c2:aa:05:63:18:6b:0d:f2:d5:18:82:1f:a3:
63:cc:f0:5c:05:d7:a1:4c:6c:30:bc:19:aa:84:19:54:4a:9a:
d7:0f:0d:b9:5b:c8:49:9a:90:9b:3e:12:8b:4d:bc:82:9b:76:
33:e8:78:9f:5d:51:97:c3:98:de:9b:a7:45:b4:9d:55:73:03:
8d:3c:dc:60:cd:a9:e6:99:6a:bc:e3:b5:f3:2a:1a:5e:3d:ad:
67:50:04:bf:35:43:5d:0c:40:9b:fe:43:cc:f8:11:72:6b:f1:
63:83:be:6b:f0:16:ed:ea:e9:cd:85:ca:41:3f:f8:4f:24:63:
cb:b8:d4:76:be:e5:ea:a2:25:fa:b1:dd:93:f3:a9:1f:96:26:
98:70:9d:cf:26:e6:b9:0c:28:09:d8:61:f8:fc:ed:1a:c3:2d:
a6:c7:b9:32:7d:03:74:c6:6c:45:14:ed:66:b8:bf:9d:a5:b1:
86:b5:dd:76:ef:a4:d0:dc:61:fe:85:cd:64:81:df:3d:e2:ce:
a6:23:dc:6a:aa:ec:9e:29:dc:e6:70:fb:ca:3a:d3:3d:5a:ba:
e1:90:17:b8:a5:c0:c5:dc:d4:3f:e4:1e:a2:d5:c8:27:4e:6e:
c6:15:c3:bb
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDApXgMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGI1
M2JhMThkNWNlYjhlNzk0YzgxMzljZTAyYTc5MWI4NTAxODI1ZWYwHhcNMjIwNDA2
MTM1NTA5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhkNTA5ZWEyYmJlMDJk
MjQ4YTYxYjliNzJlOGRiMTAyYzAyNTRmYzkzMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAkWhpJuo8ZGGMJ/+uo3s6uL1Q2wz1rMfci4/fO+ZfMKxbby5h
inDtpgDi4v0ZEall381N8kB9R8XDbawGoNbMC4u98loN/ErGPdDutdxjNAlSCAxh
8+7FYmQzkqEpx/VLoDiRpdhBU7zjeX9kLRw95n5jLohjS7BQKNP+EKAcCbQJMKlu
CHep5GRdQQtbnYl9LZMNgaTf7baKhxnmIdlWkIt/C6eglLvNF+SdRBlq7xsfiphC
7M2TdEqXdpq6tBLh64nm/sGD3wmpf90gsZjUBkQCqR756h/juc3iLByyUeT+dPFo
Dlh+b5yK1tW2qlBF1M1w5+3dJQ7GjFmXBHlOGwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFNUJ6iu+AtJIphubcujbECwCVPyTMB8GA1UdIwQYMBaAFLU7oY1c6455TIE5
zgKnkbhQGCXvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
dFR1aGpWenJqbmxNZ1RuT0FxZVJ1RkFZSmU4LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mMy9lMjUxMGQtZTU3My00NWQzLTlkMjAtNzU0YjYwYzViNTY4LzEv
MVFucUs3NEMwa2ltRzV0eTZOc1FMQUpVX0pNLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9l
MjUxMGQtZTU3My00NWQzLTlkMjAtNzU0YjYwYzViNTY4LzEvdFR1aGpWenJqbmxN
Z1RuT0FxZVJ1RkFZSmU4LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWyfMA0GCSqGSIb3DQEBCwUAA4IB
AQCSfrHsuaR7s2VLw4agRnicOWyo30E2j8KqBWMYaw3y1RiCH6NjzPBcBdehTGww
vBmqhBlUSprXDw25W8hJmpCbPhKLTbyCm3Yz6HifXVGXw5jem6dFtJ1VcwONPNxg
zanmmWq847XzKhpePa1nUAS/NUNdDECb/kPM+BFya/Fjg75r8Bbt6unNhcpBP/hP
JGPLuNR2vuXqoiX6sd2T86kfliaYcJ3PJua5DCgJ2GH4/O0awy2mx7kyfQN0xmxF
FO1muL+dpbGGtd1276TQ3GH+hc1kgd894s6mI9xqquyeKdzmcPvKOtM9WrrhkBe4
pcDF3NQ/5B6i1cgnTm7GFcO7
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:18 2023 by rpki-client on console-ams.rpki-client.org