Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/bFyysRhZMeu9KbLRAPjGKdqsIcc.roa
File: bFyysRhZMeu9KbLRAPjGKdqsIcc.roa (raw, json)
Hash identifier: Zh/5dE3LodWnXBRZHUNzUfesS3EOCwNnvW+3nlQCosU=
Subject key identifier: 6C:5C:B2:B1:18:59:31:EB:BD:29:B2:D1:00:F8:C6:29:DA:AC:21:C7
Certificate issuer: /CN=dbcc2bbaf3e0d4342a014f8b70f873cee9a8cac5
Certificate serial: 0D6A35C8
Authority key identifier: DB:CC:2B:BA:F3:E0:D4:34:2A:01:4F:8B:70:F8:73:CE:E9:A8:CA:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28wruvPg1DQqAU-LcPhzzumoysU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/bFyysRhZMeu9KbLRAPjGKdqsIcc.roa
Signing time: Mon 11 Apr 2022 10:44:49 +0000
ROA not before: Mon 11 Apr 2022 10:44:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207346
IP address blocks: 193.16.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225064392 (0xd6a35c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbcc2bbaf3e0d4342a014f8b70f873cee9a8cac5
Validity
Not Before: Apr 11 10:44:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c5cb2b1185931ebbd29b2d100f8c629daac21c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:42:79:99:ba:5d:66:59:67:c1:3e:d0:92:09:
b2:29:31:15:50:e1:1b:93:bb:f0:26:7d:d6:45:79:
0e:1b:cb:4c:6b:11:56:5d:bf:a9:5f:b4:7e:d1:fe:
53:ba:06:82:46:ba:e4:79:62:55:60:c3:bd:b8:77:
83:6f:35:06:26:9e:ed:7a:85:18:47:b2:c8:4d:a3:
d9:32:5f:51:70:18:1d:ac:50:54:8e:9c:96:30:81:
63:76:af:fd:8d:d8:3d:c7:80:4d:6e:00:be:1e:db:
e1:8b:52:48:44:1f:0c:a4:3c:d0:12:3a:30:b9:7b:
b4:ab:94:3a:7e:de:bc:a4:64:83:f7:70:55:58:0f:
cf:e2:2e:30:18:97:11:02:56:77:80:b2:aa:ed:42:
d2:25:54:12:5a:c3:2a:c5:61:2e:04:ac:2f:61:5c:
48:30:a1:ef:0b:90:dc:4a:7b:1e:05:14:4f:aa:e2:
23:ce:8b:6c:a4:5c:1e:48:65:25:bb:1b:5a:bb:b3:
04:64:a2:7d:d8:c9:92:68:7a:5a:f9:ca:46:15:19:
ea:1b:b0:df:54:1a:1d:9b:ef:80:5a:f7:bb:21:ee:
33:55:fa:af:95:3b:30:ec:ed:b0:85:35:de:9d:24:
73:3b:2a:fb:cf:b2:14:84:68:0d:3f:29:fc:05:36:
3e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:5C:B2:B1:18:59:31:EB:BD:29:B2:D1:00:F8:C6:29:DA:AC:21:C7
X509v3 Authority Key Identifier:
keyid:DB:CC:2B:BA:F3:E0:D4:34:2A:01:4F:8B:70:F8:73:CE:E9:A8:CA:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28wruvPg1DQqAU-LcPhzzumoysU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/bFyysRhZMeu9KbLRAPjGKdqsIcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/28wruvPg1DQqAU-LcPhzzumoysU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.234.0/24
Signature Algorithm: sha256WithRSAEncryption
72:72:c8:a9:91:f4:d4:59:df:91:1f:20:b9:d8:00:06:14:db:
83:aa:34:6e:f4:cd:37:36:32:41:bd:77:40:55:f5:74:00:83:
d0:ba:82:b7:6d:be:66:26:2d:17:bb:bb:6f:5e:96:b3:ae:b0:
9a:71:f3:9c:c6:f5:8e:7a:53:9d:8b:3f:b6:9f:db:4b:12:22:
40:90:a0:7f:de:d6:42:f4:33:98:bc:86:17:0a:6b:5f:65:5a:
2c:ac:2a:30:4e:26:a7:c7:6e:d7:af:94:96:46:b6:bd:ca:9f:
e5:5c:5a:94:bf:61:1b:10:cc:3c:73:24:c6:2f:18:5d:4c:65:
2b:17:3f:c0:cc:13:cb:b6:64:bb:ad:19:18:35:0b:bb:6d:05:
eb:e5:5d:6a:ac:68:c7:0d:db:c6:50:c3:e9:03:9e:41:11:ca:
5d:be:3e:7e:ba:de:07:3f:87:36:80:02:1f:dc:f4:2b:8d:73:
4f:37:b7:43:f3:8b:20:38:b8:f6:2d:72:53:c1:65:47:db:7b:
25:04:72:76:a2:ed:f5:5c:d4:fc:e8:18:6e:e0:51:c3:5b:0c:
3e:d8:a2:96:ce:a4:d5:0a:64:e7:ee:5c:23:b7:32:b7:66:c0:
47:c3:90:3e:77:16:a2:0c:05:fc:7a:8b:6f:02:80:1f:0a:e3:
9a:a8:b4:5f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDWo1yDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YmNjMmJiYWYzZTBkNDM0MmEwMTRmOGI3MGY4NzNjZWU5YThjYWM1MB4XDTIyMDQx
MTEwNDQ0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmM1Y2IyYjExODU5
MzFlYmJkMjliMmQxMDBmOGM2MjlkYWFjMjFjNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKxCeZm6XWZZZ8E+0JIJsikxFVDhG5O78CZ91kV5DhvLTGsR
Vl2/qV+0ftH+U7oGgka65HliVWDDvbh3g281Biae7XqFGEeyyE2j2TJfUXAYHaxQ
VI6cljCBY3av/Y3YPceATW4Avh7b4YtSSEQfDKQ80BI6MLl7tKuUOn7evKRkg/dw
VVgPz+IuMBiXEQJWd4Cyqu1C0iVUElrDKsVhLgSsL2FcSDCh7wuQ3Ep7HgUUT6ri
I86LbKRcHkhlJbsbWruzBGSifdjJkmh6WvnKRhUZ6huw31QaHZvvgFr3uyHuM1X6
r5U7MOztsIU13p0kczsq+8+yFIRoDT8p/AU2PrcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRsXLKxGFkx670pstEA+MYp2qwhxzAfBgNVHSMEGDAWgBTbzCu68+DUNCoB
T4tw+HPO6ajKxTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzI4d3J1dlBnMURRcUFVLUxjUGh6enVtb3lzVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjgvNDE0ZWY0LTRjMWYtNDI1Ni04OGM5LWY0ZDVlODRhYzFkZC8x
L2JGeXlzUmhaTWV1OUtiTFJBUGpHS2Rxc0ljYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjgv
NDE0ZWY0LTRjMWYtNDI1Ni04OGM5LWY0ZDVlODRhYzFkZC8xLzI4d3J1dlBnMURR
cUFVLUxjUGh6enVtb3lzVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEQ6jANBgkqhkiG9w0BAQsFAAOC
AQEAcnLIqZH01FnfkR8gudgABhTbg6o0bvTNNzYyQb13QFX1dACD0LqCt22+ZiYt
F7u7b16Ws66wmnHznMb1jnpTnYs/tp/bSxIiQJCgf97WQvQzmLyGFwprX2VaLKwq
ME4mp8du16+Ulka2vcqf5VxalL9hGxDMPHMkxi8YXUxlKxc/wMwTy7Zku60ZGDUL
u20F6+Vdaqxoxw3bxlDD6QOeQRHKXb4+frreBz+HNoACH9z0K41zTze3Q/OLIDi4
9i1yU8FlR9t7JQRydqLt9VzU/OgYbuBRw1sMPtiils6k1Qpk5+5cI7cyt2bAR8OQ
PncWogwF/HqLbwKAHwrjmqi0Xw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:40 2023 by rpki-client on console-fra.rpki-client.org