Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/49e0d3-771c-4ebf-9abd-8dc98796b2d6/1/ogXmclteJ3XIemwQvADJyC3eQTw.roa
File: ogXmclteJ3XIemwQvADJyC3eQTw.roa (raw, json)
Hash identifier: NZAAfA1c7VNgCYo3aDrDcdygBCXHSztPAHVgQAvJHnc=
Subject key identifier: A2:05:E6:72:5B:5E:27:75:C8:7A:6C:10:BC:00:C9:C8:2D:DE:41:3C
Certificate issuer: /CN=f14bd49d65b3c7902b7fd5a33694cd31bd8606e7
Certificate serial: 73B1EB
Authority key identifier: F1:4B:D4:9D:65:B3:C7:90:2B:7F:D5:A3:36:94:CD:31:BD:86:06:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8UvUnWWzx5Arf9WjNpTNMb2GBuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/49e0d3-771c-4ebf-9abd-8dc98796b2d6/1/ogXmclteJ3XIemwQvADJyC3eQTw.roa
Signing time: Sat 01 Jan 2022 01:51:38 +0000
ROA not before: Sat 01 Jan 2022 01:51:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.163.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7582187 (0x73b1eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f14bd49d65b3c7902b7fd5a33694cd31bd8606e7
Validity
Not Before: Jan 1 01:51:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a205e6725b5e2775c87a6c10bc00c9c82dde413c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:92:0e:0e:4c:db:7a:28:e6:91:71:79:81:66:
c6:72:6c:24:1a:97:f3:f2:36:01:d7:e6:99:1b:8e:
34:9b:74:de:f8:d7:88:16:0d:a9:df:c5:01:c5:31:
eb:da:74:e7:22:57:95:ef:33:a7:1a:8d:b4:6d:66:
86:9f:4f:e5:fb:91:32:d2:85:0b:5b:03:1d:bd:fb:
36:54:ff:7d:82:8c:5b:71:c6:65:4c:62:9f:e6:b9:
3a:a1:18:19:d2:b0:cf:4f:82:69:c0:e2:66:c9:10:
86:8b:12:a9:5d:63:bd:74:6d:0a:90:57:2d:84:46:
cb:06:8a:31:c1:cd:ce:ea:44:bb:ac:e1:80:b4:6b:
1c:5c:f8:f4:53:77:5e:75:32:f8:05:49:0e:72:18:
8b:5d:93:a7:e0:8e:54:f3:ed:a7:df:da:b1:76:21:
f3:78:72:6b:12:21:31:88:7c:6e:e8:13:4d:87:c6:
12:79:47:9f:1e:61:25:67:11:af:72:2e:52:2c:8f:
e1:a2:3c:47:0f:99:bc:ae:0b:5a:44:1f:01:25:d9:
59:b4:6d:fa:87:50:6d:01:2a:8f:23:65:74:b7:18:
b9:c8:1a:67:aa:d6:4d:37:11:44:11:ac:03:cb:98:
ae:63:51:e1:be:7d:f5:83:39:12:04:ce:8d:15:4b:
34:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:05:E6:72:5B:5E:27:75:C8:7A:6C:10:BC:00:C9:C8:2D:DE:41:3C
X509v3 Authority Key Identifier:
keyid:F1:4B:D4:9D:65:B3:C7:90:2B:7F:D5:A3:36:94:CD:31:BD:86:06:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8UvUnWWzx5Arf9WjNpTNMb2GBuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/49e0d3-771c-4ebf-9abd-8dc98796b2d6/1/ogXmclteJ3XIemwQvADJyC3eQTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/49e0d3-771c-4ebf-9abd-8dc98796b2d6/1/8UvUnWWzx5Arf9WjNpTNMb2GBuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.22.0/24
Signature Algorithm: sha256WithRSAEncryption
17:ef:16:b8:d5:70:a2:26:9b:66:f3:61:21:60:91:55:3e:8a:
a8:6f:2f:4f:21:ce:59:03:54:b2:f7:c2:d2:f2:75:8b:6d:d0:
72:28:12:01:71:2f:bb:9e:52:3a:a0:76:6d:fa:05:0b:c7:70:
38:e9:bf:d2:8c:28:46:0c:2c:41:49:34:6a:75:e8:d2:7e:41:
9d:c6:94:05:0c:9c:6a:a8:cb:f0:32:68:2e:29:3d:71:72:10:
d6:b8:46:79:ea:dc:73:a8:c6:46:89:55:68:db:f6:fc:41:a9:
b1:d4:95:f4:5e:01:63:63:12:d0:b0:26:80:19:f8:3f:de:22:
80:16:e2:1b:0a:6f:c9:9a:48:3a:12:cd:a2:ee:25:76:40:dd:
b8:6c:c6:fd:cc:b0:56:b1:db:7b:00:bd:c1:76:47:93:35:90:
86:e5:f1:c5:13:65:c0:89:fb:3b:4a:1a:7c:de:25:72:e8:e4:
c3:0c:6f:d0:59:62:3d:5b:f5:0a:95:b2:74:21:d5:23:fb:ac:
d6:e1:3d:5f:e7:a0:b2:ef:85:6b:59:7c:7e:cd:96:cb:db:e4:
a9:41:11:7e:b9:c6:9a:cf:fa:7f:43:2b:a8:18:46:eb:5f:fa:
2f:e0:d4:a0:23:c5:75:2d:f4:93:b8:67:71:1b:3b:21:cb:52:
9e:e3:5d:b1
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDc7HrMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGYx
NGJkNDlkNjViM2M3OTAyYjdmZDVhMzM2OTRjZDMxYmQ4NjA2ZTcwHhcNMjIwMTAx
MDE1MTM4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhhMjA1ZTY3MjViNWUy
Nzc1Yzg3YTZjMTBiYzAwYzljODJkZGU0MTNjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAy5IODkzbeijmkXF5gWbGcmwkGpfz8jYB1+aZG440m3Te+NeI
Fg2p38UBxTHr2nTnIleV7zOnGo20bWaGn0/l+5Ey0oULWwMdvfs2VP99goxbccZl
TGKf5rk6oRgZ0rDPT4JpwOJmyRCGixKpXWO9dG0KkFcthEbLBooxwc3O6kS7rOGA
tGscXPj0U3dedTL4BUkOchiLXZOn4I5U8+2n39qxdiHzeHJrEiExiHxu6BNNh8YS
eUefHmElZxGvci5SLI/hojxHD5m8rgtaRB8BJdlZtG36h1BtASqPI2V0txi5yBpn
qtZNNxFEEawDy5iuY1Hhvn31gzkSBM6NFUs0VQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFKIF5nJbXid1yHpsELwAycgt3kE8MB8GA1UdIwQYMBaAFPFL1J1ls8eQK3/V
ozaUzTG9hgbnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
OFV2VW5XV3p4NUFyZjlXak5wVE5NYjJHQnVjLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mOC80OWUwZDMtNzcxYy00ZWJmLTlhYmQtOGRjOTg3OTZiMmQ2LzEv
b2dYbWNsdGVKM1hJZW13UXZBREp5QzNlUVR3LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC80
OWUwZDMtNzcxYy00ZWJmLTlhYmQtOGRjOTg3OTZiMmQ2LzEvOFV2VW5XV3p4NUFy
ZjlXak5wVE5NYjJHQnVjLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaMWMA0GCSqGSIb3DQEBCwUAA4IB
AQAX7xa41XCiJptm82EhYJFVPoqoby9PIc5ZA1Sy98LS8nWLbdByKBIBcS+7nlI6
oHZt+gULx3A46b/SjChGDCxBSTRqdejSfkGdxpQFDJxqqMvwMmguKT1xchDWuEZ5
6txzqMZGiVVo2/b8Qamx1JX0XgFjYxLQsCaAGfg/3iKAFuIbCm/Jmkg6Es2i7iV2
QN24bMb9zLBWsdt7AL3BdkeTNZCG5fHFE2XAifs7Shp83iVy6OTDDG/QWWI9W/UK
lbJ0IdUj+6zW4T1f56Cy74VrWXx+zZbL2+SpQRF+ucaaz/p/QyuoGEbrX/ov4NSg
I8V1LfSTuGdxGzshy1Ke412x
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:31 2023 by rpki-client on console-ams.rpki-client.org