Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/0b556b-ed22-4453-925d-5dbb36f7a033/1/ze6gUatgv-3rqolN2UIpoP-h_i8.roa
File: ze6gUatgv-3rqolN2UIpoP-h_i8.roa (raw, json)
Hash identifier: JbZ8HM1ASUZznZZ8z8g5Y2qVK/6Q7b17IGrW/XbjWA0=
Subject key identifier: CD:EE:A0:51:AB:60:BF:ED:EB:AA:89:4D:D9:42:29:A0:FF:A1:FE:2F
Certificate issuer: /CN=14a3de4b7e66c87cf9c33e008a02d1a46e3fc766
Certificate serial: 09493431
Authority key identifier: 14:A3:DE:4B:7E:66:C8:7C:F9:C3:3E:00:8A:02:D1:A4:6E:3F:C7:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FKPeS35myHz5wz4AigLRpG4_x2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/0b556b-ed22-4453-925d-5dbb36f7a033/1/ze6gUatgv-3rqolN2UIpoP-h_i8.roa
Signing time: Sat 01 Jan 2022 04:53:32 +0000
ROA not before: Sat 01 Jan 2022 04:53:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47995
IP address blocks: 193.164.16.0/22 maxlen: 22
2a0d:70c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155792433 (0x9493431)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14a3de4b7e66c87cf9c33e008a02d1a46e3fc766
Validity
Not Before: Jan 1 04:53:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cdeea051ab60bfedebaa894dd94229a0ffa1fe2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:08:74:f6:b7:c0:5c:88:2d:74:cd:f3:4b:8a:
22:e6:67:2c:b7:63:e0:4a:bc:fc:b1:d0:9d:a1:46:
71:cb:16:4b:e6:ea:49:83:53:e8:1a:73:82:b4:f0:
69:f0:f3:8e:e9:b1:92:2e:db:a5:52:61:d1:7f:11:
2e:73:de:7f:1f:04:d6:41:c4:0f:43:75:bf:cb:66:
2c:c5:d6:e4:75:08:7c:38:6f:40:79:c4:f7:2f:a0:
1b:0e:b5:0d:3e:ac:54:2f:3b:bd:5f:4f:52:d4:b6:
7a:57:c6:43:08:94:10:00:d0:a5:dc:9d:73:65:80:
a8:ab:b6:be:fa:a5:4f:57:b9:53:ac:23:0a:42:15:
7a:18:fc:fa:98:9f:06:f8:d8:4f:49:f9:cd:49:94:
86:fc:75:25:eb:54:b5:e4:04:c5:47:b7:b4:95:e4:
90:cc:a1:67:6f:7c:7d:13:bc:26:4d:d4:2e:70:c2:
48:24:6d:d0:73:a7:d1:a1:da:30:a2:27:15:7a:41:
d7:f4:ab:be:27:12:2d:3d:94:52:cc:38:be:dd:14:
5b:39:0e:25:a6:a7:d8:50:36:bc:bd:68:eb:23:f8:
aa:79:c1:b8:43:b3:ca:80:b1:66:f1:e7:3f:63:32:
46:95:c9:b7:dd:17:4e:ad:10:7f:8d:ab:6a:eb:8f:
4b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:EE:A0:51:AB:60:BF:ED:EB:AA:89:4D:D9:42:29:A0:FF:A1:FE:2F
X509v3 Authority Key Identifier:
keyid:14:A3:DE:4B:7E:66:C8:7C:F9:C3:3E:00:8A:02:D1:A4:6E:3F:C7:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FKPeS35myHz5wz4AigLRpG4_x2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/0b556b-ed22-4453-925d-5dbb36f7a033/1/ze6gUatgv-3rqolN2UIpoP-h_i8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/0b556b-ed22-4453-925d-5dbb36f7a033/1/FKPeS35myHz5wz4AigLRpG4_x2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.16.0/22
IPv6:
2a0d:70c0::/29
Signature Algorithm: sha256WithRSAEncryption
8b:46:06:15:40:6e:3c:aa:98:a4:69:a7:5b:b0:02:e4:11:88:
56:79:f0:98:69:4f:66:ce:0d:d1:2f:ab:c4:66:03:e1:3b:99:
c6:79:a7:4f:f3:26:7e:a3:c1:44:5d:f2:de:b6:81:1d:bd:2a:
7e:13:ab:c1:0b:3e:f3:47:10:0f:bb:6f:b3:06:4c:49:e1:16:
4f:ee:fb:2a:9c:97:bb:4a:8a:f9:16:f4:88:38:6c:3c:9f:85:
14:40:18:bc:27:0c:de:c9:e3:9a:7a:0b:d1:f1:ff:ff:40:d2:
0b:84:af:dd:0d:bf:cc:8d:84:51:80:53:9e:88:1a:a8:b4:0b:
d8:3a:e1:5f:fd:74:26:cd:2d:6a:7a:75:5e:d0:f9:2d:96:a6:
84:d4:83:d0:ab:a5:95:c6:c3:88:50:06:29:b5:de:f4:25:37:
e8:93:2c:47:4d:61:9f:36:0d:1a:25:96:92:16:18:96:97:47:
b9:fa:46:fa:fd:b4:2c:d6:ed:1d:cf:ac:87:ce:a3:b4:e2:b9:
98:58:58:01:c1:38:ab:11:22:9c:ba:dc:c0:c8:2d:0a:ad:a1:
37:07:8b:8a:a1:ca:da:28:41:85:5d:82:29:a1:6e:91:41:c4:
2a:2a:95:5f:bc:94:a1:7d:14:d5:5d:74:f5:4d:0d:4c:bf:a0:
e3:2d:e8:7f
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECUk0MTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NGEzZGU0YjdlNjZjODdjZjljMzNlMDA4YTAyZDFhNDZlM2ZjNzY2MB4XDTIyMDEw
MTA0NTMzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2RlZWEwNTFhYjYw
YmZlZGViYWE4OTRkZDk0MjI5YTBmZmExZmUyZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANoIdPa3wFyILXTN80uKIuZnLLdj4Eq8/LHQnaFGccsWS+bq
SYNT6BpzgrTwafDzjumxki7bpVJh0X8RLnPefx8E1kHED0N1v8tmLMXW5HUIfDhv
QHnE9y+gGw61DT6sVC87vV9PUtS2elfGQwiUEADQpdydc2WAqKu2vvqlT1e5U6wj
CkIVehj8+pifBvjYT0n5zUmUhvx1JetUteQExUe3tJXkkMyhZ298fRO8Jk3ULnDC
SCRt0HOn0aHaMKInFXpB1/SrvicSLT2UUsw4vt0UWzkOJaan2FA2vL1o6yP4qnnB
uEOzyoCxZvHnP2MyRpXJt90XTq0Qf42rauuPS/ECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTN7qBRq2C/7euqiU3ZQimg/6H+LzAfBgNVHSMEGDAWgBQUo95LfmbIfPnD
PgCKAtGkbj/HZjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ZLUGVTMzVteUh6NXd6NEFpZ0xScEc0X3gyWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmIvMGI1NTZiLWVkMjItNDQ1My05MjVkLTVkYmIzNmY3YTAzMy8x
L3plNmdVYXRndi0zcnFvbE4yVUlwb1AtaF9pOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmIv
MGI1NTZiLWVkMjItNDQ1My05MjVkLTVkYmIzNmY3YTAzMy8xL0ZLUGVTMzVteUh6
NXd6NEFpZ0xScEc0X3gyWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAsGkEDANBAIAAjAHAwUDKg1wwDAN
BgkqhkiG9w0BAQsFAAOCAQEAi0YGFUBuPKqYpGmnW7AC5BGIVnnwmGlPZs4N0S+r
xGYD4TuZxnmnT/MmfqPBRF3y3raBHb0qfhOrwQs+80cQD7tvswZMSeEWT+77KpyX
u0qK+Rb0iDhsPJ+FFEAYvCcM3snjmnoL0fH//0DSC4Sv3Q2/zI2EUYBTnogaqLQL
2DrhX/10Js0tanp1XtD5LZamhNSD0KullcbDiFAGKbXe9CU36JMsR01hnzYNGiWW
khYYlpdHufpG+v20LNbtHc+sh86jtOK5mFhYAcE4qxEinLrcwMgtCq2hNweLiqHK
2ihBhV2CKaFukUHEKiqVX7yUoX0U1V109U0NTL+g4y3ofw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:38 2023 by rpki-client on console-ams.rpki-client.org