Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/e212d2-fb72-48cf-8806-14b8d30f1397/1/_zxSbJLvMXnM0VNoiNhsczQQ9ds.roa
File: _zxSbJLvMXnM0VNoiNhsczQQ9ds.roa (raw, json)
Hash identifier: IAUS41Zclj+XkZRSlrZebiQ1QQq9gkbirAA5NiFZybQ=
Subject key identifier: FF:3C:52:6C:92:EF:31:79:CC:D1:53:68:88:D8:6C:73:34:10:F5:DB
Certificate issuer: /CN=be966dbeb641382a15f467f5a03e9a96fa1dc194
Certificate serial: 084F988A
Authority key identifier: BE:96:6D:BE:B6:41:38:2A:15:F4:67:F5:A0:3E:9A:96:FA:1D:C1:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vpZtvrZBOCoV9Gf1oD6alvodwZQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/e212d2-fb72-48cf-8806-14b8d30f1397/1/_zxSbJLvMXnM0VNoiNhsczQQ9ds.roa
Signing time: Sat 01 Jan 2022 06:04:51 +0000
ROA not before: Sat 01 Jan 2022 06:04:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197077
IP address blocks: 194.93.44.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139434122 (0x84f988a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be966dbeb641382a15f467f5a03e9a96fa1dc194
Validity
Not Before: Jan 1 06:04:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff3c526c92ef3179ccd1536888d86c733410f5db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:92:d9:ac:d6:2c:74:7f:60:0c:56:c0:a2:47:
75:9b:b2:fb:3a:6b:53:f3:7d:5b:7f:37:cf:f8:f6:
f0:52:e8:58:09:46:92:d0:d6:fb:4a:c6:17:5a:9a:
9c:4b:ed:5c:cb:c9:95:ba:32:ca:c2:91:81:f3:9a:
25:74:f1:c5:4c:ac:5c:e2:68:a0:e1:cc:cc:84:43:
03:e7:fb:83:e8:ee:1f:c8:be:bf:cd:51:85:77:5c:
c1:4d:59:a0:21:7c:f1:f7:35:e1:f7:8a:05:e8:1f:
a0:29:ca:47:a2:d0:9e:6d:5f:8d:b6:4d:e3:84:b9:
74:dd:c8:6d:d4:62:a1:ab:00:33:9a:bf:56:f0:59:
82:07:2b:af:f7:17:19:a7:60:be:20:05:12:e2:1a:
6e:e4:fb:f2:57:f2:5f:f6:3b:12:93:0e:52:35:c9:
e6:e3:3c:42:d9:15:b9:2b:f9:fb:e4:6d:9e:c9:17:
22:40:15:d1:6a:b8:5f:ec:31:a4:40:ff:5f:cd:f3:
56:d7:84:bf:65:e8:0c:ce:ec:2e:07:21:a4:85:59:
e1:d2:74:9e:ef:54:ef:de:16:b3:62:c9:3d:90:29:
55:f5:de:8d:b2:b2:d6:b5:87:0e:e1:05:2f:a9:7e:
53:25:14:54:c6:3f:c7:b9:25:c5:83:c3:d0:09:09:
db:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:3C:52:6C:92:EF:31:79:CC:D1:53:68:88:D8:6C:73:34:10:F5:DB
X509v3 Authority Key Identifier:
keyid:BE:96:6D:BE:B6:41:38:2A:15:F4:67:F5:A0:3E:9A:96:FA:1D:C1:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vpZtvrZBOCoV9Gf1oD6alvodwZQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/e212d2-fb72-48cf-8806-14b8d30f1397/1/_zxSbJLvMXnM0VNoiNhsczQQ9ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/e212d2-fb72-48cf-8806-14b8d30f1397/1/vpZtvrZBOCoV9Gf1oD6alvodwZQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.93.44.0/22
Signature Algorithm: sha256WithRSAEncryption
16:25:2c:0e:04:af:5c:16:9c:2c:5c:eb:da:9c:64:25:84:e0:
f6:63:3f:ab:5b:f0:88:ee:6c:32:94:e5:bd:75:86:76:eb:e6:
dc:26:94:13:d9:65:65:d1:72:0a:97:66:22:61:4d:1d:df:c6:
2e:61:23:eb:61:4d:44:28:bb:3a:71:ee:f1:f9:8b:4f:ca:80:
bc:6a:bd:d3:a3:48:89:09:9d:f0:10:eb:c0:2e:3e:52:fc:93:
0d:60:37:38:32:1c:a2:e9:96:84:75:ab:ff:80:b3:0f:6f:80:
23:0f:77:c6:e6:bd:e9:6a:dc:e9:dc:63:90:05:35:a6:5d:1e:
98:c5:ea:8c:69:69:7d:ba:08:90:d9:7b:00:6e:e8:97:60:3c:
98:e1:7c:51:c0:5f:ea:c8:a0:97:e1:72:3b:e6:8a:ae:8d:6a:
31:ac:f5:5c:93:d8:7d:d4:0f:67:a2:cb:1f:e3:bc:be:ee:56:
fc:3d:63:84:29:cc:09:31:a8:03:94:e9:7b:2c:8e:0e:2f:1a:
b5:da:32:fa:d9:de:63:ac:07:8a:a5:04:00:fc:f6:9c:f1:dc:
f1:45:9b:e7:33:ad:54:ca:03:a4:c7:7a:5a:73:e6:8b:d2:fc:
e1:53:c3:9f:be:1f:cc:e7:2c:0d:c9:de:51:37:6a:dd:f7:53:
8b:46:f1:02
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECE+YijANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZTk2NmRiZWI2NDEzODJhMTVmNDY3ZjVhMDNlOWE5NmZhMWRjMTk0MB4XDTIyMDEw
MTA2MDQ1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmYzYzUyNmM5MmVm
MzE3OWNjZDE1MzY4ODhkODZjNzMzNDEwZjVkYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK2S2azWLHR/YAxWwKJHdZuy+zprU/N9W383z/j28FLoWAlG
ktDW+0rGF1qanEvtXMvJlboyysKRgfOaJXTxxUysXOJooOHMzIRDA+f7g+juH8i+
v81RhXdcwU1ZoCF88fc14feKBegfoCnKR6LQnm1fjbZN44S5dN3IbdRioasAM5q/
VvBZggcrr/cXGadgviAFEuIabuT78lfyX/Y7EpMOUjXJ5uM8QtkVuSv5++RtnskX
IkAV0Wq4X+wxpED/X83zVteEv2XoDM7sLgchpIVZ4dJ0nu9U794Ws2LJPZApVfXe
jbKy1rWHDuEFL6l+UyUUVMY/x7klxYPD0AkJ29ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT/PFJsku8xeczRU2iI2GxzNBD12zAfBgNVHSMEGDAWgBS+lm2+tkE4KhX0
Z/WgPpqW+h3BlDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZwWnR2clpCT0NvVjlHZjFvRDZhbHZvZHdaUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmUvZTIxMmQyLWZiNzItNDhjZi04ODA2LTE0YjhkMzBmMTM5Ny8x
L196eFNiSkx2TVhuTTBWTm9pTmhzY3pRUTlkcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmUv
ZTIxMmQyLWZiNzItNDhjZi04ODA2LTE0YjhkMzBmMTM5Ny8xL3ZwWnR2clpCT0Nv
VjlHZjFvRDZhbHZvZHdaUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsJdLDANBgkqhkiG9w0BAQsFAAOC
AQEAFiUsDgSvXBacLFzr2pxkJYTg9mM/q1vwiO5sMpTlvXWGduvm3CaUE9llZdFy
CpdmImFNHd/GLmEj62FNRCi7OnHu8fmLT8qAvGq906NIiQmd8BDrwC4+UvyTDWA3
ODIcoumWhHWr/4CzD2+AIw93xua96Wrc6dxjkAU1pl0emMXqjGlpfboIkNl7AG7o
l2A8mOF8UcBf6sigl+FyO+aKro1qMaz1XJPYfdQPZ6LLH+O8vu5W/D1jhCnMCTGo
A5TpeyyODi8atdoy+tneY6wHiqUEAPz2nPHc8UWb5zOtVMoDpMd6WnPmi9L84VPD
n74fzOcsDcneUTdq3fdTi0bxAg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:53 2023 by rpki-client on console-ams.rpki-client.org