Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/7c55d2-381c-4e87-8ca5-2307bb59225f/1/axcqmPBGqR1fPcOF629c_aEaGjM.roa
File: axcqmPBGqR1fPcOF629c_aEaGjM.roa (raw, json)
Hash identifier: KfrElTT9mxxNVq8MuBStPrZR42iK2Utkzvji0YFDGNg=
Subject key identifier: 6B:17:2A:98:F0:46:A9:1D:5F:3D:C3:85:EB:6F:5C:FD:A1:1A:1A:33
Certificate issuer: /CN=787e31ce5d501d1a94afdabbd4e024cc2a788ef5
Certificate serial: 077D5584
Authority key identifier: 78:7E:31:CE:5D:50:1D:1A:94:AF:DA:BB:D4:E0:24:CC:2A:78:8E:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eH4xzl1QHRqUr9q71OAkzCp4jvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/7c55d2-381c-4e87-8ca5-2307bb59225f/1/axcqmPBGqR1fPcOF629c_aEaGjM.roa
Signing time: Sat 01 Jan 2022 08:00:46 +0000
ROA not before: Sat 01 Jan 2022 08:00:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197595
IP address blocks: 193.189.101.254/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125654404 (0x77d5584)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=787e31ce5d501d1a94afdabbd4e024cc2a788ef5
Validity
Not Before: Jan 1 08:00:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b172a98f046a91d5f3dc385eb6f5cfda11a1a33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:30:8e:05:68:9e:36:ef:a7:96:75:3b:c9:83:
84:a7:a9:9e:0f:1e:53:a7:30:53:88:03:33:31:47:
d5:fc:8f:00:a0:33:55:08:c1:7a:ce:f1:1f:1f:49:
62:0d:40:b6:34:4e:0f:3c:a0:48:9f:29:2e:33:8c:
fd:80:5c:f6:0b:0f:d0:34:1d:b8:0a:40:fb:00:d3:
62:30:05:a6:f4:d1:97:b5:51:3b:ae:8b:d3:fd:5a:
a4:a3:65:e6:3f:f4:7a:b0:b7:b7:8b:d0:ca:79:34:
7f:24:38:a8:bc:95:94:78:f3:28:1a:8e:1e:bd:a7:
5b:bf:fc:23:39:52:9b:2e:a2:a3:68:d3:65:57:92:
2b:de:9e:3c:a5:86:a0:20:13:e7:61:23:fd:60:1e:
b6:3e:da:a8:f1:bd:cf:25:2e:8d:56:24:9e:f9:6a:
90:84:3b:86:23:50:d7:39:87:47:f0:71:0d:40:96:
dc:5c:e1:c8:e6:4c:d8:d0:4b:e8:2e:71:b0:14:71:
2c:34:ae:cc:3a:2a:be:0f:f2:e2:fd:32:c6:93:14:
05:a5:82:ac:11:5c:01:96:74:00:e0:f0:57:b2:5d:
95:91:28:24:37:25:47:6f:90:08:9f:ad:b2:7f:f4:
60:b0:1a:72:ad:97:c7:d1:62:fc:fb:ee:d6:6b:fe:
d9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:17:2A:98:F0:46:A9:1D:5F:3D:C3:85:EB:6F:5C:FD:A1:1A:1A:33
X509v3 Authority Key Identifier:
keyid:78:7E:31:CE:5D:50:1D:1A:94:AF:DA:BB:D4:E0:24:CC:2A:78:8E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eH4xzl1QHRqUr9q71OAkzCp4jvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/7c55d2-381c-4e87-8ca5-2307bb59225f/1/axcqmPBGqR1fPcOF629c_aEaGjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/7c55d2-381c-4e87-8ca5-2307bb59225f/1/eH4xzl1QHRqUr9q71OAkzCp4jvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.189.101.254/32
Signature Algorithm: sha256WithRSAEncryption
e1:4a:b2:e6:e2:70:5f:c4:7b:33:d3:9b:25:3f:be:6a:1f:a1:
cd:eb:3e:dd:d3:72:34:37:bc:d2:33:92:6c:2b:f8:d8:93:32:
e0:e1:56:7f:00:95:1d:5b:de:4e:65:2e:02:8a:a7:47:d1:d4:
8d:3a:96:02:ab:1c:07:bc:43:9d:f0:ad:59:9f:c0:74:b5:28:
cc:2d:87:7a:e6:cc:2f:3f:65:14:24:58:0b:8d:71:39:2c:92:
5e:96:a5:d6:db:44:6c:c9:a0:27:7f:5f:e8:d9:40:9c:9e:5b:
70:c5:6c:d8:ef:99:d2:fa:6d:71:3e:7b:97:7e:79:a7:96:11:
c6:1f:99:5b:8a:85:2b:2d:80:7a:d4:34:7b:39:5a:53:03:c4:
25:4b:fd:79:1d:a2:d7:44:95:f0:b0:9b:28:1c:86:f2:ff:43:
85:d1:8e:cf:00:99:47:21:a7:de:83:38:b5:6b:31:72:de:9a:
04:d1:84:eb:bd:26:d9:81:52:fc:05:85:82:96:b2:ad:f6:ca:
7b:16:7c:2a:f1:33:8a:1c:a9:63:e8:6b:47:92:5b:4b:48:be:
ac:81:aa:de:69:b9:6a:82:e5:1b:1e:13:3d:00:79:fd:24:ea:
8f:33:44:4d:a4:b5:28:ad:b7:ab:ad:42:e9:42:9a:31:99:dd:
28:3e:80:2a
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEB31VhDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ODdlMzFjZTVkNTAxZDFhOTRhZmRhYmJkNGUwMjRjYzJhNzg4ZWY1MB4XDTIyMDEw
MTA4MDA0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmIxNzJhOThmMDQ2
YTkxZDVmM2RjMzg1ZWI2ZjVjZmRhMTFhMWEzMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALkwjgVonjbvp5Z1O8mDhKepng8eU6cwU4gDMzFH1fyPAKAz
VQjBes7xHx9JYg1AtjRODzygSJ8pLjOM/YBc9gsP0DQduApA+wDTYjAFpvTRl7VR
O66L0/1apKNl5j/0erC3t4vQynk0fyQ4qLyVlHjzKBqOHr2nW7/8IzlSmy6io2jT
ZVeSK96ePKWGoCAT52Ej/WAetj7aqPG9zyUujVYknvlqkIQ7hiNQ1zmHR/BxDUCW
3FzhyOZM2NBL6C5xsBRxLDSuzDoqvg/y4v0yxpMUBaWCrBFcAZZ0AODwV7JdlZEo
JDclR2+QCJ+tsn/0YLAacq2Xx9Fi/Pvu1mv+2ZMCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBRrFyqY8EapHV89w4Xrb1z9oRoaMzAfBgNVHSMEGDAWgBR4fjHOXVAdGpSv
2rvU4CTMKniO9TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VINHh6bDFRSFJxVXI5cTcxT0FrekNwNGp2VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmYvN2M1NWQyLTM4MWMtNGU4Ny04Y2E1LTIzMDdiYjU5MjI1Zi8x
L2F4Y3FtUEJHcVIxZlBjT0Y2MjljX2FFYUdqTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmYv
N2M1NWQyLTM4MWMtNGU4Ny04Y2E1LTIzMDdiYjU5MjI1Zi8xL2VINHh6bDFRSFJx
VXI5cTcxT0FrekNwNGp2VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAMG9Zf4wDQYJKoZIhvcNAQELBQAD
ggEBAOFKsubicF/EezPTmyU/vmofoc3rPt3TcjQ3vNIzkmwr+NiTMuDhVn8AlR1b
3k5lLgKKp0fR1I06lgKrHAe8Q53wrVmfwHS1KMwth3rmzC8/ZRQkWAuNcTkskl6W
pdbbRGzJoCd/X+jZQJyeW3DFbNjvmdL6bXE+e5d+eaeWEcYfmVuKhSstgHrUNHs5
WlMDxCVL/XkdotdElfCwmygchvL/Q4XRjs8AmUchp96DOLVrMXLemgTRhOu9JtmB
UvwFhYKWsq32ynsWfCrxM4ocqWPoa0eSW0tIvqyBqt5puWqC5RseEz0Aef0k6o8z
RE2ktSitt6utQulCmjGZ3Sg+gCo=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:04 2023 by rpki-client on console-fra.rpki-client.org