Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/f562a4-2f04-46dd-b1c1-356cdebeb84f/1/68ChaBGwESj9r48y_KJbsCzxJm0.roa
File: 68ChaBGwESj9r48y_KJbsCzxJm0.roa (raw, json)
Hash identifier: mtK8zDeraGACazUdXBYlEGdqjbDjlpVjJJPcto4Kdt4=
Subject key identifier: EB:C0:A1:68:11:B0:11:28:FD:AF:8F:32:FC:A2:5B:B0:2C:F1:26:6D
Certificate issuer: /CN=8966861be57d36d5f6d9d9f8ebf62817616a21f5
Certificate serial: 0185629665DBCA6313E0F7A955399C061E33
Authority key identifier: 89:66:86:1B:E5:7D:36:D5:F6:D9:D9:F8:EB:F6:28:17:61:6A:21:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWaGG-V9NtX22dn46_YoF2FqIfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/f562a4-2f04-46dd-b1c1-356cdebeb84f/1/68ChaBGwESj9r48y_KJbsCzxJm0.roa
Signing time: Fri 30 Dec 2022 10:31:41 +0000
ROA not before: Fri 30 Dec 2022 10:31:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35044
IP address blocks: 193.189.108.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:96:65:db:ca:63:13:e0:f7:a9:55:39:9c:06:1e:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8966861be57d36d5f6d9d9f8ebf62817616a21f5
Validity
Not Before: Dec 30 10:31:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ebc0a16811b01128fdaf8f32fca25bb02cf1266d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:63:08:3a:91:a3:ee:44:55:e0:13:d0:2c:b3:
65:c8:9c:90:b0:0f:00:f8:29:2f:96:27:dc:c4:fa:
7a:01:87:2f:29:28:90:97:29:25:f4:95:b9:ac:01:
df:ec:4e:c4:7c:76:98:00:3a:b5:47:e3:ff:09:e5:
ad:e1:1c:77:f1:f2:6b:f2:98:ba:8d:44:73:e3:58:
18:b8:b7:73:ee:5b:87:0b:5d:a9:e4:47:af:4f:c1:
00:da:5e:fd:e6:cd:60:8e:59:09:65:95:9a:0d:cf:
56:03:d2:b7:c2:e4:ef:25:30:12:11:bc:b0:00:0f:
2f:d7:01:b3:23:bc:53:89:ae:af:b6:e6:67:35:cd:
3e:b8:4a:a2:15:47:41:3d:f8:7c:93:71:a9:93:b1:
0d:fc:ee:3f:e8:85:c3:be:37:fb:9f:d2:18:a2:0a:
bb:14:a8:e3:3f:58:3a:35:3b:c5:09:7d:1d:88:42:
c6:f4:af:c3:cd:cc:25:04:35:f3:6a:0a:73:50:0c:
bb:2c:b8:da:1f:4b:36:80:ed:70:94:ee:52:0c:14:
c7:e0:17:db:bd:36:07:20:7d:25:be:cf:ff:78:07:
70:65:7a:65:b6:d2:e8:a2:00:c9:fd:f8:56:39:72:
e7:40:0b:86:68:47:64:9e:77:e7:2e:fa:93:1b:af:
5a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C0:A1:68:11:B0:11:28:FD:AF:8F:32:FC:A2:5B:B0:2C:F1:26:6D
X509v3 Authority Key Identifier:
keyid:89:66:86:1B:E5:7D:36:D5:F6:D9:D9:F8:EB:F6:28:17:61:6A:21:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWaGG-V9NtX22dn46_YoF2FqIfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f562a4-2f04-46dd-b1c1-356cdebeb84f/1/68ChaBGwESj9r48y_KJbsCzxJm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f562a4-2f04-46dd-b1c1-356cdebeb84f/1/iWaGG-V9NtX22dn46_YoF2FqIfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.189.108.0/23
Signature Algorithm: sha256WithRSAEncryption
36:70:0c:1e:97:cf:88:96:34:49:b4:1a:1a:e1:23:3d:70:71:
cb:e0:e8:02:5e:d2:a7:d9:42:54:7e:b5:f0:36:13:30:6c:a8:
8a:49:e9:38:ad:1a:5d:48:c2:2a:89:38:da:dc:e8:7d:65:33:
0a:1c:ac:7d:7b:4c:8c:c1:16:5d:19:be:72:11:98:be:8d:e2:
f1:76:d0:42:77:7e:34:d8:7d:d4:52:aa:22:df:24:3e:46:62:
14:51:38:3e:f6:8d:7e:1c:d6:8d:c3:23:cc:1a:a6:07:e4:f6:
13:a4:47:82:a9:22:6a:4b:37:af:1c:ba:2f:9e:93:bd:c8:42:
06:af:2e:08:cb:0b:34:1f:eb:52:09:53:a3:c1:5b:76:73:12:
1c:02:91:dd:72:20:df:f6:10:47:d4:a2:54:ae:a2:ed:46:24:
e0:da:2b:cc:fa:68:d0:8b:e6:93:ae:90:4a:d1:9a:66:fd:44:
96:b1:76:df:4a:0c:6f:0f:75:d5:84:51:73:13:72:90:db:75:
fd:bf:14:1c:47:c4:22:eb:c7:e0:aa:29:4a:b5:11:93:d7:65:
a0:c5:c4:50:cd:b4:c2:2c:04:e4:00:2b:8e:59:df:3a:90:a2:
bb:d8:db:ac:57:ab:1c:3d:0e:53:f2:38:ae:fa:d8:28:cc:ce:
26:b1:12:49
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVilmXbymMT4PepVTmcBh4zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5NjY4NjFiZTU3ZDM2ZDVmNmQ5ZDlmOGViZjYyODE3NjE2
YTIxZjUwHhcNMjIxMjMwMTAzMTQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYmMwYTE2ODExYjAxMTI4ZmRhZjhmMzJmY2EyNWJiMDJjZjEyNjZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn2MIOpGj7kRV4BPQLLNlyJyQsA8A
+CkvlifcxPp6AYcvKSiQlykl9JW5rAHf7E7EfHaYADq1R+P/CeWt4Rx38fJr8pi6
jURz41gYuLdz7luHC12p5EevT8EA2l795s1gjlkJZZWaDc9WA9K3wuTvJTASEbyw
AA8v1wGzI7xTia6vtuZnNc0+uEqiFUdBPfh8k3Gpk7EN/O4/6IXDvjf7n9IYogq7
FKjjP1g6NTvFCX0diELG9K/DzcwlBDXzagpzUAy7LLjaH0s2gO1wlO5SDBTH4Bfb
vTYHIH0lvs//eAdwZXplttLoogDJ/fhWOXLnQAuGaEdknnfnLvqTG69apQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOvAoWgRsBEo/a+PMvyiW7As8SZtMB8GA1UdIwQY
MBaAFIlmhhvlfTbV9tnZ+Ov2KBdhaiH1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVdhR0ctVjlOdFgyMmRuNDZfWW9GMkZxSWZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9mNTYyYTQtMmYwNC00NmRkLWIxYzEt
MzU2Y2RlYmViODRmLzEvNjhDaGFCR3dFU2o5cjQ4eV9LSmJzQ3p4Sm0wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi9mNTYyYTQtMmYwNC00NmRkLWIxYzEtMzU2Y2RlYmViODRm
LzEvaVdhR0ctVjlOdFgyMmRuNDZfWW9GMkZxSWZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwb1sMA0G
CSqGSIb3DQEBCwUAA4IBAQA2cAwel8+IljRJtBoa4SM9cHHL4OgCXtKn2UJUfrXw
NhMwbKiKSek4rRpdSMIqiTja3Oh9ZTMKHKx9e0yMwRZdGb5yEZi+jeLxdtBCd340
2H3UUqoi3yQ+RmIUUTg+9o1+HNaNwyPMGqYH5PYTpEeCqSJqSzevHLovnpO9yEIG
ry4Iyws0H+tSCVOjwVt2cxIcApHdciDf9hBH1KJUrqLtRiTg2ivM+mjQi+aTrpBK
0Zpm/USWsXbfSgxvD3XVhFFzE3KQ23X9vxQcR8Qi68fgqilKtRGT12WgxcRQzbTC
LATkACuOWd86kKK72NusV6scPQ5T8jiu+tgozM4msRJJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:18 2024 by rpki-client on console-fra.rpki-client.org