Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/3a90f5-65b5-40b5-8ed9-98c095c07e24/1/IUoCNcX1_pPLwlG-0G6QNrHdwvg.roa
File: IUoCNcX1_pPLwlG-0G6QNrHdwvg.roa (raw, json)
Hash identifier: fV0BUOTL9LGdssifChbnYSP9TUDW9m5md3gDa5VB1uI=
Subject key identifier: 21:4A:02:35:C5:F5:FE:93:CB:C2:51:BE:D0:6E:90:36:B1:DD:C2:F8
Certificate issuer: /CN=515f61a6e08ded6f1ff50511c62089696ab564a8
Certificate serial: 03A90029
Authority key identifier: 51:5F:61:A6:E0:8D:ED:6F:1F:F5:05:11:C6:20:89:69:6A:B5:64:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UV9hpuCN7W8f9QURxiCJaWq1ZKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/3a90f5-65b5-40b5-8ed9-98c095c07e24/1/IUoCNcX1_pPLwlG-0G6QNrHdwvg.roa
Signing time: Sat 01 Jan 2022 14:55:38 +0000
ROA not before: Sat 01 Jan 2022 14:55:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30849
IP address blocks: 193.23.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61407273 (0x3a90029)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=515f61a6e08ded6f1ff50511c62089696ab564a8
Validity
Not Before: Jan 1 14:55:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=214a0235c5f5fe93cbc251bed06e9036b1ddc2f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0b:a2:cd:fd:f3:b2:ae:9f:7e:2f:f2:a8:db:
3b:1d:63:41:d9:8b:bb:e5:a8:41:5a:df:51:7f:ef:
12:d6:c1:b5:9c:68:f7:14:ab:45:41:87:d4:ac:30:
78:39:35:c8:66:4d:55:07:a9:7a:d4:f0:eb:01:cf:
be:ca:f9:46:e4:67:7a:04:52:50:34:ae:5e:05:df:
5a:d4:48:29:05:2a:9e:70:c8:6c:1f:1d:10:4e:ac:
ce:1e:d0:e9:db:3e:88:92:25:2e:b4:44:4b:89:d9:
65:ee:d2:c9:16:b6:11:23:8b:ea:ec:2a:bd:b4:c4:
48:8a:d5:5f:e5:04:94:da:b8:f9:a7:6b:06:37:4d:
fd:12:12:e4:be:34:97:4d:67:bc:44:ac:3d:8b:20:
dd:33:21:8e:8e:15:44:a9:c8:ec:3c:04:d6:36:40:
b5:51:a7:3e:32:9e:21:3e:d2:19:bc:f7:7f:36:f4:
c3:ae:11:1d:61:c2:a0:5a:a0:30:f2:c3:5f:a2:5e:
86:72:f8:e6:ff:b9:d6:2d:5b:18:8d:66:17:fe:37:
6b:c2:55:73:b2:c2:91:15:b1:4d:0c:f2:15:e0:01:
85:75:1b:1f:32:4a:d7:0e:87:6a:7e:21:62:30:53:
1c:41:48:aa:d2:c8:1f:2d:5e:12:bd:91:a8:85:75:
8e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:4A:02:35:C5:F5:FE:93:CB:C2:51:BE:D0:6E:90:36:B1:DD:C2:F8
X509v3 Authority Key Identifier:
keyid:51:5F:61:A6:E0:8D:ED:6F:1F:F5:05:11:C6:20:89:69:6A:B5:64:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UV9hpuCN7W8f9QURxiCJaWq1ZKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3a90f5-65b5-40b5-8ed9-98c095c07e24/1/IUoCNcX1_pPLwlG-0G6QNrHdwvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3a90f5-65b5-40b5-8ed9-98c095c07e24/1/UV9hpuCN7W8f9QURxiCJaWq1ZKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.157.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:d8:fd:e5:d2:ed:25:04:da:e4:09:09:2b:dc:a8:bf:92:91:
dd:d6:f9:76:e3:c8:79:d5:ef:95:6c:d6:37:74:ac:e7:38:f2:
fb:67:1a:df:36:26:08:c6:e7:70:61:63:f2:88:a5:e9:3f:ee:
9a:5c:d2:eb:bc:b0:69:3d:d8:9e:50:95:5f:02:6f:e8:08:d7:
39:3b:d0:8a:47:d6:38:20:43:23:05:f4:14:1e:13:99:e2:5c:
f3:27:8b:b7:a1:b2:15:4d:09:06:a5:ca:14:4a:e0:40:9e:ba:
d8:ba:15:83:fe:44:5b:3e:0b:95:85:28:c5:72:a8:e4:f8:a9:
9d:ba:8c:1b:4b:e8:71:ec:b0:7b:0d:0f:4c:ed:f0:fb:53:8e:
df:3c:c8:6c:f3:2d:58:b9:4a:85:c7:07:82:98:25:09:62:46:
89:49:1f:ef:c7:33:3f:bf:5a:8b:2f:33:c5:2e:9b:a5:e1:30:
97:a4:24:eb:e0:48:02:21:f8:02:69:2e:59:4a:e0:eb:39:04:
08:d3:14:b3:d0:c8:00:65:8f:7e:e9:3d:ac:9f:bd:9b:6c:61:
b4:99:4a:52:f7:2f:17:8c:1b:c2:14:0b:e5:d3:e1:61:14:3d:
9a:b3:95:61:98:e9:d2:76:db:4c:f6:d0:b2:3f:d4:72:78:b8:
71:3f:e1:b9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA6kAKTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MTVmNjFhNmUwOGRlZDZmMWZmNTA1MTFjNjIwODk2OTZhYjU2NGE4MB4XDTIyMDEw
MTE0NTUzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjE0YTAyMzVjNWY1
ZmU5M2NiYzI1MWJlZDA2ZTkwMzZiMWRkYzJmODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKwLos3987Kun34v8qjbOx1jQdmLu+WoQVrfUX/vEtbBtZxo
9xSrRUGH1KwweDk1yGZNVQepetTw6wHPvsr5RuRnegRSUDSuXgXfWtRIKQUqnnDI
bB8dEE6szh7Q6ds+iJIlLrRES4nZZe7SyRa2ESOL6uwqvbTESIrVX+UElNq4+adr
BjdN/RIS5L40l01nvESsPYsg3TMhjo4VRKnI7DwE1jZAtVGnPjKeIT7SGbz3fzb0
w64RHWHCoFqgMPLDX6JehnL45v+51i1bGI1mF/43a8JVc7LCkRWxTQzyFeABhXUb
HzJK1w6Han4hYjBTHEFIqtLIHy1eEr2RqIV1jqECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQhSgI1xfX+k8vCUb7QbpA2sd3C+DAfBgNVHSMEGDAWgBRRX2Gm4I3tbx/1
BRHGIIlparVkqDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VWOWhwdUNON1c4ZjlRVVJ4aUNKYVdxMVpLZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWIvM2E5MGY1LTY1YjUtNDBiNS04ZWQ5LTk4YzA5NWMwN2UyNC8x
L0lVb0NOY1gxX3BQTHdsRy0wRzZRTnJIZHd2Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIv
M2E5MGY1LTY1YjUtNDBiNS04ZWQ5LTk4YzA5NWMwN2UyNC8xL1VWOWhwdUNON1c4
ZjlRVVJ4aUNKYVdxMVpLZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEXnTANBgkqhkiG9w0BAQsFAAOC
AQEAStj95dLtJQTa5AkJK9yov5KR3db5duPIedXvlWzWN3Ss5zjy+2ca3zYmCMbn
cGFj8oil6T/umlzS67ywaT3YnlCVXwJv6AjXOTvQikfWOCBDIwX0FB4TmeJc8yeL
t6GyFU0JBqXKFErgQJ662LoVg/5EWz4LlYUoxXKo5PipnbqMG0voceywew0PTO3w
+1OO3zzIbPMtWLlKhccHgpglCWJGiUkf78czP79aiy8zxS6bpeEwl6Qk6+BIAiH4
AmkuWUrg6zkECNMUs9DIAGWPfuk9rJ+9m2xhtJlKUvcvF4wbwhQL5dPhYRQ9mrOV
YZjp0nbbTPbQsj/Ucni4cT/huQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:40 2023 by rpki-client on console.sobornost.net