Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/8e6f08-30f0-46dd-a7a1-a9c384128d42/1/Xpnqi1cnAk-83mGFFM3KKjPuuaU.roa
File: Xpnqi1cnAk-83mGFFM3KKjPuuaU.roa (raw, json)
Hash identifier: iycceB9FPAfFSkZIcuzbgmy4P+PI2gBk0+byptbmrL0=
Subject key identifier: 5E:99:EA:8B:57:27:02:4F:BC:DE:61:85:14:CD:CA:2A:33:EE:B9:A5
Certificate issuer: /CN=a0e381b6e76cb9520e8d8f56776eca0fe176cc40
Certificate serial: 0B61CEED
Authority key identifier: A0:E3:81:B6:E7:6C:B9:52:0E:8D:8F:56:77:6E:CA:0F:E1:76:CC:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOOBtudsuVIOjY9Wd27KD-F2zEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/8e6f08-30f0-46dd-a7a1-a9c384128d42/1/Xpnqi1cnAk-83mGFFM3KKjPuuaU.roa
Signing time: Sat 01 Jan 2022 13:58:32 +0000
ROA not before: Sat 01 Jan 2022 13:58:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201194
IP address blocks: 185.164.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190959341 (0xb61ceed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e381b6e76cb9520e8d8f56776eca0fe176cc40
Validity
Not Before: Jan 1 13:58:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e99ea8b5727024fbcde618514cdca2a33eeb9a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:57:8c:8d:1b:19:a6:47:10:07:e4:ea:23:93:
95:1d:5d:61:90:6f:f5:de:ae:58:da:9e:e3:10:25:
4c:7f:a0:c3:11:c6:5a:e8:e3:a9:21:e7:86:e0:d0:
c7:e8:ad:5a:ea:a7:57:0d:39:3c:9a:00:81:4c:e1:
74:1e:fc:63:90:79:0b:64:1d:fe:c7:bf:f1:a1:9b:
9f:a6:15:c6:98:fa:24:a8:8d:e6:e7:b8:15:c5:d3:
7f:52:9a:69:16:83:a1:67:9c:3f:06:17:80:38:8a:
9c:17:03:6b:47:60:ba:99:3f:84:9f:d7:a6:c7:03:
d7:d3:35:ca:92:95:c3:99:8e:ee:30:9b:dd:cc:c7:
7e:1f:c4:f1:87:44:a4:85:db:c6:81:1c:b2:1c:ce:
27:08:fe:d4:61:1f:38:94:1e:f0:1a:de:7e:94:a6:
36:82:88:d4:99:c9:6d:b0:19:69:8e:e6:28:80:09:
fa:2e:74:9d:5b:c1:eb:3b:90:07:6d:98:f1:97:85:
8b:1e:f2:a9:1b:89:cc:dd:d6:66:4a:f5:98:08:c3:
c8:55:f5:58:b8:14:01:7c:40:49:1d:31:70:a6:49:
b1:59:8f:ea:47:6e:ab:1a:07:87:b6:3c:9e:73:d5:
af:ec:ca:23:b8:c5:60:c2:e3:a2:07:e9:15:54:6f:
c8:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:99:EA:8B:57:27:02:4F:BC:DE:61:85:14:CD:CA:2A:33:EE:B9:A5
X509v3 Authority Key Identifier:
keyid:A0:E3:81:B6:E7:6C:B9:52:0E:8D:8F:56:77:6E:CA:0F:E1:76:CC:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOOBtudsuVIOjY9Wd27KD-F2zEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/8e6f08-30f0-46dd-a7a1-a9c384128d42/1/Xpnqi1cnAk-83mGFFM3KKjPuuaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/8e6f08-30f0-46dd-a7a1-a9c384128d42/1/oOOBtudsuVIOjY9Wd27KD-F2zEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.73.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:4e:9f:64:0b:d2:d2:d9:e5:f7:29:74:b3:aa:ca:4c:63:d9:
d2:94:85:f7:c8:be:91:73:3c:ef:2b:fe:70:9a:7e:d0:11:c0:
e7:5b:49:f3:1c:0f:c1:ec:33:37:65:9d:73:f2:f6:28:e4:c3:
ac:6e:c1:2d:28:67:ac:02:f1:7b:df:e1:bb:49:28:c5:8d:72:
30:9a:a2:9f:13:4c:7a:41:1f:b0:53:8d:c1:45:f4:e7:3b:6f:
37:5f:f5:20:7f:ac:bb:83:0c:53:08:3b:81:88:ae:46:de:38:
b0:75:55:f8:bd:03:35:09:d2:eb:ff:bc:ef:58:9c:9b:94:b7:
98:a4:ca:a2:39:f5:41:5a:c9:e5:86:65:98:0b:93:e0:e7:48:
14:e9:75:f1:9f:33:4f:81:53:41:9d:7e:d7:2f:b7:2c:aa:a1:
33:e3:e8:b1:d9:58:a7:55:79:9d:d7:83:79:a4:df:10:c2:ff:
21:00:1d:9e:57:3d:87:95:57:cd:d9:f6:8c:ba:c9:09:4c:52:
0b:44:1f:69:bc:99:bb:a5:5f:39:30:b8:0c:6f:78:f8:4c:10:
89:12:6e:43:4a:da:cf:c7:f6:d6:ea:ff:75:cd:35:68:53:a1:
01:22:06:49:75:44:ff:9b:f6:98:94:3d:c1:34:ba:3b:09:95:
12:cb:49:6f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEC2HO7TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MGUzODFiNmU3NmNiOTUyMGU4ZDhmNTY3NzZlY2EwZmUxNzZjYzQwMB4XDTIyMDEw
MTEzNTgzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWU5OWVhOGI1NzI3
MDI0ZmJjZGU2MTg1MTRjZGNhMmEzM2VlYjlhNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKNXjI0bGaZHEAfk6iOTlR1dYZBv9d6uWNqe4xAlTH+gwxHG
WujjqSHnhuDQx+itWuqnVw05PJoAgUzhdB78Y5B5C2Qd/se/8aGbn6YVxpj6JKiN
5ue4FcXTf1KaaRaDoWecPwYXgDiKnBcDa0dgupk/hJ/XpscD19M1ypKVw5mO7jCb
3czHfh/E8YdEpIXbxoEcshzOJwj+1GEfOJQe8BrefpSmNoKI1JnJbbAZaY7mKIAJ
+i50nVvB6zuQB22Y8ZeFix7yqRuJzN3WZkr1mAjDyFX1WLgUAXxASR0xcKZJsVmP
6kduqxoHh7Y8nnPVr+zKI7jFYMLjogfpFVRvyGsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRemeqLVycCT7zeYYUUzcoqM+65pTAfBgNVHSMEGDAWgBSg44G252y5Ug6N
j1Z3bsoP4XbMQDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L29PT0J0dWRzdVZJT2pZOVdkMjdLRC1GMnpFQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDkvOGU2ZjA4LTMwZjAtNDZkZC1hN2ExLWE5YzM4NDEyOGQ0Mi8x
L1hwbnFpMWNuQWstODNtR0ZGTTNLS2pQdXVhVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDkv
OGU2ZjA4LTMwZjAtNDZkZC1hN2ExLWE5YzM4NDEyOGQ0Mi8xL29PT0J0dWRzdVZJ
T2pZOVdkMjdLRC1GMnpFQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmkSTANBgkqhkiG9w0BAQsFAAOC
AQEAqE6fZAvS0tnl9yl0s6rKTGPZ0pSF98i+kXM87yv+cJp+0BHA51tJ8xwPwewz
N2Wdc/L2KOTDrG7BLShnrALxe9/hu0koxY1yMJqinxNMekEfsFONwUX05ztvN1/1
IH+su4MMUwg7gYiuRt44sHVV+L0DNQnS6/+871icm5S3mKTKojn1QVrJ5YZlmAuT
4OdIFOl18Z8zT4FTQZ1+1y+3LKqhM+PosdlYp1V5ndeDeaTfEML/IQAdnlc9h5VX
zdn2jLrJCUxSC0QfabyZu6VfOTC4DG94+EwQiRJuQ0raz8f21ur/dc01aFOhASIG
SXVE/5v2mJQ9wTS6OwmVEstJbw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:01 2024 by rpki-client on console-fra.rpki-client.org