Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/YrNNYyVpERhquj5iT2aqavGkelU.roa
File: YrNNYyVpERhquj5iT2aqavGkelU.roa (raw, json)
Hash identifier: fAwy6KzKCY9H1jISRbyozxZeOetxCEiTYRVpj1H0gwg=
Subject key identifier: 62:B3:4D:63:25:69:11:18:6A:BA:3E:62:4F:66:AA:6A:F1:A4:7A:55
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 0184EB93C39EF09F57E4FC3A7882A52684DA
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/YrNNYyVpERhquj5iT2aqavGkelU.roa
Signing time: Wed 07 Dec 2022 07:54:00 +0000
ROA not before: Wed 07 Dec 2022 07:54:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 4775
IP address blocks: 163.171.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:eb:93:c3:9e:f0:9f:57:e4:fc:3a:78:82:a5:26:84:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Dec 7 07:54:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62b34d63256911186aba3e624f66aa6af1a47a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:10:67:a3:e4:0c:21:fd:e6:4a:a7:a2:c9:36:
52:15:1b:0a:97:36:57:ac:c7:26:34:af:65:4c:b3:
4b:b0:54:7a:f1:f8:be:14:e8:7d:1c:c3:c5:2a:78:
b5:83:1d:29:d5:8b:d7:4a:bc:77:00:e5:48:71:e5:
62:c1:67:92:de:11:46:c2:eb:7f:e0:dc:c0:f5:bd:
4c:6e:fe:57:f6:21:02:00:84:fd:5d:ad:31:01:50:
b4:69:9b:84:8e:2d:f2:26:e1:5f:3d:20:d4:3a:20:
74:1b:96:e2:30:67:16:94:9a:54:22:15:b3:fa:56:
ed:34:a3:12:e8:39:20:2a:e1:b7:30:0f:38:3a:f4:
20:d6:a5:e7:ea:9c:b3:46:72:16:48:be:6a:f4:7c:
2a:f4:bc:1c:84:3d:ce:ed:d7:69:f8:3f:06:b2:f1:
6c:dc:8b:9f:bc:1e:92:cd:cf:e2:3c:81:08:b3:78:
e5:62:ea:ac:75:c7:09:81:74:ef:ea:12:f6:31:bb:
c7:6e:10:31:f0:0e:a7:14:6a:7c:25:bd:b3:e5:9c:
31:80:e4:8e:95:1d:8b:5f:3d:87:c3:aa:b9:c5:a4:
37:c0:d1:00:4b:c3:b1:fc:eb:15:41:fa:6a:d8:c4:
52:8b:ae:c4:c0:b1:82:0a:ad:ac:4e:b7:8c:31:46:
2a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:B3:4D:63:25:69:11:18:6A:BA:3E:62:4F:66:AA:6A:F1:A4:7A:55
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/YrNNYyVpERhquj5iT2aqavGkelU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.171.65.0/24
Signature Algorithm: sha256WithRSAEncryption
66:59:3e:7e:c5:0b:01:85:4d:8a:60:84:9f:9f:a8:e3:a5:1f:
b7:7a:6b:e8:3a:10:fe:ed:3b:aa:bd:4d:05:44:83:32:0c:fa:
1e:47:ad:bc:ba:64:b9:70:78:20:8f:85:9c:a5:fe:c0:28:2c:
32:69:50:d1:03:8f:35:e9:ec:d2:76:c6:84:a5:8a:9c:55:5c:
f8:7a:73:e3:43:db:42:11:f1:d4:ac:c4:2e:16:cb:75:61:0d:
8d:d9:ac:56:e7:4f:7f:1a:bd:9a:1e:f0:be:32:d3:69:d3:5a:
e4:40:9e:ee:20:ea:a2:a3:17:e2:15:bf:b0:4c:61:c6:c9:23:
d9:68:0b:da:0b:04:e7:1d:84:ac:e6:1a:74:68:5f:36:e0:87:
39:32:f3:ac:db:c6:9d:74:1c:de:1e:e2:6a:8a:e2:2f:87:40:
c0:07:bb:19:69:58:75:f8:29:57:96:9f:07:8d:cb:93:8e:1e:
be:70:ea:49:81:5c:ed:2a:5c:88:a1:3a:7b:34:c0:e9:4d:9f:
8b:0c:2f:05:41:c8:77:5e:27:8f:61:8f:9d:c3:e1:72:dc:ab:
a8:1d:79:7d:28:a3:c5:36:b1:6b:05:27:8a:ae:18:cb:9b:a8:
a8:1b:05:eb:a7:ea:a0:f4:73:a4:a4:1a:8f:e2:6e:ff:21:9d:
7e:7a:00:d1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTrk8Oe8J9X5Pw6eIKlJoTaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3YjViMDJkYzQwMTY2NmVlMDQ1YWI5MGNjODg4MTdmZTA5
ZDcwNmEwHhcNMjIxMjA3MDc1NDAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MmIzNGQ2MzI1NjkxMTE4NmFiYTNlNjI0ZjY2YWE2YWYxYTQ3YTU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlhBno+QMIf3mSqeiyTZSFRsKlzZX
rMcmNK9lTLNLsFR68fi+FOh9HMPFKni1gx0p1YvXSrx3AOVIceViwWeS3hFGwut/
4NzA9b1Mbv5X9iECAIT9Xa0xAVC0aZuEji3yJuFfPSDUOiB0G5biMGcWlJpUIhWz
+lbtNKMS6DkgKuG3MA84OvQg1qXn6pyzRnIWSL5q9Hwq9LwchD3O7ddp+D8GsvFs
3IufvB6Szc/iPIEIs3jlYuqsdccJgXTv6hL2MbvHbhAx8A6nFGp8Jb2z5ZwxgOSO
lR2LXz2Hw6q5xaQ3wNEAS8Ox/OsVQfpq2MRSi67EwLGCCq2sTreMMUYqOwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGKzTWMlaREYaro+Yk9mqmrxpHpVMB8GA1UdIwQY
MBaAFGe1sC3EAWZu4EWrkMyIgX/gnXBqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjdXd0xjUUJabTdnUmF1UXpJaUJmLUNkY0dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC82NGEzZGUtODEyYS00YWNlLTgxNGQt
YjVkODg4YWRmZDM3LzEvWXJOTll5VnBFUmhxdWo1aVQyYXFhdkdrZWxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC82NGEzZGUtODEyYS00YWNlLTgxNGQtYjVkODg4YWRmZDM3
LzEvWjdXd0xjUUJabTdnUmF1UXpJaUJmLUNkY0dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAo6tBMA0G
CSqGSIb3DQEBCwUAA4IBAQBmWT5+xQsBhU2KYISfn6jjpR+3emvoOhD+7TuqvU0F
RIMyDPoeR628umS5cHggj4Wcpf7AKCwyaVDRA4816ezSdsaEpYqcVVz4enPjQ9tC
EfHUrMQuFst1YQ2N2axW509/Gr2aHvC+MtNp01rkQJ7uIOqioxfiFb+wTGHGySPZ
aAvaCwTnHYSs5hp0aF824Ic5MvOs28addBzeHuJqiuIvh0DAB7sZaVh1+ClXlp8H
jcuTjh6+cOpJgVztKlyIoTp7NMDpTZ+LDC8FQch3XiePYY+dw+Fy3KuoHXl9KKPF
NrFrBSeKrhjLm6ioGwXrp+qg9HOkpBqP4m7/IZ1+egDR
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-fra.rpki-client.org