Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/IgXoX1vwfzmWJ6Wu2yyBXVxwdW0.roa
File: IgXoX1vwfzmWJ6Wu2yyBXVxwdW0.roa (raw, json)
Hash identifier: QfiTQxm4sDVobbkhL76nnqXvoHhGHlCIu+l+p69oFJE=
Subject key identifier: 22:05:E8:5F:5B:F0:7F:39:96:27:A5:AE:DB:2C:81:5D:5C:70:75:6D
Certificate issuer: /CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692
Certificate serial: 01855FE5ECC894FF7DFC17839B1F6972C17B
Authority key identifier: 87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/IgXoX1vwfzmWJ6Wu2yyBXVxwdW0.roa
Signing time: Thu 29 Dec 2022 21:59:41 +0000
ROA not before: Thu 29 Dec 2022 21:59:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60057
IP address blocks: 178.250.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5f:e5:ec:c8:94:ff:7d:fc:17:83:9b:1f:69:72:c1:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692
Validity
Not Before: Dec 29 21:59:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2205e85f5bf07f399627a5aedb2c815d5c70756d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:70:e9:e4:5c:d1:87:85:6b:84:95:eb:c6:d9:
db:7c:61:82:ea:63:af:5a:f8:80:4a:f0:62:33:8f:
6c:e2:0b:d0:4f:ec:43:f1:db:68:fb:88:92:80:1e:
9c:46:62:d2:95:fd:6c:f2:c3:9d:dd:af:7c:05:56:
a1:69:2d:e6:5b:1b:b1:f3:e9:66:8a:21:ad:26:c3:
d2:60:35:9e:fd:ea:43:7c:d2:14:7d:e5:7f:94:41:
dd:61:3e:24:30:cf:91:93:31:84:50:20:f5:d9:ad:
30:9c:c0:a5:dc:d1:78:6c:b9:80:50:cc:03:42:d4:
90:f6:4b:53:b8:b9:47:c2:9f:ef:d7:22:02:4b:b0:
a8:58:05:35:87:b1:12:65:17:e2:a2:be:8d:04:cf:
9a:5b:68:37:ef:34:80:f7:58:a3:13:8d:c8:89:02:
ee:76:7d:17:ca:52:33:46:20:8e:b2:49:cf:8a:26:
b5:ce:89:68:f8:cf:3c:84:57:20:24:14:9b:2e:02:
ca:30:ff:67:34:2e:b6:69:9a:c0:3f:7f:3b:34:c7:
1c:7a:60:b3:c2:bb:43:a3:42:33:81:08:8f:1b:b0:
b0:04:64:ba:16:e7:a2:1a:82:73:d2:37:61:9d:4c:
80:15:8f:52:57:2a:36:ad:27:ff:5e:b7:96:3c:23:
b1:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:05:E8:5F:5B:F0:7F:39:96:27:A5:AE:DB:2C:81:5D:5C:70:75:6D
X509v3 Authority Key Identifier:
keyid:87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/IgXoX1vwfzmWJ6Wu2yyBXVxwdW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.250.189.0/24
Signature Algorithm: sha256WithRSAEncryption
25:ff:34:ba:97:2b:a5:d2:b7:28:09:00:47:28:92:82:0e:1a:
8d:3e:79:19:73:00:40:bd:ad:e2:f8:0f:2e:9c:a0:aa:3e:74:
08:c7:07:d0:b2:0b:11:03:e8:c9:9f:75:4b:9c:bb:ef:bb:49:
e4:51:ac:9e:b3:a2:a5:91:17:a6:9f:f8:56:30:e5:f0:b8:42:
99:86:3d:45:4b:f5:d2:37:d1:c7:72:3c:90:67:34:86:e3:6f:
3c:4f:45:82:09:2a:86:2c:f2:36:de:8f:73:7b:be:aa:4f:0c:
8b:a7:ca:d0:d4:6a:0b:a1:23:96:5f:5b:ac:3d:0c:e5:82:96:
3c:aa:b9:01:d9:28:84:1f:0f:54:77:c0:4a:4b:a1:a6:52:ed:
e2:05:6a:8b:bc:64:db:d2:36:33:60:92:e8:81:0a:00:ef:30:
f7:d1:27:fd:fd:de:9c:55:c4:cf:a4:29:1b:d4:b9:88:38:e5:
80:83:63:99:5b:ea:29:ea:f7:cb:9b:86:e0:18:50:fe:56:18:
ff:04:a9:20:cf:a2:d1:30:ec:d2:29:97:4d:82:6d:01:4d:f4:
88:9c:37:2c:b7:60:bc:6a:c0:d8:39:85:7c:48:4b:ce:a1:f0:
6e:f8:bc:3d:42:f3:79:7c:6d:50:79:91:79:98:a3:7d:32:3b:
9b:d7:0b:3b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVf5ezIlP99/BeDmx9pcsF7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3NzhhZDgxNjhlMDljZjkyZDRlMDQ5ODI1N2Y4ZTljZWFi
ZjA2OTIwHhcNMjIxMjI5MjE1OTQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMjA1ZTg1ZjViZjA3ZjM5OTYyN2E1YWVkYjJjODE1ZDVjNzA3NTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzHDp5FzRh4VrhJXrxtnbfGGC6mOv
WviASvBiM49s4gvQT+xD8dto+4iSgB6cRmLSlf1s8sOd3a98BVahaS3mWxux8+lm
iiGtJsPSYDWe/epDfNIUfeV/lEHdYT4kMM+RkzGEUCD12a0wnMCl3NF4bLmAUMwD
QtSQ9ktTuLlHwp/v1yICS7CoWAU1h7ESZRfior6NBM+aW2g37zSA91ijE43IiQLu
dn0XylIzRiCOsknPiia1zolo+M88hFcgJBSbLgLKMP9nNC62aZrAP387NMccemCz
wrtDo0IzgQiPG7CwBGS6FueiGoJz0jdhnUyAFY9SVyo2rSf/XreWPCOxSQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCIF6F9b8H85lielrtssgV1ccHVtMB8GA1UdIwQY
MBaAFId4rYFo4Jz5LU4EmCV/jpzqvwaSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAt
YWE5ZDY5MTgxMWU3LzEvSWdYb1gxdndmem1XSjZXdTJ5eUJYVnh3ZFcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAtYWE5ZDY5MTgxMWU3
LzEvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsvq9MA0G
CSqGSIb3DQEBCwUAA4IBAQAl/zS6lyul0rcoCQBHKJKCDhqNPnkZcwBAva3i+A8u
nKCqPnQIxwfQsgsRA+jJn3VLnLvvu0nkUayes6KlkRemn/hWMOXwuEKZhj1FS/XS
N9HHcjyQZzSG4288T0WCCSqGLPI23o9ze76qTwyLp8rQ1GoLoSOWX1usPQzlgpY8
qrkB2SiEHw9Ud8BKS6GmUu3iBWqLvGTb0jYzYJLogQoA7zD30Sf9/d6cVcTPpCkb
1LmIOOWAg2OZW+op6vfLm4bgGFD+Vhj/BKkgz6LRMOzSKZdNgm0BTfSInDcst2C8
asDYOYV8SEvOofBu+Lw9QvN5fG1QeZF5mKN9Mjub1ws7
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:53 2024 by rpki-client on console-ams.rpki-client.org