Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/g558oZDNrwlTAhtoNwRBlqbbkQc.roa
File: g558oZDNrwlTAhtoNwRBlqbbkQc.roa (raw, json)
Hash identifier: tJwuxlQznKSurpni/tTeE6fw78yKdR6uJdfekNXtaDc=
Subject key identifier: 83:9E:7C:A1:90:CD:AF:09:53:02:1B:68:37:04:41:96:A6:DB:91:07
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 1AF73012
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/g558oZDNrwlTAhtoNwRBlqbbkQc.roa
Signing time: Wed 26 Jan 2022 19:43:27 +0000
ROA not before: Wed 26 Jan 2022 19:43:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 107.181.130.0/23 maxlen: 24
107.181.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452407314 (0x1af73012)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jan 26 19:43:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=839e7ca190cdaf0953021b6837044196a6db9107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:cc:6a:20:e9:0f:54:5d:86:c4:30:02:74:76:
d9:c5:a1:6b:63:e0:dd:6b:78:d0:16:39:14:a0:79:
60:a7:26:37:46:ad:25:3c:3e:bb:e3:db:fc:47:56:
97:d5:62:22:ec:1a:ec:67:f8:1e:b8:ed:87:0c:dd:
e0:8a:06:16:ac:0d:01:e4:e9:5e:96:5b:70:b0:79:
06:36:aa:88:4c:8f:62:26:52:b3:63:56:ff:60:c9:
06:72:3a:39:f6:cc:2e:7d:56:55:13:4b:c8:f2:fc:
9f:9e:5b:4f:bb:e4:03:3c:26:c6:09:0e:f8:c4:40:
e4:49:93:db:22:15:cc:41:d4:64:48:31:e1:5e:c0:
09:3a:4f:0f:f9:e0:19:5d:e8:2e:b2:b6:5d:ba:c2:
b6:b3:e1:47:d7:1e:15:65:8f:45:1f:58:e8:26:f8:
4c:d3:2f:4d:9e:fc:77:93:c8:88:86:cf:f3:a7:eb:
82:84:1d:ec:40:d2:7d:02:5a:07:f3:08:f3:a9:67:
97:01:53:15:37:f7:7f:f7:f1:f2:66:f7:7c:c6:01:
4d:98:b4:9d:8b:64:a3:f7:3d:c3:bd:e4:1b:a7:2a:
57:64:9b:a2:0f:cb:f4:4d:57:e9:85:21:99:81:d2:
ee:a6:b5:c1:f1:ba:cd:22:f7:de:3f:31:11:f6:99:
d1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:9E:7C:A1:90:CD:AF:09:53:02:1B:68:37:04:41:96:A6:DB:91:07
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/g558oZDNrwlTAhtoNwRBlqbbkQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.181.130.0/23
107.181.143.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:bb:c8:ad:69:35:1f:29:09:28:ca:05:db:53:ac:d2:33:cc:
6c:a3:14:15:c9:f6:a3:fd:0d:35:16:14:07:fd:51:1a:29:9f:
68:c1:af:87:17:f1:c8:3a:d4:c7:8a:2d:a7:50:fa:61:78:25:
c5:ec:b4:18:a6:60:e0:bc:e0:8f:e6:4c:3d:7e:09:5c:60:32:
ed:de:6a:30:f4:9e:1d:0c:15:8c:8a:0f:b3:2d:90:c5:54:7c:
4d:a7:1a:0e:1a:0d:24:98:57:75:be:96:bb:fb:05:a1:02:36:
38:05:ba:66:64:d4:76:aa:36:1d:e5:28:5f:ab:f3:31:ac:67:
84:ed:96:52:3b:49:5d:ff:83:a8:5c:a1:23:cf:0c:3b:56:ae:
78:7c:ec:76:3f:b3:3f:45:66:16:9e:00:4c:9b:cc:79:0d:33:
12:b9:60:44:28:1d:7e:a4:51:fb:35:9f:80:02:a1:9f:8e:0c:
d5:7d:d4:ff:39:bc:c2:8f:97:00:85:e0:fa:ba:37:69:04:32:
c4:da:2f:6d:fe:7f:11:2b:8d:c1:24:b2:81:fa:9d:c3:7a:5e:
73:ed:32:cf:3d:a4:72:d4:0e:d4:1e:89:11:d1:51:b7:a7:ef:
96:2b:3d:4a:b2:17:55:6e:c7:05:b8:8f:10:4b:a1:e4:4f:c7:
48:7c:b1:b4
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEGvcwEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NzU0YzM0N2Q2OGQxNTQ5M2RlNzFiYjk2MmYwYTU2N2UxMzRkNjAzMB4XDTIyMDEy
NjE5NDMyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODM5ZTdjYTE5MGNk
YWYwOTUzMDIxYjY4MzcwNDQxOTZhNmRiOTEwNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIzMaiDpD1RdhsQwAnR22cWha2Pg3Wt40BY5FKB5YKcmN0at
JTw+u+Pb/EdWl9ViIuwa7Gf4Hrjthwzd4IoGFqwNAeTpXpZbcLB5BjaqiEyPYiZS
s2NW/2DJBnI6OfbMLn1WVRNLyPL8n55bT7vkAzwmxgkO+MRA5EmT2yIVzEHUZEgx
4V7ACTpPD/ngGV3oLrK2XbrCtrPhR9ceFWWPRR9Y6Cb4TNMvTZ78d5PIiIbP86fr
goQd7EDSfQJaB/MI86lnlwFTFTf3f/fx8mb3fMYBTZi0nYtko/c9w73kG6cqV2Sb
og/L9E1X6YUhmYHS7qa1wfG6zSL33j8xEfaZ0f8CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSDnnyhkM2vCVMCG2g3BEGWptuRBzAfBgNVHSMEGDAWgBTnVMNH1o0VST3n
G7li8KVn4TTWAzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzUxVERSOWFORlVrOTV4dTVZdkNsWi1FMDFnTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvNDZkYjNhLWE1NzMtNGYyOC1iNDNiLTM3YjYyZDIyMzkyNC8x
L2c1NThvWkROcndsVEFodG9Od1JCbHFiYmtRYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
NDZkYjNhLWE1NzMtNGYyOC1iNDNiLTM3YjYyZDIyMzkyNC8xLzUxVERSOWFORlVr
OTV4dTVZdkNsWi1FMDFnTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAWu1ggMEAGu1jzANBgkqhkiG9w0B
AQsFAAOCAQEAW7vIrWk1HykJKMoF21Os0jPMbKMUFcn2o/0NNRYUB/1RGimfaMGv
hxfxyDrUx4otp1D6YXglxey0GKZg4Lzgj+ZMPX4JXGAy7d5qMPSeHQwVjIoPsy2Q
xVR8TacaDhoNJJhXdb6Wu/sFoQI2OAW6ZmTUdqo2HeUoX6vzMaxnhO2WUjtJXf+D
qFyhI88MO1aueHzsdj+zP0VmFp4ATJvMeQ0zErlgRCgdfqRR+zWfgAKhn44M1X3U
/zm8wo+XAIXg+ro3aQQyxNovbf5/ESuNwSSygfqdw3pec+0yzz2kctQO1B6JEdFR
t6fvlis9SrIXVW7HBbiPEEuh5E/HSHyxtA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:14 2023 by rpki-client on console-ams.rpki-client.org