Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/rQgQYQwUp_lY4Tdwlp3yCIk5wFU.roa
File: rQgQYQwUp_lY4Tdwlp3yCIk5wFU.roa (raw, json)
Hash identifier: idnVALrK3uW9O4dac9xvlLHOSVVacJqHGACBxI1uST8=
Subject key identifier: AD:08:10:61:0C:14:A7:F9:58:E1:37:70:96:9D:F2:08:89:39:C0:55
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 1B042703
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/rQgQYQwUp_lY4Tdwlp3yCIk5wFU.roa
Signing time: Sun 30 Jan 2022 12:18:15 +0000
ROA not before: Sun 30 Jan 2022 12:18:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 198.105.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 453256963 (0x1b042703)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jan 30 12:18:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad0810610c14a7f958e13770969df2088939c055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3a:ad:49:25:5b:2e:36:06:8b:1d:cf:36:ce:
9b:ab:56:0b:ab:b7:85:a8:d4:d6:31:7a:d6:5c:37:
65:35:df:aa:ae:23:b0:f4:be:c6:0a:64:ad:40:c5:
84:21:ed:f4:80:17:03:f1:5e:42:31:1a:28:16:56:
50:14:11:69:33:92:b2:ae:29:e8:40:99:91:23:89:
05:32:b9:28:76:9e:a5:8c:50:6e:b0:97:a4:03:40:
3e:d3:40:f4:1b:f3:fe:f1:af:b6:2d:ba:8c:9d:6c:
6d:1c:ba:1a:ec:44:54:f9:e9:47:f9:20:a7:ba:77:
b8:e9:4a:8d:61:5a:d1:29:54:3b:6b:87:5a:a2:42:
eb:eb:f9:ff:1c:7c:c0:9c:e1:fa:e6:fd:3c:88:94:
de:9a:1f:85:f1:e1:5c:96:b3:95:36:93:bc:af:c2:
89:fa:c0:1c:7b:0f:e8:be:0c:6f:23:4d:66:87:81:
09:7e:b4:19:71:e9:73:f2:35:c2:41:22:a3:b5:04:
f9:ab:21:eb:23:69:72:fb:61:02:41:9c:72:f1:5d:
a6:2e:11:14:4b:6e:1a:95:a2:08:b8:ee:f8:39:47:
c5:91:82:5e:d1:95:33:5b:b2:db:53:65:87:7e:d6:
4f:63:b4:3b:80:47:d0:b5:8c:81:94:9a:7d:a9:4d:
30:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:08:10:61:0C:14:A7:F9:58:E1:37:70:96:9D:F2:08:89:39:C0:55
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/rQgQYQwUp_lY4Tdwlp3yCIk5wFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
198.105.103.0/24
Signature Algorithm: sha256WithRSAEncryption
39:49:e0:61:41:26:12:40:64:55:f6:ec:6a:9f:e5:ff:0a:bc:
40:f4:ae:e4:bd:2b:37:7b:97:13:80:07:34:3c:2a:3f:ce:a8:
68:f9:2c:9c:a8:63:bc:7f:56:d0:e9:70:79:b8:12:61:f4:f7:
ee:1c:22:64:13:c7:64:6f:15:0b:63:98:2b:0a:73:9d:0b:2f:
9c:62:5d:74:41:c4:57:5b:6c:c1:c7:e0:25:13:62:47:d9:be:
ec:7d:f8:17:8d:3c:76:7f:ed:ae:09:48:f5:3c:90:83:86:8d:
5e:0f:d2:26:06:7a:0e:74:15:71:66:40:9a:d6:f0:22:88:14:
dc:71:5c:f5:63:ca:02:04:5a:00:f9:c8:37:f9:9d:cf:02:a3:
e5:0a:fb:7f:36:2d:9d:ce:62:1c:29:96:ea:3c:72:44:1a:79:
30:ab:a0:90:33:4b:a5:14:5c:b7:16:dd:d7:98:86:dc:69:fd:
db:93:f9:f0:6c:17:6a:79:45:00:01:b5:e8:85:2c:30:89:14:
e7:46:71:73:09:b7:10:68:c2:ad:b0:36:4e:de:a4:3a:aa:27:
b2:e5:ec:8a:9a:8f:da:76:ee:5a:a2:0c:fa:80:a1:a0:6e:a0:
50:f3:d7:7b:de:ec:c3:d2:39:cf:1f:86:4d:7d:f4:ba:79:55:
db:67:01:f4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGwQnAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NzU0YzM0N2Q2OGQxNTQ5M2RlNzFiYjk2MmYwYTU2N2UxMzRkNjAzMB4XDTIyMDEz
MDEyMTgxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWQwODEwNjEwYzE0
YTdmOTU4ZTEzNzcwOTY5ZGYyMDg4OTM5YzA1NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAME6rUklWy42BosdzzbOm6tWC6u3hajU1jF61lw3ZTXfqq4j
sPS+xgpkrUDFhCHt9IAXA/FeQjEaKBZWUBQRaTOSsq4p6ECZkSOJBTK5KHaepYxQ
brCXpANAPtNA9Bvz/vGvti26jJ1sbRy6GuxEVPnpR/kgp7p3uOlKjWFa0SlUO2uH
WqJC6+v5/xx8wJzh+ub9PIiU3pofhfHhXJazlTaTvK/CifrAHHsP6L4MbyNNZoeB
CX60GXHpc/I1wkEio7UE+ash6yNpcvthAkGccvFdpi4RFEtuGpWiCLju+DlHxZGC
XtGVM1uy21Nlh37WT2O0O4BH0LWMgZSafalNMP0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBStCBBhDBSn+VjhN3CWnfIIiTnAVTAfBgNVHSMEGDAWgBTnVMNH1o0VST3n
G7li8KVn4TTWAzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzUxVERSOWFORlVrOTV4dTVZdkNsWi1FMDFnTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvNDZkYjNhLWE1NzMtNGYyOC1iNDNiLTM3YjYyZDIyMzkyNC8x
L3JRZ1FZUXdVcF9sWTRUZHdscDN5Q0lrNXdGVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
NDZkYjNhLWE1NzMtNGYyOC1iNDNiLTM3YjYyZDIyMzkyNC8xLzUxVERSOWFORlVr
OTV4dTVZdkNsWi1FMDFnTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMZpZzANBgkqhkiG9w0BAQsFAAOC
AQEAOUngYUEmEkBkVfbsap/l/wq8QPSu5L0rN3uXE4AHNDwqP86oaPksnKhjvH9W
0OlwebgSYfT37hwiZBPHZG8VC2OYKwpznQsvnGJddEHEV1tswcfgJRNiR9m+7H34
F408dn/trglI9TyQg4aNXg/SJgZ6DnQVcWZAmtbwIogU3HFc9WPKAgRaAPnIN/md
zwKj5Qr7fzYtnc5iHCmW6jxyRBp5MKugkDNLpRRctxbd15iG3Gn925P58GwXanlF
AAG16IUsMIkU50Zxcwm3EGjCrbA2Tt6kOqonsuXsipqP2nbuWqIM+oChoG6gUPPX
e97sw9I5zx+GTX30unlV22cB9A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:14 2023 by rpki-client on console-ams.rpki-client.org