Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/y_XthsDJKBci9oq8np7YcSKF68s.roa
File: y_XthsDJKBci9oq8np7YcSKF68s.roa (raw, json)
Hash identifier: 1RB8/REuwj48EPZiUNJ/I1Cdei+sJzJjPLaUG4dDt4M=
Subject key identifier: CB:F5:ED:86:C0:C9:28:17:22:F6:8A:BC:9E:9E:D8:71:22:85:EB:CB
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 0183D6A75F92977A3018E5D9CDBD794F56C2
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/y_XthsDJKBci9oq8np7YcSKF68s.roa
Signing time: Fri 14 Oct 2022 13:20:36 +0000
ROA not before: Fri 14 Oct 2022 13:20:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 107.181.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d6:a7:5f:92:97:7a:30:18:e5:d9:cd:bd:79:4f:56:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Oct 14 13:20:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbf5ed86c0c9281722f68abc9e9ed8712285ebcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:55:46:40:61:bc:9f:fa:91:87:ce:94:98:2b:
21:db:67:5e:24:14:00:66:99:34:e7:d7:82:3c:8a:
b3:b0:b2:35:c7:9d:69:31:6c:89:6b:dd:d6:d7:39:
ae:91:32:0a:5c:04:5d:5f:fe:a9:bb:a9:3e:49:5e:
a9:c3:5b:6a:79:9e:a4:a9:b1:37:54:44:1f:06:2e:
d4:c4:89:23:50:b1:de:0d:ed:40:0b:0c:64:56:2c:
3e:5b:5a:5f:8c:39:f4:0d:81:6c:75:12:6f:99:82:
5e:a0:57:b2:0c:bc:33:7c:0d:47:5d:51:58:3f:76:
06:03:bc:2a:36:44:75:e2:6e:1a:56:be:7a:c7:d7:
ec:bb:c8:5f:7b:61:fe:a7:9e:40:d1:2e:d3:92:ed:
7a:e4:35:7f:3f:9b:a0:18:56:4d:55:16:de:ad:45:
55:af:3d:5f:60:c1:30:a2:a3:9c:11:2a:c5:81:3a:
dd:fe:98:43:a1:5d:74:2f:1d:b9:97:70:fe:8c:0c:
3b:76:3b:00:92:51:fd:22:59:80:11:54:3c:59:1d:
a8:39:f0:b4:a4:c5:18:e2:6e:df:b2:69:65:dc:09:
60:2b:06:2e:fd:0c:f8:f8:1c:0c:7b:3a:04:24:07:
77:31:d9:2e:92:0d:8e:60:90:4a:8c:d9:e9:42:85:
c3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:F5:ED:86:C0:C9:28:17:22:F6:8A:BC:9E:9E:D8:71:22:85:EB:CB
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/y_XthsDJKBci9oq8np7YcSKF68s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.181.143.0/24
Signature Algorithm: sha256WithRSAEncryption
46:5f:c9:7d:d1:43:10:87:42:a5:d0:53:20:9e:32:db:56:e0:
e5:6f:ca:7e:64:61:6a:b2:f2:b5:8f:a3:08:a8:f2:e9:30:3c:
2f:ae:19:36:1f:e3:94:62:7d:2a:98:0e:0f:19:7d:d5:07:1b:
31:a2:91:72:8c:2f:0c:48:af:f8:3b:7c:2e:ce:b4:7b:51:a3:
81:9e:05:c3:7e:66:07:19:ff:36:36:8a:ac:f6:f5:21:b0:79:
db:18:81:22:94:2a:78:69:8f:a3:63:44:91:1b:3a:c1:ca:c0:
6a:6c:28:55:a4:d0:32:dc:5d:9d:09:a5:c3:cd:84:25:71:ce:
49:55:43:c8:fd:61:58:89:d4:8b:1e:db:cc:5c:94:33:bc:63:
79:e4:09:66:2c:72:fa:38:66:cd:4d:ba:b0:1f:19:93:2f:8c:
f7:b9:5a:1d:c5:78:e7:9c:83:e8:fc:fb:68:b6:30:a3:29:a8:
41:88:4d:88:99:87:0b:a8:9c:b2:62:d2:ac:ec:a3:e1:11:8b:
19:78:0d:e4:42:a9:d8:3c:0b:85:00:38:ee:7b:76:03:ea:17:
cc:40:84:c4:c8:5c:9a:c4:37:ce:80:d5:12:e0:d3:c8:cc:7e:
ad:c7:9b:c7:a2:86:54:5b:c3:68:f0:f0:8c:48:67:1d:05:e0:
e7:82:5d:5b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPWp1+Sl3owGOXZzb15T1bCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3NTRjMzQ3ZDY4ZDE1NDkzZGU3MWJiOTYyZjBhNTY3ZTEz
NGQ2MDMwHhcNMjIxMDE0MTMyMDM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYmY1ZWQ4NmMwYzkyODE3MjJmNjhhYmM5ZTllZDg3MTIyODVlYmNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxFVGQGG8n/qRh86UmCsh22deJBQA
Zpk059eCPIqzsLI1x51pMWyJa93W1zmukTIKXARdX/6pu6k+SV6pw1tqeZ6kqbE3
VEQfBi7UxIkjULHeDe1ACwxkViw+W1pfjDn0DYFsdRJvmYJeoFeyDLwzfA1HXVFY
P3YGA7wqNkR14m4aVr56x9fsu8hfe2H+p55A0S7Tku165DV/P5ugGFZNVRberUVV
rz1fYMEwoqOcESrFgTrd/phDoV10Lx25l3D+jAw7djsAklH9IlmAEVQ8WR2oOfC0
pMUY4m7fsmll3AlgKwYu/Qz4+BwMezoEJAd3Mdkukg2OYJBKjNnpQoXDGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMv17YbAySgXIvaKvJ6e2HEihevLMB8GA1UdIwQY
MBaAFOdUw0fWjRVJPecbuWLwpWfhNNYDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTFURFI5YU5GVWs5NXh1NVl2Q2xaLUUwMWdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80NmRiM2EtYTU3My00ZjI4LWI0M2It
MzdiNjJkMjIzOTI0LzEveV9YdGhzREpLQmNpOW9xOG5wN1ljU0tGNjhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80NmRiM2EtYTU3My00ZjI4LWI0M2ItMzdiNjJkMjIzOTI0
LzEvNTFURFI5YU5GVWs5NXh1NVl2Q2xaLUUwMWdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAa7WPMA0G
CSqGSIb3DQEBCwUAA4IBAQBGX8l90UMQh0Kl0FMgnjLbVuDlb8p+ZGFqsvK1j6MI
qPLpMDwvrhk2H+OUYn0qmA4PGX3VBxsxopFyjC8MSK/4O3wuzrR7UaOBngXDfmYH
Gf82Noqs9vUhsHnbGIEilCp4aY+jY0SRGzrBysBqbChVpNAy3F2dCaXDzYQlcc5J
VUPI/WFYidSLHtvMXJQzvGN55AlmLHL6OGbNTbqwHxmTL4z3uVodxXjnnIPo/Pto
tjCjKahBiE2ImYcLqJyyYtKs7KPhEYsZeA3kQqnYPAuFADjue3YD6hfMQITEyFya
xDfOgNUS4NPIzH6tx5vHooZUW8No8PCMSGcdBeDngl1b
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:14 2023 by rpki-client on console-ams.rpki-client.org