Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/aed381-45cc-44bc-a5c3-fe7963bec7d3/1/SDPiRczwfotFKoJW6A7eziVL9zM.roa
File: SDPiRczwfotFKoJW6A7eziVL9zM.roa (raw, json)
Hash identifier: vzBjHWzjwHAFpj8KdXekoJa22/I9mT0EhfF8WUMzu2Q=
Subject key identifier: 48:33:E2:45:CC:F0:7E:8B:45:2A:82:56:E8:0E:DE:CE:25:4B:F7:33
Certificate issuer: /CN=f779f5f0288985abde09827e03d787a52149e7ec
Certificate serial: 18089D01
Authority key identifier: F7:79:F5:F0:28:89:85:AB:DE:09:82:7E:03:D7:87:A5:21:49:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93n18CiJhaveCYJ-A9eHpSFJ5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/aed381-45cc-44bc-a5c3-fe7963bec7d3/1/SDPiRczwfotFKoJW6A7eziVL9zM.roa
Signing time: Sat 01 Jan 2022 06:55:04 +0000
ROA not before: Sat 01 Jan 2022 06:55:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54058
IP address blocks: 178.251.167.0/24 maxlen: 24
5.149.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403217665 (0x18089d01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f779f5f0288985abde09827e03d787a52149e7ec
Validity
Not Before: Jan 1 06:55:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4833e245ccf07e8b452a8256e80edece254bf733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a8:d6:0f:30:3a:1b:96:f5:21:5c:94:94:15:
be:67:f0:c9:c5:bf:61:d0:11:17:c2:fd:ce:80:e0:
da:e9:ab:3d:26:05:1e:5f:db:09:e1:01:e8:a1:97:
03:84:59:83:7d:9d:79:10:93:97:8e:dc:2d:42:4b:
1a:1b:f0:bd:95:fc:92:ec:30:0b:91:1b:1d:c4:99:
bb:fa:ce:ce:54:23:72:54:7d:13:23:3a:09:a9:3c:
f6:f4:e4:6b:37:f3:80:23:d1:a1:a8:b6:c0:bd:0f:
e3:e7:78:1b:87:e8:c4:03:43:28:49:45:6f:bd:0d:
2c:4a:25:ec:d5:7d:65:77:9c:5c:c7:fb:01:66:0c:
c5:84:70:5f:35:20:84:99:6e:b3:82:f8:3d:68:b4:
db:f1:8c:6d:4a:1c:36:f6:de:cd:a6:db:5a:41:00:
c4:08:59:b6:07:42:c1:4f:c4:4b:81:a2:84:91:67:
ed:a5:ff:99:b7:3f:27:aa:8a:cb:3d:fb:8d:a5:ce:
13:2e:02:13:8b:0b:9c:4e:26:67:9b:2c:2c:b8:b3:
b0:13:18:ec:20:67:20:e8:cf:3c:2c:39:fb:f2:e6:
71:68:fd:8a:49:e8:a2:78:6a:f6:2f:4e:66:e7:2d:
3b:d2:5b:32:52:10:53:12:29:b7:30:69:7c:94:0b:
3d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:33:E2:45:CC:F0:7E:8B:45:2A:82:56:E8:0E:DE:CE:25:4B:F7:33
X509v3 Authority Key Identifier:
keyid:F7:79:F5:F0:28:89:85:AB:DE:09:82:7E:03:D7:87:A5:21:49:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93n18CiJhaveCYJ-A9eHpSFJ5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/aed381-45cc-44bc-a5c3-fe7963bec7d3/1/SDPiRczwfotFKoJW6A7eziVL9zM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/aed381-45cc-44bc-a5c3-fe7963bec7d3/1/93n18CiJhaveCYJ-A9eHpSFJ5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.118.0/24
178.251.167.0/24
Signature Algorithm: sha256WithRSAEncryption
30:5b:18:a5:2c:d5:a9:34:94:83:e6:f8:71:79:bb:b3:9c:10:
e0:8e:16:9e:8e:8f:6b:e1:8e:da:e1:e1:6b:a4:33:0d:41:f0:
53:7e:48:62:80:a8:9d:69:f1:75:bc:aa:64:95:f4:89:87:31:
86:b1:8d:bd:17:7a:12:33:12:a7:48:26:dc:a3:60:99:f7:25:
3a:1d:c2:dd:e3:8f:87:dc:14:d1:9b:5e:0b:fe:b2:7a:24:fe:
d3:70:57:35:f1:1d:3e:d6:8b:7f:4d:4a:89:73:52:2b:8f:de:
88:c5:47:21:9f:da:4f:b9:a2:e5:4a:ec:cf:95:85:c1:6d:bb:
6f:c0:18:c5:de:3d:f3:f5:a8:c8:1f:3f:ba:4e:2d:fa:bb:45:
23:d3:fa:52:9b:64:63:10:0b:36:58:32:ea:8c:66:9d:68:e2:
32:97:b9:bd:48:15:0d:a9:9e:9f:a5:bf:43:2b:8b:97:34:7a:
90:8c:55:6c:43:29:97:87:86:73:88:b8:21:10:d7:4e:b6:96:
9a:27:47:15:a0:c4:ed:33:d0:c6:5e:c3:37:97:65:de:b3:f3:
85:e4:67:f0:b3:a2:d1:ab:65:e8:ab:4c:49:d7:dd:ee:aa:d4:
91:44:c7:5e:93:30:4e:c9:7e:f5:71:1b:bf:83:be:51:7c:fb:
1c:65:a5:b0
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEGAidATANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
Nzc5ZjVmMDI4ODk4NWFiZGUwOTgyN2UwM2Q3ODdhNTIxNDllN2VjMB4XDTIyMDEw
MTA2NTUwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDgzM2UyNDVjY2Yw
N2U4YjQ1MmE4MjU2ZTgwZWRlY2UyNTRiZjczMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMGo1g8wOhuW9SFclJQVvmfwycW/YdARF8L9zoDg2umrPSYF
Hl/bCeEB6KGXA4RZg32deRCTl47cLUJLGhvwvZX8kuwwC5EbHcSZu/rOzlQjclR9
EyM6Cak89vTkazfzgCPRoai2wL0P4+d4G4foxANDKElFb70NLEol7NV9ZXecXMf7
AWYMxYRwXzUghJlus4L4PWi02/GMbUocNvbezabbWkEAxAhZtgdCwU/ES4GihJFn
7aX/mbc/J6qKyz37jaXOEy4CE4sLnE4mZ5ssLLizsBMY7CBnIOjPPCw5+/LmcWj9
iknoonhq9i9OZuctO9JbMlIQUxIptzBpfJQLPR0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRIM+JFzPB+i0UqglboDt7OJUv3MzAfBgNVHSMEGDAWgBT3efXwKImFq94J
gn4D14elIUnn7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzkzbjE4Q2lKaGF2ZUNZSi1BOWVIcFNGSjUtdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvYWVkMzgxLTQ1Y2MtNDRiYy1hNWMzLWZlNzk2M2JlYzdkMy8x
L1NEUGlSY3p3Zm90RktvSlc2QTdlemlWTDl6TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
YWVkMzgxLTQ1Y2MtNDRiYy1hNWMzLWZlNzk2M2JlYzdkMy8xLzkzbjE4Q2lKaGF2
ZUNZSi1BOWVIcFNGSjUtdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAAWVdgMEALL7pzANBgkqhkiG9w0B
AQsFAAOCAQEAMFsYpSzVqTSUg+b4cXm7s5wQ4I4Wno6Pa+GO2uHha6QzDUHwU35I
YoConWnxdbyqZJX0iYcxhrGNvRd6EjMSp0gm3KNgmfclOh3C3eOPh9wU0ZteC/6y
eiT+03BXNfEdPtaLf01KiXNSK4/eiMVHIZ/aT7mi5Ursz5WFwW27b8AYxd498/Wo
yB8/uk4t+rtFI9P6UptkYxALNlgy6oxmnWjiMpe5vUgVDamen6W/QyuLlzR6kIxV
bEMpl4eGc4i4IRDXTraWmidHFaDE7TPQxl7DN5dl3rPzheRn8LOi0atl6KtMSdfd
7qrUkUTHXpMwTsl+9XEbv4O+UXz7HGWlsA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:51 2023 by rpki-client on console-fra.rpki-client.org