Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/rs8MZIWdMdBT3EBCz71qtKqisQg.roa
File: rs8MZIWdMdBT3EBCz71qtKqisQg.roa (raw, json)
Hash identifier: WKQSzG2SGrCJUG3lCcFQR33S5uxiOFpAycFG0mkffwo=
Subject key identifier: AE:CF:0C:64:85:9D:31:D0:53:DC:40:42:CF:BD:6A:B4:AA:A2:B1:08
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 389A167B
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/rs8MZIWdMdBT3EBCz71qtKqisQg.roa
Signing time: Tue 17 May 2022 05:21:30 +0000
ROA not before: Tue 17 May 2022 05:21:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36224
IP address blocks: 151.251.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 949622395 (0x389a167b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: May 17 05:21:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aecf0c64859d31d053dc4042cfbd6ab4aaa2b108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:da:91:72:29:f1:55:5f:89:d2:94:de:33:07:
0d:c1:a5:9f:cc:67:e6:22:9e:42:88:d6:d9:b0:c0:
dc:51:15:0e:aa:05:54:02:09:85:39:d8:ef:11:e5:
c9:8b:2b:16:f7:60:6a:ff:b9:31:b7:17:50:4f:bb:
12:fe:a7:8a:8c:b8:dd:23:3b:39:2a:22:f2:0a:fa:
b7:55:b1:4d:b9:66:7a:55:b8:ba:05:7c:c7:3e:33:
fc:15:ca:a6:aa:b1:53:ec:40:c2:b8:89:c1:c6:d0:
59:d5:86:32:30:d5:00:0a:2e:12:d4:72:76:ab:89:
00:31:a0:c1:b5:dc:91:c2:d9:f8:09:c3:a0:50:3c:
28:9c:69:cf:22:b7:d2:35:33:11:64:1e:4d:45:72:
0a:1e:d3:60:0c:e1:db:c8:ad:43:42:b1:b8:8c:02:
79:52:52:7c:ff:7c:f8:d8:25:22:0e:f1:91:b6:c6:
da:1b:19:4f:46:2f:b4:ba:cd:76:71:ed:52:ba:f7:
8d:90:4a:01:64:2a:2b:48:a7:0e:f0:7e:dd:20:b7:
13:ec:29:b3:b6:41:e7:bf:6f:11:a9:de:c8:04:19:
59:a2:b2:99:90:b5:f5:88:57:c0:12:6c:e4:a0:ea:
d9:a5:a5:04:73:a9:ec:79:e9:f5:2f:d7:03:52:04:
28:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:CF:0C:64:85:9D:31:D0:53:DC:40:42:CF:BD:6A:B4:AA:A2:B1:08
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/rs8MZIWdMdBT3EBCz71qtKqisQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.251.72.0/24
Signature Algorithm: sha256WithRSAEncryption
78:b3:d9:32:a9:c2:08:54:b2:01:5a:83:86:66:c2:da:4e:be:
4e:f1:9d:df:8c:3b:43:1c:a6:62:3c:4e:e0:75:fc:5b:6d:46:
73:97:a7:4c:bf:3c:18:9f:6a:a5:38:ae:1a:b0:ac:4e:b5:65:
f9:d6:89:7d:16:14:d9:6f:27:52:78:02:b5:7c:86:9c:18:5c:
89:d3:ca:fc:ac:a0:95:be:dd:24:48:4b:6d:93:25:53:37:4f:
cd:c1:3f:15:ab:82:c6:19:58:4a:dd:55:9a:16:08:6c:dd:df:
de:dc:f9:fa:43:88:a9:32:86:27:ea:b2:d0:6b:5a:67:8c:88:
e1:b9:7b:8c:08:15:12:09:7a:74:f5:bf:b9:1a:66:cd:09:dc:
62:c7:5c:07:d1:b6:14:37:08:8e:84:d7:05:44:8f:20:2c:6e:
2d:8e:a2:e9:3b:f5:d7:f4:6d:e6:89:04:9c:4a:52:d9:6c:4c:
bb:f5:9f:00:c6:93:b7:1b:53:29:00:fe:bd:9d:eb:b1:3b:4a:
e2:84:37:ac:17:64:9e:d4:bb:44:30:63:ad:52:35:a4:07:08:
24:3a:8e:83:84:47:61:1b:ef:37:13:28:ed:6a:21:a9:cd:ab:
ee:c0:16:fe:e5:8f:9a:71:09:73:44:e9:4b:0a:a6:af:ad:e2:
27:c7:4a:64
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOJoWezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTQ4Y2VkZjE3MDI5ZWQ5OGExMDgxMTNjNmMxMDllY2FjY2Q4MmVjMB4XDTIyMDUx
NzA1MjEzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWVjZjBjNjQ4NTlk
MzFkMDUzZGM0MDQyY2ZiZDZhYjRhYWEyYjEwODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL/akXIp8VVfidKU3jMHDcGln8xn5iKeQojW2bDA3FEVDqoF
VAIJhTnY7xHlyYsrFvdgav+5MbcXUE+7Ev6nioy43SM7OSoi8gr6t1WxTblmelW4
ugV8xz4z/BXKpqqxU+xAwriJwcbQWdWGMjDVAAouEtRydquJADGgwbXckcLZ+AnD
oFA8KJxpzyK30jUzEWQeTUVyCh7TYAzh28itQ0KxuIwCeVJSfP98+NglIg7xkbbG
2hsZT0YvtLrNdnHtUrr3jZBKAWQqK0inDvB+3SC3E+wps7ZB579vEaneyAQZWaKy
mZC19YhXwBJs5KDq2aWlBHOp7Hnp9S/XA1IEKF0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSuzwxkhZ0x0FPcQELPvWq0qqKxCDAfBgNVHSMEGDAWgBQFSM7fFwKe2YoQ
gRPGwQnsrM2C7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JVak8zeGNDbnRtS0VJRVR4c0VKN0t6Tmd1dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvNTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8x
L3JzOE1aSVdkTWRCVDNFQkN6NzFxdEtxaXNRZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
NTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8xL0JVak8zeGNDbnRt
S0VJRVR4c0VKN0t6Tmd1dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJf7SDANBgkqhkiG9w0BAQsFAAOC
AQEAeLPZMqnCCFSyAVqDhmbC2k6+TvGd34w7QxymYjxO4HX8W21Gc5enTL88GJ9q
pTiuGrCsTrVl+daJfRYU2W8nUngCtXyGnBhcidPK/Kyglb7dJEhLbZMlUzdPzcE/
FauCxhlYSt1VmhYIbN3f3tz5+kOIqTKGJ+qy0GtaZ4yI4bl7jAgVEgl6dPW/uRpm
zQncYsdcB9G2FDcIjoTXBUSPICxuLY6i6Tv11/Rt5okEnEpS2WxMu/WfAMaTtxtT
KQD+vZ3rsTtK4oQ3rBdkntS7RDBjrVI1pAcIJDqOg4RHYRvvNxMo7Wohqc2r7sAW
/uWPmnEJc0TpSwqmr63iJ8dKZA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:13 2023 by rpki-client on console-ams.rpki-client.org