Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/odm6GNFxuVd8QSn7Ped27h-ZTYg.roa
File: odm6GNFxuVd8QSn7Ped27h-ZTYg.roa (raw, json)
Hash identifier: gZjWe/VwTkEt9kEZw+5sGWLKy/WyXhUnfgq/prHYof0=
Subject key identifier: A1:D9:BA:18:D1:71:B9:57:7C:41:29:FB:3D:E7:76:EE:1F:99:4D:88
Certificate issuer: /CN=297364f502534e8771a0c6259794c26e26d4bca4
Certificate serial: 04CC4437
Authority key identifier: 29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/odm6GNFxuVd8QSn7Ped27h-ZTYg.roa
Signing time: Sat 01 Jan 2022 15:05:52 +0000
ROA not before: Sat 01 Jan 2022 15:05:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198394
IP address blocks: 141.105.164.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80495671 (0x4cc4437)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297364f502534e8771a0c6259794c26e26d4bca4
Validity
Not Before: Jan 1 15:05:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1d9ba18d171b9577c4129fb3de776ee1f994d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8a:e0:d0:6b:aa:94:92:d6:78:a2:84:e0:af:
ea:a8:f6:bd:3a:54:78:5c:3c:ea:ce:64:d0:8d:28:
37:2c:d0:82:fd:21:94:66:68:67:9a:23:37:1b:a6:
a3:02:6e:ab:56:8f:77:f4:85:69:02:ef:6a:fd:dc:
b0:a5:83:c8:14:28:1a:aa:46:68:56:6c:5b:45:5a:
5a:45:71:fd:7d:a3:f6:f8:de:9b:72:1b:6a:a5:ca:
cd:86:eb:5c:74:40:e3:9c:c4:51:25:eb:90:1a:bd:
15:5d:1e:43:df:d1:3b:7d:cc:aa:0a:e2:6b:84:30:
b0:6c:77:e2:a7:bd:00:73:c0:99:08:b5:a6:70:75:
ca:d8:3d:36:07:e3:c0:e9:8d:e2:0f:4a:ae:b8:84:
14:f1:ad:ba:74:e3:b9:cc:ce:a7:c3:e0:23:24:b6:
04:ec:37:e7:6c:ec:6c:80:0c:52:c9:5b:62:7e:af:
ec:ec:0b:6d:50:b6:db:41:c6:a1:e1:53:12:af:d4:
88:ca:a1:cc:92:83:07:99:46:14:02:4c:c1:6e:2e:
44:1e:a5:a7:fe:49:c7:73:e3:52:8d:02:2b:e9:5d:
b3:d1:0f:05:d9:78:cb:c0:b3:f4:72:5b:db:fa:02:
6c:68:93:97:38:83:9c:22:1e:9f:3e:57:a6:da:ea:
56:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:D9:BA:18:D1:71:B9:57:7C:41:29:FB:3D:E7:76:EE:1F:99:4D:88
X509v3 Authority Key Identifier:
keyid:29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/odm6GNFxuVd8QSn7Ped27h-ZTYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.105.164.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:42:44:06:ca:9b:3b:d2:a2:7c:e4:ea:03:7f:af:39:df:b9:
5c:54:90:a2:03:94:f8:02:ab:c4:c2:d5:fe:58:c8:19:d8:fd:
a9:e9:72:d2:56:df:ea:2e:3b:f1:98:60:a8:96:f0:5a:6b:04:
06:d3:ad:94:87:b4:77:01:5d:62:05:28:82:51:6d:a9:a1:c7:
31:21:eb:b6:b8:7c:ae:d0:d0:59:29:81:a7:c7:a4:41:a2:b7:
d9:ba:3f:47:6b:96:0c:81:cb:41:26:0f:a7:f0:5d:88:1b:65:
25:e6:f6:58:ab:0e:df:3f:2a:6f:19:bd:51:f0:18:16:ca:e8:
b3:29:67:4b:9b:44:f0:73:5c:b2:9f:44:06:88:b1:6a:bb:23:
35:b1:75:8b:4a:dc:40:bc:60:50:e2:9f:69:9a:5b:87:3b:ed:
a9:81:5e:85:b1:85:00:e7:11:08:8c:32:90:52:28:a3:0f:2a:
1f:b2:b0:f6:8e:7b:f6:4c:b9:17:03:b5:3d:80:8c:86:0a:df:
24:79:43:c3:11:d9:8a:eb:7f:28:a1:4d:26:74:a3:55:a9:57:
f5:ca:29:e5:3e:ea:c8:86:6e:a1:9c:04:c9:fb:a6:7a:14:db:
1f:d2:dd:3f:84:2d:36:43:e0:b9:ac:34:03:10:e1:b9:c1:aa:
70:9a:03:a2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBMxENzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OTczNjRmNTAyNTM0ZTg3NzFhMGM2MjU5Nzk0YzI2ZTI2ZDRiY2E0MB4XDTIyMDEw
MTE1MDU1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTFkOWJhMThkMTcx
Yjk1NzdjNDEyOWZiM2RlNzc2ZWUxZjk5NGQ4ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMaK4NBrqpSS1niihOCv6qj2vTpUeFw86s5k0I0oNyzQgv0h
lGZoZ5ojNxumowJuq1aPd/SFaQLvav3csKWDyBQoGqpGaFZsW0VaWkVx/X2j9vje
m3IbaqXKzYbrXHRA45zEUSXrkBq9FV0eQ9/RO33Mqgria4QwsGx34qe9AHPAmQi1
pnB1ytg9NgfjwOmN4g9KrriEFPGtunTjuczOp8PgIyS2BOw352zsbIAMUslbYn6v
7OwLbVC220HGoeFTEq/UiMqhzJKDB5lGFAJMwW4uRB6lp/5Jx3PjUo0CK+lds9EP
Bdl4y8Cz9HJb2/oCbGiTlziDnCIenz5XptrqVtUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSh2boY0XG5V3xBKfs953buH5lNiDAfBgNVHSMEGDAWgBQpc2T1AlNOh3Gg
xiWXlMJuJtS8pDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tYTms5UUpUVG9keG9NWWxsNVRDYmliVXZLUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTIvMDQ1ODIwLTM1NDYtNDA3Yy04M2E1LTBhMGYzZTc4YTQ5My8x
L29kbTZHTkZ4dVZkOFFTbjdQZWQyN2gtWlRZZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTIv
MDQ1ODIwLTM1NDYtNDA3Yy04M2E1LTBhMGYzZTc4YTQ5My8xL0tYTms5UUpUVG9k
eG9NWWxsNVRDYmliVXZLUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAY1ppDANBgkqhkiG9w0BAQsFAAOC
AQEAO0JEBsqbO9KifOTqA3+vOd+5XFSQogOU+AKrxMLV/ljIGdj9qely0lbf6i47
8ZhgqJbwWmsEBtOtlIe0dwFdYgUoglFtqaHHMSHrtrh8rtDQWSmBp8ekQaK32bo/
R2uWDIHLQSYPp/BdiBtlJeb2WKsO3z8qbxm9UfAYFsrosylnS5tE8HNcsp9EBoix
arsjNbF1i0rcQLxgUOKfaZpbhzvtqYFehbGFAOcRCIwykFIoow8qH7Kw9o579ky5
FwO1PYCMhgrfJHlDwxHZiut/KKFNJnSjValX9cop5T7qyIZuoZwEyfumehTbH9Ld
P4QtNkPguaw0AxDhucGqcJoDog==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:02 2023 by rpki-client on console-ams.rpki-client.org