Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/QOq9yjjQtMEiwtg7N1W3k11IQmI.roa
File: QOq9yjjQtMEiwtg7N1W3k11IQmI.roa (raw, json)
Hash identifier: xth2H8TQ3Lr11OPCkpnB6AvcQ7FQVI3T9VhR+n8tXos=
Subject key identifier: 40:EA:BD:CA:38:D0:B4:C1:22:C2:D8:3B:37:55:B7:93:5D:48:42:62
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 018413466820C744103E60C1173C50B4FBBD
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/QOq9yjjQtMEiwtg7N1W3k11IQmI.roa
Signing time: Wed 26 Oct 2022 07:51:32 +0000
ROA not before: Wed 26 Oct 2022 07:51:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 163.5.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:13:46:68:20:c7:44:10:3e:60:c1:17:3c:50:b4:fb:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 26 07:51:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40eabdca38d0b4c122c2d83b3755b7935d484262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:fd:60:64:be:30:b2:3c:66:8e:7c:25:74:e4:
94:60:b0:e0:7f:e1:77:25:52:a4:f1:ab:c1:2c:52:
9d:14:47:27:61:db:a9:b1:7f:9d:39:be:2c:63:dc:
e0:c1:10:4a:de:14:fe:b3:e0:0c:6e:92:d3:da:80:
9f:93:06:d6:2d:75:31:6f:3f:de:b2:14:4e:7f:52:
45:ac:d5:fd:f0:f1:cb:16:64:17:40:3e:62:f0:59:
fa:cb:6a:a0:c1:25:de:67:8d:70:e9:2c:01:a4:2a:
b9:be:c8:d3:5a:68:f7:60:de:00:21:bb:07:af:47:
1a:3a:50:2c:4c:a8:fe:6d:bb:40:de:e0:79:91:6d:
a3:f9:e1:02:dc:24:a6:5c:29:39:12:0a:be:36:d3:
b9:18:1e:9a:ca:15:7e:d0:ed:5d:2d:9c:82:e2:f2:
71:ab:b7:13:df:3c:8e:a8:98:73:f3:6e:89:a8:f3:
47:38:ba:8b:21:99:d3:3d:2d:2a:56:8b:4d:43:72:
26:e9:60:2a:25:b3:59:9e:ef:18:cb:95:f3:f9:1f:
e1:83:3b:f5:6d:7a:ca:96:13:95:e9:5e:44:7e:32:
61:57:f7:78:24:80:a4:0a:dc:a8:70:67:ef:df:19:
69:fd:87:43:bf:d0:aa:ac:05:71:c4:ce:82:a6:fb:
89:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:EA:BD:CA:38:D0:B4:C1:22:C2:D8:3B:37:55:B7:93:5D:48:42:62
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/QOq9yjjQtMEiwtg7N1W3k11IQmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.36.0/24
Signature Algorithm: sha256WithRSAEncryption
16:03:c2:61:5f:e4:5f:23:02:a8:88:25:8d:1e:18:06:17:72:
7a:0a:f9:a1:8e:dc:ce:36:b8:70:ba:d5:0d:97:d9:2c:77:cd:
35:95:79:04:ef:8e:ac:2a:dc:5f:3c:6f:75:db:63:41:4a:7f:
43:e2:4b:c9:bf:c8:e9:b4:e8:39:73:01:7a:71:dc:73:db:6b:
e6:fd:18:9d:6d:68:bd:0e:be:55:16:c2:9b:e9:56:5b:c3:7b:
83:6a:d4:9c:05:b4:45:db:ec:d8:d5:59:dc:4b:eb:42:bb:17:
70:82:9f:10:7e:f2:c1:93:cf:b2:23:08:6f:f7:53:3f:20:7c:
75:e6:45:db:46:7d:0a:46:b5:85:a1:ba:43:04:8c:56:01:e5:
21:0d:32:17:54:ca:4c:be:95:f2:00:0e:de:6c:e8:94:7b:dc:
ab:bd:aa:cd:34:be:25:b2:0f:f5:37:dd:f7:f5:0e:26:ea:27:
43:88:76:fd:b2:15:54:63:74:c6:7f:f4:38:49:04:0b:c1:48:
32:99:00:0e:fe:af:98:3b:e9:d3:d1:ae:23:0b:ed:ba:21:c7:
57:87:f7:5b:7f:e4:4b:e0:45:46:41:d7:43:a9:61:74:45:c0:
9a:f7:03:ac:24:b9:59:96:b1:79:7d:04:a6:23:1f:44:d5:b2:
e3:b4:1e:ab
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQTRmggx0QQPmDBFzxQtPu9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjIxMDI2MDc1MTMyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MGVhYmRjYTM4ZDBiNGMxMjJjMmQ4M2IzNzU1Yjc5MzVkNDg0MjYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhv1gZL4wsjxmjnwldOSUYLDgf+F3
JVKk8avBLFKdFEcnYdupsX+dOb4sY9zgwRBK3hT+s+AMbpLT2oCfkwbWLXUxbz/e
shROf1JFrNX98PHLFmQXQD5i8Fn6y2qgwSXeZ41w6SwBpCq5vsjTWmj3YN4AIbsH
r0caOlAsTKj+bbtA3uB5kW2j+eEC3CSmXCk5Egq+NtO5GB6ayhV+0O1dLZyC4vJx
q7cT3zyOqJhz826JqPNHOLqLIZnTPS0qVotNQ3Im6WAqJbNZnu8Yy5Xz+R/hgzv1
bXrKlhOV6V5EfjJhV/d4JICkCtyocGfv3xlp/YdDv9CqrAVxxM6CpvuJUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEDqvco40LTBIsLYOzdVt5NdSEJiMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvUU9xOXlqalF0TUVpd3RnN04xVzNrMTFJUW1JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowUkMA0G
CSqGSIb3DQEBCwUAA4IBAQAWA8JhX+RfIwKoiCWNHhgGF3J6CvmhjtzONrhwutUN
l9ksd801lXkE746sKtxfPG9122NBSn9D4kvJv8jptOg5cwF6cdxz22vm/RidbWi9
Dr5VFsKb6VZbw3uDatScBbRF2+zY1VncS+tCuxdwgp8QfvLBk8+yIwhv91M/IHx1
5kXbRn0KRrWFobpDBIxWAeUhDTIXVMpMvpXyAA7ebOiUe9yrvarNNL4lsg/1N933
9Q4m6idDiHb9shVUY3TGf/Q4SQQLwUgymQAO/q+YO+nT0a4jC+26IcdXh/dbf+RL
4EVGQddDqWF0RcCa9wOsJLlZlrF5fQSmIx9E1bLjtB6r
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:09 2023 by rpki-client on console-ams.rpki-client.org