Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/7vOLIp2Pixy0qvtLPhbKsmJ6GgU.roa
File: 7vOLIp2Pixy0qvtLPhbKsmJ6GgU.roa (raw, json)
Hash identifier: iTw/QfbWyiky4/01xT564ndi4w1RhqaD9Fl+j1b2NZA=
Subject key identifier: EE:F3:8B:22:9D:8F:8B:1C:B4:AA:FB:4B:3E:16:CA:B2:62:7A:1A:05
Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10
Certificate serial: 155C1EB1
Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/7vOLIp2Pixy0qvtLPhbKsmJ6GgU.roa
Signing time: Sat 01 Jan 2022 08:04:48 +0000
ROA not before: Sat 01 Jan 2022 08:04:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 62.100.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358358705 (0x155c1eb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10
Validity
Not Before: Jan 1 08:04:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eef38b229d8f8b1cb4aafb4b3e16cab2627a1a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fb:66:cf:f4:1a:68:94:dc:38:11:b8:f2:cf:
9f:eb:7e:4d:c8:bf:a9:62:48:76:b9:d5:44:7b:06:
4b:22:5f:80:f1:b8:02:fc:eb:97:c6:4a:f1:a6:a9:
ea:2d:b8:e1:30:53:29:3b:41:bd:29:48:d5:56:e6:
2e:1b:f1:fa:cf:70:4a:6a:4d:7c:ed:ad:2d:53:8a:
06:fa:9d:a0:b7:d8:14:b4:70:a7:f6:ab:fa:cf:4a:
32:16:3d:00:ec:30:af:e9:27:72:46:21:58:5e:da:
66:46:5e:c7:17:09:2a:28:8a:8f:f3:20:cc:70:b9:
02:f1:b7:88:60:1b:f9:7b:cc:83:f0:7d:f8:8f:92:
83:f6:3d:31:32:fd:a2:ba:a8:08:97:60:6f:cb:69:
f7:41:36:b8:ae:4c:bc:c8:c5:40:5a:1b:ab:24:27:
dc:a9:df:75:63:ce:3f:3e:6d:14:aa:12:16:53:16:
6e:68:72:db:28:d0:51:cc:f6:a2:29:1f:dc:93:6f:
87:18:71:02:a1:91:39:83:9f:66:69:fd:e0:65:7c:
71:dd:2c:12:db:77:58:02:ae:88:21:09:06:aa:39:
09:51:4a:b5:4a:1a:e3:fc:05:59:d5:31:36:9a:df:
82:33:52:d5:22:68:4e:c1:a9:44:a9:2a:d0:0c:57:
d1:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F3:8B:22:9D:8F:8B:1C:B4:AA:FB:4B:3E:16:CA:B2:62:7A:1A:05
X509v3 Authority Key Identifier:
keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/7vOLIp2Pixy0qvtLPhbKsmJ6GgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.100.209.0/24
Signature Algorithm: sha256WithRSAEncryption
57:0f:c4:f0:e9:66:9e:8a:b6:c4:76:12:bf:8f:a5:ea:c4:e6:
0f:6e:94:40:35:fc:bd:9a:49:9d:36:d0:07:81:b0:60:23:43:
88:09:59:ed:25:5b:5e:6b:7a:0c:79:12:1a:40:36:42:39:50:
2b:5a:ca:e4:96:7f:74:55:10:21:62:6f:8f:7f:a8:27:3f:40:
9f:98:68:9b:00:52:36:d3:ce:a4:36:ad:17:33:77:f8:93:d3:
db:70:d3:91:0d:df:72:f3:00:97:50:f4:77:c3:7b:c3:a8:39:
77:1b:56:2f:6f:e3:fd:72:79:53:97:f1:10:3e:76:aa:3c:b8:
ea:32:4a:92:f6:30:77:7d:de:e1:65:0f:3c:27:ce:24:ba:79:
9c:b6:dc:14:65:90:6b:7c:41:07:43:61:06:9d:e9:0c:af:9a:
21:be:0e:a0:fd:54:a8:bc:a7:66:f5:13:e9:8b:84:7e:7c:f1:
49:51:86:f2:ce:be:a9:63:6b:8b:32:c0:19:ba:2e:dd:18:59:
f7:85:63:ec:bc:28:6c:d9:e6:8e:f7:69:07:99:95:c5:78:a7:
03:aa:32:55:03:11:05:4d:75:a5:be:62:49:fd:e9:50:f6:41:
07:1e:e3:14:61:23:8d:b5:43:90:d8:38:5f:04:74:51:fd:ed:
67:87:6b:55
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFVwesTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZjA3NDM0OTZjN2ZmM2VmZmI4NzA2MDExMzljYWQ5ZDJmMjcxZTEwMB4XDTIyMDEw
MTA4MDQ0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWVmMzhiMjI5ZDhm
OGIxY2I0YWFmYjRiM2UxNmNhYjI2MjdhMWEwNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKr7Zs/0GmiU3DgRuPLPn+t+Tci/qWJIdrnVRHsGSyJfgPG4
Avzrl8ZK8aap6i244TBTKTtBvSlI1VbmLhvx+s9wSmpNfO2tLVOKBvqdoLfYFLRw
p/ar+s9KMhY9AOwwr+knckYhWF7aZkZexxcJKiiKj/MgzHC5AvG3iGAb+XvMg/B9
+I+Sg/Y9MTL9orqoCJdgb8tp90E2uK5MvMjFQFobqyQn3KnfdWPOPz5tFKoSFlMW
bmhy2yjQUcz2oikf3JNvhxhxAqGROYOfZmn94GV8cd0sEtt3WAKuiCEJBqo5CVFK
tUoa4/wFWdUxNprfgjNS1SJoTsGpRKkq0AxX0d8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTu84sinY+LHLSq+0s+FsqyYnoaBTAfBgNVHSMEGDAWgBSfB0NJbH/z7/uH
BgETnK2dLyceEDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L253ZERTV3hfOC1fN2h3WUJFNXl0blM4bkhoQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTUvMjJiN2FiLWZjMTEtNDA3YS1iZDNjLTYzNDExMzY3ZDkwYS8x
Lzd2T0xJcDJQaXh5MHF2dExQaGJLc21KNkdnVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTUv
MjJiN2FiLWZjMTEtNDA3YS1iZDNjLTYzNDExMzY3ZDkwYS8xL253ZERTV3hfOC1f
N2h3WUJFNXl0blM4bkhoQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD5k0TANBgkqhkiG9w0BAQsFAAOC
AQEAVw/E8Olmnoq2xHYSv4+l6sTmD26UQDX8vZpJnTbQB4GwYCNDiAlZ7SVbXmt6
DHkSGkA2QjlQK1rK5JZ/dFUQIWJvj3+oJz9An5homwBSNtPOpDatFzN3+JPT23DT
kQ3fcvMAl1D0d8N7w6g5dxtWL2/j/XJ5U5fxED52qjy46jJKkvYwd33e4WUPPCfO
JLp5nLbcFGWQa3xBB0NhBp3pDK+aIb4OoP1UqLynZvUT6YuEfnzxSVGG8s6+qWNr
izLAGbou3RhZ94Vj7LwobNnmjvdpB5mVxXinA6oyVQMRBU11pb5iSf3pUPZBBx7j
FGEjjbVDkNg4XwR0Uf3tZ4drVQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:26 2023 by rpki-client on console-fra.rpki-client.org