Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/sxrKHaRX885TDfmeF78FyFVg2kw.roa
File: sxrKHaRX885TDfmeF78FyFVg2kw.roa (raw, json)
Hash identifier: Kqrxw9VfO2yAt1AmvQiBC2VvDOPrW3YMYIfl+EYfoXw=
Subject key identifier: B3:1A:CA:1D:A4:57:F3:CE:53:0D:F9:9E:17:BF:05:C8:55:60:DA:4C
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 0181DE02F07A00979815A20B695E44DD5A14
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/sxrKHaRX885TDfmeF78FyFVg2kw.roa
Signing time: Fri 08 Jul 2022 13:32:23 +0000
ROA not before: Fri 08 Jul 2022 13:32:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211715
IP address blocks: 78.142.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:de:02:f0:7a:00:97:98:15:a2:0b:69:5e:44:dd:5a:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Jul 8 13:32:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b31aca1da457f3ce530df99e17bf05c85560da4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0c:29:15:1f:f1:b2:64:6a:f1:4c:00:15:e0:
76:e7:ec:56:18:e3:20:70:ca:42:d5:c4:c7:10:ea:
ae:67:62:25:af:d3:49:e8:12:00:b9:53:27:f5:97:
6e:7c:99:08:a5:27:ab:aa:dc:5c:9d:81:0e:4e:92:
12:1c:f8:a9:a1:39:88:2b:a2:27:59:f8:70:12:b4:
15:f6:45:3f:79:69:ea:c8:bc:82:1a:79:15:7c:18:
1b:5f:b1:46:e1:7e:e5:b0:6a:9f:ca:10:88:b9:35:
87:1a:55:a3:9a:f9:cd:70:24:2c:93:50:bd:35:20:
42:5c:fc:ec:74:c8:a6:eb:a6:57:57:85:88:24:0f:
17:47:dc:26:55:f0:d6:fe:c8:d6:ae:ce:5e:6f:dd:
a1:7b:fe:06:24:27:2f:fc:ea:b9:d3:b9:b2:25:1c:
6e:30:ff:85:0a:fd:6d:d6:f9:9b:94:4c:af:aa:68:
20:56:48:f2:96:ba:25:1a:02:af:73:25:ed:50:2b:
d1:32:da:3f:ff:8e:ba:08:40:a8:cb:dc:93:9b:cb:
c4:2d:f4:e1:d1:0d:a5:6b:63:a3:5c:df:3f:01:d0:
26:92:af:ed:96:5b:60:02:7e:b3:cb:d1:db:72:73:
7d:56:cd:dd:75:dc:11:56:5e:2e:ff:d9:dc:44:85:
eb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:1A:CA:1D:A4:57:F3:CE:53:0D:F9:9E:17:BF:05:C8:55:60:DA:4C
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/sxrKHaRX885TDfmeF78FyFVg2kw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.142.216.0/24
Signature Algorithm: sha256WithRSAEncryption
30:b1:2d:80:ee:89:df:04:77:b9:86:73:66:e4:14:b1:86:66:
b6:0c:4c:b9:69:0f:93:80:84:e6:b9:f2:1c:0c:91:f3:7f:0b:
83:61:8f:93:58:60:2f:5a:ad:f7:17:03:52:25:23:de:e6:06:
86:ea:a6:e0:76:80:76:b6:95:32:77:4b:f6:17:a2:f4:f3:0c:
1d:8b:03:91:91:64:d7:2d:c2:9d:7e:fa:b7:23:ea:63:21:c9:
76:d2:a5:3a:08:10:90:4d:f1:cf:60:e9:0d:79:21:81:7c:e9:
43:1e:53:7b:83:e6:c0:63:70:56:9f:ff:a2:01:a1:85:6a:17:
9d:9d:39:71:79:0d:cd:3b:7c:63:f8:6e:b9:c4:06:75:6a:d0:
a3:e5:00:03:bd:55:4e:bb:95:e9:a1:16:e4:9e:3d:06:dc:a1:
7d:eb:26:31:8a:6c:66:6d:17:8d:e8:8e:38:c3:5d:3a:fa:94:
21:57:ef:cd:df:80:44:f6:30:8a:7b:63:fe:1c:19:db:34:42:
1b:46:b3:63:c9:a5:91:2c:68:d4:46:b5:7e:71:11:c4:82:b4:
e0:4f:e1:3c:f6:2c:6f:63:4b:54:b1:80:57:32:47:85:22:37:
2a:69:d3:a2:b9:a4:e8:8f:4d:4e:31:dc:58:57:31:b7:69:9d:
0a:26:b6:6f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHeAvB6AJeYFaILaV5E3VoUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0ZDA4YTFlMWNiYzkwOTI1NGU5ZTZiOWM5MzlmZDg1YTI2
OGIxZTEwHhcNMjIwNzA4MTMzMjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzFhY2ExZGE0NTdmM2NlNTMwZGY5OWUxN2JmMDVjODU1NjBkYTRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmgwpFR/xsmRq8UwAFeB25+xWGOMg
cMpC1cTHEOquZ2Ilr9NJ6BIAuVMn9ZdufJkIpSerqtxcnYEOTpISHPipoTmIK6In
WfhwErQV9kU/eWnqyLyCGnkVfBgbX7FG4X7lsGqfyhCIuTWHGlWjmvnNcCQsk1C9
NSBCXPzsdMim66ZXV4WIJA8XR9wmVfDW/sjWrs5eb92he/4GJCcv/Oq507myJRxu
MP+FCv1t1vmblEyvqmggVkjylrolGgKvcyXtUCvRMto//466CECoy9yTm8vELfTh
0Q2la2OjXN8/AdAmkq/tlltgAn6zy9HbcnN9Vs3dddwRVl4u/9ncRIXrUwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLMayh2kV/POUw35nhe/BchVYNpMMB8GA1UdIwQY
MBaAFPTQih4cvJCSVOnmuck5/YWiaLHhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOU5DS0hoeThrSkpVNmVhNXlUbjloYUpvc2VFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NDlmZGMtMGQzYS00MWVjLWExY2Ut
ZGNlOTQ3ZTI5NGI2LzEvc3hyS0hhUlg4ODVURGZtZUY3OEZ5RlZnMmt3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NDlmZGMtMGQzYS00MWVjLWExY2UtZGNlOTQ3ZTI5NGI2
LzEvOU5DS0hoeThrSkpVNmVhNXlUbjloYUpvc2VFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATo7YMA0G
CSqGSIb3DQEBCwUAA4IBAQAwsS2A7onfBHe5hnNm5BSxhma2DEy5aQ+TgITmufIc
DJHzfwuDYY+TWGAvWq33FwNSJSPe5gaG6qbgdoB2tpUyd0v2F6L08wwdiwORkWTX
LcKdfvq3I+pjIcl20qU6CBCQTfHPYOkNeSGBfOlDHlN7g+bAY3BWn/+iAaGFahed
nTlxeQ3NO3xj+G65xAZ1atCj5QADvVVOu5XpoRbknj0G3KF96yYximxmbReN6I44
w106+pQhV+/N34BE9jCKe2P+HBnbNEIbRrNjyaWRLGjURrV+cRHEgrTgT+E89ixv
Y0tUsYBXMkeFIjcqadOiuaToj01OMdxYVzG3aZ0KJrZv
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:32 2023 by rpki-client on console-fra.rpki-client.org