Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/SgC1vQb_Qi2yoPFqOv3e0qnVnss.roa
File: SgC1vQb_Qi2yoPFqOv3e0qnVnss.roa (raw, json)
Hash identifier: PuNEw6bGA9R1Vh9cMP42voAmDwwJYimNchYzlBFTiRU=
Subject key identifier: 4A:00:B5:BD:06:FF:42:2D:B2:A0:F1:6A:3A:FD:DE:D2:A9:D5:9E:CB
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018379BA7D3A5C66D1F51EC89425DA68D927
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/SgC1vQb_Qi2yoPFqOv3e0qnVnss.roa
Signing time: Mon 26 Sep 2022 12:16:48 +0000
ROA not before: Mon 26 Sep 2022 12:16:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 5.181.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:79:ba:7d:3a:5c:66:d1:f5:1e:c8:94:25:da:68:d9:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Sep 26 12:16:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a00b5bd06ff422db2a0f16a3afdded2a9d59ecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:38:53:27:11:c8:6a:ec:a8:64:6d:1c:8e:1a:
07:7e:12:78:45:92:ef:00:64:79:02:92:eb:b4:97:
79:b1:9d:52:cc:a8:ca:bd:c1:fd:f1:be:41:a1:3f:
ee:55:50:9b:c5:21:89:6d:c2:5c:79:2d:80:99:a5:
32:41:3b:03:e7:56:5d:8e:3f:98:fd:8f:f3:0a:48:
a3:27:d1:a6:fc:c0:43:3c:13:54:d2:13:09:37:11:
67:75:fb:33:73:51:69:a7:59:c8:08:72:0e:bf:3f:
84:b5:77:4e:d0:84:0f:c1:1e:88:c4:97:72:99:55:
43:8d:91:ba:f4:1f:c4:b6:7d:5e:11:e9:ce:8d:cc:
39:fd:0b:94:02:03:7e:23:46:d5:b4:b5:83:3c:5a:
2f:05:ec:37:a3:4e:d1:72:38:0e:14:d3:ff:e8:57:
2f:bf:ad:19:46:99:92:0c:fe:c8:8d:49:b0:5f:b9:
36:39:9b:c9:bd:7f:77:0c:61:5c:a0:ed:52:39:fa:
d9:2f:0b:f0:69:96:00:ce:3c:8f:40:13:76:32:72:
73:94:c3:4f:c4:5e:17:c6:39:46:b9:a9:46:93:bb:
64:f0:f8:10:62:e9:4a:51:ae:bf:b0:9a:dd:01:81:
ce:f2:31:ff:0b:41:ac:43:37:08:c0:66:ce:ef:f8:
df:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:00:B5:BD:06:FF:42:2D:B2:A0:F1:6A:3A:FD:DE:D2:A9:D5:9E:CB
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/SgC1vQb_Qi2yoPFqOv3e0qnVnss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.87.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:ee:02:db:ee:24:ab:c8:40:d1:31:33:52:2f:0b:18:96:ff:
7e:bf:47:fe:aa:44:52:bf:4c:8b:c1:7a:91:39:20:ef:89:7b:
60:98:21:e1:a3:5a:71:57:2f:a3:fb:e6:44:cb:75:67:4e:56:
91:eb:8a:93:0d:fb:2c:00:7a:00:fc:f2:27:0f:a0:f4:1c:40:
5c:c8:cb:db:fa:f8:6d:38:ae:29:d8:51:77:50:d6:c8:4b:d1:
a1:7f:3d:87:a8:2e:f0:09:f3:78:3c:66:0e:8f:5e:ec:b9:61:
d7:c2:26:ac:d1:df:3d:53:51:0e:61:98:73:bd:c4:ec:05:c7:
ef:44:ce:49:c7:b1:af:d6:b7:2c:33:cf:18:e4:2c:5f:9a:57:
fa:13:02:7b:3e:6b:7f:53:fc:76:12:5a:4c:a2:0d:1c:e8:dd:
4b:8e:69:77:0f:ff:10:e8:06:9f:c5:17:1e:9b:d9:69:3b:5a:
6a:ae:88:ca:bf:70:f0:50:c2:fa:fe:13:03:f7:b3:92:8b:b8:
41:57:0e:f1:a2:9f:50:64:6f:b6:4b:e5:3e:0e:bf:ed:6e:ae:
36:2c:a6:de:b6:16:99:fb:b3:11:ae:93:e7:8c:58:6d:09:2a:
dc:28:33:71:4f:5b:7b:7a:a1:27:67:6f:2b:94:9e:8f:9f:e6:
67:7e:f2:1f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYN5un06XGbR9R7IlCXaaNknMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjIwOTI2MTIxNjQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YTAwYjViZDA2ZmY0MjJkYjJhMGYxNmEzYWZkZGVkMmE5ZDU5ZWNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjThTJxHIauyoZG0cjhoHfhJ4RZLv
AGR5ApLrtJd5sZ1SzKjKvcH98b5BoT/uVVCbxSGJbcJceS2AmaUyQTsD51Zdjj+Y
/Y/zCkijJ9Gm/MBDPBNU0hMJNxFndfszc1Fpp1nICHIOvz+EtXdO0IQPwR6IxJdy
mVVDjZG69B/Etn1eEenOjcw5/QuUAgN+I0bVtLWDPFovBew3o07RcjgOFNP/6Fcv
v60ZRpmSDP7IjUmwX7k2OZvJvX93DGFcoO1SOfrZLwvwaZYAzjyPQBN2MnJzlMNP
xF4XxjlGualGk7tk8PgQYulKUa6/sJrdAYHO8jH/C0GsQzcIwGbO7/jf1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEoAtb0G/0ItsqDxajr93tKp1Z7LMB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEvU2dDMXZRYl9RaTJ5b1BGcU92M2UwcW5WbnNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw
LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbVXMA0G
CSqGSIb3DQEBCwUAA4IBAQCP7gLb7iSryEDRMTNSLwsYlv9+v0f+qkRSv0yLwXqR
OSDviXtgmCHho1pxVy+j++ZEy3VnTlaR64qTDfssAHoA/PInD6D0HEBcyMvb+vht
OK4p2FF3UNbIS9Ghfz2HqC7wCfN4PGYOj17suWHXwias0d89U1EOYZhzvcTsBcfv
RM5Jx7Gv1rcsM88Y5Cxfmlf6EwJ7Pmt/U/x2ElpMog0c6N1Ljml3D/8Q6AafxRce
m9lpO1pqrojKv3DwUML6/hMD97OSi7hBVw7xop9QZG+2S+U+Dr/tbq42LKbethaZ
+7MRrpPnjFhtCSrcKDNxT1t7eqEnZ28rlJ6Pn+ZnfvIf
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org