Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/I45G6HpqX08HjjEkYIZQwQpPVRY.roa
File: I45G6HpqX08HjjEkYIZQwQpPVRY.roa (raw, json)
Hash identifier: qhvKemmBdJU6uT33/KygTuK/P6D+Hdk/sC8gnz/uCw4=
Subject key identifier: 23:8E:46:E8:7A:6A:5F:4F:07:8E:31:24:60:86:50:C1:0A:4F:55:16
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A400F86
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/I45G6HpqX08HjjEkYIZQwQpPVRY.roa
Signing time: Sat 01 Jan 2022 14:56:17 +0000
ROA not before: Sat 01 Jan 2022 14:56:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29577
IP address blocks: 5.160.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 977276806 (0x3a400f86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=238e46e87a6a5f4f078e3124608650c10a4f5516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f1:e2:12:e2:c3:95:4e:3e:52:fa:b4:3c:87:
93:1c:6b:18:67:3e:13:8d:5b:39:81:2a:8e:3c:d8:
42:ce:2a:27:fb:35:fa:51:30:ed:b2:00:b5:39:d9:
7f:f2:08:33:75:0d:0e:9e:ae:1a:e5:31:d5:1f:f9:
92:e4:28:d2:b1:66:37:5c:ee:62:ea:98:1e:06:84:
76:bf:ac:0c:9e:91:fb:7a:28:4a:b8:af:5d:d0:f9:
ed:3e:a8:1e:02:01:ff:45:42:5e:b2:4a:78:e4:c9:
29:0c:47:9d:f3:30:db:df:66:21:74:77:62:c0:ca:
76:17:eb:d5:f0:de:8b:f4:64:bb:41:49:a5:1d:a9:
6d:02:19:eb:89:36:5d:2f:7c:9a:d5:8b:9e:b1:e2:
67:79:2d:5c:3f:ea:2f:20:c9:4f:7b:50:e9:7f:2a:
88:4a:6a:5e:54:0b:9f:45:1d:63:4f:36:27:ae:8d:
cd:cd:2c:6a:c2:94:8c:b7:8e:d1:d5:7c:2f:15:47:
eb:02:71:a8:74:de:d5:34:67:c8:d8:7b:a5:76:23:
03:5c:dc:4c:0b:60:80:a4:75:bf:4f:e0:71:28:88:
2b:fa:be:cf:2d:ee:f2:df:47:bd:08:87:e7:c9:23:
40:80:d5:d3:c2:23:94:1d:a9:79:54:74:48:84:aa:
33:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:8E:46:E8:7A:6A:5F:4F:07:8E:31:24:60:86:50:C1:0A:4F:55:16
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/I45G6HpqX08HjjEkYIZQwQpPVRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.16.0/22
Signature Algorithm: sha256WithRSAEncryption
54:30:89:fa:fa:41:a2:42:39:f4:e1:e8:54:42:7c:8a:b6:e9:
1b:7d:87:32:9c:99:97:0e:3a:1d:c8:4c:85:2a:8f:a4:fe:2c:
08:ab:dd:5a:e2:75:74:03:6a:7d:5d:42:99:87:42:72:af:11:
bf:70:c9:7f:2b:9f:10:36:d2:62:79:6f:8d:42:f8:80:ff:fa:
83:bc:d9:60:75:a1:62:65:d4:dd:e3:79:1f:4a:54:11:32:23:
8e:52:ed:57:e7:37:7f:57:c9:7c:8b:c0:01:c2:06:b8:35:46:
bf:93:ea:ec:f1:60:fa:95:0f:1a:b9:80:18:02:92:a8:5c:08:
e3:78:06:16:7d:30:7d:72:5d:30:36:9b:c7:aa:85:19:d5:ea:
cf:a4:02:de:4d:dd:b5:8f:cf:92:30:ea:c9:fe:c2:dd:df:bf:
68:b9:91:33:74:e6:8d:2f:39:bd:1b:f2:66:dc:2f:f5:d0:f5:
2b:f3:d7:19:c6:84:25:d2:a4:59:83:6e:69:5d:82:c1:cb:cc:
d6:ca:6a:2e:e6:1b:1a:60:56:5c:00:0d:ab:02:45:b1:99:09:
86:d8:49:f2:28:3b:28:a0:92:50:67:65:34:23:c1:b9:b2:e2:
6a:97:6c:4c:33:12:22:0d:05:8d:18:b9:59:b9:1e:6c:0c:c7:
9e:2f:c5:5c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOkAPhjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MWNjYTlmMTVlMTkyMTk1M2E2MjhjOGFkMmFjNGJlOTc3YjZjMzAzMB4XDTIyMDEw
MTE0NTYxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjM4ZTQ2ZTg3YTZh
NWY0ZjA3OGUzMTI0NjA4NjUwYzEwYTRmNTUxNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALbx4hLiw5VOPlL6tDyHkxxrGGc+E41bOYEqjjzYQs4qJ/s1
+lEw7bIAtTnZf/IIM3UNDp6uGuUx1R/5kuQo0rFmN1zuYuqYHgaEdr+sDJ6R+3oo
SrivXdD57T6oHgIB/0VCXrJKeOTJKQxHnfMw299mIXR3YsDKdhfr1fDei/Rku0FJ
pR2pbQIZ64k2XS98mtWLnrHiZ3ktXD/qLyDJT3tQ6X8qiEpqXlQLn0UdY082J66N
zc0sasKUjLeO0dV8LxVH6wJxqHTe1TRnyNh7pXYjA1zcTAtggKR1v0/gcSiIK/q+
zy3u8t9HvQiH58kjQIDV08IjlB2peVR0SISqM38CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQjjkboempfTweOMSRghlDBCk9VFjAfBgNVHSMEGDAWgBSBzKnxXhkhlTpi
jIrSrEvpd7bDAzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2djeXA4VjRaSVpVNllveUswcXhMNlhlMnd3TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvMWVhMmIwLTZiOWEtNDRkNy1hMmU1LTIyMDZjYzJlNjkxYy8x
L0k0NUc2SHBxWDA4SGpqRWtZSVpRd1FwUFZSWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
MWVhMmIwLTZiOWEtNDRkNy1hMmU1LTIyMDZjYzJlNjkxYy8xL2djeXA4VjRaSVpV
NllveUswcXhMNlhlMnd3TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAgWgEDANBgkqhkiG9w0BAQsFAAOC
AQEAVDCJ+vpBokI59OHoVEJ8irbpG32HMpyZlw46HchMhSqPpP4sCKvdWuJ1dANq
fV1CmYdCcq8Rv3DJfyufEDbSYnlvjUL4gP/6g7zZYHWhYmXU3eN5H0pUETIjjlLt
V+c3f1fJfIvAAcIGuDVGv5Pq7PFg+pUPGrmAGAKSqFwI43gGFn0wfXJdMDabx6qF
GdXqz6QC3k3dtY/PkjDqyf7C3d+/aLmRM3TmjS85vRvyZtwv9dD1K/PXGcaEJdKk
WYNuaV2CwcvM1spqLuYbGmBWXAANqwJFsZkJhthJ8ig7KKCSUGdlNCPBubLiapds
TDMSIg0FjRi5WbkebAzHni/FXA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:19 2023 by rpki-client on console-fra.rpki-client.org