Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/hER2WHeaErl7fwuK8qJ8rqfcQGM.roa
File: hER2WHeaErl7fwuK8qJ8rqfcQGM.roa (raw, json)
Hash identifier: /ERnRXZGUa0zfl1M1YBE0hLJBGlKcXxaJALH05plyCQ=
Subject key identifier: 84:44:76:58:77:9A:12:B9:7B:7F:0B:8A:F2:A2:7C:AE:A7:DC:40:63
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A5D145F
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/hER2WHeaErl7fwuK8qJ8rqfcQGM.roa
Signing time: Sat 01 Jan 2022 14:56:34 +0000
ROA not before: Sat 01 Jan 2022 14:56:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64413
IP address blocks: 5.160.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 979178591 (0x3a5d145f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84447658779a12b97b7f0b8af2a27caea7dc4063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e0:56:da:f2:fd:6f:9e:34:8d:15:fb:9c:9f:
40:02:9e:eb:d5:a3:de:14:b6:6d:d5:32:e0:53:ca:
dd:55:d6:44:d4:50:0e:17:95:30:cb:8e:d6:35:ba:
6e:c2:c2:20:b3:3b:f8:05:80:e2:4b:83:a9:15:ca:
de:7d:79:53:75:fa:cd:46:2c:f6:54:1a:03:f1:91:
9c:e7:da:7a:b3:4a:be:ad:f1:29:97:91:1e:f7:c2:
60:4e:2d:aa:be:34:78:f4:05:25:9f:ff:41:aa:d1:
45:43:59:75:e7:f9:2c:bc:95:0f:fe:11:71:f7:cd:
78:70:5c:51:67:ec:35:9d:4d:fe:28:4b:96:23:a5:
66:2a:65:9d:6d:8b:cb:cd:32:ba:b0:63:95:8f:a0:
44:6d:85:98:f8:ea:48:c8:fc:b1:cc:32:49:bf:03:
b6:ad:27:c6:dd:af:d5:59:e4:91:cd:68:fe:81:0d:
7c:b1:33:d5:1a:03:6a:3b:76:69:66:64:d0:cd:2f:
18:0e:a7:52:51:ff:08:f8:eb:6f:d8:02:1a:a4:cb:
5e:1c:cb:67:57:a8:61:43:a1:68:c3:bb:02:55:49:
77:e4:0a:30:87:56:9f:a3:3d:33:8f:ee:ca:7b:7b:
25:8e:00:4a:d9:c5:c1:cf:95:4f:56:27:ad:7f:2a:
86:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:44:76:58:77:9A:12:B9:7B:7F:0B:8A:F2:A2:7C:AE:A7:DC:40:63
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/hER2WHeaErl7fwuK8qJ8rqfcQGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.224.0/20
Signature Algorithm: sha256WithRSAEncryption
8d:e9:1c:c5:6a:53:9a:86:c8:94:72:f0:e9:25:60:a1:e3:f5:
60:d3:14:3f:9f:7e:ed:bf:94:7b:9a:0d:79:53:50:f0:c8:bf:
26:e0:2c:33:dd:9b:d9:47:76:a9:78:72:7e:ad:2c:39:7f:a1:
95:a4:9c:4a:7f:5b:d7:2d:3d:1e:ff:7e:1e:64:27:d6:54:48:
9f:3c:33:31:e7:67:fe:57:7e:c0:09:1a:64:9e:68:27:5e:04:
da:3b:c5:09:cc:81:b9:3f:bb:6c:b8:12:ed:c3:01:cd:c3:ba:
98:94:a9:1b:97:a9:66:cf:f7:02:10:b9:77:fc:0b:97:c6:b9:
9f:11:40:d4:31:a3:b7:6a:6e:f9:1c:21:70:79:64:4c:09:31:
51:70:b3:d9:ed:bf:49:2e:fe:52:e8:25:a3:ab:d0:4b:48:f8:
54:a4:45:5f:b1:ca:af:29:1d:01:20:79:90:c1:72:ef:b5:c6:
cf:11:18:78:40:ab:38:e2:e2:36:08:99:2c:85:8f:12:6b:48:
75:7f:e6:4e:7f:5a:1f:9f:e5:66:c0:15:ec:91:55:32:6d:4f:
1f:6e:82:71:d4:85:63:ce:ca:ae:8a:92:ed:ae:f8:db:bc:f4:
b4:b0:fc:9c:34:f8:79:d5:4c:fa:90:17:91:d4:2a:3f:cf:46:
6a:5d:73:90
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOl0UXzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MWNjYTlmMTVlMTkyMTk1M2E2MjhjOGFkMmFjNGJlOTc3YjZjMzAzMB4XDTIyMDEw
MTE0NTYzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODQ0NDc2NTg3Nzlh
MTJiOTdiN2YwYjhhZjJhMjdjYWVhN2RjNDA2MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ7gVtry/W+eNI0V+5yfQAKe69Wj3hS2bdUy4FPK3VXWRNRQ
DheVMMuO1jW6bsLCILM7+AWA4kuDqRXK3n15U3X6zUYs9lQaA/GRnOfaerNKvq3x
KZeRHvfCYE4tqr40ePQFJZ//QarRRUNZdef5LLyVD/4RcffNeHBcUWfsNZ1N/ihL
liOlZiplnW2Ly80yurBjlY+gRG2FmPjqSMj8scwySb8Dtq0nxt2v1Vnkkc1o/oEN
fLEz1RoDajt2aWZk0M0vGA6nUlH/CPjrb9gCGqTLXhzLZ1eoYUOhaMO7AlVJd+QK
MIdWn6M9M4/uynt7JY4AStnFwc+VT1YnrX8qhmkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSERHZYd5oSuXt/C4ryonyup9xAYzAfBgNVHSMEGDAWgBSBzKnxXhkhlTpi
jIrSrEvpd7bDAzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2djeXA4VjRaSVpVNllveUswcXhMNlhlMnd3TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvMWVhMmIwLTZiOWEtNDRkNy1hMmU1LTIyMDZjYzJlNjkxYy8x
L2hFUjJXSGVhRXJsN2Z3dUs4cUo4cnFmY1FHTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
MWVhMmIwLTZiOWEtNDRkNy1hMmU1LTIyMDZjYzJlNjkxYy8xL2djeXA4VjRaSVpV
NllveUswcXhMNlhlMnd3TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBAWg4DANBgkqhkiG9w0BAQsFAAOC
AQEAjekcxWpTmobIlHLw6SVgoeP1YNMUP59+7b+Ue5oNeVNQ8Mi/JuAsM92b2Ud2
qXhyfq0sOX+hlaScSn9b1y09Hv9+HmQn1lRInzwzMedn/ld+wAkaZJ5oJ14E2jvF
CcyBuT+7bLgS7cMBzcO6mJSpG5epZs/3AhC5d/wLl8a5nxFA1DGjt2pu+RwhcHlk
TAkxUXCz2e2/SS7+Uuglo6vQS0j4VKRFX7HKrykdASB5kMFy77XGzxEYeECrOOLi
NgiZLIWPEmtIdX/mTn9aH5/lZsAV7JFVMm1PH26CcdSFY87KroqS7a7427z0tLD8
nDT4edVM+pAXkdQqP89Gal1zkA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:06 2023 by rpki-client on console-ams.rpki-client.org