Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/y8VFoNBBW-0Fm_COQ5Rq1upYNfs.roa
File: y8VFoNBBW-0Fm_COQ5Rq1upYNfs.roa (raw, json)
Hash identifier: 71ILqppSw9QfbEaiGc+UfJDaR+cGhtzqRSb0xA9UQDE=
Subject key identifier: CB:C5:45:A0:D0:41:5B:ED:05:9B:F0:8E:43:94:6A:D6:EA:58:35:FB
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A466686
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/y8VFoNBBW-0Fm_COQ5Rq1upYNfs.roa
Signing time: Sat 01 Jan 2022 14:56:18 +0000
ROA not before: Sat 01 Jan 2022 14:56:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44208
IP address blocks: 5.160.150.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 977692294 (0x3a466686)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbc545a0d0415bed059bf08e43946ad6ea5835fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3e:c2:ef:d6:71:28:57:d9:7a:26:9a:9d:cb:
bc:e0:f5:93:81:51:2b:33:a1:34:25:86:68:79:91:
09:4c:bf:66:80:d1:ed:c2:22:4c:6b:64:67:9a:b3:
af:b5:3b:f5:54:d1:61:ae:d1:70:2f:ea:ce:4b:c1:
39:c9:3f:0c:ee:f1:25:3c:a8:05:8c:60:b1:7e:7c:
8a:91:48:56:d8:1d:fc:f1:e9:1e:27:e4:08:12:5b:
dc:95:82:33:97:a1:f2:dd:b3:c1:03:9a:27:36:2e:
23:84:b8:c3:61:71:5c:19:1c:a6:4d:de:04:70:be:
07:75:47:3f:73:15:6a:51:0e:dd:48:2e:0f:a2:ae:
b0:91:91:d6:31:d2:b5:24:06:fb:00:43:d8:d0:05:
9f:17:30:85:34:e2:05:d8:35:1f:d2:25:21:b8:4b:
e6:70:44:7d:eb:28:df:45:63:81:4c:b6:0d:72:6b:
5d:72:07:48:3b:f6:df:8d:84:0f:1a:6c:1e:ff:6e:
6d:f8:7c:26:6c:1f:19:f3:ef:b9:3d:7f:c3:d5:b2:
3d:46:38:e4:04:35:f1:a0:91:a7:e9:f8:87:70:b9:
47:c2:ab:00:e1:b9:c9:3c:af:3c:93:81:5a:32:5b:
15:da:fb:4f:0a:87:b4:48:91:b9:da:b6:ea:68:3e:
35:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C5:45:A0:D0:41:5B:ED:05:9B:F0:8E:43:94:6A:D6:EA:58:35:FB
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/y8VFoNBBW-0Fm_COQ5Rq1upYNfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.150.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:de:84:c0:42:b4:66:f2:35:a0:21:32:00:f8:29:3a:bb:78:
70:c8:a2:c5:b9:0d:d2:46:47:c2:c7:c6:c9:d4:d5:86:2e:09:
be:dc:d2:85:80:36:9d:ff:07:b6:c2:98:90:db:39:fd:09:8c:
74:cc:b6:f3:96:33:e8:f5:1c:cb:d5:72:ec:a1:ee:eb:48:aa:
76:5d:8a:bb:52:a5:7e:57:c0:29:b8:f8:33:ae:54:6f:fc:03:
d4:b1:d7:d3:be:4a:76:ab:67:ec:e7:0e:da:ce:7e:de:33:72:
6d:92:71:f3:93:d6:19:5f:30:80:bc:b8:e5:3f:b4:5e:7d:e3:
3b:ab:9e:9c:bc:e8:10:7e:d2:2f:a4:33:99:f2:31:08:40:8e:
28:85:15:1b:ad:07:36:d4:58:fb:8c:f5:e4:35:19:1d:ac:27:
8d:28:a4:17:63:12:2f:5f:5a:27:95:ae:9e:d4:97:79:f0:d2:
02:8e:5e:26:5b:0c:32:83:f0:92:d0:a6:7c:54:0a:20:75:d0:
1a:9f:16:87:7e:c4:28:84:47:54:c5:34:28:a1:37:ce:53:e3:
4f:ef:da:90:ce:78:9f:be:d3:27:bf:18:29:bb:10:47:12:c5:
8b:c1:60:bb:dc:b3:8e:83:96:ea:6b:d1:e7:2b:9f:68:2b:00:
a1:b2:68:48
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOkZmhjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MWNjYTlmMTVlMTkyMTk1M2E2MjhjOGFkMmFjNGJlOTc3YjZjMzAzMB4XDTIyMDEw
MTE0NTYxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2JjNTQ1YTBkMDQx
NWJlZDA1OWJmMDhlNDM5NDZhZDZlYTU4MzVmYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAME+wu/WcShX2Xommp3LvOD1k4FRKzOhNCWGaHmRCUy/ZoDR
7cIiTGtkZ5qzr7U79VTRYa7RcC/qzkvBOck/DO7xJTyoBYxgsX58ipFIVtgd/PHp
HifkCBJb3JWCM5eh8t2zwQOaJzYuI4S4w2FxXBkcpk3eBHC+B3VHP3MValEO3Ugu
D6KusJGR1jHStSQG+wBD2NAFnxcwhTTiBdg1H9IlIbhL5nBEfeso30VjgUy2DXJr
XXIHSDv2342EDxpsHv9ubfh8JmwfGfPvuT1/w9WyPUY45AQ18aCRp+n4h3C5R8Kr
AOG5yTyvPJOBWjJbFdr7TwqHtEiRudq26mg+NbECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTLxUWg0EFb7QWb8I5DlGrW6lg1+zAfBgNVHSMEGDAWgBSBzKnxXhkhlTpi
jIrSrEvpd7bDAzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2djeXA4VjRaSVpVNllveUswcXhMNlhlMnd3TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvMWVhMmIwLTZiOWEtNDRkNy1hMmU1LTIyMDZjYzJlNjkxYy8x
L3k4VkZvTkJCVy0wRm1fQ09RNVJxMXVwWU5mcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
MWVhMmIwLTZiOWEtNDRkNy1hMmU1LTIyMDZjYzJlNjkxYy8xL2djeXA4VjRaSVpV
NllveUswcXhMNlhlMnd3TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAQWgljANBgkqhkiG9w0BAQsFAAOC
AQEAbd6EwEK0ZvI1oCEyAPgpOrt4cMiixbkN0kZHwsfGydTVhi4JvtzShYA2nf8H
tsKYkNs5/QmMdMy285Yz6PUcy9Vy7KHu60iqdl2Ku1KlflfAKbj4M65Ub/wD1LHX
075Kdqtn7OcO2s5+3jNybZJx85PWGV8wgLy45T+0Xn3jO6uenLzoEH7SL6QzmfIx
CECOKIUVG60HNtRY+4z15DUZHawnjSikF2MSL19aJ5WuntSXefDSAo5eJlsMMoPw
ktCmfFQKIHXQGp8Wh37EKIRHVMU0KKE3zlPjT+/akM54n77TJ78YKbsQRxLFi8Fg
u9yzjoOW6mvR5yufaCsAobJoSA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:19 2023 by rpki-client on console-fra.rpki-client.org