Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/c84976-d5ea-4e7f-8ed3-a89f81776406/1/Q4GY5rZwGsEcE3jsb9RceIaoq-8.roa
File: Q4GY5rZwGsEcE3jsb9RceIaoq-8.roa (raw, json)
Hash identifier: s8n7d0dhKyE5Ey5rzfSotBCxZC5l6YXbLbVCG04/JbU=
Subject key identifier: 43:81:98:E6:B6:70:1A:C1:1C:13:78:EC:6F:D4:5C:78:86:A8:AB:EF
Certificate issuer: /CN=f8857ecf441e5ea1d7181fec7e97e6dbc1220fc2
Certificate serial: 08460DD9
Authority key identifier: F8:85:7E:CF:44:1E:5E:A1:D7:18:1F:EC:7E:97:E6:DB:C1:22:0F:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-IV-z0QeXqHXGB_sfpfm28EiD8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/c84976-d5ea-4e7f-8ed3-a89f81776406/1/Q4GY5rZwGsEcE3jsb9RceIaoq-8.roa
Signing time: Sat 01 Jan 2022 08:02:30 +0000
ROA not before: Sat 01 Jan 2022 08:02:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40021
IP address blocks: 176.57.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138808793 (0x8460dd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8857ecf441e5ea1d7181fec7e97e6dbc1220fc2
Validity
Not Before: Jan 1 08:02:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=438198e6b6701ac11c1378ec6fd45c7886a8abef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d4:7f:9d:88:00:b6:0e:fa:52:f2:0d:63:bd:
ae:af:34:2e:36:f1:ad:34:35:0c:63:77:8d:85:d4:
6e:f9:40:d4:56:b3:4c:92:72:92:a9:c7:39:72:7e:
fa:32:e9:9f:49:44:af:2e:35:c2:20:e7:5a:49:98:
c8:50:bb:83:cf:0f:e6:86:2d:4d:8f:2c:15:b8:50:
e4:a6:08:bf:0b:c1:ae:98:99:f0:48:44:6c:d3:2e:
df:15:19:60:eb:18:e4:ea:35:a6:7a:c3:fb:02:a6:
bf:c5:6d:dd:24:1e:f4:ca:ea:4d:45:bb:cf:4c:bf:
0e:1b:75:4b:c4:04:f2:a9:0e:da:be:a1:72:33:09:
c1:26:73:32:ac:a4:c2:7f:41:67:c1:9a:93:c9:80:
d9:0a:72:b3:cb:65:77:4f:cd:a0:5b:f3:a1:5d:43:
83:04:10:bd:fd:0b:a6:48:17:eb:13:48:c5:13:6c:
11:4b:dd:3f:ed:67:d5:66:1d:19:25:8b:e5:4f:ab:
b6:e1:65:2c:76:fa:32:5b:98:d5:18:d3:30:8b:b3:
40:84:c9:9c:1e:a2:33:86:48:bc:46:dd:7c:04:94:
88:58:bc:da:f3:07:01:2a:5b:be:5b:90:5a:69:fc:
20:a2:8b:d6:5d:51:a4:b5:87:eb:81:b5:06:14:70:
65:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:81:98:E6:B6:70:1A:C1:1C:13:78:EC:6F:D4:5C:78:86:A8:AB:EF
X509v3 Authority Key Identifier:
keyid:F8:85:7E:CF:44:1E:5E:A1:D7:18:1F:EC:7E:97:E6:DB:C1:22:0F:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-IV-z0QeXqHXGB_sfpfm28EiD8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/c84976-d5ea-4e7f-8ed3-a89f81776406/1/Q4GY5rZwGsEcE3jsb9RceIaoq-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/c84976-d5ea-4e7f-8ed3-a89f81776406/1/1-IV-z0QeXqHXGB_sfpfm28EiD8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.57.165.0/24
Signature Algorithm: sha256WithRSAEncryption
36:91:c2:4a:4b:2b:43:ea:43:b5:27:18:a0:4e:41:00:e2:5f:
89:5e:7a:63:ed:33:6c:96:9c:ef:7e:85:18:e0:f4:16:d2:0c:
7f:7a:3e:23:dc:42:9d:5b:05:80:24:2f:bc:fa:45:2d:bf:36:
d4:06:c6:18:85:4c:bc:31:67:23:d7:da:47:af:12:bd:54:09:
14:56:99:92:c4:f6:b3:75:50:fc:3e:64:eb:f4:51:2d:bd:aa:
4c:c7:2c:dd:57:98:4a:3c:d7:ea:27:5d:5c:50:57:f2:3a:08:
d2:1b:c6:e0:93:7d:de:c7:4b:cf:90:3d:d4:f5:29:08:b8:29:
bd:89:cf:34:af:c1:bd:b2:19:67:fb:34:64:4a:8e:be:67:58:
bf:e3:cc:ee:6f:a3:a5:db:4a:94:f7:e6:4b:40:1d:34:33:02:
99:fc:c4:01:dd:a0:2e:ee:86:6a:aa:6b:85:c7:b8:2d:d0:50:
7f:ed:7a:c0:3d:78:fd:e3:50:d7:32:37:eb:0f:bc:62:99:c5:
dd:df:34:19:c7:42:cb:66:14:7c:a7:51:8b:e2:f1:ba:a7:0e:
bd:bc:77:20:80:f1:cf:37:71:78:86:c2:09:0b:f9:6e:e8:60:
68:0d:42:fc:fd:38:aa:28:39:d8:b1:4d:8e:d7:b4:97:89:86:
54:4f:52:00
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIECEYN2TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ODg1N2VjZjQ0MWU1ZWExZDcxODFmZWM3ZTk3ZTZkYmMxMjIwZmMyMB4XDTIyMDEw
MTA4MDIzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDM4MTk4ZTZiNjcw
MWFjMTFjMTM3OGVjNmZkNDVjNzg4NmE4YWJlZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANDUf52IALYO+lLyDWO9rq80LjbxrTQ1DGN3jYXUbvlA1Faz
TJJykqnHOXJ++jLpn0lEry41wiDnWkmYyFC7g88P5oYtTY8sFbhQ5KYIvwvBrpiZ
8EhEbNMu3xUZYOsY5Oo1pnrD+wKmv8Vt3SQe9MrqTUW7z0y/Dht1S8QE8qkO2r6h
cjMJwSZzMqykwn9BZ8Gak8mA2Qpys8tld0/NoFvzoV1DgwQQvf0LpkgX6xNIxRNs
EUvdP+1n1WYdGSWL5U+rtuFlLHb6MluY1RjTMIuzQITJnB6iM4ZIvEbdfASUiFi8
2vMHASpbvluQWmn8IKKL1l1RpLWH64G1BhRwZS0CAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBRDgZjmtnAawRwTeOxv1Fx4hqir7zAfBgNVHSMEGDAWgBT4hX7PRB5eodcY
H+x+l+bbwSIPwjAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtSVYtejBRZVhxSFhHQl9zZnBmbTI4RWlEOEkuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzJhL2M4NDk3Ni1kNWVhLTRlN2YtOGVkMy1hODlmODE3NzY0MDYv
MS9RNEdZNXJad0dzRWNFM2pzYjlSY2VJYW9xLTgucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzJh
L2M4NDk3Ni1kNWVhLTRlN2YtOGVkMy1hODlmODE3NzY0MDYvMS8xLUlWLXowUWVY
cUhYR0Jfc2ZwZm0yOEVpRDhJLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsDmlMA0GCSqGSIb3DQEBCwUA
A4IBAQA2kcJKSytD6kO1JxigTkEA4l+JXnpj7TNslpzvfoUY4PQW0gx/ej4j3EKd
WwWAJC+8+kUtvzbUBsYYhUy8MWcj19pHrxK9VAkUVpmSxPazdVD8PmTr9FEtvapM
xyzdV5hKPNfqJ11cUFfyOgjSG8bgk33ex0vPkD3U9SkIuCm9ic80r8G9shln+zRk
So6+Z1i/48zub6Ol20qU9+ZLQB00MwKZ/MQB3aAu7oZqqmuFx7gt0FB/7XrAPXj9
41DXMjfrD7ximcXd3zQZx0LLZhR8p1GL4vG6pw69vHcggPHPN3F4hsIJC/lu6GBo
DUL8/TiqKDnYsU2O17SXiYZUT1IA
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:45 2023 by rpki-client on console-fra.rpki-client.org