Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/4iANGRCYNZns8PZpKGrIgrfXiD0.roa
File: 4iANGRCYNZns8PZpKGrIgrfXiD0.roa (raw, json)
Hash identifier: F43bNY2dS4aWCFs5mTvJxtopemUCUGgXpMu5cUwKlAo=
Subject key identifier: E2:20:0D:19:10:98:35:99:EC:F0:F6:69:28:6A:C8:82:B7:D7:88:3D
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 1BA8CEB9
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/4iANGRCYNZns8PZpKGrIgrfXiD0.roa
Signing time: Sat 01 Jan 2022 05:03:47 +0000
ROA not before: Sat 01 Jan 2022 05:03:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209104
IP address blocks: 176.116.230.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 464047801 (0x1ba8ceb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Jan 1 05:03:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2200d1910983599ecf0f669286ac882b7d7883d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:40:4f:aa:48:3c:c0:94:13:29:6e:1b:49:0c:
16:f8:9a:05:65:5b:a0:ed:67:ec:ee:ef:33:5d:d8:
8a:93:89:d5:4e:45:69:bd:99:36:27:60:e2:b6:46:
b1:c6:1d:a8:53:ec:a4:d8:b7:95:ea:d3:86:d3:7f:
47:9b:c9:63:1b:cf:a2:76:24:9b:28:c2:16:f6:9f:
c5:87:3a:8f:e1:11:54:a0:de:b7:62:1b:10:90:65:
1e:67:96:9c:da:b3:0e:0a:4c:16:f5:61:f6:c9:f2:
69:94:14:4b:bd:64:3f:f5:9f:59:10:26:c4:ab:fa:
48:12:52:cf:50:46:b7:81:ae:02:a3:ae:d4:d3:68:
a1:46:9d:ab:f8:7d:6b:eb:65:67:22:92:5f:0a:e7:
00:32:64:55:10:53:6b:54:a0:bf:ec:7d:94:2e:c0:
12:fa:0a:ee:d3:e0:17:b7:54:65:4a:05:e2:c5:1f:
f0:2c:95:05:ec:53:56:f2:08:2d:46:18:f9:74:08:
18:66:b5:1c:e5:ee:bf:34:22:2a:d8:bd:e2:4b:f4:
8a:88:bf:92:e0:f7:f0:2b:a5:5a:c9:18:cf:47:45:
73:6c:30:bd:b6:0b:4e:e4:87:3a:ee:6c:42:17:91:
9c:c3:b3:d4:91:b7:ff:f7:55:95:e2:df:7c:f2:59:
4e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:20:0D:19:10:98:35:99:EC:F0:F6:69:28:6A:C8:82:B7:D7:88:3D
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/4iANGRCYNZns8PZpKGrIgrfXiD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.230.0/23
Signature Algorithm: sha256WithRSAEncryption
80:57:7d:52:b2:a4:b1:41:70:8f:77:d6:9f:64:d2:81:bc:98:
b6:91:15:95:24:be:53:b0:a8:50:e5:82:af:99:4f:19:ae:79:
82:40:3f:d6:06:54:de:06:76:a8:59:21:b6:7e:c5:aa:26:d8:
8e:62:49:2c:f0:09:e9:aa:ac:3f:26:3f:c6:67:77:f8:67:86:
eb:a0:3c:41:76:d3:7a:1d:2f:09:e2:1f:8e:5e:33:5f:ea:0b:
13:af:4e:66:3c:9f:4f:59:3a:8b:c1:13:55:1e:68:e8:ad:ab:
c5:f2:ae:27:7e:08:c7:e4:45:98:23:8f:15:18:2a:d0:22:a8:
ae:15:bc:0f:c7:83:78:34:98:a0:15:05:56:23:52:49:cb:14:
67:b7:48:f2:d5:77:11:67:28:d4:fc:80:7d:8b:4f:8c:65:ca:
69:5b:50:3d:0b:c3:be:93:2a:40:77:86:2f:6d:c3:d7:90:af:
92:31:db:d3:00:0a:5a:fc:f1:b2:96:0a:ab:a7:cc:b5:94:e1:
45:3e:80:c8:ea:7a:70:0d:f3:a9:41:d7:e6:f4:3a:5d:6b:21:
51:fd:67:ec:e8:77:18:0c:08:d0:77:9a:03:83:46:e2:68:fb:
d9:e8:b5:2c:3f:59:f0:4e:72:e6:72:51:7a:65:e3:96:20:95:
2e:35:3a:b4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEG6jOuTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NDljYmJkNWMyY2Y0MTk1Y2M2ZWM3ZjIxZjYwNzU4MWEwMjI0ZGFhMB4XDTIyMDEw
MTA1MDM0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTIyMDBkMTkxMDk4
MzU5OWVjZjBmNjY5Mjg2YWM4ODJiN2Q3ODgzZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKtAT6pIPMCUEyluG0kMFviaBWVboO1n7O7vM13YipOJ1U5F
ab2ZNidg4rZGscYdqFPspNi3lerThtN/R5vJYxvPonYkmyjCFvafxYc6j+ERVKDe
t2IbEJBlHmeWnNqzDgpMFvVh9snyaZQUS71kP/WfWRAmxKv6SBJSz1BGt4GuAqOu
1NNooUadq/h9a+tlZyKSXwrnADJkVRBTa1Sgv+x9lC7AEvoK7tPgF7dUZUoF4sUf
8CyVBexTVvIILUYY+XQIGGa1HOXuvzQiKti94kv0ioi/kuD38CulWskYz0dFc2ww
vbYLTuSHOu5sQheRnMOz1JG3//dVleLffPJZTvkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTiIA0ZEJg1mezw9mkoasiCt9eIPTAfBgNVHSMEGDAWgBQ0nLvVws9Blcxu
x/IfYHWBoCJNqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05KeTcxY0xQUVpYTWJzZnlIMkIxZ2FBaVRhby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmQvY2RmNWY2LTJmMTgtNDJjNy05MzBlLWRjMDZkZDgwNTk2MC8x
LzRpQU5HUkNZTlpuczhQWnBLR3JJZ3JmWGlEMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmQv
Y2RmNWY2LTJmMTgtNDJjNy05MzBlLWRjMDZkZDgwNTk2MC8xL05KeTcxY0xQUVpY
TWJzZnlIMkIxZ2FBaVRhby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbB05jANBgkqhkiG9w0BAQsFAAOC
AQEAgFd9UrKksUFwj3fWn2TSgbyYtpEVlSS+U7CoUOWCr5lPGa55gkA/1gZU3gZ2
qFkhtn7FqibYjmJJLPAJ6aqsPyY/xmd3+GeG66A8QXbTeh0vCeIfjl4zX+oLE69O
ZjyfT1k6i8ETVR5o6K2rxfKuJ34Ix+RFmCOPFRgq0CKorhW8D8eDeDSYoBUFViNS
ScsUZ7dI8tV3EWco1PyAfYtPjGXKaVtQPQvDvpMqQHeGL23D15CvkjHb0wAKWvzx
spYKq6fMtZThRT6AyOp6cA3zqUHX5vQ6XWshUf1n7Oh3GAwI0HeaA4NG4mj72ei1
LD9Z8E5y5nJRemXjliCVLjU6tA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:42 2023 by rpki-client on console-ams.rpki-client.org