Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/vV7f-brp6wnnyZpAYvKtRF75lec.roa
File: vV7f-brp6wnnyZpAYvKtRF75lec.roa (raw, json)
Hash identifier: xrlGuGAUgN7asqISlCeQlCsQxZTy4/b0z8TAf3l7QNw=
Subject key identifier: BD:5E:DF:F9:BA:E9:EB:09:E7:C9:9A:40:62:F2:AD:44:5E:F9:95:E7
Certificate issuer: /CN=11bfa2961fa0e0b07041293ddc0c3693a9e0a238
Certificate serial: 072305BD
Authority key identifier: 11:BF:A2:96:1F:A0:E0:B0:70:41:29:3D:DC:0C:36:93:A9:E0:A2:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eb-ilh-g4LBwQSk93Aw2k6ngojg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/vV7f-brp6wnnyZpAYvKtRF75lec.roa
Signing time: Sat 01 Jan 2022 16:05:54 +0000
ROA not before: Sat 01 Jan 2022 16:05:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197615
IP address blocks: 46.22.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119735741 (0x72305bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11bfa2961fa0e0b07041293ddc0c3693a9e0a238
Validity
Not Before: Jan 1 16:05:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd5edff9bae9eb09e7c99a4062f2ad445ef995e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:02:f2:df:d9:fc:9c:f2:6e:66:45:67:a2:f7:
b8:6a:2c:28:74:d3:ae:0b:24:dd:48:4c:f2:a3:16:
fd:84:52:6e:ee:74:9f:30:37:0f:e6:b1:aa:dc:f0:
91:cd:a8:a8:a1:19:fe:6a:3a:63:f8:fd:b2:6e:4d:
d9:af:26:6a:a1:60:dc:33:96:81:af:d2:ad:7c:8f:
32:ba:26:37:b2:f9:2c:16:0f:3d:03:48:25:ac:31:
0d:a9:5f:c1:72:15:a3:16:f3:83:ad:ed:46:e4:00:
3b:f3:12:53:b7:d4:3e:47:eb:d9:f0:5f:34:f2:9c:
10:bb:41:34:c7:0c:c8:99:47:ba:b0:de:69:e9:84:
7f:94:8b:46:53:6a:64:01:fb:aa:0b:e0:31:e2:99:
2c:31:88:c6:54:3f:d9:29:76:e4:85:61:6e:a9:89:
94:fd:88:67:ab:d7:40:ae:db:56:9b:6d:02:0a:d5:
f6:d9:8a:8f:25:db:05:4c:e8:db:76:e4:d8:5f:be:
f4:fd:ab:b9:ee:f5:db:a7:89:6b:aa:51:07:8a:e0:
4e:dc:50:01:b5:68:16:e6:6c:be:68:d3:75:04:f5:
04:45:2e:91:ef:4e:92:f2:ab:64:e2:b7:80:62:2b:
cc:c3:86:22:a8:90:50:3c:bd:78:12:a8:72:75:ff:
f8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:5E:DF:F9:BA:E9:EB:09:E7:C9:9A:40:62:F2:AD:44:5E:F9:95:E7
X509v3 Authority Key Identifier:
keyid:11:BF:A2:96:1F:A0:E0:B0:70:41:29:3D:DC:0C:36:93:A9:E0:A2:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eb-ilh-g4LBwQSk93Aw2k6ngojg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/vV7f-brp6wnnyZpAYvKtRF75lec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/Eb-ilh-g4LBwQSk93Aw2k6ngojg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.22.166.0/24
Signature Algorithm: sha256WithRSAEncryption
17:c2:9a:72:4c:a0:e8:7c:fb:14:66:19:4d:3c:ff:72:72:73:
bd:e7:7f:48:21:ee:ba:d1:90:af:d8:60:16:33:df:f1:3f:15:
2f:23:cb:bc:ad:0e:c8:20:42:7c:00:b4:9a:6c:cc:22:6e:72:
0e:a9:75:0b:b9:33:9d:6e:b0:0b:78:f7:d6:e4:31:88:a5:11:
2f:ee:95:92:2d:95:a1:d0:1a:94:b9:00:bd:71:2f:42:cd:ff:
33:89:01:a9:6f:e5:f3:43:5e:7d:73:75:ac:11:60:a7:7e:5c:
70:8d:32:b9:64:22:da:3e:dd:09:41:0f:ed:6c:89:28:00:cd:
85:ef:a5:bd:96:58:81:88:1f:84:63:a8:ef:b4:69:2d:fc:8c:
ec:c8:fe:85:1c:f7:03:6d:85:43:a7:d6:45:cd:7a:4d:a9:76:
36:74:a2:ff:37:2b:df:64:2b:fc:99:fa:eb:03:41:61:6f:a2:
e3:6c:02:61:a3:07:d7:0f:7c:8d:68:19:dc:73:02:fd:06:21:
39:5c:ff:b0:d7:46:bd:38:ab:8b:9f:e1:9d:f0:11:b4:89:c6:
e4:b7:0a:53:d8:28:49:40:fa:97:57:57:74:ae:0b:68:b8:53:
dd:52:07:ec:ee:84:89:ac:27:3d:5f:74:3a:45:25:02:f5:bb:
0b:56:2a:25
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEByMFvTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MWJmYTI5NjFmYTBlMGIwNzA0MTI5M2RkYzBjMzY5M2E5ZTBhMjM4MB4XDTIyMDEw
MTE2MDU1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmQ1ZWRmZjliYWU5
ZWIwOWU3Yzk5YTQwNjJmMmFkNDQ1ZWY5OTVlNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMAC8t/Z/JzybmZFZ6L3uGosKHTTrgsk3UhM8qMW/YRSbu50
nzA3D+axqtzwkc2oqKEZ/mo6Y/j9sm5N2a8maqFg3DOWga/SrXyPMromN7L5LBYP
PQNIJawxDalfwXIVoxbzg63tRuQAO/MSU7fUPkfr2fBfNPKcELtBNMcMyJlHurDe
aemEf5SLRlNqZAH7qgvgMeKZLDGIxlQ/2Sl25IVhbqmJlP2IZ6vXQK7bVpttAgrV
9tmKjyXbBUzo23bk2F++9P2rue7126eJa6pRB4rgTtxQAbVoFuZsvmjTdQT1BEUu
ke9OkvKrZOK3gGIrzMOGIqiQUDy9eBKocnX/+GkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS9Xt/5uunrCefJmkBi8q1EXvmV5zAfBgNVHSMEGDAWgBQRv6KWH6DgsHBB
KT3cDDaTqeCiODAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ViLWlsaC1nNExCd1FTazkzQXcyazZuZ29qZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvMTczMTczLTgxOWYtNGJjOS05MmQ4LTc4NzkxYzkzNTZhMy8x
L3ZWN2YtYnJwNndubnlacEFZdkt0UkY3NWxlYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAv
MTczMTczLTgxOWYtNGJjOS05MmQ4LTc4NzkxYzkzNTZhMy8xL0ViLWlsaC1nNExC
d1FTazkzQXcyazZuZ29qZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC4WpjANBgkqhkiG9w0BAQsFAAOC
AQEAF8Kackyg6Hz7FGYZTTz/cnJzved/SCHuutGQr9hgFjPf8T8VLyPLvK0OyCBC
fAC0mmzMIm5yDql1C7kznW6wC3j31uQxiKURL+6Vki2VodAalLkAvXEvQs3/M4kB
qW/l80NefXN1rBFgp35ccI0yuWQi2j7dCUEP7WyJKADNhe+lvZZYgYgfhGOo77Rp
LfyM7Mj+hRz3A22FQ6fWRc16Tal2NnSi/zcr32Qr/Jn66wNBYW+i42wCYaMH1w98
jWgZ3HMC/QYhOVz/sNdGvTiri5/hnfARtInG5LcKU9goSUD6l1dXdK4LaLhT3VIH
7O6EiawnPV90OkUlAvW7C1YqJQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:06 2023 by rpki-client on console-fra.rpki-client.org