Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/ctVgr3Iu9Rp9NjBDQhEaDx544yU.roa
File: ctVgr3Iu9Rp9NjBDQhEaDx544yU.roa (raw, json)
Hash identifier: LSdfEWmJtOqLp/501qftt5A05Fkw3eWUhJPgKND3A5M=
Subject key identifier: 72:D5:60:AF:72:2E:F5:1A:7D:36:30:43:42:11:1A:0F:1E:78:E3:25
Certificate issuer: /CN=aeb66ec5e8f2405f6f8d486e73fb82b8de0dee0f
Certificate serial: 32BDC33F
Authority key identifier: AE:B6:6E:C5:E8:F2:40:5F:6F:8D:48:6E:73:FB:82:B8:DE:0D:EE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rrZuxejyQF9vjUhuc_uCuN4N7g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/ctVgr3Iu9Rp9NjBDQhEaDx544yU.roa
Signing time: Sat 01 Jan 2022 16:07:31 +0000
ROA not before: Sat 01 Jan 2022 16:07:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134408
IP address blocks: 178.237.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 851297087 (0x32bdc33f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aeb66ec5e8f2405f6f8d486e73fb82b8de0dee0f
Validity
Not Before: Jan 1 16:07:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72d560af722ef51a7d36304342111a0f1e78e325
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:10:27:b7:f9:55:72:a1:17:60:66:03:7f:c9:
e3:1f:f4:7f:be:07:cd:c9:01:ed:3f:49:f8:6f:ee:
32:f4:c6:9d:de:12:0a:08:2d:dc:be:96:ba:d0:9a:
33:bf:08:aa:f4:b1:c2:52:43:c9:35:d7:94:8b:39:
80:06:13:e1:96:55:a6:ff:69:2b:db:fc:ce:a3:aa:
43:ac:8d:b6:dc:8b:56:b3:3f:5b:54:47:2f:fe:f3:
59:41:b0:74:39:2d:35:8a:92:3a:87:83:bf:a8:d2:
84:88:52:e1:63:c6:e1:da:16:1f:78:e5:1e:ac:9b:
e9:c6:d7:e2:13:1a:6e:be:5a:82:27:65:da:3f:95:
f2:12:4e:eb:38:0b:16:7d:4b:79:64:b3:8e:50:4f:
cb:7d:1e:ca:ae:d6:2f:97:d1:cf:a8:21:ab:d5:88:
4f:3d:0f:35:fb:98:eb:40:fd:d9:51:f8:8b:41:ca:
df:67:08:49:6d:e9:21:1e:d1:c4:6b:18:c3:31:48:
af:b9:04:85:5c:fb:b6:34:f8:78:6d:dc:03:7e:0f:
a2:75:0b:4b:88:9e:e3:91:09:69:68:cc:c8:de:e1:
a2:c7:ef:5d:5c:04:e9:fc:a4:2f:d5:48:86:77:22:
01:72:4f:b3:5a:a8:19:31:aa:64:5d:c3:93:6c:1d:
4f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D5:60:AF:72:2E:F5:1A:7D:36:30:43:42:11:1A:0F:1E:78:E3:25
X509v3 Authority Key Identifier:
keyid:AE:B6:6E:C5:E8:F2:40:5F:6F:8D:48:6E:73:FB:82:B8:DE:0D:EE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rrZuxejyQF9vjUhuc_uCuN4N7g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/ctVgr3Iu9Rp9NjBDQhEaDx544yU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/rrZuxejyQF9vjUhuc_uCuN4N7g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.237.171.0/24
Signature Algorithm: sha256WithRSAEncryption
88:f5:42:73:6c:46:74:7a:e5:71:bc:a7:93:66:fa:08:c5:6f:
70:6a:3b:27:5c:a2:bb:57:76:d3:3e:4d:ee:96:36:c8:8a:1a:
49:8d:e4:e7:63:ca:64:a7:e1:17:e5:8e:e8:88:15:05:43:e1:
df:3a:e6:cb:78:a3:15:ad:e3:47:06:46:0a:77:11:79:e5:53:
70:99:eb:19:2a:b6:b6:1c:cb:1a:e6:7c:7e:81:28:63:8b:8d:
91:b0:bc:5b:82:42:a2:8c:e5:d2:33:f7:13:15:90:e9:ae:33:
f2:88:45:db:79:6a:e2:40:2c:40:2f:3c:25:02:8a:6b:44:a5:
3b:83:c3:f4:28:17:81:c3:cd:c7:b7:a4:68:5e:e5:26:29:c3:
4a:30:09:12:20:17:e4:db:68:98:ba:d3:e4:38:14:ab:ed:4f:
f7:83:56:b8:53:2b:02:04:d2:61:3b:7d:5d:b7:10:fb:2f:fe:
47:36:2e:6b:0b:ad:84:4b:b9:ef:70:4d:2e:9c:a9:9c:88:f4:
ba:00:ea:b5:93:0d:70:17:55:c9:a8:65:ae:1b:98:5e:62:3e:
90:6f:8e:c6:7b:05:d0:eb:2c:b0:00:ff:11:99:76:15:a4:4e:
8e:46:fd:62:c5:c8:12:60:35:e1:b0:51:cf:80:c0:8e:09:4d:
33:47:be:5e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEMr3DPzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZWI2NmVjNWU4ZjI0MDVmNmY4ZDQ4NmU3M2ZiODJiOGRlMGRlZTBmMB4XDTIyMDEw
MTE2MDczMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzJkNTYwYWY3MjJl
ZjUxYTdkMzYzMDQzNDIxMTFhMGYxZTc4ZTMyNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALgQJ7f5VXKhF2BmA3/J4x/0f74HzckB7T9J+G/uMvTGnd4S
Cggt3L6WutCaM78IqvSxwlJDyTXXlIs5gAYT4ZZVpv9pK9v8zqOqQ6yNttyLVrM/
W1RHL/7zWUGwdDktNYqSOoeDv6jShIhS4WPG4doWH3jlHqyb6cbX4hMabr5agidl
2j+V8hJO6zgLFn1LeWSzjlBPy30eyq7WL5fRz6ghq9WITz0PNfuY60D92VH4i0HK
32cISW3pIR7RxGsYwzFIr7kEhVz7tjT4eG3cA34PonULS4ie45EJaWjMyN7hosfv
XVwE6fykL9VIhnciAXJPs1qoGTGqZF3Dk2wdT1UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRy1WCvci71Gn02MENCERoPHnjjJTAfBgNVHSMEGDAWgBSutm7F6PJAX2+N
SG5z+4K43g3uDzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JyWnV4ZWp5UUY5dmpVaHVjX3VDdU40TjdnOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzIvMTUzNzg4LTE0YjctNDU1MS05YWRlLTZhZWE5MDU3YzgwMC8x
L2N0VmdyM0l1OVJwOU5qQkRRaEVhRHg1NDR5VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzIv
MTUzNzg4LTE0YjctNDU1MS05YWRlLTZhZWE5MDU3YzgwMC8xL3JyWnV4ZWp5UUY5
dmpVaHVjX3VDdU40TjdnOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALLtqzANBgkqhkiG9w0BAQsFAAOC
AQEAiPVCc2xGdHrlcbynk2b6CMVvcGo7J1yiu1d20z5N7pY2yIoaSY3k52PKZKfh
F+WO6IgVBUPh3zrmy3ijFa3jRwZGCncReeVTcJnrGSq2thzLGuZ8foEoY4uNkbC8
W4JCoozl0jP3ExWQ6a4z8ohF23lq4kAsQC88JQKKa0SlO4PD9CgXgcPNx7ekaF7l
JinDSjAJEiAX5NtomLrT5DgUq+1P94NWuFMrAgTSYTt9XbcQ+y/+RzYuawuthEu5
73BNLpypnIj0ugDqtZMNcBdVyahlrhuYXmI+kG+OxnsF0OsssAD/EZl2FaROjkb9
YsXIEmA14bBRz4DAjglNM0e+Xg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:58 2023 by rpki-client on console-ams.rpki-client.org