Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/3B1v8A3nkpLZXfzklXKT3kRYC-Q.roa
File: 3B1v8A3nkpLZXfzklXKT3kRYC-Q.roa (raw, json)
Hash identifier: 5aT3VQE9Xko1isEOMl4aHbJwlUWWSvIuLLL0Uku1eUg=
Subject key identifier: DC:1D:6F:F0:0D:E7:92:92:D9:5D:FC:E4:95:72:93:DE:44:58:0B:E4
Certificate issuer: /CN=992b86095ce558d2e9618728a44228a27be9098f
Certificate serial: 07A1A056
Authority key identifier: 99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/3B1v8A3nkpLZXfzklXKT3kRYC-Q.roa
Signing time: Fri 24 Jun 2022 13:04:31 +0000
ROA not before: Fri 24 Jun 2022 13:04:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 166.108.160.0/22 maxlen: 24
166.108.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128032854 (0x7a1a056)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=992b86095ce558d2e9618728a44228a27be9098f
Validity
Not Before: Jun 24 13:04:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc1d6ff00de79292d95dfce4957293de44580be4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:85:d4:89:5a:38:d4:23:e3:4c:0b:07:1f:4c:
cb:ec:d9:16:01:05:bf:fe:57:0e:e1:ba:0a:24:d6:
4a:b2:96:ba:93:b8:36:48:9a:98:b9:cb:4a:b1:ef:
74:72:2d:6b:87:d9:bf:5b:43:66:b8:9e:ab:8a:96:
1e:ee:73:c3:56:fa:ad:6c:73:ad:38:79:c3:00:d9:
b4:36:c9:97:80:a3:f1:6d:ba:a7:bb:8b:f0:e0:21:
5c:d1:f8:96:ef:fc:99:a1:b5:71:27:0f:5d:0d:a2:
1c:6e:7e:b9:4d:25:98:10:bb:6f:9c:99:b4:68:b6:
fd:15:bc:c8:4d:72:ef:77:c0:2e:b2:1d:a9:f7:ea:
c4:d1:e5:21:0a:44:05:c3:b6:d5:fa:6a:a8:02:0f:
fd:1c:fb:f3:d7:60:e4:d3:ed:23:9c:df:c1:18:b6:
ab:d4:e1:42:c7:5a:85:70:38:b1:a5:61:8f:a0:44:
79:5d:ff:d2:c6:ec:7c:47:5f:7a:ad:1d:57:34:7f:
58:50:13:44:27:58:64:72:3d:19:10:12:90:de:65:
87:19:d5:d8:1a:a7:cf:4a:9e:c0:ad:82:4c:c1:f7:
e2:5d:bc:79:67:9d:87:c3:4b:89:ee:ad:40:61:a0:
05:67:b3:14:8b:bc:05:7d:34:51:34:b9:34:b4:18:
a1:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:1D:6F:F0:0D:E7:92:92:D9:5D:FC:E4:95:72:93:DE:44:58:0B:E4
X509v3 Authority Key Identifier:
keyid:99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/3B1v8A3nkpLZXfzklXKT3kRYC-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/mSuGCVzlWNLpYYcopEIoonvpCY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
166.108.160.0/22
166.108.172.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:c6:4d:6b:52:e6:49:ad:27:a3:86:75:c5:de:22:8f:36:18:
81:25:39:ea:a5:de:c0:13:d8:ee:00:c8:27:5f:b0:69:e3:ef:
21:f5:21:ee:54:5e:0b:90:a2:56:90:16:b5:03:8f:d4:43:ff:
eb:2b:29:42:40:00:3d:92:6a:cf:c0:8d:ea:7e:51:1a:57:5a:
21:36:a8:ef:4d:e1:cb:7e:fc:e8:24:27:56:fb:49:35:82:5e:
89:d3:45:f3:c1:37:08:18:28:b9:f8:e3:20:2b:36:28:5e:24:
27:fe:a2:de:5c:0d:75:4b:16:6f:6a:2c:41:9d:06:ee:80:22:
9e:db:5f:a4:6b:2c:e2:af:e1:89:bd:10:23:3a:f2:59:3a:24:
af:45:3e:9e:e8:a7:30:0f:83:23:8c:5b:20:69:4e:e6:41:2e:
af:5a:af:d9:07:df:65:57:d6:4d:d4:2a:db:52:be:e9:ea:62:
cb:0f:6a:6b:b5:25:dd:ba:42:9a:22:56:1d:48:ad:c4:47:8a:
83:c8:35:75:4a:ce:c9:a4:3d:f2:5f:00:28:77:aa:3c:9f:b9:
0f:70:78:fe:1a:e9:b8:5d:d8:62:b2:ae:dd:d6:b8:76:d3:9d:
ef:19:bd:c4:bc:dd:a6:7a:66:17:a7:3e:d7:f9:9d:93:ee:60:
76:de:ff:27
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEB6GgVjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
OTJiODYwOTVjZTU1OGQyZTk2MTg3MjhhNDQyMjhhMjdiZTkwOThmMB4XDTIyMDYy
NDEzMDQzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGMxZDZmZjAwZGU3
OTI5MmQ5NWRmY2U0OTU3MjkzZGU0NDU4MGJlNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK2F1IlaONQj40wLBx9My+zZFgEFv/5XDuG6CiTWSrKWupO4
NkiamLnLSrHvdHIta4fZv1tDZrieq4qWHu5zw1b6rWxzrTh5wwDZtDbJl4Cj8W26
p7uL8OAhXNH4lu/8maG1cScPXQ2iHG5+uU0lmBC7b5yZtGi2/RW8yE1y73fALrId
qffqxNHlIQpEBcO21fpqqAIP/Rz789dg5NPtI5zfwRi2q9ThQsdahXA4saVhj6BE
eV3/0sbsfEdfeq0dVzR/WFATRCdYZHI9GRASkN5lhxnV2Bqnz0qewK2CTMH34l28
eWedh8NLie6tQGGgBWezFIu8BX00UTS5NLQYoTcCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTcHW/wDeeSktld/OSVcpPeRFgL5DAfBgNVHSMEGDAWgBSZK4YJXOVY0ulh
hyikQiiie+kJjzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21TdUdDVnpsV05McFlZY29wRUlvb252cENZOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzkvOGVhOWI5LTNiNmUtNGZkZi1iNWQxLWYwNGZkY2MwOWU1MS8x
LzNCMXY4QTNua3BMWlhmemtsWEtUM2tSWUMtUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzkv
OGVhOWI5LTNiNmUtNGZkZi1iNWQxLWYwNGZkY2MwOWU1MS8xL21TdUdDVnpsV05M
cFlZY29wRUlvb252cENZOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAqZsoAMEAqZsrDANBgkqhkiG9w0B
AQsFAAOCAQEAtMZNa1LmSa0no4Z1xd4ijzYYgSU56qXewBPY7gDIJ1+waePvIfUh
7lReC5CiVpAWtQOP1EP/6yspQkAAPZJqz8CN6n5RGldaITao703hy3786CQnVvtJ
NYJeidNF88E3CBgoufjjICs2KF4kJ/6i3lwNdUsWb2osQZ0G7oAinttfpGss4q/h
ib0QIzryWTokr0U+nuinMA+DI4xbIGlO5kEur1qv2QffZVfWTdQq21K+6epiyw9q
a7Ul3bpCmiJWHUitxEeKg8g1dUrOyaQ98l8AKHeqPJ+5D3B4/hrpuF3YYrKu3da4
dtOd7xm9xLzdpnpmF6c+1/mdk+5gdt7/Jw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:27 2023 by rpki-client on console-ams.rpki-client.org