Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/xbEdTjNQeW-8BL7NxIHA_GW-LfE.roa
File: xbEdTjNQeW-8BL7NxIHA_GW-LfE.roa (raw, json)
Hash identifier: PF+QhrqgVyhd+ZgY4WelJildRMPnm5LWTm5Gp1PfEs8=
Subject key identifier: C5:B1:1D:4E:33:50:79:6F:BC:04:BE:CD:C4:81:C0:FC:65:BE:2D:F1
Certificate issuer: /CN=9f312e9297bc1d27ebeb476dea0ee15dd756542d
Certificate serial: 0184C45BCA654A4C3C7B441A5C1B63FDBD9E
Authority key identifier: 9F:31:2E:92:97:BC:1D:27:EB:EB:47:6D:EA:0E:E1:5D:D7:56:54:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzEukpe8HSfr60dt6g7hXddWVC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/xbEdTjNQeW-8BL7NxIHA_GW-LfE.roa
Signing time: Tue 29 Nov 2022 17:07:40 +0000
ROA not before: Tue 29 Nov 2022 17:07:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 147001
IP address blocks: 103.76.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c4:5b:ca:65:4a:4c:3c:7b:44:1a:5c:1b:63:fd:bd:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f312e9297bc1d27ebeb476dea0ee15dd756542d
Validity
Not Before: Nov 29 17:07:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5b11d4e3350796fbc04becdc481c0fc65be2df1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:da:45:ad:00:19:bb:ae:07:2b:77:29:a3:6e:
b3:fc:70:cc:7b:d1:90:3b:60:b0:0e:fd:71:d2:bd:
18:df:93:f2:83:01:13:e0:db:18:63:3a:a4:20:9c:
d2:3f:7e:1b:d8:19:d6:85:b9:31:c6:be:54:38:7e:
39:b6:c1:73:ee:81:b0:b3:0b:57:c4:c1:5e:2a:70:
a8:be:ab:75:1c:bb:69:96:95:36:70:e2:dc:98:a2:
02:ec:d0:7c:77:c0:5a:c3:ce:31:81:3f:0d:a8:cf:
7a:a2:50:12:e1:7d:02:98:5b:34:3f:8e:72:88:36:
9f:8b:db:a1:3f:9d:e8:9d:a9:c1:d8:63:1e:52:6d:
ae:bb:5a:68:c1:da:3b:6b:ec:7b:fd:0a:62:85:f2:
fd:92:fa:53:38:cd:e5:59:b2:fe:08:1e:cc:20:61:
6f:d4:79:b6:72:51:0b:29:43:5f:bf:fe:d9:18:c3:
47:9e:5e:34:00:1f:bb:3a:c7:b6:8a:26:b5:41:2e:
cc:bb:41:dc:41:67:2f:47:7a:fa:d1:c2:a9:86:9e:
b5:04:10:ec:f1:94:65:a0:21:dd:73:b4:c5:01:1d:
7c:0f:f0:da:36:ff:4e:17:12:0a:52:e9:23:7f:4b:
e0:1c:b9:96:d3:3a:dd:a1:6c:61:3f:97:25:94:6b:
72:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B1:1D:4E:33:50:79:6F:BC:04:BE:CD:C4:81:C0:FC:65:BE:2D:F1
X509v3 Authority Key Identifier:
keyid:9F:31:2E:92:97:BC:1D:27:EB:EB:47:6D:EA:0E:E1:5D:D7:56:54:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzEukpe8HSfr60dt6g7hXddWVC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/xbEdTjNQeW-8BL7NxIHA_GW-LfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/nzEukpe8HSfr60dt6g7hXddWVC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.76.87.0/24
Signature Algorithm: sha256WithRSAEncryption
51:c5:d0:44:20:13:59:25:ce:ff:59:65:92:b2:4b:25:67:e5:
2d:24:4e:13:7c:e0:92:a4:56:44:c0:d6:c7:45:5e:80:58:4f:
55:8f:eb:59:d3:04:02:cc:af:13:c1:26:b9:ee:7c:15:5d:11:
31:96:8c:fd:94:5f:ee:6d:2e:ee:a2:33:f4:48:d6:f6:a5:15:
2d:e9:8d:7f:f8:5f:20:08:95:74:54:6e:24:46:7e:2d:18:a4:
5c:fb:3b:b8:87:2c:12:7c:fe:ac:89:d9:6a:94:75:c0:39:f4:
a0:aa:e2:5a:0f:3c:f5:19:1a:ac:a1:16:fd:f5:70:cb:80:45:
9f:af:78:14:ed:d5:17:b9:03:1d:17:3b:2c:80:dd:1b:08:0c:
a6:ec:2c:ed:b9:d0:06:86:61:53:b2:17:06:46:ad:95:43:63:
63:5f:1d:bf:d6:04:d2:58:0a:b8:fb:32:30:be:88:a3:71:0c:
5b:74:a2:e0:93:ba:44:ca:69:13:c0:20:3b:a2:4a:55:61:08:
6b:7d:0d:11:44:53:90:26:64:d9:5e:63:07:8f:9d:75:57:75:
52:16:02:25:72:6e:e1:8a:77:18:c5:42:a6:53:07:85:57:cd:
8f:2f:b6:fc:18:f9:af:a9:e7:61:1d:87:93:58:69:33:ca:6b:
24:3a:09:2e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTEW8plSkw8e0QaXBtj/b2eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMzEyZTkyOTdiYzFkMjdlYmViNDc2ZGVhMGVlMTVkZDc1
NjU0MmQwHhcNMjIxMTI5MTcwNzQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNWIxMWQ0ZTMzNTA3OTZmYmMwNGJlY2RjNDgxYzBmYzY1YmUyZGYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg9pFrQAZu64HK3cpo26z/HDMe9GQ
O2CwDv1x0r0Y35PygwET4NsYYzqkIJzSP34b2BnWhbkxxr5UOH45tsFz7oGwswtX
xMFeKnCovqt1HLtplpU2cOLcmKIC7NB8d8Baw84xgT8NqM96olAS4X0CmFs0P45y
iDafi9uhP53onanB2GMeUm2uu1powdo7a+x7/QpihfL9kvpTOM3lWbL+CB7MIGFv
1Hm2clELKUNfv/7ZGMNHnl40AB+7Ose2iia1QS7Mu0HcQWcvR3r60cKphp61BBDs
8ZRloCHdc7TFAR18D/DaNv9OFxIKUukjf0vgHLmW0zrdoWxhP5cllGty+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMWxHU4zUHlvvAS+zcSBwPxlvi3xMB8GA1UdIwQY
MBaAFJ8xLpKXvB0n6+tHbeoO4V3XVlQtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnpFdWtwZThIU2ZyNjBkdDZnN2hYZGRXVkMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9kZDVhMjgtZGY5ZC00NjI3LTgwOWQt
YmQ1ZDNmMDBmYmIyLzEveGJFZFRqTlFlVy04Qkw3TnhJSEFfR1ctTGZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS9kZDVhMjgtZGY5ZC00NjI3LTgwOWQtYmQ1ZDNmMDBmYmIy
LzEvbnpFdWtwZThIU2ZyNjBkdDZnN2hYZGRXVkMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0xXMA0G
CSqGSIb3DQEBCwUAA4IBAQBRxdBEIBNZJc7/WWWSskslZ+UtJE4TfOCSpFZEwNbH
RV6AWE9Vj+tZ0wQCzK8TwSa57nwVXRExloz9lF/ubS7uojP0SNb2pRUt6Y1/+F8g
CJV0VG4kRn4tGKRc+zu4hywSfP6sidlqlHXAOfSgquJaDzz1GRqsoRb99XDLgEWf
r3gU7dUXuQMdFzssgN0bCAym7CztudAGhmFTshcGRq2VQ2NjXx2/1gTSWAq4+zIw
voijcQxbdKLgk7pEymkTwCA7okpVYQhrfQ0RRFOQJmTZXmMHj511V3VSFgIlcm7h
incYxUKmUweFV82PL7b8GPmvqedhHYeTWGkzymskOgku
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:33 2024 by rpki-client on console-fra.rpki-client.org