Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/A0EIga22KER2eof1FQ9EYNWBmiw.roa
File: A0EIga22KER2eof1FQ9EYNWBmiw.roa (raw, json)
Hash identifier: s5AIR4g6W/GBTz7uMSkBD9D/L99SJwh9SdOdvdoksYI=
Subject key identifier: 03:41:08:81:AD:B6:28:44:76:7A:87:F5:15:0F:44:60:D5:81:9A:2C
Certificate issuer: /CN=675fbe4b1f00233ed767990071f04590c90c887d
Certificate serial: 483E42
Authority key identifier: 67:5F:BE:4B:1F:00:23:3E:D7:67:99:00:71:F0:45:90:C9:0C:88:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/A0EIga22KER2eof1FQ9EYNWBmiw.roa
Signing time: Sat 01 Jan 2022 01:52:23 +0000
ROA not before: Sat 01 Jan 2022 01:52:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198479
IP address blocks: 37.128.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4734530 (0x483e42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=675fbe4b1f00233ed767990071f04590c90c887d
Validity
Not Before: Jan 1 01:52:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03410881adb62844767a87f5150f4460d5819a2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a8:b4:7d:26:2e:94:5d:d8:15:7e:ac:9d:47:
f8:76:77:33:22:62:bf:e5:d2:b0:3f:46:0d:23:48:
9a:b9:22:67:c7:97:6d:6e:4a:3c:7e:8a:f9:a4:44:
96:fb:1a:86:ba:14:ec:92:9c:2a:3d:b8:3b:a6:57:
1d:9c:95:66:6a:55:c8:07:15:56:d0:86:57:ff:03:
a2:cc:93:62:ae:41:fe:c4:83:f3:c9:9d:09:26:c0:
c3:a1:ae:4b:44:e0:17:d1:0a:f5:4d:7d:69:d2:f5:
3a:ed:18:96:ca:a9:80:30:fc:02:02:c4:76:29:59:
ca:00:46:ec:45:ac:08:d3:14:81:0f:72:ff:ea:1a:
05:fa:21:cd:9c:ac:ae:d6:08:61:d2:1d:79:fa:9c:
c1:56:01:7e:11:d9:5f:0c:7d:ed:55:22:41:d7:16:
0d:79:41:ae:23:c3:c3:08:42:13:cf:13:3b:8a:5c:
9b:61:9d:04:8a:49:5b:7a:22:1e:d5:30:a7:c8:b4:
a8:ab:48:4b:8d:f8:69:60:0b:88:26:c3:bc:16:36:
c9:ae:78:45:9c:6f:62:df:bc:57:54:77:96:06:7a:
7c:96:83:0a:bb:48:1c:50:fc:89:2f:36:f1:ec:7f:
c1:0b:d9:5e:d5:3e:2b:17:f2:2c:a8:b6:14:f1:a8:
c1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:41:08:81:AD:B6:28:44:76:7A:87:F5:15:0F:44:60:D5:81:9A:2C
X509v3 Authority Key Identifier:
keyid:67:5F:BE:4B:1F:00:23:3E:D7:67:99:00:71:F0:45:90:C9:0C:88:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/A0EIga22KER2eof1FQ9EYNWBmiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.128.168.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:2f:7d:7e:f6:fb:10:a8:04:9c:1c:25:08:a3:3a:a3:bc:42:
4a:a0:1a:9a:87:c3:e1:07:c4:1c:0e:ab:ca:04:65:d6:7f:cc:
d2:34:d6:18:7d:22:6f:a8:61:69:ba:70:7d:ca:2b:fe:03:18:
ba:ad:31:5a:b1:90:81:15:5a:06:ed:08:61:3c:42:ac:70:be:
b0:76:c4:a1:2a:66:61:06:55:76:32:cd:a4:b4:6f:69:62:d6:
ff:fe:cf:2f:9f:ef:ec:21:d7:27:79:d6:4e:ca:15:10:85:5d:
e3:f5:c2:b4:ea:ef:d2:58:ea:49:33:79:b2:c4:d8:0c:f2:53:
5f:d5:2f:85:fc:95:16:70:80:b2:89:b7:fc:b2:a9:9e:e7:41:
aa:68:6a:52:96:c6:09:11:90:d7:e5:30:78:d2:8a:cb:6e:50:
10:68:af:67:70:94:89:b7:d3:48:3c:ec:e7:08:71:74:42:d6:
d1:d4:ef:be:71:e8:81:95:b8:4a:58:22:b7:f4:fe:b5:4b:99:
31:1f:f0:e7:d0:7b:42:19:55:a5:cf:ab:e7:c3:70:be:d8:96:
4f:f9:0f:64:a8:fc:43:78:5d:25:ed:b6:f7:57:00:85:03:9f:
e4:c5:c9:65:4a:15:5d:1d:d9:13:36:c8:3a:f2:ab:40:5e:2f:
a9:2c:f9:84
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDSD5CMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDY3
NWZiZTRiMWYwMDIzM2VkNzY3OTkwMDcxZjA0NTkwYzkwYzg4N2QwHhcNMjIwMTAx
MDE1MjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwMzQxMDg4MWFkYjYy
ODQ0NzY3YTg3ZjUxNTBmNDQ2MGQ1ODE5YTJjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtai0fSYulF3YFX6snUf4dnczImK/5dKwP0YNI0iauSJnx5dt
bko8for5pESW+xqGuhTskpwqPbg7plcdnJVmalXIBxVW0IZX/wOizJNirkH+xIPz
yZ0JJsDDoa5LROAX0Qr1TX1p0vU67RiWyqmAMPwCAsR2KVnKAEbsRawI0xSBD3L/
6hoF+iHNnKyu1ghh0h15+pzBVgF+EdlfDH3tVSJB1xYNeUGuI8PDCEITzxM7ilyb
YZ0EiklbeiIe1TCnyLSoq0hLjfhpYAuIJsO8FjbJrnhFnG9i37xXVHeWBnp8loMK
u0gcUPyJLzbx7H/BC9le1T4rF/IsqLYU8ajBAQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFANBCIGttihEdnqH9RUPRGDVgZosMB8GA1UdIwQYMBaAFGdfvksfACM+12eZ
AHHwRZDJDIh9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
WjEtLVN4OEFJejdYWjVrQWNmQkZrTWtNaUgwLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC80MS81NWMyYTAtNDlkZi00ZDk2LTk4OGYtNGY5ZDA0MDEwNzEwLzEv
QTBFSWdhMjJLRVIyZW9mMUZROUVZTldCbWl3LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS81
NWMyYTAtNDlkZi00ZDk2LTk4OGYtNGY5ZDA0MDEwNzEwLzEvWjEtLVN4OEFJejdY
WjVrQWNmQkZrTWtNaUgwLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJYCoMA0GCSqGSIb3DQEBCwUAA4IB
AQBfL31+9vsQqAScHCUIozqjvEJKoBqah8PhB8QcDqvKBGXWf8zSNNYYfSJvqGFp
unB9yiv+Axi6rTFasZCBFVoG7QhhPEKscL6wdsShKmZhBlV2Ms2ktG9pYtb//s8v
n+/sIdcnedZOyhUQhV3j9cK06u/SWOpJM3myxNgM8lNf1S+F/JUWcICyibf8sqme
50GqaGpSlsYJEZDX5TB40orLblAQaK9ncJSJt9NIPOznCHF0QtbR1O++ceiBlbhK
WCK39P61S5kxH/Dn0HtCGVWlz6vnw3C+2JZP+Q9kqPxDeF0l7bb3VwCFA5/kxcll
ShVdHdkTNsg68qtAXi+pLPmE
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:49 2023 by rpki-client on console-ams.rpki-client.org