Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/c02i7FHARItdQUBe6onsFuzgQoM.roa
File: c02i7FHARItdQUBe6onsFuzgQoM.roa (raw, json)
Hash identifier: vlpKdyRaFWs6cfNqdlrP27d490bMPe48EngNplOJFP4=
Subject key identifier: 73:4D:A2:EC:51:C0:44:8B:5D:41:40:5E:EA:89:EC:16:EC:E0:42:83
Certificate issuer: /CN=51618df006d548d1d87ed6419550662db6fc0606
Certificate serial: 018316AEE2B633E0FE56D1189C36201BBA29
Authority key identifier: 51:61:8D:F0:06:D5:48:D1:D8:7E:D6:41:95:50:66:2D:B6:FC:06:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UWGN8AbVSNHYftZBlVBmLbb8BgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/c02i7FHARItdQUBe6onsFuzgQoM.roa
Signing time: Wed 07 Sep 2022 06:41:43 +0000
ROA not before: Wed 07 Sep 2022 06:41:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31257
IP address blocks: 176.116.160.0/21 maxlen: 21
176.116.160.0/20 maxlen: 20
176.116.168.0/21 maxlen: 21
176.116.180.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:16:ae:e2:b6:33:e0:fe:56:d1:18:9c:36:20:1b:ba:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51618df006d548d1d87ed6419550662db6fc0606
Validity
Not Before: Sep 7 06:41:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=734da2ec51c0448b5d41405eea89ec16ece04283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b0:ed:9f:c9:07:df:31:bc:8a:52:72:79:c6:
c7:8a:e8:16:29:e3:0a:f3:99:a3:6d:91:7a:21:72:
6e:c4:9f:d9:c0:70:ec:93:b4:9a:19:58:e2:cd:f9:
d5:46:aa:ef:b7:dc:bf:a0:32:bd:12:5c:b9:1e:7e:
18:16:ef:ec:61:12:84:0b:71:e6:7a:8d:d1:de:eb:
e0:b3:f2:d0:c2:07:16:62:b7:28:b3:47:43:92:fb:
02:cf:a6:dd:36:6f:13:35:7e:96:09:14:c5:1e:66:
49:24:d7:a4:e3:8b:24:ca:de:5a:4a:36:32:e3:de:
34:89:d0:1f:9c:83:99:1d:29:09:e4:20:f6:fb:c8:
b8:ad:57:a0:b6:98:7c:15:60:4e:ac:c5:36:ee:d0:
5e:31:f3:e4:7d:fd:e7:b8:b0:e1:3e:a8:ff:4c:8b:
8b:93:1e:1c:b6:d5:db:2b:86:50:5e:9d:91:40:97:
a9:2f:ea:50:e3:af:91:5b:fc:4e:96:86:7f:7d:57:
f9:4d:ea:b1:80:b5:e2:57:f1:8a:00:c4:a8:a7:fc:
ef:16:cd:fe:2e:f1:33:67:b6:80:df:46:0f:d3:63:
8f:fb:51:e1:75:2a:3f:70:13:51:b3:da:1c:3c:50:
11:f8:e8:92:f0:d0:92:37:92:5e:be:b4:13:d5:47:
77:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:4D:A2:EC:51:C0:44:8B:5D:41:40:5E:EA:89:EC:16:EC:E0:42:83
X509v3 Authority Key Identifier:
keyid:51:61:8D:F0:06:D5:48:D1:D8:7E:D6:41:95:50:66:2D:B6:FC:06:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UWGN8AbVSNHYftZBlVBmLbb8BgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/c02i7FHARItdQUBe6onsFuzgQoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d5ffe7-3b48-4f80-8d6a-317c2fb0a35b/1/UWGN8AbVSNHYftZBlVBmLbb8BgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.160.0/20
176.116.180.0/23
Signature Algorithm: sha256WithRSAEncryption
45:0d:9f:e8:4b:c4:a0:00:4f:59:e4:44:9f:0c:0a:a0:77:b5:
60:4b:9d:8e:e8:bb:00:cb:f1:56:60:ef:2a:a8:45:35:3d:9c:
0f:0c:c3:b7:bc:57:92:5f:1e:99:55:df:5d:f7:a9:66:9c:da:
55:d7:fa:f1:23:55:a0:d2:b8:06:95:27:12:4d:89:85:1c:24:
b7:d2:2d:24:0e:00:ba:48:62:0a:dc:14:43:01:85:fe:0b:e7:
d7:18:d0:4f:00:28:2e:c7:ec:6a:18:b6:0b:17:fb:1f:a0:3a:
75:6b:b5:3e:96:4c:ff:5e:a4:6b:5c:8f:b8:94:ad:05:c9:c7:
52:ca:d9:01:a1:00:66:d6:e4:02:93:2e:60:2f:db:5e:c5:c0:
fd:4e:2d:54:39:6b:27:2d:48:41:32:00:3f:fb:2f:0f:44:ff:
a8:18:f1:2a:79:c6:28:38:fc:87:b1:1e:ce:00:8c:98:c9:20:
53:d6:4a:d5:11:11:5f:3f:4a:eb:ad:ef:c4:7b:d1:5c:09:6b:
cb:b2:ed:3c:4b:9f:0d:e5:0c:3a:1b:67:f9:b5:22:6a:88:53:
2e:b9:99:31:49:3f:78:09:21:43:2e:7d:c8:02:3d:9c:a8:e6:
02:d3:53:a0:7c:04:c3:c1:97:83:1c:27:37:ca:7d:0b:ec:64:
85:9e:86:ee
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYMWruK2M+D+VtEYnDYgG7opMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxNjE4ZGYwMDZkNTQ4ZDFkODdlZDY0MTk1NTA2NjJkYjZm
YzA2MDYwHhcNMjIwOTA3MDY0MTQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MzRkYTJlYzUxYzA0NDhiNWQ0MTQwNWVlYTg5ZWMxNmVjZTA0MjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsbDtn8kH3zG8ilJyecbHiugWKeMK
85mjbZF6IXJuxJ/ZwHDsk7SaGVjizfnVRqrvt9y/oDK9Ely5Hn4YFu/sYRKEC3Hm
eo3R3uvgs/LQwgcWYrcos0dDkvsCz6bdNm8TNX6WCRTFHmZJJNek44skyt5aSjYy
4940idAfnIOZHSkJ5CD2+8i4rVegtph8FWBOrMU27tBeMfPkff3nuLDhPqj/TIuL
kx4cttXbK4ZQXp2RQJepL+pQ46+RW/xOloZ/fVf5TeqxgLXiV/GKAMSop/zvFs3+
LvEzZ7aA30YP02OP+1HhdSo/cBNRs9ocPFAR+OiS8NCSN5JevrQT1Ud3MwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHNNouxRwESLXUFAXuqJ7Bbs4EKDMB8GA1UdIwQY
MBaAFFFhjfAG1UjR2H7WQZVQZi22/AYGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVdHTjhBYlZTTkhZZnRaQmxWQm1MYmI4QmdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9kNWZmZTctM2I0OC00ZjgwLThkNmEt
MzE3YzJmYjBhMzViLzEvYzAyaTdGSEFSSXRkUVVCZTZvbnNGdXpnUW9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9kNWZmZTctM2I0OC00ZjgwLThkNmEtMzE3YzJmYjBhMzVi
LzEvVVdHTjhBYlZTTkhZZnRaQmxWQm1MYmI4QmdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQEsHSgAwQB
sHS0MA0GCSqGSIb3DQEBCwUAA4IBAQBFDZ/oS8SgAE9Z5ESfDAqgd7VgS52O6LsA
y/FWYO8qqEU1PZwPDMO3vFeSXx6ZVd9d96lmnNpV1/rxI1Wg0rgGlScSTYmFHCS3
0i0kDgC6SGIK3BRDAYX+C+fXGNBPACgux+xqGLYLF/sfoDp1a7U+lkz/XqRrXI+4
lK0FycdSytkBoQBm1uQCky5gL9texcD9Ti1UOWsnLUhBMgA/+y8PRP+oGPEqecYo
OPyHsR7OAIyYySBT1krVERFfP0rrre/Ee9FcCWvLsu08S58N5Qw6G2f5tSJqiFMu
uZkxST94CSFDLn3IAj2cqOYC01OgfATDwZeDHCc3yn0L7GSFnobu
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:58 2024 by rpki-client on console-fra.rpki-client.org