Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/pHOwwvx42OjXfyk4tt_Bmux0dEc.roa
File: pHOwwvx42OjXfyk4tt_Bmux0dEc.roa (raw, json)
Hash identifier: lV+PPF2U0SYsDu9D2/ryiYtvxRh1CosjRiE/qemLOuI=
Subject key identifier: A4:73:B0:C2:FC:78:D8:E8:D7:7F:29:38:B6:DF:C1:9A:EC:74:74:47
Certificate issuer: /CN=5ae8c78f161397ae1dbd0ac322584f62fb740097
Certificate serial: 0D3E0775
Authority key identifier: 5A:E8:C7:8F:16:13:97:AE:1D:BD:0A:C3:22:58:4F:62:FB:74:00:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/pHOwwvx42OjXfyk4tt_Bmux0dEc.roa
Signing time: Sat 01 Jan 2022 09:00:40 +0000
ROA not before: Sat 01 Jan 2022 09:00:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29222
IP address blocks: 62.220.150.0/24 maxlen: 24
2001:789::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222168949 (0xd3e0775)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae8c78f161397ae1dbd0ac322584f62fb740097
Validity
Not Before: Jan 1 09:00:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a473b0c2fc78d8e8d77f2938b6dfc19aec747447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ef:5c:dc:ed:80:21:60:2c:bc:e9:db:e7:94:
8d:7c:32:2e:ca:23:e5:5e:da:29:49:a2:b5:1a:67:
76:c3:ac:db:eb:b6:c2:46:95:ea:96:fc:15:a2:2e:
99:b4:bf:1d:3f:8d:cc:47:17:f1:7b:da:4a:81:f1:
45:5b:3a:85:3f:be:3f:97:f5:0c:6b:ac:dc:2e:27:
46:68:af:0d:17:53:c7:9a:e5:6b:08:59:8e:4d:18:
ca:d7:4c:8d:0e:63:1b:13:85:43:ac:a8:39:2d:f2:
c1:30:b9:99:40:0b:06:05:5c:ae:ff:01:e3:a5:3b:
0b:d8:6b:50:19:68:98:6f:0d:ec:1b:0a:a6:df:f3:
d0:1e:3c:65:48:e4:70:d2:c7:ca:cd:79:e8:e5:14:
f1:f3:2b:a1:76:6e:d3:24:3d:97:1c:63:1f:2a:a5:
b4:0c:77:f7:e8:64:36:f2:2a:c1:f6:35:82:08:2b:
17:58:e5:e9:a1:93:cc:86:38:f5:26:ba:e4:f2:92:
5a:a5:77:53:fe:96:b6:1d:d4:ea:04:2b:f7:c0:09:
a4:57:0e:33:bf:ae:02:1e:df:b6:77:b4:6a:1c:b5:
02:01:3f:e7:be:c4:65:d8:d8:e4:51:ac:94:74:52:
94:c5:67:33:13:88:74:2c:7e:2a:7b:f5:fa:8a:62:
1c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:73:B0:C2:FC:78:D8:E8:D7:7F:29:38:B6:DF:C1:9A:EC:74:74:47
X509v3 Authority Key Identifier:
keyid:5A:E8:C7:8F:16:13:97:AE:1D:BD:0A:C3:22:58:4F:62:FB:74:00:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/pHOwwvx42OjXfyk4tt_Bmux0dEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/WujHjxYTl64dvQrDIlhPYvt0AJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.150.0/24
IPv6:
2001:789::/32
Signature Algorithm: sha256WithRSAEncryption
1e:f9:91:12:77:1d:a3:76:e1:02:3f:12:48:45:fc:ee:d6:f1:
07:a6:80:1c:73:96:45:fc:d3:46:70:06:53:a8:5a:c1:bf:bc:
48:0c:4c:8d:57:4b:a7:0f:73:80:a5:c9:58:ec:2b:4a:71:95:
2a:0c:c7:66:59:cc:a5:7d:79:db:74:c0:20:ff:31:e9:3e:d7:
01:0d:b6:e1:d8:dc:11:fd:e6:c3:cc:c9:5d:5e:ae:85:25:f6:
0a:54:e3:ce:bf:6a:f0:3b:91:93:fb:95:72:29:b1:6c:ff:8d:
04:c1:3e:2a:a5:c2:de:b9:13:f0:0d:fe:f3:8d:b6:15:12:7f:
4c:52:4a:fd:0f:40:2a:16:44:4c:1a:93:6c:5e:42:d3:d9:6b:
63:07:69:5a:6a:05:da:60:4f:f8:fa:50:98:c2:07:b3:1f:9c:
3f:34:37:da:5e:93:85:4d:50:2c:3c:7a:cb:2b:bf:80:54:59:
3c:1e:23:11:f4:d9:02:95:e4:00:67:17:26:35:b4:50:34:33:
da:cd:8d:39:f0:cd:73:ce:1b:bf:f2:4d:33:78:d3:ed:10:50:
61:71:7b:26:b7:39:7b:d3:91:29:96:d4:f1:59:6f:1a:ed:ab:
3b:86:e8:74:f1:cb:23:d4:1d:ed:90:74:dc:ae:db:fc:90:a4:
cd:61:52:73
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEDT4HdTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YWU4Yzc4ZjE2MTM5N2FlMWRiZDBhYzMyMjU4NGY2MmZiNzQwMDk3MB4XDTIyMDEw
MTA5MDA0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTQ3M2IwYzJmYzc4
ZDhlOGQ3N2YyOTM4YjZkZmMxOWFlYzc0NzQ0NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMvvXNztgCFgLLzp2+eUjXwyLsoj5V7aKUmitRpndsOs2+u2
wkaV6pb8FaIumbS/HT+NzEcX8XvaSoHxRVs6hT++P5f1DGus3C4nRmivDRdTx5rl
awhZjk0YytdMjQ5jGxOFQ6yoOS3ywTC5mUALBgVcrv8B46U7C9hrUBlomG8N7BsK
pt/z0B48ZUjkcNLHys156OUU8fMroXZu0yQ9lxxjHyqltAx39+hkNvIqwfY1gggr
F1jl6aGTzIY49Sa65PKSWqV3U/6Wth3U6gQr98AJpFcOM7+uAh7ftne0ahy1AgE/
577EZdjY5FGslHRSlMVnMxOIdCx+Knv1+opiHHkCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSkc7DC/HjY6Nd/KTi238Ga7HR0RzAfBgNVHSMEGDAWgBRa6MePFhOXrh29
CsMiWE9i+3QAlzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1d1akhqeFlUbDY0ZHZRckRJbGhQWXZ0MEFKYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTYvNGQyN2JiLWY4NWMtNGJmZC1iMWMzLTQ3YmNkMzljM2Q4Ni8x
L3BIT3d3dng0Mk9qWGZ5azR0dF9CbXV4MGRFYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTYv
NGQyN2JiLWY4NWMtNGJmZC1iMWMzLTQ3YmNkMzljM2Q4Ni8xL1d1akhqeFlUbDY0
ZHZRckRJbGhQWXZ0MEFKYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAD7cljANBAIAAjAHAwUAIAEHiTAN
BgkqhkiG9w0BAQsFAAOCAQEAHvmREncdo3bhAj8SSEX87tbxB6aAHHOWRfzTRnAG
U6hawb+8SAxMjVdLpw9zgKXJWOwrSnGVKgzHZlnMpX1523TAIP8x6T7XAQ224djc
Ef3mw8zJXV6uhSX2ClTjzr9q8DuRk/uVcimxbP+NBME+KqXC3rkT8A3+8422FRJ/
TFJK/Q9AKhZETBqTbF5C09lrYwdpWmoF2mBP+PpQmMIHsx+cPzQ32l6ThU1QLDx6
yyu/gFRZPB4jEfTZApXkAGcXJjW0UDQz2s2NOfDNc84bv/JNM3jT7RBQYXF7Jrc5
e9ORKZbU8VlvGu2rO4bodPHLI9Qd7ZB03K7b/JCkzWFScw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:18 2024 by rpki-client on console-fra.rpki-client.org