Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/bbf319-15a9-40d9-beec-36a86f0d0e13/1/xi8_YY-3DLF5ImOp61uGt9Scs2w.roa
File: xi8_YY-3DLF5ImOp61uGt9Scs2w.roa (raw, json)
Hash identifier: k+onlDpD9cO9LrKncE7K3/F4khkz4Hy8MRVAzQR5j/k=
Subject key identifier: C6:2F:3F:61:8F:B7:0C:B1:79:22:63:A9:EB:5B:86:B7:D4:9C:B3:6C
Certificate issuer: /CN=d5b6d2a0a8c538e917fb94aa96791a3be7b8063a
Certificate serial: 07B18042
Authority key identifier: D5:B6:D2:A0:A8:C5:38:E9:17:FB:94:AA:96:79:1A:3B:E7:B8:06:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1bbSoKjFOOkX-5SqlnkaO-e4Bjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/bbf319-15a9-40d9-beec-36a86f0d0e13/1/xi8_YY-3DLF5ImOp61uGt9Scs2w.roa
Signing time: Tue 22 Feb 2022 08:45:39 +0000
ROA not before: Tue 22 Feb 2022 08:45:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 45.129.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129073218 (0x7b18042)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5b6d2a0a8c538e917fb94aa96791a3be7b8063a
Validity
Not Before: Feb 22 08:45:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c62f3f618fb70cb1792263a9eb5b86b7d49cb36c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5f:a4:d4:80:c9:81:ea:0b:e5:20:a2:cf:92:
97:9e:80:9f:1d:b8:b2:f7:83:de:d2:e4:b0:e9:db:
9b:02:01:eb:82:8d:96:cf:90:8a:7a:a6:1a:22:5c:
ab:dd:d1:20:f9:2a:9b:32:39:5a:c6:b5:35:27:dd:
2d:55:64:34:19:d4:51:cd:56:6d:a8:8f:27:fe:8e:
a5:be:c8:02:35:ea:28:89:a4:4e:e7:2b:47:02:67:
b9:75:49:d1:83:82:f3:5f:35:18:ac:3c:82:36:86:
e8:5d:f2:55:2c:b6:4a:15:3f:0b:68:2f:20:a4:48:
5e:9a:49:b4:6e:86:2b:8d:a0:6c:0e:1d:6c:c8:eb:
0f:b4:e4:4b:96:5e:6e:20:bf:65:aa:1d:e8:6d:6b:
d5:1d:86:4c:a2:bf:37:c8:2a:f6:2d:17:c1:51:98:
ad:93:e6:f8:54:46:6b:26:05:ce:bb:2f:21:71:c5:
35:88:44:14:56:9f:a8:75:10:d5:4b:33:7b:2b:da:
ab:3f:64:5a:88:57:7c:97:fc:d8:c2:29:8b:88:8e:
02:0e:23:ba:20:61:cc:b8:65:54:dd:1b:04:ba:43:
ef:3c:b7:ae:ba:a1:66:79:73:ba:39:d0:71:54:1c:
a4:e5:fc:11:7a:2b:4c:26:c1:ff:7a:5c:e7:6d:6c:
d1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:2F:3F:61:8F:B7:0C:B1:79:22:63:A9:EB:5B:86:B7:D4:9C:B3:6C
X509v3 Authority Key Identifier:
keyid:D5:B6:D2:A0:A8:C5:38:E9:17:FB:94:AA:96:79:1A:3B:E7:B8:06:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1bbSoKjFOOkX-5SqlnkaO-e4Bjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/bbf319-15a9-40d9-beec-36a86f0d0e13/1/xi8_YY-3DLF5ImOp61uGt9Scs2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/bbf319-15a9-40d9-beec-36a86f0d0e13/1/1bbSoKjFOOkX-5SqlnkaO-e4Bjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.16.0/24
Signature Algorithm: sha256WithRSAEncryption
03:04:1d:cc:f7:68:ee:97:5a:a1:91:c8:b7:04:56:85:8a:2f:
09:df:59:dc:c8:cf:05:ff:4a:57:fe:95:44:39:4e:44:d0:84:
22:d2:dc:1b:b6:69:de:b4:e2:bd:ba:47:02:9f:42:0c:68:10:
c8:c7:0a:eb:bb:ec:2f:38:83:74:a6:a7:4d:63:31:a2:d1:02:
45:19:87:91:bd:5b:59:f7:10:9d:e8:d9:02:50:dd:54:db:70:
7f:75:0b:06:28:ac:4a:b5:92:9c:81:cb:19:1d:a0:de:50:5c:
ed:14:69:f6:4f:c5:89:7c:cd:cb:b4:bf:0f:b7:1b:cb:fb:de:
01:70:a3:8e:80:5c:82:4b:be:40:e5:0a:08:d5:4d:82:03:ac:
56:d2:66:fa:70:bd:af:78:4d:fd:9c:3a:ed:15:24:1d:2b:76:
21:57:ae:5e:90:38:ad:05:50:83:e9:36:13:41:df:c9:7f:bd:
68:ee:0e:c3:08:47:ab:9d:30:61:42:51:5d:b6:fc:2f:d4:6c:
b7:6a:82:58:0e:05:e0:23:c3:45:a7:56:cd:e6:ef:43:a6:bd:
9c:b0:e2:ea:d1:d3:a6:e2:db:10:76:70:09:83:92:f8:58:67:
ad:17:f6:7e:f0:4e:69:db:2b:25:cf:33:b8:3f:71:9f:18:1a:
5a:97:15:68
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB7GAQjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NWI2ZDJhMGE4YzUzOGU5MTdmYjk0YWE5Njc5MWEzYmU3YjgwNjNhMB4XDTIyMDIy
MjA4NDUzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzYyZjNmNjE4ZmI3
MGNiMTc5MjI2M2E5ZWI1Yjg2YjdkNDljYjM2YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJxfpNSAyYHqC+Ugos+Sl56Anx24sveD3tLksOnbmwIB64KN
ls+QinqmGiJcq93RIPkqmzI5Wsa1NSfdLVVkNBnUUc1WbaiPJ/6Opb7IAjXqKImk
TucrRwJnuXVJ0YOC8181GKw8gjaG6F3yVSy2ShU/C2gvIKRIXppJtG6GK42gbA4d
bMjrD7TkS5ZebiC/Zaod6G1r1R2GTKK/N8gq9i0XwVGYrZPm+FRGayYFzrsvIXHF
NYhEFFafqHUQ1Uszeyvaqz9kWohXfJf82MIpi4iOAg4juiBhzLhlVN0bBLpD7zy3
rrqhZnlzujnQcVQcpOX8EXorTCbB/3pc521s0fsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTGLz9hj7cMsXkiY6nrW4a31JyzbDAfBgNVHSMEGDAWgBTVttKgqMU46Rf7
lKqWeRo757gGOjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFiYlNvS2pGT09rWC01U3FsbmthTy1lNEJqby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvYmJmMzE5LTE1YTktNDBkOS1iZWVjLTM2YTg2ZjBkMGUxMy8x
L3hpOF9ZWS0zRExGNUltT3A2MXVHdDlTY3Mydy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
YmJmMzE5LTE1YTktNDBkOS1iZWVjLTM2YTg2ZjBkMGUxMy8xLzFiYlNvS2pGT09r
WC01U3FsbmthTy1lNEJqby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2BEDANBgkqhkiG9w0BAQsFAAOC
AQEAAwQdzPdo7pdaoZHItwRWhYovCd9Z3MjPBf9KV/6VRDlORNCEItLcG7Zp3rTi
vbpHAp9CDGgQyMcK67vsLziDdKanTWMxotECRRmHkb1bWfcQnejZAlDdVNtwf3UL
BiisSrWSnIHLGR2g3lBc7RRp9k/FiXzNy7S/D7cby/veAXCjjoBcgku+QOUKCNVN
ggOsVtJm+nC9r3hN/Zw67RUkHSt2IVeuXpA4rQVQg+k2E0HfyX+9aO4OwwhHq50w
YUJRXbb8L9Rst2qCWA4F4CPDRadWzebvQ6a9nLDi6tHTpuLbEHZwCYOS+FhnrRf2
fvBOadsrJc8zuD9xnxgaWpcVaA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:30 2023 by rpki-client on console-ams.rpki-client.org