Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/CVkAQQHidpaN0dHW4I574jKC_cs.roa
File: CVkAQQHidpaN0dHW4I574jKC_cs.roa (raw, json)
Hash identifier: 8kc2LhDhbFOkNNcA5LX5yh4bgupazLBdrNQriCpNI30=
Subject key identifier: 09:59:00:41:01:E2:76:96:8D:D1:D1:D6:E0:8E:7B:E2:32:82:FD:CB
Certificate issuer: /CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Certificate serial: 0184447159900D3DC603C975FBC0E0CFE100
Authority key identifier: B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/CVkAQQHidpaN0dHW4I574jKC_cs.roa
Signing time: Fri 04 Nov 2022 20:59:49 +0000
ROA not before: Fri 04 Nov 2022 20:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60663
IP address blocks: 176.222.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:44:71:59:90:0d:3d:c6:03:c9:75:fb:c0:e0:cf:e1:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Validity
Not Before: Nov 4 20:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0959004101e276968dd1d1d6e08e7be23282fdcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:2a:8f:55:db:9a:ff:15:44:2f:61:07:b4:5f:
f3:b3:7b:00:d3:f4:16:23:3b:0f:3b:5a:17:3b:35:
da:8f:d5:4e:e3:71:20:e5:5e:a7:a4:53:1e:c4:a3:
41:f4:69:33:4e:7f:ac:ad:45:82:59:23:6b:7a:ea:
72:da:b1:a1:11:63:3b:a1:2a:f1:74:91:a2:e5:a5:
54:1c:dc:e3:bc:fe:c5:fe:18:32:e1:7f:80:17:17:
e5:f1:79:a5:b0:d8:d4:39:d8:8e:52:b3:db:68:6c:
5e:9d:e8:01:e5:e3:79:63:04:01:00:43:a9:8f:d0:
90:2b:c2:78:80:b2:ed:2c:32:83:42:69:7d:54:5e:
b6:db:7f:ca:8d:32:1b:8f:bc:86:35:c5:ea:85:d8:
19:e0:52:b2:45:3a:8e:83:6a:6f:98:4c:e0:2a:0d:
f1:1a:59:f7:f1:27:37:4f:31:1e:72:85:62:8f:3b:
53:4c:a9:9f:2e:17:c7:1d:05:7a:3d:30:ba:6d:1c:
59:d3:93:e6:2d:25:99:bf:3d:84:88:20:1c:3a:6b:
aa:60:05:ca:7d:ee:e4:fa:34:b4:e7:7e:4e:5d:8f:
76:3e:d0:4f:7a:3a:53:ad:64:47:dc:3b:b6:42:33:
38:16:8b:25:f3:e4:76:91:8f:6c:43:7f:58:13:be:
3f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:59:00:41:01:E2:76:96:8D:D1:D1:D6:E0:8E:7B:E2:32:82:FD:CB
X509v3 Authority Key Identifier:
keyid:B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/CVkAQQHidpaN0dHW4I574jKC_cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.222.62.0/24
Signature Algorithm: sha256WithRSAEncryption
13:ec:70:e1:b2:6e:08:5a:84:ed:14:b0:bd:2d:06:f6:13:87:
8e:83:7a:0c:09:6b:23:8c:a8:56:a0:94:e6:2a:12:8e:22:7a:
52:54:d8:52:f4:7b:62:c1:9d:49:97:f4:ad:76:a7:53:91:aa:
14:d3:20:14:8e:17:bb:32:74:c9:f3:39:ff:f8:68:db:67:9b:
38:34:6e:dc:97:a6:13:d0:91:c9:a2:f2:b2:39:6f:5d:29:48:
a7:e7:09:c3:93:6d:12:62:fb:97:d3:e5:2e:34:dc:07:9d:41:
1c:ed:00:cc:5a:b2:18:1a:d5:69:25:ab:15:b4:ab:fd:d2:64:
7d:dc:2d:91:f4:79:26:b8:5d:7d:cf:cc:96:ef:72:3a:de:e5:
37:ef:0f:b4:49:39:1c:13:7d:18:92:d8:d7:fe:a9:63:a7:3b:
83:3d:3d:21:0a:d6:6f:ba:b5:d1:08:a0:80:1e:2f:ad:54:81:
78:c3:1f:34:fe:13:9d:99:7c:6b:ff:04:b2:bf:e6:ad:6f:a7:
fd:8e:5d:d8:c6:26:42:bd:a7:08:33:d0:53:b5:b6:92:49:66:
eb:a0:ac:00:52:a9:6d:ef:e5:00:15:26:7f:6c:5e:fc:3d:fb:
fc:9c:79:4e:93:a2:f6:bd:87:5e:bf:3b:05:6e:6f:3b:5b:bb:
da:1f:6b:23
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYREcVmQDT3GA8l1+8Dgz+EAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwYTRmYzJhZjM4YWY1YjRmNTg2MWUyN2ZkMDA3ZTYyNGI1
ZjliMDIwHhcNMjIxMTA0MjA1OTQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOTU5MDA0MTAxZTI3Njk2OGRkMWQxZDZlMDhlN2JlMjMyODJmZGNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhCqPVdua/xVEL2EHtF/zs3sA0/QW
IzsPO1oXOzXaj9VO43Eg5V6npFMexKNB9GkzTn+srUWCWSNreupy2rGhEWM7oSrx
dJGi5aVUHNzjvP7F/hgy4X+AFxfl8XmlsNjUOdiOUrPbaGxenegB5eN5YwQBAEOp
j9CQK8J4gLLtLDKDQml9VF6223/KjTIbj7yGNcXqhdgZ4FKyRTqOg2pvmEzgKg3x
Gln38Sc3TzEecoVijztTTKmfLhfHHQV6PTC6bRxZ05PmLSWZvz2EiCAcOmuqYAXK
fe7k+jS0535OXY92PtBPejpTrWRH3Du2QjM4Fosl8+R2kY9sQ39YE74/BwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAlZAEEB4naWjdHR1uCOe+Iygv3LMB8GA1UdIwQY
MBaAFLCk/CrzivW09YYeJ/0AfmJLX5sCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0tUOEt2T0s5YlQxaGg0bl9RQi1Za3RmbXdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9hODBkYmYtNWNiNC00ZTI2LWFkYWYt
NjhmZTA4NjIyNjE0LzEvQ1ZrQVFRSGlkcGFOMGRIVzRJNTc0aktDX2NzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9hODBkYmYtNWNiNC00ZTI2LWFkYWYtNjhmZTA4NjIyNjE0
LzEvc0tUOEt2T0s5YlQxaGg0bl9RQi1Za3RmbXdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsN4+MA0G
CSqGSIb3DQEBCwUAA4IBAQAT7HDhsm4IWoTtFLC9LQb2E4eOg3oMCWsjjKhWoJTm
KhKOInpSVNhS9HtiwZ1Jl/StdqdTkaoU0yAUjhe7MnTJ8zn/+GjbZ5s4NG7cl6YT
0JHJovKyOW9dKUin5wnDk20SYvuX0+UuNNwHnUEc7QDMWrIYGtVpJasVtKv90mR9
3C2R9HkmuF19z8yW73I63uU37w+0STkcE30YktjX/qljpzuDPT0hCtZvurXRCKCA
Hi+tVIF4wx80/hOdmXxr/wSyv+atb6f9jl3YxiZCvacIM9BTtbaSSWbroKwAUqlt
7+UAFSZ/bF78Pfv8nHlOk6L2vYdevzsFbm87W7vaH2sj
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:37 2023 by rpki-client on console-ams.rpki-client.org