Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2472a9-ff66-4dcf-ac82-30e540d5d3a7/1/RBxnQ5EzK_ENe4tNTqBZAkecCdE.roa
File: RBxnQ5EzK_ENe4tNTqBZAkecCdE.roa (raw, json)
Hash identifier: gS85e95svXRbKpT+T3ipQ3VwxJUwIW89KfpUfS5Vvgc=
Subject key identifier: 44:1C:67:43:91:33:2B:F1:0D:7B:8B:4D:4E:A0:59:02:47:9C:09:D1
Certificate issuer: /CN=1b7e7bdc8e15ba6b2e6d09552476bb1b55b159c3
Certificate serial: F365AF
Authority key identifier: 1B:7E:7B:DC:8E:15:BA:6B:2E:6D:09:55:24:76:BB:1B:55:B1:59:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G3573I4VumsubQlVJHa7G1WxWcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2472a9-ff66-4dcf-ac82-30e540d5d3a7/1/RBxnQ5EzK_ENe4tNTqBZAkecCdE.roa
Signing time: Sat 01 Jan 2022 12:56:22 +0000
ROA not before: Sat 01 Jan 2022 12:56:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210863
IP address blocks: 37.16.72.0/24 maxlen: 24
2a11:5d00::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15951279 (0xf365af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b7e7bdc8e15ba6b2e6d09552476bb1b55b159c3
Validity
Not Before: Jan 1 12:56:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=441c674391332bf10d7b8b4d4ea05902479c09d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a8:ad:37:cd:67:fc:79:fa:69:84:79:19:68:
9a:37:14:6d:86:b8:ab:0c:a3:25:d8:8f:f8:3e:70:
5d:56:18:7b:4a:c5:ac:13:a9:8e:b0:e7:df:7d:47:
75:c0:b9:fa:8d:94:dc:7d:88:25:c5:54:29:ce:8f:
57:0f:3d:69:9f:b3:3e:37:11:04:18:2d:62:52:5a:
00:bd:22:36:69:12:96:0e:d4:ac:d0:35:60:8d:51:
78:2a:b2:dc:ac:fb:c0:2d:14:23:98:e8:ae:1e:ae:
70:07:31:16:7a:80:70:83:c3:cb:53:31:f3:99:8f:
79:79:88:b6:49:07:40:91:fe:50:20:cc:e0:0d:0d:
b7:02:02:27:1a:34:6e:f5:a5:78:d2:47:aa:0d:cd:
d3:67:d5:16:e6:35:96:b8:4a:12:18:c0:9b:28:98:
c1:b1:43:de:99:3c:ae:34:52:7f:e9:95:2e:0e:8e:
a9:90:a6:88:2d:8f:19:02:2c:7e:33:c9:18:39:26:
b5:01:8e:00:36:ce:34:bb:85:16:27:66:6a:ef:ef:
38:ab:67:61:a8:65:7b:ea:6e:26:65:d6:6f:05:d9:
ac:d6:db:13:59:1d:4d:8f:f6:63:6c:de:ab:e2:bc:
33:fb:5a:07:d9:cd:db:31:c8:65:f2:97:22:25:ff:
cb:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:1C:67:43:91:33:2B:F1:0D:7B:8B:4D:4E:A0:59:02:47:9C:09:D1
X509v3 Authority Key Identifier:
keyid:1B:7E:7B:DC:8E:15:BA:6B:2E:6D:09:55:24:76:BB:1B:55:B1:59:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G3573I4VumsubQlVJHa7G1WxWcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2472a9-ff66-4dcf-ac82-30e540d5d3a7/1/RBxnQ5EzK_ENe4tNTqBZAkecCdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2472a9-ff66-4dcf-ac82-30e540d5d3a7/1/G3573I4VumsubQlVJHa7G1WxWcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.16.72.0/24
IPv6:
2a11:5d00::/29
Signature Algorithm: sha256WithRSAEncryption
7c:9c:a4:89:c1:7f:6e:ae:e5:c4:ab:3a:37:40:a1:db:ea:5b:
cb:ef:e3:22:bd:4a:36:68:5d:bc:3f:af:21:7c:44:d8:f8:ee:
f0:1f:43:5c:29:fd:92:7f:ac:53:2f:33:a1:44:1a:64:4d:47:
34:95:be:fe:0c:11:58:02:04:47:60:41:79:21:c4:39:89:7c:
fa:2e:02:4d:db:f0:c3:cf:e8:ec:96:04:1c:31:76:4b:74:07:
67:2a:ec:8e:5f:7f:2f:e0:41:c8:0f:dc:3c:47:18:9e:ce:51:
27:34:91:d8:30:31:80:cf:23:ca:d0:db:63:85:f0:46:c5:5a:
dc:e2:77:25:ab:42:fb:d2:d2:c8:e5:18:4d:63:72:4e:04:10:
52:53:8e:e2:42:d9:84:2f:e8:05:91:30:ad:af:93:ef:2c:0d:
5d:a6:07:21:4c:20:27:22:8e:9e:dd:80:31:f8:7a:b8:d5:86:
13:9e:e7:87:45:7d:13:23:3f:01:74:be:9d:36:a5:7f:3f:c0:
69:58:e9:6c:68:54:30:1c:0b:8f:5a:d2:ea:61:df:57:56:d6:
f8:5f:ae:3b:90:da:8c:08:ed:3a:a9:05:5c:c7:0d:f2:d1:51:
04:22:34:56:1f:d0:c9:0b:8d:f2:6f:37:7d:ec:27:9b:16:81:
3e:81:23:26
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAPNlrzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YjdlN2JkYzhlMTViYTZiMmU2ZDA5NTUyNDc2YmIxYjU1YjE1OWMzMB4XDTIyMDEw
MTEyNTYyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDQxYzY3NDM5MTMz
MmJmMTBkN2I4YjRkNGVhMDU5MDI0NzljMDlkMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANuorTfNZ/x5+mmEeRlomjcUbYa4qwyjJdiP+D5wXVYYe0rF
rBOpjrDn331HdcC5+o2U3H2IJcVUKc6PVw89aZ+zPjcRBBgtYlJaAL0iNmkSlg7U
rNA1YI1ReCqy3Kz7wC0UI5jorh6ucAcxFnqAcIPDy1Mx85mPeXmItkkHQJH+UCDM
4A0NtwICJxo0bvWleNJHqg3N02fVFuY1lrhKEhjAmyiYwbFD3pk8rjRSf+mVLg6O
qZCmiC2PGQIsfjPJGDkmtQGOADbONLuFFidmau/vOKtnYahle+puJmXWbwXZrNbb
E1kdTY/2Y2zeq+K8M/taB9nN2zHIZfKXIiX/y2ECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBREHGdDkTMr8Q17i01OoFkCR5wJ0TAfBgNVHSMEGDAWgBQbfnvcjhW6ay5t
CVUkdrsbVbFZwzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0czNTczSTRWdW1zdWJRbFZKSGE3RzFXeFdjTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWIvMjQ3MmE5LWZmNjYtNGRjZi1hYzgyLTMwZTU0MGQ1ZDNhNy8x
L1JCeG5RNUV6S19FTmU0dE5UcUJaQWtlY0NkRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWIv
MjQ3MmE5LWZmNjYtNGRjZi1hYzgyLTMwZTU0MGQ1ZDNhNy8xL0czNTczSTRWdW1z
dWJRbFZKSGE3RzFXeFdjTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEACUQSDANBAIAAjAHAwUDKhFdADAN
BgkqhkiG9w0BAQsFAAOCAQEAfJykicF/bq7lxKs6N0Ch2+pby+/jIr1KNmhdvD+v
IXxE2Pju8B9DXCn9kn+sUy8zoUQaZE1HNJW+/gwRWAIER2BBeSHEOYl8+i4CTdvw
w8/o7JYEHDF2S3QHZyrsjl9/L+BByA/cPEcYns5RJzSR2DAxgM8jytDbY4XwRsVa
3OJ3JatC+9LSyOUYTWNyTgQQUlOO4kLZhC/oBZEwra+T7ywNXaYHIUwgJyKOnt2A
Mfh6uNWGE57nh0V9EyM/AXS+nTalfz/AaVjpbGhUMBwLj1rS6mHfV1bW+F+uO5Da
jAjtOqkFXMcN8tFRBCI0Vh/QyQuN8m83fewnmxaBPoEjJg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:39 2023 by rpki-client on console-ams.rpki-client.org