Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/XM2Y2cwpZ-UY_2YLZFliRYLwiyQ.roa
File: XM2Y2cwpZ-UY_2YLZFliRYLwiyQ.roa (raw, json)
Hash identifier: KGUz/nhCnzIbKinO4AO5l418QhTQmVMmISjwdYo+EPc=
Subject key identifier: 5C:CD:98:D9:CC:29:67:E5:18:FF:66:0B:64:59:62:45:82:F0:8B:24
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 10BC6D70
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/XM2Y2cwpZ-UY_2YLZFliRYLwiyQ.roa
Signing time: Sat 01 Jan 2022 13:02:18 +0000
ROA not before: Sat 01 Jan 2022 13:02:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199891
IP address blocks: 82.160.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 280784240 (0x10bc6d70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 13:02:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ccd98d9cc2967e518ff660b6459624582f08b24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c7:8a:0d:1e:49:8f:a5:ad:0d:f4:d4:f9:de:
de:67:f8:de:87:ff:29:f0:56:df:f9:af:b2:11:b9:
59:fd:e6:e9:03:8c:e7:4d:2a:12:d6:e7:03:f8:ef:
9f:c9:81:e8:62:4e:ca:7c:e5:99:59:8a:f1:75:0a:
50:23:26:92:df:71:cb:1f:16:51:b9:5b:65:dd:ad:
ed:22:ea:69:d4:5e:1a:54:41:01:e7:3a:ee:a2:47:
16:f4:95:4c:6a:5d:35:b9:90:97:a9:87:76:1d:ba:
43:24:2e:06:54:7a:d0:75:94:10:43:0f:4a:7f:31:
f0:f4:b4:3d:92:7a:08:60:b6:4f:9d:a8:90:03:05:
b8:3b:3c:46:2a:e7:35:46:27:df:7d:cc:ef:9f:09:
9e:61:6e:b5:52:c8:9b:cf:d4:53:bd:1f:8a:1c:78:
81:94:d2:19:6b:b4:c1:41:a8:ea:7f:6c:8a:10:19:
81:70:d0:a7:db:45:06:d2:72:1b:ae:30:51:2a:d3:
5e:b6:14:c4:e9:12:52:49:33:7c:3f:22:bd:0b:8d:
a3:99:8e:e2:73:13:e5:98:d4:eb:cd:83:8e:c2:df:
21:cb:7d:35:e3:8e:66:b9:70:bb:6d:f0:7c:6f:0d:
9d:83:99:1f:11:e7:59:55:a6:c2:10:ea:04:35:7e:
7c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:CD:98:D9:CC:29:67:E5:18:FF:66:0B:64:59:62:45:82:F0:8B:24
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/XM2Y2cwpZ-UY_2YLZFliRYLwiyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.160.220.0/24
Signature Algorithm: sha256WithRSAEncryption
26:4c:e4:ee:fc:1a:6e:e4:88:2c:8d:eb:1e:1d:c5:f7:33:7d:
c5:ba:ec:70:0d:82:3a:5e:70:38:c4:b7:dc:cd:95:89:54:3f:
89:41:b8:7e:37:c7:19:c8:89:27:4a:5d:89:01:0b:c7:64:c5:
29:0c:89:a1:e6:69:3a:dd:cb:62:d6:a0:07:37:c3:88:a4:84:
ce:73:19:30:bd:81:94:a4:e2:4d:5d:3e:c8:31:d4:ae:c5:30:
90:13:91:8f:21:a6:21:e6:1b:89:73:3f:a6:c4:69:95:05:1d:
c0:60:4b:8a:3e:1f:89:2a:ab:3a:ae:ba:d6:25:7b:7f:32:31:
98:b3:9d:ca:22:a8:5d:40:db:66:2b:24:af:6d:08:76:c7:da:
85:20:2f:86:d3:f7:98:30:fd:4f:71:41:18:b8:03:96:39:0c:
f8:a8:6f:55:2e:13:77:ee:1a:02:95:26:37:53:d1:00:41:0c:
2f:d3:0c:9b:94:3c:e1:d8:aa:97:d3:cc:05:07:aa:a8:2b:35:
45:e1:cd:42:fb:9c:8c:11:b0:4c:75:c7:d6:ae:9c:6c:04:44:
e8:ab:78:13:aa:57:96:1f:f9:82:e8:1b:b5:12:a3:97:64:ea:
f4:d5:6f:02:73:07:af:dc:ee:bd:41:d3:a0:f3:03:40:37:e7:
f8:87:da:c0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEELxtcDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NzkzMDFkY2M3ZmFlNGY3Y2UwMWU0OTg3YTc3Y2I4MmEzMzZhYmZmMB4XDTIyMDEw
MTEzMDIxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWNjZDk4ZDljYzI5
NjdlNTE4ZmY2NjBiNjQ1OTYyNDU4MmYwOGIyNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKTHig0eSY+lrQ301Pne3mf43of/KfBW3/mvshG5Wf3m6QOM
500qEtbnA/jvn8mB6GJOynzlmVmK8XUKUCMmkt9xyx8WUblbZd2t7SLqadReGlRB
Aec67qJHFvSVTGpdNbmQl6mHdh26QyQuBlR60HWUEEMPSn8x8PS0PZJ6CGC2T52o
kAMFuDs8RirnNUYn333M758JnmFutVLIm8/UU70fihx4gZTSGWu0wUGo6n9sihAZ
gXDQp9tFBtJyG64wUSrTXrYUxOkSUkkzfD8ivQuNo5mO4nMT5ZjU682DjsLfIct9
NeOOZrlwu23wfG8NnYOZHxHnWVWmwhDqBDV+fNcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRczZjZzCln5Rj/ZgtkWWJFgvCLJDAfBgNVHSMEGDAWgBQXkwHcx/rk984B
5Jh6d8uCozar/zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0Y1TUIzTWY2NVBmT0FlU1llbmZMZ3FNMnFfOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjYvZWQ3OTYzLTcyZWEtNGMxZC1hZGRkLWFmZjkyYzE2ZDhlMy8x
L1hNMlkyY3dwWi1VWV8yWUxaRmxpUllMd2l5US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjYv
ZWQ3OTYzLTcyZWEtNGMxZC1hZGRkLWFmZjkyYzE2ZDhlMy8xL0Y1TUIzTWY2NVBm
T0FlU1llbmZMZ3FNMnFfOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFKg3DANBgkqhkiG9w0BAQsFAAOC
AQEAJkzk7vwabuSILI3rHh3F9zN9xbrscA2COl5wOMS33M2ViVQ/iUG4fjfHGciJ
J0pdiQELx2TFKQyJoeZpOt3LYtagBzfDiKSEznMZML2BlKTiTV0+yDHUrsUwkBOR
jyGmIeYbiXM/psRplQUdwGBLij4fiSqrOq661iV7fzIxmLOdyiKoXUDbZiskr20I
dsfahSAvhtP3mDD9T3FBGLgDljkM+KhvVS4Td+4aApUmN1PRAEEML9MMm5Q84diq
l9PMBQeqqCs1ReHNQvucjBGwTHXH1q6cbARE6Kt4E6pXlh/5gugbtRKjl2Tq9NVv
AnMHr9zuvUHToPMDQDfn+IfawA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:15 2023 by rpki-client on console-fra.rpki-client.org