Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/e9qIxqfkC-eXjYGSHL2qghl24Bw.roa
File: e9qIxqfkC-eXjYGSHL2qghl24Bw.roa (raw, json)
Hash identifier: cLIP6NCh2MvVk7o0uPBNGx7s9QhK2Oz+QsI4Bz0i+gQ=
Subject key identifier: 7B:DA:88:C6:A7:E4:0B:E7:97:8D:81:92:1C:BD:AA:82:19:76:E0:1C
Certificate issuer: /CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Certificate serial: 01824E7B65E66177E08122299F001BFFD9AC
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/e9qIxqfkC-eXjYGSHL2qghl24Bw.roa
Signing time: Sat 30 Jul 2022 09:41:25 +0000
ROA not before: Sat 30 Jul 2022 09:41:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 152.89.192.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4e:7b:65:e6:61:77:e0:81:22:29:9f:00:1b:ff:d9:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Validity
Not Before: Jul 30 09:41:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bda88c6a7e40be7978d81921cbdaa821976e01c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fb:e1:f7:eb:0c:02:7d:14:95:a3:23:8e:e8:
17:e3:2a:a1:fe:ec:b3:93:14:0d:8e:b3:99:90:37:
64:a7:69:05:d6:c2:ef:5d:d3:74:b6:89:43:0a:16:
6d:1c:e0:2f:ca:7d:83:86:4b:fd:64:58:9a:e9:43:
e0:81:7e:78:5f:08:20:41:50:49:b0:6e:b4:4c:f5:
5e:52:88:c3:17:e2:5e:98:71:ff:99:92:a8:16:ff:
42:3e:8a:47:05:9f:c6:fc:f7:0c:99:5c:a6:56:ce:
5c:17:fe:3d:45:b1:b7:0f:b6:71:3e:7f:3a:d0:ec:
7d:69:5d:b8:54:7f:8d:3f:69:f6:36:14:2b:38:b0:
c4:49:38:88:42:9d:5f:b9:b5:ba:d2:54:c1:fa:b2:
c5:94:93:69:2a:3f:26:78:77:ec:0a:bf:ae:61:67:
11:85:75:2c:19:44:4d:14:85:bb:35:1e:8d:b1:07:
e9:bc:82:ca:32:47:7c:bf:24:39:a8:57:b0:bd:4e:
f6:99:8c:9c:ff:2e:a5:d7:1e:7c:87:87:aa:4b:37:
ae:10:f4:0d:65:c4:dd:08:0c:de:a1:9e:6d:02:d9:
04:84:c7:d4:7f:2e:a0:6d:4d:8c:07:2f:f0:45:8f:
eb:00:14:0d:b0:88:fc:34:68:a4:1c:a7:e2:33:27:
e6:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:DA:88:C6:A7:E4:0B:E7:97:8D:81:92:1C:BD:AA:82:19:76:E0:1C
X509v3 Authority Key Identifier:
keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/e9qIxqfkC-eXjYGSHL2qghl24Bw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.192.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:f8:0c:93:19:cb:c8:61:4b:ee:2a:39:d2:41:0b:ad:57:1c:
f7:3d:1e:e8:c4:c2:83:b9:ba:78:33:cf:6e:b5:2c:26:4c:c3:
71:36:c5:22:30:3f:47:75:9c:45:b7:da:d8:f6:18:66:ea:7e:
65:f7:75:51:4c:5b:e1:a3:fd:e2:91:2d:ff:4f:bb:00:fb:8d:
4f:bb:3a:5d:81:3b:aa:c4:fc:a8:93:1d:e2:87:75:16:1b:c7:
a1:2f:7b:0b:89:fb:de:cf:35:d0:6c:8a:94:e0:3a:7f:7e:b3:
3f:d7:20:f9:42:a2:08:33:e8:d8:0f:7b:ec:d3:63:b6:5a:36:
af:9a:2e:b1:12:82:8f:7c:38:40:d4:56:54:5b:0e:4e:ac:17:
78:80:28:02:fd:5b:60:d5:dd:fb:88:76:8f:c8:f3:1b:9f:c4:
1b:e1:fb:12:e1:59:0a:dd:e0:15:81:79:06:5d:f3:12:95:3f:
4e:47:7c:f6:1d:b7:aa:bf:69:2b:0f:81:4d:7d:fc:39:34:8a:
21:7d:0b:aa:9f:17:71:fa:3d:2a:0e:6d:ef:75:44:e8:5f:ac:
9b:23:b7:e3:55:f8:8e:bc:dd:fd:6c:7c:c3:da:c4:74:56:2b:
89:4f:f7:a2:a0:f2:cd:29:fe:c4:70:9f:f1:b1:e7:7f:e1:f9:
00:f7:da:4b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJOe2XmYXfggSIpnwAb/9msMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjZGNjOGJjZGI2Yzc0NGFjZGY0M2RkNzJkNjhkMjA0NTFh
MTc5ZjYwHhcNMjIwNzMwMDk0MTI1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YmRhODhjNmE3ZTQwYmU3OTc4ZDgxOTIxY2JkYWE4MjE5NzZlMDFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPvh9+sMAn0UlaMjjugX4yqh/uyz
kxQNjrOZkDdkp2kF1sLvXdN0tolDChZtHOAvyn2Dhkv9ZFia6UPggX54XwggQVBJ
sG60TPVeUojDF+JemHH/mZKoFv9CPopHBZ/G/PcMmVymVs5cF/49RbG3D7ZxPn86
0Ox9aV24VH+NP2n2NhQrOLDESTiIQp1fubW60lTB+rLFlJNpKj8meHfsCr+uYWcR
hXUsGURNFIW7NR6NsQfpvILKMkd8vyQ5qFewvU72mYyc/y6l1x58h4eqSzeuEPQN
ZcTdCAzeoZ5tAtkEhMfUfy6gbU2MBy/wRY/rABQNsIj8NGikHKfiMyfmEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHvaiMan5Avnl42Bkhy9qoIZduAcMB8GA1UdIwQY
MBaAFDzcyLzbbHRKzfQ91y1o0gRRoXn2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUE56SXZOdHNkRXJOOUQzWExXalNCRkdoZWZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS8zNTY4MjYtZmMxMC00YWE5LTk2YTQt
NjM3YjM3MWRhOGU2LzEvZTlxSXhxZmtDLWVYallHU0hMMnFnaGwyNEJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS8zNTY4MjYtZmMxMC00YWE5LTk2YTQtNjM3YjM3MWRhOGU2
LzEvUE56SXZOdHNkRXJOOUQzWExXalNCRkdoZWZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmFnAMA0G
CSqGSIb3DQEBCwUAA4IBAQCr+AyTGcvIYUvuKjnSQQutVxz3PR7oxMKDubp4M89u
tSwmTMNxNsUiMD9HdZxFt9rY9hhm6n5l93VRTFvho/3ikS3/T7sA+41PuzpdgTuq
xPyokx3ih3UWG8ehL3sLifvezzXQbIqU4Dp/frM/1yD5QqIIM+jYD3vs02O2Wjav
mi6xEoKPfDhA1FZUWw5OrBd4gCgC/Vtg1d37iHaPyPMbn8Qb4fsS4VkK3eAVgXkG
XfMSlT9OR3z2Hbeqv2krD4FNffw5NIohfQuqnxdx+j0qDm3vdUToX6ybI7fjVfiO
vN39bHzD2sR0ViuJT/eioPLNKf7EcJ/xsed/4fkA99pL
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:28 2023 by rpki-client on console-ams.rpki-client.org