Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/bRW3Znrg_nJ2-_70Pe4PqrKPPKs.roa
File: bRW3Znrg_nJ2-_70Pe4PqrKPPKs.roa (raw, json)
Hash identifier: jgftBzyGQZgt0HmAmVxYg/XI/dVbmVxLd881EuvO0iA=
Subject key identifier: 6D:15:B7:66:7A:E0:FE:72:76:FB:FE:F4:3D:EE:0F:AA:B2:8F:3C:AB
Certificate issuer: /CN=9cce3b1197d0cf9511540572a58fd372dcc07489
Certificate serial: 029312B5
Authority key identifier: 9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/bRW3Znrg_nJ2-_70Pe4PqrKPPKs.roa
Signing time: Wed 23 Feb 2022 13:18:42 +0000
ROA not before: Wed 23 Feb 2022 13:18:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210876
IP address blocks: 217.67.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43193013 (0x29312b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cce3b1197d0cf9511540572a58fd372dcc07489
Validity
Not Before: Feb 23 13:18:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d15b7667ae0fe7276fbfef43dee0faab28f3cab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9f:78:80:bd:7b:e3:55:92:b8:ac:d5:27:bb:
42:c5:64:9d:fb:7a:a5:5e:01:26:84:50:dd:31:ff:
f4:3b:d1:2c:24:2c:83:45:6d:2c:5b:94:3a:39:ea:
82:c8:b9:91:62:35:c5:29:ed:61:9d:ac:34:f6:1d:
6b:cd:bd:39:78:3a:1c:50:db:4c:3e:98:6f:c7:a3:
77:2c:32:ae:0d:4c:a2:52:60:e2:ab:28:04:ad:27:
7b:27:b1:98:5b:d6:c6:5f:fa:53:37:bb:7c:4e:92:
04:f2:cb:61:b0:82:fb:19:d6:57:e1:f8:9e:88:8f:
e5:dc:da:23:7d:f4:d6:7e:70:67:64:77:86:d8:a2:
d3:82:68:b1:88:7a:30:69:19:af:bd:96:61:ae:aa:
11:22:e5:60:b1:8a:da:1b:4d:71:52:2c:e8:2c:b8:
1f:71:33:3c:4e:0b:20:dc:bf:87:b0:fb:9b:e6:8c:
5d:8e:37:6c:71:48:b1:92:11:a7:e1:d0:e6:f4:59:
25:75:97:17:81:3e:d9:6b:1a:3a:76:96:8b:ea:12:
2f:f2:49:85:d5:70:df:02:a4:46:ae:6d:ce:e2:e1:
4a:6a:a8:13:fb:71:c7:e4:e5:a7:75:de:fd:35:d5:
04:e5:cc:c8:aa:28:5d:c2:21:bf:3f:f3:34:60:35:
35:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:15:B7:66:7A:E0:FE:72:76:FB:FE:F4:3D:EE:0F:AA:B2:8F:3C:AB
X509v3 Authority Key Identifier:
keyid:9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/bRW3Znrg_nJ2-_70Pe4PqrKPPKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.67.161.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:95:e6:78:32:ed:56:94:6d:cc:f5:0b:7c:94:20:8b:ed:94:
1f:cd:cc:1e:24:c2:fd:d8:df:bd:55:b9:bc:e5:3b:fe:9d:43:
b4:6c:ce:9e:23:c6:be:c7:25:33:75:7f:83:61:18:20:76:37:
46:94:6b:34:d5:13:f3:d3:0e:68:97:b0:30:84:75:5d:bc:b5:
52:6d:49:08:f5:93:36:88:dc:3e:be:63:35:88:11:2c:c5:cb:
0d:39:f9:fd:5e:93:fd:3c:4a:51:2b:be:af:f2:57:6d:7f:84:
3b:ad:41:cb:b9:9c:60:37:7f:4e:27:50:01:fd:5b:09:1d:96:
af:16:aa:aa:9b:f8:a1:4a:d1:e3:b0:5a:ba:20:01:88:ab:4b:
65:fd:73:a4:8c:30:db:bc:08:85:b7:8d:c5:ea:0a:2d:e8:0b:
f3:52:53:1f:f2:8a:8b:11:24:76:b4:a7:29:dd:db:ad:be:7d:
4a:25:75:cf:81:1c:d0:c0:b5:2b:80:1b:93:44:3e:2d:4d:7e:
ca:26:83:b9:b3:3e:db:cc:9e:0f:5c:bd:e5:ec:75:05:a6:df:
10:38:ad:d5:2e:16:8d:18:5f:14:84:f8:4a:6e:87:64:ed:83:
e1:4a:d0:e6:fe:58:6e:4d:4c:c5:22:a2:b7:72:64:a5:df:f8:
55:d3:d9:92
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEApMStTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
Y2NlM2IxMTk3ZDBjZjk1MTE1NDA1NzJhNThmZDM3MmRjYzA3NDg5MB4XDTIyMDIy
MzEzMTg0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmQxNWI3NjY3YWUw
ZmU3Mjc2ZmJmZWY0M2RlZTBmYWFiMjhmM2NhYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMyfeIC9e+NVkris1Se7QsVknft6pV4BJoRQ3TH/9DvRLCQs
g0VtLFuUOjnqgsi5kWI1xSntYZ2sNPYda829OXg6HFDbTD6Yb8ejdywyrg1MolJg
4qsoBK0neyexmFvWxl/6Uze7fE6SBPLLYbCC+xnWV+H4noiP5dzaI3301n5wZ2R3
htii04JosYh6MGkZr72WYa6qESLlYLGK2htNcVIs6Cy4H3EzPE4LINy/h7D7m+aM
XY43bHFIsZIRp+HQ5vRZJXWXF4E+2WsaOnaWi+oSL/JJhdVw3wKkRq5tzuLhSmqo
E/txx+Tlp3Xe/TXVBOXMyKooXcIhvz/zNGA1NZECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRtFbdmeuD+cnb7/vQ97g+qso88qzAfBgNVHSMEGDAWgBSczjsRl9DPlRFU
BXKlj9Ny3MB0iTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25NNDdFWmZRejVVUlZBVnlwWV9UY3R6QWRJay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzQvNGYyMzY3LTczZjMtNDgxNi1iZWE4LWEwNDVmZjhlMmFjMC8x
L2JSVzNabnJnX25KMi1fNzBQZTRQcXJLUFBLcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzQv
NGYyMzY3LTczZjMtNDgxNi1iZWE4LWEwNDVmZjhlMmFjMC8xL25NNDdFWmZRejVV
UlZBVnlwWV9UY3R6QWRJay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANlDoTANBgkqhkiG9w0BAQsFAAOC
AQEAa5XmeDLtVpRtzPULfJQgi+2UH83MHiTC/djfvVW5vOU7/p1DtGzOniPGvscl
M3V/g2EYIHY3RpRrNNUT89MOaJewMIR1Xby1Um1JCPWTNojcPr5jNYgRLMXLDTn5
/V6T/TxKUSu+r/JXbX+EO61By7mcYDd/TidQAf1bCR2Wrxaqqpv4oUrR47BauiAB
iKtLZf1zpIww27wIhbeNxeoKLegL81JTH/KKixEkdrSnKd3brb59SiV1z4Ec0MC1
K4Abk0Q+LU1+yiaDubM+28yeD1y95ex1BabfEDit1S4WjRhfFIT4Sm6HZO2D4UrQ
5v5Ybk1MxSKit3Jkpd/4VdPZkg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:38 2025 by rpki-client