Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/POueHua9Qbh5FNSgo3oFoYGNdSc.roa
File: POueHua9Qbh5FNSgo3oFoYGNdSc.roa (raw, json)
Hash identifier: cJyJnoZGKOr/IQv10dyCgmefWXTqOAmpt4ulC3fKdLA=
Subject key identifier: 3C:EB:9E:1E:E6:BD:41:B8:79:14:D4:A0:A3:7A:05:A1:81:8D:75:27
Certificate issuer: /CN=73e157b2918cadca8a5a9fbc66e977608a6df5e1
Certificate serial: 0185057BD99F55C9E25E328ADB8EE7A1940E
Authority key identifier: 73:E1:57:B2:91:8C:AD:CA:8A:5A:9F:BC:66:E9:77:60:8A:6D:F5:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c-FXspGMrcqKWp-8Zul3YIpt9eE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/POueHua9Qbh5FNSgo3oFoYGNdSc.roa
Signing time: Mon 12 Dec 2022 08:38:00 +0000
ROA not before: Mon 12 Dec 2022 08:38:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 178.21.144.0/22 maxlen: 22
2a02:2c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:7b:d9:9f:55:c9:e2:5e:32:8a:db:8e:e7:a1:94:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73e157b2918cadca8a5a9fbc66e977608a6df5e1
Validity
Not Before: Dec 12 08:38:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ceb9e1ee6bd41b87914d4a0a37a05a1818d7527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c6:39:c6:8d:7a:ff:57:7e:94:be:6f:2f:68:
72:7b:90:a3:c2:aa:70:68:1e:08:f4:94:06:c5:1e:
83:f3:96:bd:6e:ab:14:08:e1:e4:d8:9f:05:1a:78:
2c:f7:2e:c4:92:d1:1b:45:a0:64:08:ee:a6:b3:7c:
41:54:17:75:9d:29:e0:5e:94:15:e0:cd:2b:39:89:
2b:96:05:04:90:55:54:13:88:57:03:a0:48:cf:f5:
ab:10:08:90:44:95:4b:d7:19:e9:43:07:4a:57:2b:
13:69:32:e0:6a:50:3f:69:05:cf:92:a4:8a:b6:9c:
33:3e:37:91:79:7b:cf:2d:6a:02:91:ec:e8:fb:ae:
53:01:43:13:e7:38:f1:52:2e:40:3e:bf:6c:bd:1f:
eb:08:1f:a2:1b:8a:30:0e:93:1c:b3:ba:96:69:c9:
32:fe:91:5f:03:af:ef:bb:98:01:38:e6:dc:14:fd:
23:76:6c:21:b9:7c:f4:a2:c2:d4:dd:71:a4:5a:16:
20:e5:a9:b5:e6:c9:25:23:b8:db:48:d5:9e:0c:69:
9c:db:c7:1f:f0:3d:5f:ad:de:fb:19:02:05:0a:ef:
d4:a5:d0:75:06:65:5e:53:bc:3c:f3:52:1c:58:8c:
83:16:48:4f:1e:bd:7c:32:2d:c5:c1:07:22:dc:65:
6c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:EB:9E:1E:E6:BD:41:B8:79:14:D4:A0:A3:7A:05:A1:81:8D:75:27
X509v3 Authority Key Identifier:
keyid:73:E1:57:B2:91:8C:AD:CA:8A:5A:9F:BC:66:E9:77:60:8A:6D:F5:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c-FXspGMrcqKWp-8Zul3YIpt9eE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/POueHua9Qbh5FNSgo3oFoYGNdSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/c-FXspGMrcqKWp-8Zul3YIpt9eE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.21.144.0/22
IPv6:
2a02:2c0::/48
Signature Algorithm: sha256WithRSAEncryption
22:a4:f8:63:9f:ae:d5:e3:a4:c6:40:3d:c4:c2:55:97:01:b5:
2d:8c:ab:d9:08:00:65:37:63:45:14:d8:17:10:3b:35:c7:f6:
e3:2b:78:96:9d:a9:cb:2f:be:30:c6:34:1e:0b:f2:ad:3f:69:
4c:d0:3b:9a:9f:9b:c0:af:44:8a:5f:ff:61:ca:1f:4c:36:9f:
83:11:e6:57:33:5b:fd:5c:d9:87:3a:e2:5d:21:03:f5:bf:aa:
f6:eb:8b:1a:cb:f2:31:48:31:08:a0:f0:d3:38:02:34:5d:e8:
22:7e:e5:1a:28:0b:c9:8b:5e:91:59:d7:ae:cf:9d:01:a3:81:
70:84:7b:9b:0d:fe:dd:87:9d:5d:4a:07:e8:a0:ca:e2:5f:e0:
61:03:3c:3e:21:bb:43:ce:ab:b6:50:68:02:76:8b:bc:03:46:
46:c7:af:f7:93:40:24:78:01:e2:fc:a1:c7:54:e3:3f:12:13:
d4:59:13:0f:fa:67:23:b5:af:5b:80:42:5f:21:9c:b7:9a:be:
95:aa:d7:45:bf:e7:ca:ff:75:a4:50:28:2a:1f:b2:53:e2:e6:
1f:41:05:32:7f:3a:14:88:00:49:83:1c:34:91:06:09:dd:bd:
52:17:91:7a:c6:8c:f7:8e:f9:34:aa:fb:e0:b7:ad:1f:57:55:
f9:59:59:4e
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYUFe9mfVcniXjKK247noZQOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczZTE1N2IyOTE4Y2FkY2E4YTVhOWZiYzY2ZTk3NzYwOGE2
ZGY1ZTEwHhcNMjIxMjEyMDgzODAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzY2ViOWUxZWU2YmQ0MWI4NzkxNGQ0YTBhMzdhMDVhMTgxOGQ3NTI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMY5xo16/1d+lL5vL2hye5Cjwqpw
aB4I9JQGxR6D85a9bqsUCOHk2J8FGngs9y7EktEbRaBkCO6ms3xBVBd1nSngXpQV
4M0rOYkrlgUEkFVUE4hXA6BIz/WrEAiQRJVL1xnpQwdKVysTaTLgalA/aQXPkqSK
tpwzPjeReXvPLWoCkezo+65TAUMT5zjxUi5APr9svR/rCB+iG4owDpMcs7qWacky
/pFfA6/vu5gBOObcFP0jdmwhuXz0osLU3XGkWhYg5am15sklI7jbSNWeDGmc28cf
8D1frd77GQIFCu/UpdB1BmVeU7w881IcWIyDFkhPHr18Mi3FwQci3GVsvQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFDzrnh7mvUG4eRTUoKN6BaGBjXUnMB8GA1UdIwQY
MBaAFHPhV7KRjK3KilqfvGbpd2CKbfXhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYy1GWHNwR01yY3FLV3AtOFp1bDNZSXB0OWVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS9iYmNkNTMtYzRmOC00MjQ1LWJiOTAt
MDBhMTU0YjhlY2IxLzEvUE91ZUh1YTlRYmg1Rk5TZ28zb0ZvWUdOZFNjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS9iYmNkNTMtYzRmOC00MjQ1LWJiOTAtMDBhMTU0YjhlY2Ix
LzEvYy1GWHNwR01yY3FLV3AtOFp1bDNZSXB0OWVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCshWQMA8E
AgACMAkDBwAqAgLAAAAwDQYJKoZIhvcNAQELBQADggEBACKk+GOfrtXjpMZAPcTC
VZcBtS2Mq9kIAGU3Y0UU2BcQOzXH9uMreJadqcsvvjDGNB4L8q0/aUzQO5qfm8Cv
RIpf/2HKH0w2n4MR5lczW/1c2Yc64l0hA/W/qvbrixrL8jFIMQig8NM4AjRd6CJ+
5RooC8mLXpFZ167PnQGjgXCEe5sN/t2HnV1KB+igyuJf4GEDPD4hu0POq7ZQaAJ2
i7wDRkbHr/eTQCR4AeL8ocdU4z8SE9RZEw/6ZyO1r1uAQl8hnLeavpWq10W/58r/
daRQKCofslPi5h9BBTJ/OhSIAEmDHDSRBgndvVIXkXrGjPeO+TSq++C3rR9XVflZ
WU4=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:14 2023 by rpki-client on console-fra.rpki-client.org