Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/f0a67c-bd4f-4ddc-8c61-3fe7aea9e2e0/1/65BW1gjKoABG_gUf_SMWMxrUOGk.roa
File: 65BW1gjKoABG_gUf_SMWMxrUOGk.roa (raw, json)
Hash identifier: okOCc9EkEILzxC4sAiAEMzBHLxJsvITtcAysTTcMxjE=
Subject key identifier: EB:90:56:D6:08:CA:A0:00:46:FE:05:1F:FD:23:16:33:1A:D4:38:69
Certificate issuer: /CN=200b15e0783fe00f1b8a57bd14fdbd06924b8832
Certificate serial: 062A862E
Authority key identifier: 20:0B:15:E0:78:3F:E0:0F:1B:8A:57:BD:14:FD:BD:06:92:4B:88:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IAsV4Hg_4A8bile9FP29BpJLiDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/f0a67c-bd4f-4ddc-8c61-3fe7aea9e2e0/1/65BW1gjKoABG_gUf_SMWMxrUOGk.roa
Signing time: Thu 13 Jan 2022 13:57:30 +0000
ROA not before: Thu 13 Jan 2022 13:57:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47692
IP address blocks: 152.89.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103450158 (0x62a862e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=200b15e0783fe00f1b8a57bd14fdbd06924b8832
Validity
Not Before: Jan 13 13:57:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb9056d608caa00046fe051ffd2316331ad43869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:16:d3:b2:21:b4:61:db:60:b3:4b:8e:48:4d:
72:12:98:ec:dc:5a:b8:3e:7b:d2:88:c7:aa:a7:e7:
f5:3d:07:58:b5:7a:20:31:5d:0e:f7:75:18:1e:e6:
97:1d:de:cd:91:f4:d8:61:37:10:7b:80:a1:5f:9a:
75:76:1a:61:72:fb:5d:a3:37:c0:ec:78:1e:de:2e:
de:4e:fe:5f:12:39:c7:32:ca:34:fe:b6:8d:43:3b:
3b:39:2b:88:a6:58:61:22:b2:11:59:9e:1a:7a:a9:
28:3a:0e:2c:02:93:a8:c5:c9:4e:35:77:13:12:c0:
22:2d:46:d9:f7:e1:a3:29:7b:cb:11:01:b5:cc:86:
17:5c:3b:16:94:82:e3:b5:6a:f5:dc:e7:d8:aa:b3:
0d:1f:ec:f4:a3:19:18:ec:60:b9:c0:b4:73:b4:0c:
2c:ab:49:66:91:f1:e2:4f:25:f7:d7:31:0b:29:72:
06:53:25:cc:79:7e:ae:27:6f:a7:1b:b3:ca:b4:b1:
c5:45:f7:34:bd:c5:28:76:03:cc:ef:84:3b:bd:00:
5e:b0:c6:43:89:21:1b:65:88:a7:02:a0:37:eb:2b:
c8:ac:f6:d3:17:4e:4f:f8:2a:02:46:c3:89:47:a3:
34:8d:9f:ee:91:4c:8b:69:ff:0b:2a:d7:73:61:7e:
2f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:90:56:D6:08:CA:A0:00:46:FE:05:1F:FD:23:16:33:1A:D4:38:69
X509v3 Authority Key Identifier:
keyid:20:0B:15:E0:78:3F:E0:0F:1B:8A:57:BD:14:FD:BD:06:92:4B:88:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IAsV4Hg_4A8bile9FP29BpJLiDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/f0a67c-bd4f-4ddc-8c61-3fe7aea9e2e0/1/65BW1gjKoABG_gUf_SMWMxrUOGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/f0a67c-bd4f-4ddc-8c61-3fe7aea9e2e0/1/IAsV4Hg_4A8bile9FP29BpJLiDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.225.0/24
Signature Algorithm: sha256WithRSAEncryption
26:e2:d4:ee:7c:aa:be:21:9c:97:b8:e8:de:6a:f0:21:26:d1:
a5:41:5e:26:93:36:3c:67:e6:2c:f5:3f:9a:74:f7:a0:b3:f8:
f3:02:cf:24:9f:f6:ca:51:94:62:8e:7d:1a:55:60:c8:67:fd:
4a:ea:83:6f:9e:51:8f:ce:ea:b8:a3:e6:05:e4:bb:f1:e3:a4:
40:1d:b5:fb:7d:10:a4:bc:8e:d8:0e:bd:4b:43:5b:1e:7e:eb:
c2:19:e9:85:43:b7:9a:47:04:9f:cf:d7:af:3c:c5:48:de:5f:
07:0d:d4:30:b9:08:7f:1e:54:a6:05:3e:a2:83:98:3e:18:06:
7f:e0:fe:a8:c2:91:50:c2:6c:b4:a2:f9:7b:4e:e7:50:01:2a:
af:82:e4:6d:de:c4:8d:26:ef:fa:55:aa:f9:65:c3:81:90:8b:
7e:a5:89:91:15:d0:ef:5a:3c:46:26:f2:58:f2:cd:9e:0f:56:
3e:fe:13:1a:8f:cc:98:97:f7:b4:e7:a0:1f:ed:b5:a2:bd:61:
60:74:de:85:df:4f:c1:f3:cf:6e:9d:c8:59:c9:b8:f2:5a:91:
ed:61:0f:31:d4:77:46:7b:c9:ad:a5:8c:b0:e1:1b:68:ea:ed:
89:98:a9:b2:42:88:33:df:cc:17:42:49:db:5b:68:01:30:34:
2d:22:48:9d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBiqGLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MDBiMTVlMDc4M2ZlMDBmMWI4YTU3YmQxNGZkYmQwNjkyNGI4ODMyMB4XDTIyMDEx
MzEzNTczMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWI5MDU2ZDYwOGNh
YTAwMDQ2ZmUwNTFmZmQyMzE2MzMxYWQ0Mzg2OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK4W07IhtGHbYLNLjkhNchKY7NxauD570ojHqqfn9T0HWLV6
IDFdDvd1GB7mlx3ezZH02GE3EHuAoV+adXYaYXL7XaM3wOx4Ht4u3k7+XxI5xzLK
NP62jUM7OzkriKZYYSKyEVmeGnqpKDoOLAKTqMXJTjV3ExLAIi1G2ffhoyl7yxEB
tcyGF1w7FpSC47Vq9dzn2KqzDR/s9KMZGOxgucC0c7QMLKtJZpHx4k8l99cxCyly
BlMlzHl+ridvpxuzyrSxxUX3NL3FKHYDzO+EO70AXrDGQ4khG2WIpwKgN+sryKz2
0xdOT/gqAkbDiUejNI2f7pFMi2n/CyrXc2F+L+8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTrkFbWCMqgAEb+BR/9IxYzGtQ4aTAfBgNVHSMEGDAWgBQgCxXgeD/gDxuK
V70U/b0GkkuIMjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lBc1Y0SGdfNEE4YmlsZTlGUDI5QnBKTGlESS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzkvZjBhNjdjLWJkNGYtNGRkYy04YzYxLTNmZTdhZWE5ZTJlMC8x
LzY1QlcxZ2pLb0FCR19nVWZfU01XTXhyVU9Hay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzkv
ZjBhNjdjLWJkNGYtNGRkYy04YzYxLTNmZTdhZWE5ZTJlMC8xL0lBc1Y0SGdfNEE4
YmlsZTlGUDI5QnBKTGlESS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJhZ4TANBgkqhkiG9w0BAQsFAAOC
AQEAJuLU7nyqviGcl7jo3mrwISbRpUFeJpM2PGfmLPU/mnT3oLP48wLPJJ/2ylGU
Yo59GlVgyGf9SuqDb55Rj87quKPmBeS78eOkQB21+30QpLyO2A69S0NbHn7rwhnp
hUO3mkcEn8/XrzzFSN5fBw3UMLkIfx5UpgU+ooOYPhgGf+D+qMKRUMJstKL5e07n
UAEqr4Lkbd7EjSbv+lWq+WXDgZCLfqWJkRXQ71o8RibyWPLNng9WPv4TGo/MmJf3
tOegH+21or1hYHTehd9PwfPPbp3IWcm48lqR7WEPMdR3RnvJraWMsOEbaOrtiZip
skKIM9/MF0JJ21toATA0LSJInQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:15 2023 by rpki-client on console-fra.rpki-client.org