Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/69c389-17c9-4461-a390-7aa290e857e9/1/Aw3YG2Qr-1Hztrjw7hbHoHByXVo.roa
File: Aw3YG2Qr-1Hztrjw7hbHoHByXVo.roa (raw, json)
Hash identifier: XlGnKpH+A+AKLWviv7PZY4JWPevuQpPNLJmmJ5IkwQw=
Subject key identifier: 03:0D:D8:1B:64:2B:FB:51:F3:B6:B8:F0:EE:16:C7:A0:70:72:5D:5A
Certificate issuer: /CN=19ac1498860e2bb0958173854bd04c869a369017
Certificate serial: 078F84CF
Authority key identifier: 19:AC:14:98:86:0E:2B:B0:95:81:73:85:4B:D0:4C:86:9A:36:90:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GawUmIYOK7CVgXOFS9BMhpo2kBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/69c389-17c9-4461-a390-7aa290e857e9/1/Aw3YG2Qr-1Hztrjw7hbHoHByXVo.roa
Signing time: Thu 10 Mar 2022 19:11:49 +0000
ROA not before: Thu 10 Mar 2022 19:11:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136258
IP address blocks: 37.143.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126846159 (0x78f84cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ac1498860e2bb0958173854bd04c869a369017
Validity
Not Before: Mar 10 19:11:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=030dd81b642bfb51f3b6b8f0ee16c7a070725d5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4e:0c:15:3a:da:77:09:9a:89:ba:d8:4b:59:
49:c0:b6:6d:9b:bd:99:cb:18:8e:02:b0:0f:de:c0:
1e:5e:cd:55:86:89:73:35:99:37:42:ac:4d:7b:57:
5b:fa:97:fa:cd:80:e2:b7:98:f0:5b:26:10:55:30:
af:1b:af:1e:4c:7e:bf:4a:97:79:9b:c2:76:6b:9e:
6f:69:aa:25:f1:4f:65:3c:47:40:27:06:51:49:85:
a7:c1:4e:26:51:9b:32:e9:80:56:3e:9b:d3:00:d4:
d1:37:e9:ed:cc:20:dd:57:ee:1f:86:af:49:ab:e1:
07:83:57:27:ef:3b:bd:c5:84:15:d1:0c:d6:fb:96:
aa:f6:2f:a5:8c:54:9e:53:dc:e6:8d:dd:2a:ca:fd:
16:b8:d7:cf:8a:92:95:22:28:ed:d7:81:c8:13:eb:
c8:55:21:67:73:29:6a:aa:1d:ca:eb:8d:d0:42:bb:
0e:31:4e:d5:8c:80:6a:26:96:ef:ae:68:e5:e2:49:
8b:f4:32:a7:bb:ed:76:e9:87:52:63:55:07:07:4c:
ef:d6:36:cd:fd:8e:1d:dc:50:ef:1e:c4:1e:dc:27:
7c:bc:f0:4f:66:81:89:50:4b:8a:c5:83:b7:39:a0:
73:49:de:0b:78:53:73:47:7d:18:fc:44:2a:c1:ad:
c5:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:0D:D8:1B:64:2B:FB:51:F3:B6:B8:F0:EE:16:C7:A0:70:72:5D:5A
X509v3 Authority Key Identifier:
keyid:19:AC:14:98:86:0E:2B:B0:95:81:73:85:4B:D0:4C:86:9A:36:90:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GawUmIYOK7CVgXOFS9BMhpo2kBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/69c389-17c9-4461-a390-7aa290e857e9/1/Aw3YG2Qr-1Hztrjw7hbHoHByXVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/69c389-17c9-4461-a390-7aa290e857e9/1/GawUmIYOK7CVgXOFS9BMhpo2kBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.128.0/24
Signature Algorithm: sha256WithRSAEncryption
95:88:ec:9c:af:e2:c3:b1:8f:9a:e5:4d:7e:85:a2:3b:03:5a:
93:8a:b6:02:dd:02:7b:8b:86:be:95:93:88:59:3e:5b:c5:2b:
a3:35:73:67:25:28:44:b9:2b:d8:75:09:61:2b:f5:23:fb:ed:
59:a1:2d:6e:9a:52:77:e2:bb:20:8d:b6:f3:6d:da:4a:e7:3e:
fc:b2:3e:12:31:74:03:e2:b2:85:a1:0a:d0:42:30:b8:fb:53:
a8:28:af:f4:8e:8c:82:ef:5d:72:2a:94:b0:35:f4:ef:f1:66:
ed:f9:87:86:52:20:8f:48:75:75:b4:cf:3c:1e:f5:f5:d1:57:
03:44:61:2e:95:4b:2a:ab:38:ed:ba:99:76:cf:cf:7b:b6:c9:
fe:cc:77:0e:8e:85:35:22:d2:da:cb:2b:e2:07:7d:c4:9b:3b:
0d:24:f5:bc:23:73:d9:c9:73:ba:3b:2e:98:76:eb:04:c3:4d:
6f:43:54:5d:51:39:24:42:b1:e7:8d:ed:f0:6c:b4:22:f8:21:
83:9e:ab:e8:de:47:91:70:65:fa:db:d8:d6:27:19:ca:4d:e8:
3a:8c:87:0b:bc:e6:f7:d8:a5:09:7d:0b:e7:3f:da:17:0d:ba:
b1:ea:14:01:36:da:60:50:ce:c4:d1:84:21:b7:c9:78:86:85:
0f:36:76:5d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB4+EzzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
OWFjMTQ5ODg2MGUyYmIwOTU4MTczODU0YmQwNGM4NjlhMzY5MDE3MB4XDTIyMDMx
MDE5MTE0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDMwZGQ4MWI2NDJi
ZmI1MWYzYjZiOGYwZWUxNmM3YTA3MDcyNWQ1YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMdODBU62ncJmom62EtZScC2bZu9mcsYjgKwD97AHl7NVYaJ
czWZN0KsTXtXW/qX+s2A4reY8FsmEFUwrxuvHkx+v0qXeZvCdmueb2mqJfFPZTxH
QCcGUUmFp8FOJlGbMumAVj6b0wDU0Tfp7cwg3VfuH4avSavhB4NXJ+87vcWEFdEM
1vuWqvYvpYxUnlPc5o3dKsr9FrjXz4qSlSIo7deByBPryFUhZ3MpaqodyuuN0EK7
DjFO1YyAaiaW765o5eJJi/Qyp7vtdumHUmNVBwdM79Y2zf2OHdxQ7x7EHtwnfLzw
T2aBiVBLisWDtzmgc0neC3hTc0d9GPxEKsGtxcECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQDDdgbZCv7UfO2uPDuFsegcHJdWjAfBgNVHSMEGDAWgBQZrBSYhg4rsJWB
c4VL0EyGmjaQFzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dhd1VtSVlPSzdDVmdYT0ZTOUJNaHBvMmtCYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODAvNjljMzg5LTE3YzktNDQ2MS1hMzkwLTdhYTI5MGU4NTdlOS8x
L0F3M1lHMlFyLTFIenRyanc3aGJIb0hCeVhWby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODAv
NjljMzg5LTE3YzktNDQ2MS1hMzkwLTdhYTI5MGU4NTdlOS8xL0dhd1VtSVlPSzdD
VmdYT0ZTOUJNaHBvMmtCYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACWPgDANBgkqhkiG9w0BAQsFAAOC
AQEAlYjsnK/iw7GPmuVNfoWiOwNak4q2At0Ce4uGvpWTiFk+W8UrozVzZyUoRLkr
2HUJYSv1I/vtWaEtbppSd+K7II22823aSuc+/LI+EjF0A+KyhaEK0EIwuPtTqCiv
9I6Mgu9dciqUsDX07/Fm7fmHhlIgj0h1dbTPPB719dFXA0RhLpVLKqs47bqZds/P
e7bJ/sx3Do6FNSLS2ssr4gd9xJs7DST1vCNz2clzujsumHbrBMNNb0NUXVE5JEKx
543t8Gy0Ivghg56r6N5HkXBl+tvY1icZyk3oOoyHC7zm99ilCX0L5z/aFw26seoU
ATbaYFDOxNGEIbfJeIaFDzZ2XQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:39 2025 by rpki-client