Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/LD6c75LFp-FldjZdPsUmL-k5lKY.roa
File: LD6c75LFp-FldjZdPsUmL-k5lKY.roa (raw, json)
Hash identifier: TZ5OkOg+WpbQFpVq/5h9jpEp+SeDuhDHAwa2XRda/mQ=
Subject key identifier: 2C:3E:9C:EF:92:C5:A7:E1:65:76:36:5D:3E:C5:26:2F:E9:39:94:A6
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 17984671
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/LD6c75LFp-FldjZdPsUmL-k5lKY.roa
Signing time: Thu 10 Mar 2022 13:19:37 +0000
ROA not before: Thu 10 Mar 2022 13:19:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201797
IP address blocks: 178.170.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395855473 (0x17984671)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Mar 10 13:19:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c3e9cef92c5a7e16576365d3ec5262fe93994a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:e9:32:81:4e:1e:4a:20:63:c9:db:5d:0d:82:
ac:35:a8:cc:2d:a8:03:7d:29:e3:fb:d5:93:36:2e:
56:d7:f2:35:96:40:02:c1:10:cc:5b:18:33:b6:60:
d6:3f:2f:03:29:8c:f9:c3:31:0e:3e:c9:a3:98:cc:
7e:22:a3:3b:d6:d3:b8:fd:89:85:13:12:bf:f3:2e:
4d:5d:6f:f8:16:56:bc:64:39:c7:3e:f4:2a:40:c7:
67:09:db:1e:52:c4:9e:ed:03:c9:d8:4e:80:98:18:
9e:36:be:bd:53:c6:48:89:fd:9c:6e:41:a8:1b:f9:
ec:9b:ae:0c:80:bd:18:5c:cb:f5:e1:93:61:1a:d2:
1d:c4:15:43:43:db:07:1b:4d:79:c3:b8:1f:13:48:
40:4e:2b:42:15:87:4b:40:d8:d0:7c:1d:be:df:a2:
88:b4:ba:2e:33:f0:db:cf:69:18:32:63:02:f9:d6:
59:66:e9:73:52:44:ec:65:aa:31:d6:90:46:8e:b2:
ac:bc:68:4b:d2:ea:0f:e2:6e:29:6d:b8:56:19:91:
79:33:c2:fc:85:f2:27:ad:52:8b:e6:34:4e:9e:a5:
b9:62:95:da:b1:82:34:93:a9:65:68:2c:76:da:64:
31:a2:37:06:e6:9c:c3:38:6e:3d:da:58:f7:21:5b:
37:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:3E:9C:EF:92:C5:A7:E1:65:76:36:5D:3E:C5:26:2F:E9:39:94:A6
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/LD6c75LFp-FldjZdPsUmL-k5lKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.170.230.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:8c:46:d4:b5:5c:a3:c5:8b:96:0c:e5:07:3c:69:e6:78:a0:
8d:4f:44:6a:cc:9b:13:85:ed:d8:9d:41:7a:d2:59:da:4f:d9:
f4:0e:36:d0:8f:5c:ce:d7:a0:5d:5f:75:8c:85:45:8c:69:d1:
3e:c4:1e:15:08:cf:a3:97:f6:93:36:61:e5:ac:ee:3a:f7:ee:
03:37:ee:02:f5:e2:cf:91:ce:48:5f:1d:01:cf:c3:46:d6:74:
9d:8b:c6:d5:bc:82:a5:3e:80:74:af:ef:e6:6f:e6:a1:4d:d6:
7c:d0:01:bc:60:c4:83:59:e2:06:ba:c3:fc:4e:79:f4:5e:1c:
7c:aa:0f:2f:4d:59:56:da:1a:01:69:1a:30:48:5c:85:46:d0:
e5:b2:eb:b9:f2:f8:cf:5f:7e:95:db:58:10:c6:88:26:a3:56:
d7:c3:6f:c7:a8:26:d1:5e:21:57:3b:bc:dd:70:7a:6d:6e:33:
4d:ae:55:88:ad:bb:d9:fe:80:5f:f7:e0:ab:5e:b1:e6:3f:11:
75:53:36:52:e0:bd:b1:ef:94:88:6f:71:02:b4:65:5d:b9:af:
60:01:1f:34:dd:5b:91:73:1f:9d:7f:d0:08:0e:f6:68:78:d0:
d1:80:2c:dd:7d:82:19:46:eb:cc:16:23:ef:8e:a1:f0:ed:05:
69:0f:d8:ce
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF5hGcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ODg1ZTg4NGMyZmM3YTc1ZDEyZGQxZGVhNDljZTIzNDljNDcwNjdlMB4XDTIyMDMx
MDEzMTkzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmMzZTljZWY5MmM1
YTdlMTY1NzYzNjVkM2VjNTI2MmZlOTM5OTRhNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANvpMoFOHkogY8nbXQ2CrDWozC2oA30p4/vVkzYuVtfyNZZA
AsEQzFsYM7Zg1j8vAymM+cMxDj7Jo5jMfiKjO9bTuP2JhRMSv/MuTV1v+BZWvGQ5
xz70KkDHZwnbHlLEnu0DydhOgJgYnja+vVPGSIn9nG5BqBv57JuuDIC9GFzL9eGT
YRrSHcQVQ0PbBxtNecO4HxNIQE4rQhWHS0DY0Hwdvt+iiLS6LjPw289pGDJjAvnW
WWbpc1JE7GWqMdaQRo6yrLxoS9LqD+JuKW24VhmReTPC/IXyJ61Si+Y0Tp6luWKV
2rGCNJOpZWgsdtpkMaI3BuacwzhuPdpY9yFbNzsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQsPpzvksWn4WV2Nl0+xSYv6TmUpjAfBgNVHSMEGDAWgBRYheiEwvx6ddEt
0d6knOI0nEcGfjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dJWG9oTUw4ZW5YUkxkSGVwSnppTkp4SEJuNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODYvNmMwYmY3LTVmMTMtNDRhMi05OTg5LThjOTU4MWQ5NmQ4Zi8x
L0xENmM3NUxGcC1GbGRqWmRQc1VtTC1rNWxLWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODYv
NmMwYmY3LTVmMTMtNDRhMi05OTg5LThjOTU4MWQ5NmQ4Zi8xL1dJWG9oTUw4ZW5Y
UkxkSGVwSnppTkp4SEJuNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALKq5jANBgkqhkiG9w0BAQsFAAOC
AQEAqIxG1LVco8WLlgzlBzxp5nigjU9EasybE4Xt2J1BetJZ2k/Z9A420I9czteg
XV91jIVFjGnRPsQeFQjPo5f2kzZh5azuOvfuAzfuAvXiz5HOSF8dAc/DRtZ0nYvG
1byCpT6AdK/v5m/moU3WfNABvGDEg1niBrrD/E559F4cfKoPL01ZVtoaAWkaMEhc
hUbQ5bLrufL4z19+ldtYEMaIJqNW18Nvx6gm0V4hVzu83XB6bW4zTa5ViK272f6A
X/fgq16x5j8RdVM2UuC9se+UiG9xArRlXbmvYAEfNN1bkXMfnX/QCA72aHjQ0YAs
3X2CGUbrzBYj746h8O0FaQ/Yzg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:32 2023 by rpki-client on console-ams.rpki-client.org