Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/cgCdBCAaylMBm9Q3fFi4pXu0rlw.roa
File: cgCdBCAaylMBm9Q3fFi4pXu0rlw.roa (raw, json)
Hash identifier: A/InG9TtsVc1Q1pI7k+GqXIpc6sBeewP6kToLrxMuU0=
Subject key identifier: 72:00:9D:04:20:1A:CA:53:01:9B:D4:37:7C:58:B8:A5:7B:B4:AE:5C
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 16ED6BBC
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/cgCdBCAaylMBm9Q3fFi4pXu0rlw.roa
Signing time: Sat 01 Jan 2022 12:01:45 +0000
ROA not before: Sat 01 Jan 2022 12:01:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210240
IP address blocks: 141.101.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 384658364 (0x16ed6bbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 12:01:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72009d04201aca53019bd4377c58b8a57bb4ae5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:22:a1:26:bd:d4:37:74:e1:8e:da:93:4a:2e:
2e:08:4d:e2:30:74:e0:7d:2b:0c:53:fb:d6:fa:ca:
e2:cc:c6:1d:6c:3b:27:70:e4:cb:fc:14:a0:e3:19:
e0:4a:be:76:5e:df:70:0a:14:cc:75:ae:e9:5f:56:
23:7d:ef:64:7f:e4:c1:2f:45:49:39:85:40:f5:b5:
7d:a9:f7:68:6c:e3:73:f5:cc:81:9b:25:71:ab:7c:
38:91:3b:cf:73:3c:59:6c:3e:fe:1f:a5:2f:37:0d:
41:18:e7:15:ea:3d:e5:83:5c:43:3a:5b:af:d3:8c:
b9:2f:ee:43:88:b5:4d:22:31:0f:97:8f:59:48:1f:
5d:58:72:33:a9:4e:cc:f0:87:eb:0f:5e:ae:2f:10:
89:53:b2:cd:c1:3f:0a:f4:06:1f:a2:df:19:c4:a0:
01:c0:5e:cf:d4:2e:05:d0:2c:fe:77:44:b3:b8:96:
c0:0a:30:fd:41:5e:7f:ed:be:3d:fc:12:99:e0:55:
16:26:b7:c0:d9:26:6f:51:3a:5a:53:9b:6f:ac:d0:
97:95:b0:cd:21:96:60:2c:4a:0d:30:6d:cb:f4:5c:
3e:37:97:c2:e6:0b:0c:65:f1:ab:0a:e4:11:95:0b:
5f:c9:70:5e:a4:3d:79:a7:9f:26:e7:ed:1f:23:be:
41:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:00:9D:04:20:1A:CA:53:01:9B:D4:37:7C:58:B8:A5:7B:B4:AE:5C
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/cgCdBCAaylMBm9Q3fFi4pXu0rlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.188.0/24
Signature Algorithm: sha256WithRSAEncryption
be:06:8b:57:60:12:00:83:89:89:f2:c4:b7:32:20:5a:12:9c:
00:31:db:a3:f4:5a:27:99:4e:6b:70:2b:35:2f:76:2a:29:82:
cf:4a:ae:cf:9a:7c:77:70:40:08:2c:eb:1b:ab:ad:54:cc:db:
dd:db:34:9c:10:ff:13:b9:cc:c1:fe:06:08:56:42:07:d7:82:
55:a3:f6:94:fb:84:43:a2:3b:db:1f:6d:8e:53:74:6e:67:10:
34:a7:31:ff:c7:a2:d2:40:0a:ca:b8:31:b9:1d:c8:a4:fa:48:
84:14:e6:b3:dc:2d:f7:15:a9:6a:86:b0:91:71:26:92:70:4b:
65:fc:d6:7e:e9:aa:81:69:0e:e6:d6:41:57:04:28:68:e9:1a:
04:ea:bc:76:2e:cd:e7:d1:5b:01:b4:a7:9e:59:17:0f:d3:a2:
00:c1:f7:1f:28:b5:65:f1:65:24:c5:0e:74:09:4e:0a:a4:2f:
1f:46:37:36:94:6f:a9:82:7d:53:02:4a:9c:ad:61:22:04:49:
d0:8f:45:76:bd:b0:6a:13:8e:f5:50:d2:07:2f:d1:37:c0:7e:
5f:b1:f3:32:36:88:2e:0e:5d:62:93:ec:54:e3:1b:85:c8:83:
1c:25:f1:83:f9:f6:63:68:d3:7f:95:11:61:45:db:12:9c:26:
3e:a0:98:4e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFu1rvDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ODg1ZTg4NGMyZmM3YTc1ZDEyZGQxZGVhNDljZTIzNDljNDcwNjdlMB4XDTIyMDEw
MTEyMDE0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzIwMDlkMDQyMDFh
Y2E1MzAxOWJkNDM3N2M1OGI4YTU3YmI0YWU1YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJsioSa91Dd04Y7ak0ouLghN4jB04H0rDFP71vrK4szGHWw7
J3Dky/wUoOMZ4Eq+dl7fcAoUzHWu6V9WI33vZH/kwS9FSTmFQPW1fan3aGzjc/XM
gZslcat8OJE7z3M8WWw+/h+lLzcNQRjnFeo95YNcQzpbr9OMuS/uQ4i1TSIxD5eP
WUgfXVhyM6lOzPCH6w9eri8QiVOyzcE/CvQGH6LfGcSgAcBez9QuBdAs/ndEs7iW
wAow/UFef+2+PfwSmeBVFia3wNkmb1E6WlObb6zQl5WwzSGWYCxKDTBty/RcPjeX
wuYLDGXxqwrkEZULX8lwXqQ9eaefJuftHyO+QRECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRyAJ0EIBrKUwGb1Dd8WLile7SuXDAfBgNVHSMEGDAWgBRYheiEwvx6ddEt
0d6knOI0nEcGfjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dJWG9oTUw4ZW5YUkxkSGVwSnppTkp4SEJuNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODYvNmMwYmY3LTVmMTMtNDRhMi05OTg5LThjOTU4MWQ5NmQ4Zi8x
L2NnQ2RCQ0FheWxNQm05UTNmRmk0cFh1MHJsdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODYv
NmMwYmY3LTVmMTMtNDRhMi05OTg5LThjOTU4MWQ5NmQ4Zi8xL1dJWG9oTUw4ZW5Y
UkxkSGVwSnppTkp4SEJuNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAI1lvDANBgkqhkiG9w0BAQsFAAOC
AQEAvgaLV2ASAIOJifLEtzIgWhKcADHbo/RaJ5lOa3ArNS92KimCz0quz5p8d3BA
CCzrG6utVMzb3ds0nBD/E7nMwf4GCFZCB9eCVaP2lPuEQ6I72x9tjlN0bmcQNKcx
/8ei0kAKyrgxuR3IpPpIhBTms9wt9xWpaoawkXEmknBLZfzWfumqgWkO5tZBVwQo
aOkaBOq8di7N59FbAbSnnlkXD9OiAMH3Hyi1ZfFlJMUOdAlOCqQvH0Y3NpRvqYJ9
UwJKnK1hIgRJ0I9Fdr2wahOO9VDSBy/RN8B+X7HzMjaILg5dYpPsVOMbhciDHCXx
g/n2Y2jTf5URYUXbEpwmPqCYTg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org