Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/Fy_1vM7Fp8sqyNQXbxXp6PWtYLw.roa
File: Fy_1vM7Fp8sqyNQXbxXp6PWtYLw.roa (raw, json)
Hash identifier: HKb8xk0WL6oB3byrDHF8hjtqNqiddSl7RPiOorIRffU=
Subject key identifier: 17:2F:F5:BC:CE:C5:A7:CB:2A:C8:D4:17:6F:15:E9:E8:F5:AD:60:BC
Certificate issuer: /CN=aaab6111e004c2a044f168b8d28273cf6744f3a8
Certificate serial: 3684A112
Authority key identifier: AA:AB:61:11:E0:04:C2:A0:44:F1:68:B8:D2:82:73:CF:67:44:F3:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qqthEeAEwqBE8Wi40oJzz2dE86g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/Fy_1vM7Fp8sqyNQXbxXp6PWtYLw.roa
Signing time: Sat 01 Jan 2022 12:56:48 +0000
ROA not before: Sat 01 Jan 2022 12:56:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43160
IP address blocks: 176.32.52.0/23 maxlen: 23
176.32.48.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 914661650 (0x3684a112)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaab6111e004c2a044f168b8d28273cf6744f3a8
Validity
Not Before: Jan 1 12:56:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=172ff5bccec5a7cb2ac8d4176f15e9e8f5ad60bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:57:a1:e2:9c:fb:bb:55:f6:e3:ce:47:f4:32:
d4:33:b0:03:1c:95:d3:1f:b5:31:b8:e0:19:f3:8f:
c7:dc:e1:c5:50:00:e5:b0:8e:cf:91:b4:ed:e9:00:
27:a8:8a:2f:c5:ba:5b:5f:64:85:a6:6e:cb:0f:83:
a9:68:ba:15:9f:99:24:4e:fe:b5:b2:68:6a:e9:3c:
a0:db:e3:25:2d:11:83:08:14:0f:e3:1c:20:3c:a5:
21:bd:65:35:f5:2c:ef:16:b5:80:b5:08:50:0b:8e:
0a:dc:fd:00:96:df:01:b8:3f:e2:fe:5d:fa:71:40:
df:c9:d5:71:dd:08:bd:ac:27:08:e6:bb:f3:6e:35:
98:38:01:64:b5:6f:c5:b6:40:af:50:2d:9c:41:6c:
3d:f6:2b:4b:30:32:31:5d:c2:65:a4:4d:d6:6e:91:
c1:90:68:dd:a6:9d:81:40:d6:6f:21:a9:e5:c8:72:
87:bb:55:48:ce:b4:e9:77:bd:83:13:e0:00:61:19:
de:f9:70:7b:c3:a2:d2:2f:c6:5b:5a:cb:7a:1e:b5:
6b:d3:81:35:2d:9e:cf:2b:a9:38:0c:fc:58:4b:24:
ec:9e:89:d5:6b:35:b3:c4:c8:b3:b2:d2:47:55:3f:
09:9f:78:82:18:fe:c2:99:e1:2c:b9:9c:cf:60:df:
a7:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:2F:F5:BC:CE:C5:A7:CB:2A:C8:D4:17:6F:15:E9:E8:F5:AD:60:BC
X509v3 Authority Key Identifier:
keyid:AA:AB:61:11:E0:04:C2:A0:44:F1:68:B8:D2:82:73:CF:67:44:F3:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqthEeAEwqBE8Wi40oJzz2dE86g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/Fy_1vM7Fp8sqyNQXbxXp6PWtYLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f4ad0f-0b30-41ff-a8d9-82ededa7fe7a/1/qqthEeAEwqBE8Wi40oJzz2dE86g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.32.48.0/23
176.32.52.0/23
Signature Algorithm: sha256WithRSAEncryption
80:db:3e:0f:db:5a:b2:96:31:df:0e:c6:73:38:3c:e1:a3:43:
e6:2e:30:b1:4c:0e:a0:8b:e9:ec:c0:3e:cc:10:2b:4a:9e:d4:
6d:fd:04:29:cf:8e:3d:35:d7:65:03:43:2f:6d:12:bf:ac:7e:
04:0d:15:7a:72:5b:34:a4:00:76:ed:f1:ac:02:a3:00:60:e7:
f7:41:5f:10:d5:9e:c5:90:e9:cf:e5:c7:b8:22:b8:d6:96:18:
2a:dc:6c:f1:16:cd:bb:70:64:78:b9:32:ec:43:d3:f1:19:d0:
25:61:9a:78:fc:d0:12:ac:b7:d1:34:6c:de:20:c4:30:c1:b3:
71:ad:07:86:68:6f:3b:04:18:24:c4:41:c2:78:a5:ba:2d:68:
4e:0a:ef:b4:8f:cf:fa:bc:52:e0:0b:9b:fc:d2:51:23:05:6b:
26:c7:08:da:aa:7f:b2:fa:e3:71:ea:f8:61:14:d3:28:39:41:
05:d7:6e:17:0b:56:88:02:46:d0:73:0b:cf:2f:3a:ed:1c:c2:
57:65:e2:dc:d8:73:8a:f5:14:0f:77:c9:d5:5b:3f:af:c3:22:
9a:01:e0:0f:57:e1:df:8d:80:dc:be:13:3f:75:46:b3:ae:38:
24:c6:bb:cd:32:f5:2a:4c:e1:a6:1c:4d:dc:91:fb:5c:9c:33:
69:73:e5:79
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIENoShEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YWFiNjExMWUwMDRjMmEwNDRmMTY4YjhkMjgyNzNjZjY3NDRmM2E4MB4XDTIyMDEw
MTEyNTY0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTcyZmY1YmNjZWM1
YTdjYjJhYzhkNDE3NmYxNWU5ZThmNWFkNjBiYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJZXoeKc+7tV9uPOR/Qy1DOwAxyV0x+1MbjgGfOPx9zhxVAA
5bCOz5G07ekAJ6iKL8W6W19khaZuyw+DqWi6FZ+ZJE7+tbJoauk8oNvjJS0RgwgU
D+McIDylIb1lNfUs7xa1gLUIUAuOCtz9AJbfAbg/4v5d+nFA38nVcd0IvawnCOa7
8241mDgBZLVvxbZAr1AtnEFsPfYrSzAyMV3CZaRN1m6RwZBo3aadgUDWbyGp5chy
h7tVSM606Xe9gxPgAGEZ3vlwe8Oi0i/GW1rLeh61a9OBNS2ezyupOAz8WEsk7J6J
1Ws1s8TIs7LSR1U/CZ94ghj+wpnhLLmcz2Dfp3sCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQXL/W8zsWnyyrI1BdvFeno9a1gvDAfBgNVHSMEGDAWgBSqq2ER4ATCoETx
aLjSgnPPZ0TzqDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3FxdGhFZUFFd3FCRThXaTQwb0p6ejJkRTg2Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTQvZjRhZDBmLTBiMzAtNDFmZi1hOGQ5LTgyZWRlZGE3ZmU3YS8x
L0Z5XzF2TTdGcDhzcXlOUVhieFhwNlBXdFlMdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTQv
ZjRhZDBmLTBiMzAtNDFmZi1hOGQ5LTgyZWRlZGE3ZmU3YS8xL3FxdGhFZUFFd3FC
RThXaTQwb0p6ejJkRTg2Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAbAgMAMEAbAgNDANBgkqhkiG9w0B
AQsFAAOCAQEAgNs+D9taspYx3w7Gczg84aND5i4wsUwOoIvp7MA+zBArSp7Ubf0E
Kc+OPTXXZQNDL20Sv6x+BA0VenJbNKQAdu3xrAKjAGDn90FfENWexZDpz+XHuCK4
1pYYKtxs8RbNu3BkeLky7EPT8RnQJWGaePzQEqy30TRs3iDEMMGzca0HhmhvOwQY
JMRBwnilui1oTgrvtI/P+rxS4Aub/NJRIwVrJscI2qp/svrjcer4YRTTKDlBBddu
FwtWiAJG0HMLzy867RzCV2Xi3NhzivUUD3fJ1Vs/r8MimgHgD1fh342A3L4TP3VG
s644JMa7zTL1KkzhphxN3JH7XJwzaXPleQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:01 2025 by rpki-client