Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/46c95c-7f21-4cc7-8e8f-b566aeb95f93/1/x8djzGTQM0T3QpQsIRmbVtZErmY.roa
File: x8djzGTQM0T3QpQsIRmbVtZErmY.roa (raw, json)
Hash identifier: 67nAuJvKZebsbvFlzHnp1jt+aR8ZOuYOy/FVskwtjCQ=
Subject key identifier: C7:C7:63:CC:64:D0:33:44:F7:42:94:2C:21:19:9B:56:D6:44:AE:66
Certificate issuer: /CN=0100a169c8e696ca169b599c7a171193fff06d2a
Certificate serial: 075CCE90
Authority key identifier: 01:00:A1:69:C8:E6:96:CA:16:9B:59:9C:7A:17:11:93:FF:F0:6D:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AQChacjmlsoWm1mcehcRk__wbSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/46c95c-7f21-4cc7-8e8f-b566aeb95f93/1/x8djzGTQM0T3QpQsIRmbVtZErmY.roa
Signing time: Sat 01 Jan 2022 06:53:38 +0000
ROA not before: Sat 01 Jan 2022 06:53:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.29.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123522704 (0x75cce90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0100a169c8e696ca169b599c7a171193fff06d2a
Validity
Not Before: Jan 1 06:53:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7c763cc64d03344f742942c21199b56d644ae66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:20:e8:b7:80:64:90:d0:c2:3f:82:e5:db:f8:
8d:3a:a8:07:06:61:82:bc:67:fb:be:c1:18:f1:a9:
14:e6:b2:d1:4a:44:dd:8d:95:de:fb:44:1c:cd:61:
f3:63:df:11:a4:4a:c1:f4:ac:41:3f:15:dd:12:4c:
ef:61:06:5a:53:35:4c:27:e3:db:15:85:bf:14:35:
d1:70:80:b8:2d:f4:2b:2a:2d:32:dc:e5:15:d4:0d:
75:a3:f6:af:4b:12:f8:45:67:95:ac:92:7a:5f:ad:
56:52:11:3c:32:ce:03:c7:a3:33:4b:4b:18:e9:06:
2f:49:6f:6e:ba:ed:10:0c:91:a1:99:08:d3:3f:2a:
55:ad:18:91:ab:1e:d9:e1:78:05:67:8c:5a:ec:0e:
cf:fe:64:91:6b:51:34:f3:a6:62:f8:22:4c:1c:94:
71:4c:ac:4d:82:dc:00:46:9e:85:c6:c5:a2:c4:00:
37:12:9a:d7:af:ce:39:1e:4f:a2:3c:30:b6:9a:bc:
f9:8f:e0:01:6e:82:b4:ba:d0:7c:f9:bb:65:bb:d8:
c3:2f:f0:7c:22:e8:34:d3:68:4b:87:5d:5b:39:45:
b4:88:ce:56:56:0d:b7:e7:d5:e5:bb:83:fa:ae:6c:
4b:21:77:e4:7c:8f:d9:70:1c:a8:44:76:8d:86:bd:
ca:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:C7:63:CC:64:D0:33:44:F7:42:94:2C:21:19:9B:56:D6:44:AE:66
X509v3 Authority Key Identifier:
keyid:01:00:A1:69:C8:E6:96:CA:16:9B:59:9C:7A:17:11:93:FF:F0:6D:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AQChacjmlsoWm1mcehcRk__wbSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/46c95c-7f21-4cc7-8e8f-b566aeb95f93/1/x8djzGTQM0T3QpQsIRmbVtZErmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/46c95c-7f21-4cc7-8e8f-b566aeb95f93/1/AQChacjmlsoWm1mcehcRk__wbSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.29.47.0/24
Signature Algorithm: sha256WithRSAEncryption
15:14:9c:6e:dc:cc:81:fb:d8:b3:34:c8:2d:1d:09:58:2d:d0:
3d:4b:6c:31:f2:ce:02:0b:84:6c:d5:c6:e3:94:94:cb:b1:db:
5e:27:d2:a7:a8:c9:9f:24:42:ed:21:07:90:64:66:53:7a:d3:
3c:6b:50:6e:a6:e5:45:e9:ab:9b:b4:07:19:c6:6c:b6:ad:3a:
70:be:fb:3b:80:00:1a:0b:0e:f8:cc:ec:63:e0:9c:b9:6d:91:
0b:a2:b1:49:3e:85:75:0d:42:d8:45:52:35:af:33:ab:c9:8f:
82:44:97:32:a1:69:51:03:ca:fe:de:6a:9c:24:08:01:3f:a1:
86:f0:5f:1a:16:10:4b:e7:b2:d6:60:79:00:6f:17:5a:e3:86:
85:94:75:be:a5:68:8c:07:8e:3e:a3:12:1e:38:29:d6:0f:90:
22:e0:7c:43:b7:5b:8e:21:db:f6:13:59:45:46:48:5d:7f:80:
0f:af:20:e9:d4:42:2d:6a:95:e6:e6:2d:27:9b:55:a4:1e:07:
94:c7:36:9e:a6:93:26:84:66:96:4c:02:25:4f:4e:b9:12:ce:
64:7d:09:b5:7c:0b:61:d2:1e:f9:15:69:a9:4d:60:94:c0:55:
a9:6b:db:e0:fb:44:02:c9:51:84:8d:b3:1f:db:39:a8:1c:d2:
1e:35:77:b6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB1zOkDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MTAwYTE2OWM4ZTY5NmNhMTY5YjU5OWM3YTE3MTE5M2ZmZjA2ZDJhMB4XDTIyMDEw
MTA2NTMzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzdjNzYzY2M2NGQw
MzM0NGY3NDI5NDJjMjExOTliNTZkNjQ0YWU2NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK4g6LeAZJDQwj+C5dv4jTqoBwZhgrxn+77BGPGpFOay0UpE
3Y2V3vtEHM1h82PfEaRKwfSsQT8V3RJM72EGWlM1TCfj2xWFvxQ10XCAuC30Kyot
MtzlFdQNdaP2r0sS+EVnlaySel+tVlIRPDLOA8ejM0tLGOkGL0lvbrrtEAyRoZkI
0z8qVa0Ykase2eF4BWeMWuwOz/5kkWtRNPOmYvgiTByUcUysTYLcAEaehcbFosQA
NxKa16/OOR5Pojwwtpq8+Y/gAW6CtLrQfPm7ZbvYwy/wfCLoNNNoS4ddWzlFtIjO
VlYNt+fV5buD+q5sSyF35HyP2XAcqER2jYa9yuMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTHx2PMZNAzRPdClCwhGZtW1kSuZjAfBgNVHSMEGDAWgBQBAKFpyOaWyhab
WZx6FxGT//BtKjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FRQ2hhY2ptbHNvV20xbWNlaGNSa19fd2JTby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTYvNDZjOTVjLTdmMjEtNGNjNy04ZThmLWI1NjZhZWI5NWY5My8x
L3g4ZGp6R1RRTTBUM1FwUXNJUm1iVnRaRXJtWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTYv
NDZjOTVjLTdmMjEtNGNjNy04ZThmLWI1NjZhZWI5NWY5My8xL0FRQ2hhY2ptbHNv
V20xbWNlaGNSa19fd2JTby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALkdLzANBgkqhkiG9w0BAQsFAAOC
AQEAFRScbtzMgfvYszTILR0JWC3QPUtsMfLOAguEbNXG45SUy7HbXifSp6jJnyRC
7SEHkGRmU3rTPGtQbqblRemrm7QHGcZstq06cL77O4AAGgsO+MzsY+CcuW2RC6Kx
ST6FdQ1C2EVSNa8zq8mPgkSXMqFpUQPK/t5qnCQIAT+hhvBfGhYQS+ey1mB5AG8X
WuOGhZR1vqVojAeOPqMSHjgp1g+QIuB8Q7dbjiHb9hNZRUZIXX+AD68g6dRCLWqV
5uYtJ5tVpB4HlMc2nqaTJoRmlkwCJU9OuRLOZH0JtXwLYdIe+RVpqU1glMBVqWvb
4PtEAslRhI2zH9s5qBzSHjV3tg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:42 2023 by rpki-client on console-fra.rpki-client.org