Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a997b6-0bb7-4766-8acc-275ac1443318/1/D2VAAyr2Eqeeji81u7rQy41JHvY.roa
File: D2VAAyr2Eqeeji81u7rQy41JHvY.roa (raw, json)
Hash identifier: ig46Tu5rCwoIzC854j8RUz2rjXV2Fb3jaY1Ka31Ji+A=
Subject key identifier: 0F:65:40:03:2A:F6:12:A7:9E:8E:2F:35:BB:BA:D0:CB:8D:49:1E:F6
Certificate issuer: /CN=82b64d7f159e902ea6a5add7a100dc05fa14a9ed
Certificate serial: 24E3A9
Authority key identifier: 82:B6:4D:7F:15:9E:90:2E:A6:A5:AD:D7:A1:00:DC:05:FA:14:A9:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/grZNfxWekC6mpa3XoQDcBfoUqe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a997b6-0bb7-4766-8acc-275ac1443318/1/D2VAAyr2Eqeeji81u7rQy41JHvY.roa
Signing time: Sat 01 Jan 2022 01:51:18 +0000
ROA not before: Sat 01 Jan 2022 01:51:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197721
IP address blocks: 192.162.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2417577 (0x24e3a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82b64d7f159e902ea6a5add7a100dc05fa14a9ed
Validity
Not Before: Jan 1 01:51:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f6540032af612a79e8e2f35bbbad0cb8d491ef6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9a:46:32:0e:0e:7b:91:f4:0d:19:dc:63:bd:
fd:59:da:11:3d:3e:ff:e3:85:1e:b9:f1:8d:db:4d:
33:19:9e:6e:34:36:4e:79:21:81:f4:e5:da:e9:b5:
cd:04:98:4c:5f:12:ff:ed:47:4d:d7:0c:1c:69:ea:
12:be:e7:ac:b3:30:32:47:6d:c8:63:b1:4d:4b:d5:
b7:84:83:0d:e4:64:e1:c9:c0:73:d6:66:44:3a:24:
86:6b:65:5f:3d:48:f1:30:3f:ac:99:93:ee:c0:a5:
4c:2e:50:a3:76:8e:7a:fb:c8:09:af:76:9e:79:9b:
05:f5:df:68:24:27:95:40:0a:af:a8:92:e1:58:71:
22:9a:84:ff:59:d1:00:b3:c2:33:4e:ec:ff:b5:1f:
4b:df:5a:dc:5d:31:22:6e:19:f3:f0:76:3f:9e:8d:
8d:58:e4:f3:59:2f:62:0d:45:7a:80:52:a0:53:57:
52:00:2a:45:13:7d:cb:35:bf:88:76:24:f9:46:1c:
75:f0:4f:e7:bb:84:2f:9a:f0:87:e0:6a:d1:a0:f6:
56:5f:8e:76:e7:0d:2e:de:b0:ed:9a:02:a1:7a:31:
8a:2e:de:3c:94:d4:0e:ab:e4:d7:d2:0a:99:65:d5:
1d:f4:1a:54:f7:a5:ed:2a:69:ec:77:9f:00:d8:ce:
5f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:65:40:03:2A:F6:12:A7:9E:8E:2F:35:BB:BA:D0:CB:8D:49:1E:F6
X509v3 Authority Key Identifier:
keyid:82:B6:4D:7F:15:9E:90:2E:A6:A5:AD:D7:A1:00:DC:05:FA:14:A9:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/grZNfxWekC6mpa3XoQDcBfoUqe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a997b6-0bb7-4766-8acc-275ac1443318/1/D2VAAyr2Eqeeji81u7rQy41JHvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a997b6-0bb7-4766-8acc-275ac1443318/1/grZNfxWekC6mpa3XoQDcBfoUqe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.162.164.0/22
Signature Algorithm: sha256WithRSAEncryption
56:ad:b9:c3:c4:60:c8:e9:68:aa:9d:df:a5:4e:24:86:a5:d2:
1d:91:7b:e4:5c:47:9b:f1:74:5d:c4:73:3c:6c:1b:de:b4:04:
d3:76:ee:44:81:32:25:73:1c:7b:97:dc:08:c8:04:ce:20:16:
32:6e:b1:05:80:e0:4e:37:8b:51:af:33:a1:72:2d:b1:8a:01:
b7:58:5e:49:6f:78:ac:c6:56:48:c8:04:41:bf:48:de:a8:a3:
49:da:f9:18:e3:ee:07:f7:1c:65:53:f8:e0:ce:42:a1:a2:b6:
99:de:a7:ec:80:e2:53:4e:51:a4:3e:f6:9b:0c:bd:8f:e9:2e:
ad:b2:b9:cc:db:21:e4:9e:60:bf:4f:8e:5f:22:bb:ca:cf:9f:
5d:d1:6c:42:47:7c:9b:c7:b9:e4:ed:e4:2c:ea:a8:03:c6:12:
40:c1:df:92:a0:a9:a3:13:ac:b0:c8:56:5f:18:23:a9:75:99:
4d:d7:55:52:21:63:90:8d:cf:f1:ca:68:d2:5f:a4:29:32:d2:
d6:d3:a5:6d:3d:77:6b:b7:ce:c9:3e:d7:22:58:3b:12:3d:36:
65:3a:1b:96:59:d6:c2:1e:0f:c8:7f:d7:9b:53:4b:8c:23:f8:
f5:2c:0b:63:a6:90:f7:85:66:54:73:74:c9:59:42:92:b3:43:
8c:79:00:68
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDJOOpMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDgy
YjY0ZDdmMTU5ZTkwMmVhNmE1YWRkN2ExMDBkYzA1ZmExNGE5ZWQwHhcNMjIwMTAx
MDE1MTE4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwZjY1NDAwMzJhZjYx
MmE3OWU4ZTJmMzViYmJhZDBjYjhkNDkxZWY2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEArppGMg4Oe5H0DRncY739WdoRPT7/44UeufGN200zGZ5uNDZO
eSGB9OXa6bXNBJhMXxL/7UdN1wwcaeoSvuesszAyR23IY7FNS9W3hIMN5GThycBz
1mZEOiSGa2VfPUjxMD+smZPuwKVMLlCjdo56+8gJr3aeeZsF9d9oJCeVQAqvqJLh
WHEimoT/WdEAs8IzTuz/tR9L31rcXTEibhnz8HY/no2NWOTzWS9iDUV6gFKgU1dS
ACpFE33LNb+IdiT5Rhx18E/nu4QvmvCH4GrRoPZWX4525w0u3rDtmgKhejGKLt48
lNQOq+TX0gqZZdUd9BpU96XtKmnsd58A2M5f5QIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFA9lQAMq9hKnno4vNbu60MuNSR72MB8GA1UdIwQYMBaAFIK2TX8VnpAupqWt
16EA3AX6FKntMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Z3JaTmZ4V2VrQzZtcGEzWG9RRGNCZm9VcWUwLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC85YS9hOTk3YjYtMGJiNy00NzY2LThhY2MtMjc1YWMxNDQzMzE4LzEv
RDJWQUF5cjJFcWVlamk4MXU3clF5NDFKSHZZLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9h
OTk3YjYtMGJiNy00NzY2LThhY2MtMjc1YWMxNDQzMzE4LzEvZ3JaTmZ4V2VrQzZt
cGEzWG9RRGNCZm9VcWUwLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwKKkMA0GCSqGSIb3DQEBCwUAA4IB
AQBWrbnDxGDI6Wiqnd+lTiSGpdIdkXvkXEeb8XRdxHM8bBvetATTdu5EgTIlcxx7
l9wIyATOIBYybrEFgOBON4tRrzOhci2xigG3WF5Jb3isxlZIyARBv0jeqKNJ2vkY
4+4H9xxlU/jgzkKhoraZ3qfsgOJTTlGkPvabDL2P6S6tsrnM2yHknmC/T45fIrvK
z59d0WxCR3ybx7nk7eQs6qgDxhJAwd+SoKmjE6ywyFZfGCOpdZlN11VSIWOQjc/x
ymjSX6QpMtLW06VtPXdrt87JPtciWDsSPTZlOhuWWdbCHg/If9ebU0uMI/j1LAtj
ppD3hWZUc3TJWUKSs0OMeQBo
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:35 2024 by rpki-client on console-fra.rpki-client.org