Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/9a331f-ddab-4d25-a6d7-a35c025fd122/1/g8u3f2ed6lfa00jYkO6eSdsGHtA.roa
File: g8u3f2ed6lfa00jYkO6eSdsGHtA.roa (raw, json)
Hash identifier: MuMjVE+pLEmu2jJiBmF5t9WkUQqc4i7KFGhxXc0I3HQ=
Subject key identifier: 83:CB:B7:7F:67:9D:EA:57:DA:D3:48:D8:90:EE:9E:49:DB:06:1E:D0
Certificate issuer: /CN=16779914bbc57b5eb908027a9d68b31017db8a0c
Certificate serial: 01112E3C
Authority key identifier: 16:77:99:14:BB:C5:7B:5E:B9:08:02:7A:9D:68:B3:10:17:DB:8A:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FneZFLvFe165CAJ6nWizEBfbigw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/9a331f-ddab-4d25-a6d7-a35c025fd122/1/g8u3f2ed6lfa00jYkO6eSdsGHtA.roa
Signing time: Mon 07 Mar 2022 17:38:50 +0000
ROA not before: Mon 07 Mar 2022 17:38:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59253
IP address blocks: 109.205.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17903164 (0x1112e3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16779914bbc57b5eb908027a9d68b31017db8a0c
Validity
Not Before: Mar 7 17:38:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83cbb77f679dea57dad348d890ee9e49db061ed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:5b:b5:62:f0:17:39:41:f8:b3:4d:f1:5a:2c:
60:01:9e:ff:dd:49:c1:3b:18:c6:f8:fd:43:9f:88:
d1:db:70:c9:43:a7:42:87:1f:36:4e:0c:e5:86:d9:
c5:6c:eb:d6:ea:4e:2c:f6:42:20:de:c3:fc:6a:8d:
51:96:7f:32:89:11:b0:03:7f:cd:f2:fb:07:d2:7e:
9c:06:f0:22:4e:c5:13:d4:76:dd:98:f0:50:67:d1:
53:cc:60:9d:d5:6e:9a:48:c0:ee:30:d6:fa:8a:6f:
e7:f6:77:e0:13:47:b3:bc:31:c8:e1:e4:46:2a:18:
11:4e:48:c5:2c:9b:40:bf:c7:eb:1a:33:a6:be:95:
d8:68:06:36:92:64:5b:73:d0:51:5b:eb:51:14:50:
79:2f:2a:0b:60:13:b2:0e:da:3b:92:2d:3b:68:87:
e1:b6:b1:c7:08:ce:88:c1:49:bf:c9:ec:04:f0:1f:
74:c9:19:f6:83:2a:5b:25:7c:a1:ff:ee:de:fc:df:
fa:53:04:7a:fe:3b:30:35:58:6d:fa:4e:48:7a:06:
ea:74:09:3a:81:53:6a:5c:fb:98:11:f1:ff:bf:d4:
8a:c6:f6:06:0f:f3:9b:a1:5b:e6:55:71:7e:b1:0b:
75:76:97:4f:6a:2d:32:c8:3f:3d:6c:24:95:6a:a4:
30:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:CB:B7:7F:67:9D:EA:57:DA:D3:48:D8:90:EE:9E:49:DB:06:1E:D0
X509v3 Authority Key Identifier:
keyid:16:77:99:14:BB:C5:7B:5E:B9:08:02:7A:9D:68:B3:10:17:DB:8A:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FneZFLvFe165CAJ6nWizEBfbigw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9a331f-ddab-4d25-a6d7-a35c025fd122/1/g8u3f2ed6lfa00jYkO6eSdsGHtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9a331f-ddab-4d25-a6d7-a35c025fd122/1/FneZFLvFe165CAJ6nWizEBfbigw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.190.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:67:e1:41:04:f9:65:ff:e1:b3:86:8e:ad:5c:c2:0f:a3:23:
f9:df:32:18:89:2d:18:36:cd:44:36:8a:76:a6:c3:a2:4a:49:
a5:3d:63:d3:f4:c4:1d:75:17:90:4f:4d:ad:9f:5a:4d:98:b5:
5c:04:73:e2:37:c7:13:3d:66:f7:bd:97:08:f1:f7:cb:a2:e3:
cc:55:d9:d2:67:dd:7b:ea:90:a2:cb:0e:2d:5d:54:b5:f0:91:
83:aa:c1:bf:c3:92:ba:49:7a:1e:41:a7:3f:63:7b:16:27:b7:
78:8a:81:c2:c8:af:70:09:c5:f7:a3:1f:f9:76:75:bb:69:3f:
8a:62:57:e5:3b:c6:57:09:19:2b:47:04:fb:09:94:fa:17:fc:
6b:ce:21:96:e9:9e:9d:31:81:ad:03:d6:6c:32:e5:e4:53:77:
10:97:6b:f7:a4:2d:b9:e4:48:38:aa:07:d5:b4:32:fb:d1:f1:
cb:4d:69:e2:00:3b:78:4a:0d:9f:66:fb:49:18:d8:d5:38:42:
20:16:2d:2a:8b:5b:e0:93:c5:e4:18:53:91:db:55:86:40:10:
2f:a1:39:f9:3b:8a:6a:6a:80:a7:3c:36:8f:9f:23:90:2c:be:
53:3a:a0:64:91:79:60:b3:b4:47:a2:af:bf:66:1a:33:82:59:
72:96:9e:93
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAREuPDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
Njc3OTkxNGJiYzU3YjVlYjkwODAyN2E5ZDY4YjMxMDE3ZGI4YTBjMB4XDTIyMDMw
NzE3Mzg1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODNjYmI3N2Y2Nzlk
ZWE1N2RhZDM0OGQ4OTBlZTllNDlkYjA2MWVkMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO5btWLwFzlB+LNN8VosYAGe/91JwTsYxvj9Q5+I0dtwyUOn
QocfNk4M5YbZxWzr1upOLPZCIN7D/GqNUZZ/MokRsAN/zfL7B9J+nAbwIk7FE9R2
3ZjwUGfRU8xgndVumkjA7jDW+opv5/Z34BNHs7wxyOHkRioYEU5IxSybQL/H6xoz
pr6V2GgGNpJkW3PQUVvrURRQeS8qC2ATsg7aO5ItO2iH4baxxwjOiMFJv8nsBPAf
dMkZ9oMqWyV8of/u3vzf+lMEev47MDVYbfpOSHoG6nQJOoFTalz7mBHx/7/Uisb2
Bg/zm6Fb5lVxfrELdXaXT2otMsg/PWwklWqkMGcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSDy7d/Z53qV9rTSNiQ7p5J2wYe0DAfBgNVHSMEGDAWgBQWd5kUu8V7XrkI
AnqdaLMQF9uKDDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ZuZVpGTHZGZTE2NUNBSjZuV2l6RUJmYmlndy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWYvOWEzMzFmLWRkYWItNGQyNS1hNmQ3LWEzNWMwMjVmZDEyMi8x
L2c4dTNmMmVkNmxmYTAwallrTzZlU2RzR0h0QS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWYv
OWEzMzFmLWRkYWItNGQyNS1hNmQ3LWEzNWMwMjVmZDEyMi8xL0ZuZVpGTHZGZTE2
NUNBSjZuV2l6RUJmYmlndy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG3NvjANBgkqhkiG9w0BAQsFAAOC
AQEAGmfhQQT5Zf/hs4aOrVzCD6Mj+d8yGIktGDbNRDaKdqbDokpJpT1j0/TEHXUX
kE9NrZ9aTZi1XARz4jfHEz1m972XCPH3y6LjzFXZ0mfde+qQossOLV1UtfCRg6rB
v8OSukl6HkGnP2N7Fie3eIqBwsivcAnF96Mf+XZ1u2k/imJX5TvGVwkZK0cE+wmU
+hf8a84hlumenTGBrQPWbDLl5FN3EJdr96QtueRIOKoH1bQy+9Hxy01p4gA7eEoN
n2b7SRjY1ThCIBYtKotb4JPF5BhTkdtVhkAQL6E5+TuKamqApzw2j58jkCy+Uzqg
ZJF5YLO0R6Kvv2YaM4JZcpaekw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:55 2023 by rpki-client on console-ams.rpki-client.org