Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ac1fa9-4ec8-4016-9add-4c3be9a28d93/1/cIxAXE8cBSirbWUVRNim3P9jM8Q.roa
File: cIxAXE8cBSirbWUVRNim3P9jM8Q.roa (raw, json)
Hash identifier: iq8Eqe2UMvHxlY3R54IilIagknmx/exNFiHpXq4NWIs=
Subject key identifier: 70:8C:40:5C:4F:1C:05:28:AB:6D:65:15:44:D8:A6:DC:FF:63:33:C4
Certificate issuer: /CN=7be0af45ab4e57456f5a0a40dfa84f8d80610664
Certificate serial: 01822578AB9B1CDD180678B18D7F60034005
Authority key identifier: 7B:E0:AF:45:AB:4E:57:45:6F:5A:0A:40:DF:A8:4F:8D:80:61:06:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e-CvRatOV0VvWgpA36hPjYBhBmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ac1fa9-4ec8-4016-9add-4c3be9a28d93/1/cIxAXE8cBSirbWUVRNim3P9jM8Q.roa
Signing time: Fri 22 Jul 2022 10:34:01 +0000
ROA not before: Fri 22 Jul 2022 10:34:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206922
IP address blocks: 185.67.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:25:78:ab:9b:1c:dd:18:06:78:b1:8d:7f:60:03:40:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7be0af45ab4e57456f5a0a40dfa84f8d80610664
Validity
Not Before: Jul 22 10:34:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=708c405c4f1c0528ab6d651544d8a6dcff6333c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1b:82:85:08:27:50:15:14:0e:c3:a1:e1:ba:
39:78:d3:58:33:02:7b:dc:61:83:ca:ec:95:27:f0:
77:f0:50:a9:85:fb:5b:b1:bf:d1:97:60:25:fb:17:
9b:2f:85:4e:64:f2:39:69:5b:e7:81:23:1b:fb:30:
af:6d:a8:4a:88:37:28:62:c4:a2:45:2c:69:8a:ed:
76:00:1e:40:04:8f:64:51:7e:33:11:63:ac:d9:0b:
14:37:88:63:7c:33:f7:e7:0a:15:b4:ce:96:d3:05:
63:eb:e7:78:22:07:1f:56:16:de:7d:73:f7:84:94:
72:6e:c4:c6:e4:69:31:43:eb:23:f9:72:fa:41:1e:
d4:dd:93:26:b7:db:22:e2:66:32:97:e3:c5:1c:4d:
93:e4:df:9e:ef:02:fb:91:cd:d5:0f:aa:61:85:d7:
03:9a:25:8f:93:e4:43:01:84:0b:0e:36:cd:8d:69:
3a:f2:c2:1c:15:ca:4f:5e:2b:44:95:2d:8a:a3:fa:
e1:3a:ee:46:33:84:77:91:f9:61:f7:12:c9:82:ce:
30:5f:76:1b:48:24:5a:fa:b2:a5:3a:d7:46:09:cf:
2e:ce:64:e0:ea:ac:24:28:78:41:09:28:e9:5b:8e:
e4:28:8e:85:81:7b:96:39:fe:b6:4d:f2:09:67:bf:
d1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:8C:40:5C:4F:1C:05:28:AB:6D:65:15:44:D8:A6:DC:FF:63:33:C4
X509v3 Authority Key Identifier:
keyid:7B:E0:AF:45:AB:4E:57:45:6F:5A:0A:40:DF:A8:4F:8D:80:61:06:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e-CvRatOV0VvWgpA36hPjYBhBmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ac1fa9-4ec8-4016-9add-4c3be9a28d93/1/cIxAXE8cBSirbWUVRNim3P9jM8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ac1fa9-4ec8-4016-9add-4c3be9a28d93/1/e-CvRatOV0VvWgpA36hPjYBhBmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.163.0/24
Signature Algorithm: sha256WithRSAEncryption
14:24:59:86:7a:81:e9:17:f0:e5:0b:8b:00:22:29:80:ae:ba:
62:53:f9:5f:46:0d:85:d9:dc:e1:4a:23:bc:41:a1:9c:d8:a6:
ab:d3:c8:d1:c6:31:1f:35:b2:f5:39:87:3c:e6:ab:d5:2a:7a:
aa:d2:b5:a0:4f:29:05:de:99:78:61:8f:54:a3:a8:b9:56:ec:
57:f3:9c:f8:11:8e:e8:17:a1:63:9a:d8:30:9c:5c:6d:d3:19:
bd:9e:7e:9c:9c:fe:1b:77:d8:7b:20:44:72:df:4c:20:a8:47:
89:ef:9e:1c:fe:e1:0e:2c:e8:f2:06:5f:ce:a9:67:2d:0e:a7:
a2:94:74:25:c4:43:dc:37:45:ff:f3:48:c2:f4:79:0f:1f:b1:
31:fb:cd:14:49:90:66:cc:c1:d6:89:3e:33:e6:90:ff:7f:15:
31:0d:6b:49:b5:c0:9d:d4:9d:08:cf:12:07:e3:98:9d:1a:16:
23:89:6b:84:a3:a1:fd:78:3d:44:c3:e6:53:d6:ad:76:6e:70:
08:ab:0d:28:6a:4b:e5:d6:50:07:d1:73:ee:2b:cd:ad:fc:e2:
97:ea:8f:67:3c:5e:12:56:f8:c8:50:3e:ca:95:6c:2b:e6:7d:
93:c7:50:d4:c5:71:b3:6b:4c:71:7f:90:20:d6:30:e4:8b:7c:
d6:ef:f5:02
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIleKubHN0YBnixjX9gA0AFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiZTBhZjQ1YWI0ZTU3NDU2ZjVhMGE0MGRmYTg0ZjhkODA2
MTA2NjQwHhcNMjIwNzIyMTAzNDAxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MDhjNDA1YzRmMWMwNTI4YWI2ZDY1MTU0NGQ4YTZkY2ZmNjMzM2M0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAohuChQgnUBUUDsOh4bo5eNNYMwJ7
3GGDyuyVJ/B38FCphftbsb/Rl2Al+xebL4VOZPI5aVvngSMb+zCvbahKiDcoYsSi
RSxpiu12AB5ABI9kUX4zEWOs2QsUN4hjfDP35woVtM6W0wVj6+d4IgcfVhbefXP3
hJRybsTG5GkxQ+sj+XL6QR7U3ZMmt9si4mYyl+PFHE2T5N+e7wL7kc3VD6phhdcD
miWPk+RDAYQLDjbNjWk68sIcFcpPXitElS2Ko/rhOu5GM4R3kflh9xLJgs4wX3Yb
SCRa+rKlOtdGCc8uzmTg6qwkKHhBCSjpW47kKI6FgXuWOf62TfIJZ7/RrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHCMQFxPHAUoq21lFUTYptz/YzPEMB8GA1UdIwQY
MBaAFHvgr0WrTldFb1oKQN+oT42AYQZkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZS1DdlJhdE9WMFZ2V2dwQTM2aFBqWUJoQm1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9hYzFmYTktNGVjOC00MDE2LTlhZGQt
NGMzYmU5YTI4ZDkzLzEvY0l4QVhFOGNCU2lyYldVVlJOaW0zUDlqTThRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy9hYzFmYTktNGVjOC00MDE2LTlhZGQtNGMzYmU5YTI4ZDkz
LzEvZS1DdlJhdE9WMFZ2V2dwQTM2aFBqWUJoQm1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUOjMA0G
CSqGSIb3DQEBCwUAA4IBAQAUJFmGeoHpF/DlC4sAIimArrpiU/lfRg2F2dzhSiO8
QaGc2Kar08jRxjEfNbL1OYc85qvVKnqq0rWgTykF3pl4YY9Uo6i5VuxX85z4EY7o
F6FjmtgwnFxt0xm9nn6cnP4bd9h7IERy30wgqEeJ754c/uEOLOjyBl/OqWctDqei
lHQlxEPcN0X/80jC9HkPH7Ex+80USZBmzMHWiT4z5pD/fxUxDWtJtcCd1J0IzxIH
45idGhYjiWuEo6H9eD1Ew+ZT1q12bnAIqw0oakvl1lAH0XPuK82t/OKX6o9nPF4S
VvjIUD7KlWwr5n2Tx1DUxXGza0xxf5Ag1jDki3zW7/UC
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:20 2024 by rpki-client on console-ams.rpki-client.org