Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/14df48-e164-40a0-b077-30c1df9268cc/1/Cycgaw9Zvh5m_4oXj5TSanc7vtA.roa
File: Cycgaw9Zvh5m_4oXj5TSanc7vtA.roa (raw, json)
Hash identifier: GzWD4DmAUBlUkTt3Fd+pwwtcBP/47HYppvp7Ex+XxPo=
Subject key identifier: 0B:27:20:6B:0F:59:BE:1E:66:FF:8A:17:8F:94:D2:6A:77:3B:BE:D0
Certificate issuer: /CN=011e4fffc4b8ebb0264b3e13fb3cc4766f3a8a14
Certificate serial: 0183A28FF090731403B1F5646928C7236C34
Authority key identifier: 01:1E:4F:FF:C4:B8:EB:B0:26:4B:3E:13:FB:3C:C4:76:6F:3A:8A:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AR5P_8S467AmSz4T-zzEdm86ihQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/14df48-e164-40a0-b077-30c1df9268cc/1/Cycgaw9Zvh5m_4oXj5TSanc7vtA.roa
Signing time: Tue 04 Oct 2022 10:34:45 +0000
ROA not before: Tue 04 Oct 2022 10:34:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 146.19.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a2:8f:f0:90:73:14:03:b1:f5:64:69:28:c7:23:6c:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=011e4fffc4b8ebb0264b3e13fb3cc4766f3a8a14
Validity
Not Before: Oct 4 10:34:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b27206b0f59be1e66ff8a178f94d26a773bbed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ce:fe:a0:04:14:51:0c:33:3a:f2:09:37:35:
a7:1a:9e:45:23:3c:3f:91:e0:67:2d:e4:78:84:c1:
5b:e6:0b:51:fb:f5:8b:10:0f:1f:15:01:93:a6:58:
c0:c7:9a:9e:23:0a:64:d5:f7:f3:4c:b9:78:7b:60:
19:d7:54:23:90:2a:01:81:70:c1:aa:76:28:11:58:
84:4f:1c:91:f5:db:7f:3e:3c:41:fb:c2:a6:fc:c8:
3e:ba:34:e6:f4:75:c8:cb:a0:e7:da:3a:d3:ce:4e:
c3:0c:63:38:af:76:3f:0b:be:b3:44:3e:f5:99:ca:
5a:37:fe:1c:00:3a:b7:ed:41:0d:83:c2:38:61:23:
d7:94:af:2b:6b:fe:f3:34:43:4b:22:2a:ed:da:2b:
0e:9a:2f:3a:85:51:36:db:e4:c2:ab:95:63:27:60:
5c:3e:1c:d8:4c:ba:f9:23:ce:66:17:45:fd:2e:e1:
47:a7:d6:fa:14:c7:aa:b7:1d:01:c7:6f:3d:05:6e:
fd:99:d2:26:51:a1:da:d2:ba:d6:68:1a:bf:d6:00:
51:81:b9:ee:9d:b8:95:6d:e2:5f:da:ee:c7:0a:e0:
bf:af:23:e9:03:a7:c6:83:cd:59:57:68:90:da:9f:
85:b2:43:d0:f9:01:79:54:55:d8:62:18:78:cc:ee:
26:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:27:20:6B:0F:59:BE:1E:66:FF:8A:17:8F:94:D2:6A:77:3B:BE:D0
X509v3 Authority Key Identifier:
keyid:01:1E:4F:FF:C4:B8:EB:B0:26:4B:3E:13:FB:3C:C4:76:6F:3A:8A:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AR5P_8S467AmSz4T-zzEdm86ihQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/14df48-e164-40a0-b077-30c1df9268cc/1/Cycgaw9Zvh5m_4oXj5TSanc7vtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/14df48-e164-40a0-b077-30c1df9268cc/1/AR5P_8S467AmSz4T-zzEdm86ihQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.125.0/24
Signature Algorithm: sha256WithRSAEncryption
04:61:cb:2e:4d:99:2f:c7:6d:9f:d3:19:18:9e:41:24:23:b0:
0f:cc:8c:79:6b:da:dd:62:f4:ff:7b:88:1a:60:3b:49:d8:35:
82:27:69:56:33:27:4e:97:1a:ab:da:25:68:ac:44:b3:1a:1c:
2e:dd:97:cd:07:26:12:5c:8e:20:39:4b:3d:40:6a:6a:04:33:
ac:b1:6b:b3:a9:40:6d:40:04:1f:5a:92:00:fd:06:02:80:4c:
af:a6:43:0e:4d:0f:21:23:e4:8c:0b:93:cf:3f:23:eb:20:f4:
4e:1f:cb:61:e3:4f:5f:02:7e:23:3c:ba:38:e1:e2:fc:98:15:
23:78:5b:a6:d5:7e:05:83:b2:cb:f7:4f:f6:0d:44:89:f8:57:
38:24:85:85:83:73:8b:04:92:56:15:e6:ce:93:30:ed:d5:0e:
87:eb:ca:b3:9c:85:0c:04:6a:9f:bf:9f:17:1b:03:33:5b:e5:
fd:a1:4a:1b:fd:70:ad:a1:96:e7:8a:1f:3e:87:18:dc:06:23:
45:95:eb:92:15:82:9e:20:c7:c1:fc:c4:2d:0f:be:0c:1a:4a:
3a:b9:e2:2a:2a:32:2d:16:9c:ea:1e:58:e4:35:61:91:57:59:
b9:2c:24:fc:60:47:48:3f:c4:8f:37:b2:54:6e:e2:c5:23:df:
92:fb:2b:1b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOij/CQcxQDsfVkaSjHI2w0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxMWU0ZmZmYzRiOGViYjAyNjRiM2UxM2ZiM2NjNDc2NmYz
YThhMTQwHhcNMjIxMDA0MTAzNDQ1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjI3MjA2YjBmNTliZTFlNjZmZjhhMTc4Zjk0ZDI2YTc3M2JiZWQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs87+oAQUUQwzOvIJNzWnGp5FIzw/
keBnLeR4hMFb5gtR+/WLEA8fFQGTpljAx5qeIwpk1ffzTLl4e2AZ11QjkCoBgXDB
qnYoEViETxyR9dt/PjxB+8Km/Mg+ujTm9HXIy6Dn2jrTzk7DDGM4r3Y/C76zRD71
mcpaN/4cADq37UENg8I4YSPXlK8ra/7zNENLIirt2isOmi86hVE22+TCq5VjJ2Bc
PhzYTLr5I85mF0X9LuFHp9b6FMeqtx0Bx289BW79mdImUaHa0rrWaBq/1gBRgbnu
nbiVbeJf2u7HCuC/ryPpA6fGg81ZV2iQ2p+FskPQ+QF5VFXYYhh4zO4m0wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAsnIGsPWb4eZv+KF4+U0mp3O77QMB8GA1UdIwQY
MBaAFAEeT//EuOuwJks+E/s8xHZvOooUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVI1UF84UzQ2N0FtU3o0VC16ekVkbTg2aWhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8xNGRmNDgtZTE2NC00MGEwLWIwNzct
MzBjMWRmOTI2OGNjLzEvQ3ljZ2F3OVp2aDVtXzRvWGo1VFNhbmM3dnRBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC8xNGRmNDgtZTE2NC00MGEwLWIwNzctMzBjMWRmOTI2OGNj
LzEvQVI1UF84UzQ2N0FtU3o0VC16ekVkbTg2aWhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhN9MA0G
CSqGSIb3DQEBCwUAA4IBAQAEYcsuTZkvx22f0xkYnkEkI7APzIx5a9rdYvT/e4ga
YDtJ2DWCJ2lWMydOlxqr2iVorESzGhwu3ZfNByYSXI4gOUs9QGpqBDOssWuzqUBt
QAQfWpIA/QYCgEyvpkMOTQ8hI+SMC5PPPyPrIPROH8th409fAn4jPLo44eL8mBUj
eFum1X4Fg7LL90/2DUSJ+Fc4JIWFg3OLBJJWFebOkzDt1Q6H68qznIUMBGqfv58X
GwMzW+X9oUob/XCtoZbnih8+hxjcBiNFleuSFYKeIMfB/MQtD74MGko6ueIqKjIt
FpzqHljkNWGRV1m5LCT8YEdIP8SPN7JUbuLFI9+S+ysb
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:42 2023 by rpki-client on console-fra.rpki-client.org