Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/S2xXmSrjaBSgyJV3j_Hnj9VrY9s.roa
File: S2xXmSrjaBSgyJV3j_Hnj9VrY9s.roa (raw, json)
Hash identifier: biGIdyAas6TOk/oVk1oZe/ZM18VSSq48VQ5uL+fOh5s=
Subject key identifier: 4B:6C:57:99:2A:E3:68:14:A0:C8:95:77:8F:F1:E7:8F:D5:6B:63:DB
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 17645C59
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/S2xXmSrjaBSgyJV3j_Hnj9VrY9s.roa
Signing time: Sat 26 Feb 2022 08:34:16 +0000
ROA not before: Sat 26 Feb 2022 08:34:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9162
IP address blocks: 82.179.144.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 392453209 (0x17645c59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Feb 26 08:34:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b6c57992ae36814a0c895778ff1e78fd56b63db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:17:2a:7d:89:03:ef:d3:ba:5c:f1:b5:29:5d:
e5:18:aa:90:88:7a:6a:fe:ca:bd:31:5b:3f:27:a0:
7d:6c:22:8c:5b:e3:89:57:61:33:75:1b:64:1a:ab:
b6:1e:09:1c:c3:3d:3e:54:cb:44:99:ca:ee:06:48:
3c:5c:68:d4:49:bc:bf:4d:46:32:16:60:f1:fd:84:
9d:d8:59:f9:be:42:9e:1b:80:e6:d7:69:a1:36:82:
0f:8a:7f:b4:ee:96:64:d6:ea:26:c7:b4:1a:b2:5e:
51:26:49:33:6a:f9:93:a9:87:c6:42:35:e3:b3:68:
2b:ba:f0:ec:2d:17:fd:18:31:14:ad:2f:82:04:73:
02:25:d2:33:df:80:86:dc:aa:be:e4:da:54:6b:81:
fa:0a:b0:94:b0:66:91:c2:1e:a2:3d:6f:59:b0:75:
76:92:2d:71:56:44:07:1b:d7:5e:2d:fb:9f:85:5f:
62:d7:10:04:3b:71:0a:f5:25:d5:3c:a2:a9:4d:ac:
cb:27:ca:1b:72:97:86:fb:ba:a0:84:20:ae:58:d1:
16:2e:c6:2e:85:62:27:02:00:1b:9b:7a:ff:8a:4f:
95:90:62:d5:d0:18:eb:41:38:b2:c6:04:61:56:ee:
7b:fa:68:66:f7:e4:f5:19:78:e7:e5:55:17:fd:03:
fe:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:6C:57:99:2A:E3:68:14:A0:C8:95:77:8F:F1:E7:8F:D5:6B:63:DB
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/S2xXmSrjaBSgyJV3j_Hnj9VrY9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.179.144.0/20
Signature Algorithm: sha256WithRSAEncryption
24:d5:d7:4c:23:17:0b:4e:6b:07:3e:6e:8b:62:23:bc:3a:3e:
3b:05:74:8f:34:0e:d6:73:83:8b:7d:69:bb:ab:e5:d8:3f:a9:
77:3d:02:b4:bb:c0:b0:fd:ca:53:5e:df:c3:43:0e:dc:b8:2d:
10:24:35:6a:7a:89:3a:e1:81:f1:52:6d:5b:2b:cf:98:a5:2b:
14:cd:83:d6:f4:f9:4a:46:79:9a:f0:2a:81:ec:51:47:cb:41:
87:ae:b6:c1:d4:27:bd:e5:1d:3b:c5:1b:c9:51:7d:2a:da:c9:
ce:9a:4a:e2:ca:d6:11:9a:b2:ab:9e:25:5e:d3:fc:cd:3b:d3:
18:e2:01:52:73:71:f3:cb:33:e2:db:be:c0:d2:9c:b6:96:11:
df:3c:0a:4d:b2:3e:7c:74:05:a8:7b:e9:c6:b3:91:08:0c:27:
e5:69:e6:2e:c5:91:4d:bc:13:c1:7d:08:0c:2f:49:0e:49:20:
e1:5f:20:22:1a:f0:69:5c:30:c1:12:58:94:08:75:e9:c6:bf:
73:5a:6f:f6:84:e4:8a:fe:ab:5b:69:76:fa:ab:1a:a1:b1:5e:
97:88:e7:cb:8b:0d:e9:ae:16:b9:79:80:57:40:0b:03:f5:44:
bc:c0:89:e6:07:47:aa:c7:7d:2f:f1:6b:ec:b8:41:50:89:5f:
72:a5:0e:05
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF2RcWTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
OGIyMjAyM2I2ZWFkNGMyOTY4M2E5ZmVkNDQ5M2QwM2RlZTJjNjg1MB4XDTIyMDIy
NjA4MzQxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGI2YzU3OTkyYWUz
NjgxNGEwYzg5NTc3OGZmMWU3OGZkNTZiNjNkYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALYXKn2JA+/TulzxtSld5RiqkIh6av7KvTFbPyegfWwijFvj
iVdhM3UbZBqrth4JHMM9PlTLRJnK7gZIPFxo1Em8v01GMhZg8f2EndhZ+b5CnhuA
5tdpoTaCD4p/tO6WZNbqJse0GrJeUSZJM2r5k6mHxkI147NoK7rw7C0X/RgxFK0v
ggRzAiXSM9+AhtyqvuTaVGuB+gqwlLBmkcIeoj1vWbB1dpItcVZEBxvXXi37n4Vf
YtcQBDtxCvUl1TyiqU2syyfKG3KXhvu6oIQgrljRFi7GLoViJwIAG5t6/4pPlZBi
1dAY60E4ssYEYVbue/poZvfk9Rl45+VVF/0D/jUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRLbFeZKuNoFKDIlXeP8eeP1Wtj2zAfBgNVHSMEGDAWgBQ4siAjturUwpaD
qf7UST0D3uLGhTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09MSWdJN2JxMU1LV2c2bi0xRWs5QTk3aXhvVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTcvODgxM2Y1LTRlN2ItNGQ1MS1iNWYzLTQwZDk1YmQzM2ZjYi8x
L1MyeFhtU3JqYUJTZ3lKVjNqX0huajlWclk5cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTcv
ODgxM2Y1LTRlN2ItNGQ1MS1iNWYzLTQwZDk1YmQzM2ZjYi8xL09MSWdJN2JxMU1L
V2c2bi0xRWs5QTk3aXhvVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBFKzkDANBgkqhkiG9w0BAQsFAAOC
AQEAJNXXTCMXC05rBz5ui2IjvDo+OwV0jzQO1nODi31pu6vl2D+pdz0CtLvAsP3K
U17fw0MO3LgtECQ1anqJOuGB8VJtWyvPmKUrFM2D1vT5SkZ5mvAqgexRR8tBh662
wdQnveUdO8UbyVF9KtrJzppK4srWEZqyq54lXtP8zTvTGOIBUnNx88sz4tu+wNKc
tpYR3zwKTbI+fHQFqHvpxrORCAwn5WnmLsWRTbwTwX0IDC9JDkkg4V8gIhrwaVww
wRJYlAh16ca/c1pv9oTkiv6rW2l2+qsaobFel4jny4sN6a4WuXmAV0ALA/VEvMCJ
5gdHqsd9L/Fr7LhBUIlfcqUOBQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org