Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/effb2f-9fbf-488b-9315-a99a21015937/1/sePQ5l5IUQp7Ar2ojQuYC1MO_2E.roa
File: sePQ5l5IUQp7Ar2ojQuYC1MO_2E.roa (raw, json)
Hash identifier: ifYmQuX2qXg6keCB1fiXbReDwXpLV/9FO7drNE8L4AE=
Subject key identifier: B1:E3:D0:E6:5E:48:51:0A:7B:02:BD:A8:8D:0B:98:0B:53:0E:FF:61
Certificate issuer: /CN=ccb75341500807a9750a8cf55bf4e45ff03f312a
Certificate serial: 01EDA0
Authority key identifier: CC:B7:53:41:50:08:07:A9:75:0A:8C:F5:5B:F4:E4:5F:F0:3F:31:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zLdTQVAIB6l1Coz1W_TkX_A_MSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/effb2f-9fbf-488b-9315-a99a21015937/1/sePQ5l5IUQp7Ar2ojQuYC1MO_2E.roa
Signing time: Tue 26 Apr 2022 13:54:20 +0000
ROA not before: Tue 26 Apr 2022 13:54:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 157.84.32.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126368 (0x1eda0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccb75341500807a9750a8cf55bf4e45ff03f312a
Validity
Not Before: Apr 26 13:54:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1e3d0e65e48510a7b02bda88d0b980b530eff61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7e:a4:5f:95:8f:79:76:31:d8:0a:fb:0e:5a:
7f:ea:49:a0:f1:bc:38:59:fb:a3:8f:ed:65:19:24:
1d:e3:17:36:31:ce:73:df:8c:3a:5f:2f:fe:9e:9f:
bd:2f:ed:ed:90:77:b3:27:62:e1:0a:32:88:d8:77:
27:7a:01:0e:70:79:a4:d3:0f:f7:72:23:78:a7:1b:
f4:af:a2:58:36:07:4b:2a:94:dc:4a:7f:58:2b:46:
78:6b:ea:05:ab:4d:d3:37:aa:ef:e8:15:70:00:42:
88:c9:72:9d:4b:bb:fa:2f:36:ad:42:ad:5d:72:84:
4c:fa:60:25:96:30:d7:f7:c4:f9:8d:f9:69:bc:50:
f9:16:74:bc:92:d1:5d:a0:40:9e:e5:5c:e4:ff:2e:
0f:91:f2:89:c8:39:78:31:20:72:3e:c4:5c:e1:8d:
ce:1f:8e:d9:43:e5:ce:7f:16:dd:95:b5:b4:63:13:
2e:60:7b:b7:1a:f4:e5:bb:19:ec:98:52:45:df:0a:
8d:26:37:28:f2:ed:b7:e7:3b:ed:f4:28:01:0b:16:
1d:bc:f7:a2:aa:ba:87:95:bd:7c:88:18:f6:95:40:
df:73:c8:6b:e1:49:bd:08:31:dd:4b:34:32:1b:23:
ec:13:d6:3f:48:2e:f7:a3:92:6f:ea:8a:d5:6e:67:
31:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E3:D0:E6:5E:48:51:0A:7B:02:BD:A8:8D:0B:98:0B:53:0E:FF:61
X509v3 Authority Key Identifier:
keyid:CC:B7:53:41:50:08:07:A9:75:0A:8C:F5:5B:F4:E4:5F:F0:3F:31:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zLdTQVAIB6l1Coz1W_TkX_A_MSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/effb2f-9fbf-488b-9315-a99a21015937/1/sePQ5l5IUQp7Ar2ojQuYC1MO_2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/effb2f-9fbf-488b-9315-a99a21015937/1/zLdTQVAIB6l1Coz1W_TkX_A_MSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.84.32.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:6d:cb:bb:dd:c5:4c:bb:12:f3:0f:e7:db:60:b0:46:32:b3:
a9:60:c7:e2:68:79:04:8b:51:39:49:4b:f7:7e:7c:cc:b8:85:
0f:3c:f7:a1:a1:5e:32:e7:ca:4c:cf:52:f0:5c:59:2d:6b:21:
91:c4:87:0f:5b:e8:fd:88:cc:20:0d:65:04:0b:9b:cd:6e:34:
0d:3f:aa:3d:cb:25:b9:91:d2:bd:46:c6:6e:bf:a7:ed:36:ef:
8c:ce:ae:14:ef:21:bf:4c:a2:5b:5f:73:4e:10:18:86:bd:82:
5a:8b:80:31:6a:53:88:3d:8a:6c:20:39:d6:60:3b:3e:86:44:
f5:70:24:11:54:87:bb:c2:87:ec:23:2e:0f:15:e8:17:7a:f2:
84:84:a9:cf:b6:b3:c8:23:77:dc:66:48:0f:a8:09:04:ce:d2:
2e:32:d4:9f:ac:c2:f5:12:7c:64:ef:1e:5f:40:df:c4:58:aa:
51:07:16:f6:11:17:f3:7c:07:ac:e5:82:a7:08:c5:c8:6b:64:
28:2a:47:db:57:18:a9:fb:c9:7a:76:fd:86:ed:d8:6f:8a:c0:
6c:dc:51:c9:8b:67:4a:99:ad:ce:e3:c7:55:26:44:b5:ab:6c:
a7:b9:f0:04:8c:0c:b3:8b:dd:d0:b0:bd:58:77:60:e1:25:f7:
93:2f:8e:e3
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAe2gMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGNj
Yjc1MzQxNTAwODA3YTk3NTBhOGNmNTViZjRlNDVmZjAzZjMxMmEwHhcNMjIwNDI2
MTM1NDIwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiMWUzZDBlNjVlNDg1
MTBhN2IwMmJkYTg4ZDBiOTgwYjUzMGVmZjYxMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAmX6kX5WPeXYx2Ar7Dlp/6kmg8bw4Wfujj+1lGSQd4xc2Mc5z
34w6Xy/+np+9L+3tkHezJ2LhCjKI2HcnegEOcHmk0w/3ciN4pxv0r6JYNgdLKpTc
Sn9YK0Z4a+oFq03TN6rv6BVwAEKIyXKdS7v6LzatQq1dcoRM+mAlljDX98T5jflp
vFD5FnS8ktFdoECe5Vzk/y4PkfKJyDl4MSByPsRc4Y3OH47ZQ+XOfxbdlbW0YxMu
YHu3GvTluxnsmFJF3wqNJjco8u235zvt9CgBCxYdvPeiqrqHlb18iBj2lUDfc8hr
4Um9CDHdSzQyGyPsE9Y/SC73o5Jv6orVbmcxqwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFLHj0OZeSFEKewK9qI0LmAtTDv9hMB8GA1UdIwQYMBaAFMy3U0FQCAepdQqM
9Vv05F/wPzEqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
ekxkVFFWQUlCNmwxQ296MVdfVGtYX0FfTVNvLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9hYS9lZmZiMmYtOWZiZi00ODhiLTkzMTUtYTk5YTIxMDE1OTM3LzEv
c2VQUTVsNUlVUXA3QXIyb2pRdVlDMU1PXzJFLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9l
ZmZiMmYtOWZiZi00ODhiLTkzMTUtYTk5YTIxMDE1OTM3LzEvekxkVFFWQUlCNmwx
Q296MVdfVGtYX0FfTVNvLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnVQgMA0GCSqGSIb3DQEBCwUAA4IB
AQBfbcu73cVMuxLzD+fbYLBGMrOpYMfiaHkEi1E5SUv3fnzMuIUPPPehoV4y58pM
z1LwXFktayGRxIcPW+j9iMwgDWUEC5vNbjQNP6o9yyW5kdK9RsZuv6ftNu+Mzq4U
7yG/TKJbX3NOEBiGvYJai4AxalOIPYpsIDnWYDs+hkT1cCQRVIe7wofsIy4PFegX
evKEhKnPtrPII3fcZkgPqAkEztIuMtSfrML1Enxk7x5fQN/EWKpRBxb2ERfzfAes
5YKnCMXIa2QoKkfbVxip+8l6dv2G7dhvisBs3FHJi2dKma3O48dVJkS1q2ynufAE
jAyzi93QsL1Yd2DhJfeTL47j
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:54 2023 by rpki-client on console-ams.rpki-client.org