Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b862d3-6844-46f7-bd98-83bc797278e2/1/twq20SmvnPs-_Y0sx1V-uYJXwX0.roa
File: twq20SmvnPs-_Y0sx1V-uYJXwX0.roa (raw, json)
Hash identifier: 18/UZRKRweswu0Xf2p6dOQv0P0aTAXU9+OhJ9NZYtSU=
Subject key identifier: B7:0A:B6:D1:29:AF:9C:FB:3E:FD:8D:2C:C7:55:7E:B9:82:57:C1:7D
Certificate issuer: /CN=f3b2805d8776eedeb7aa4cbe5af568cdb2629fc2
Certificate serial: 0182F2945173556AE3F5130E6DCAFC1A956C
Authority key identifier: F3:B2:80:5D:87:76:EE:DE:B7:AA:4C:BE:5A:F5:68:CD:B2:62:9F:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/87KAXYd27t63qky-WvVozbJin8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b862d3-6844-46f7-bd98-83bc797278e2/1/twq20SmvnPs-_Y0sx1V-uYJXwX0.roa
Signing time: Wed 31 Aug 2022 06:26:22 +0000
ROA not before: Wed 31 Aug 2022 06:26:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53667
IP address blocks: 178.255.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f2:94:51:73:55:6a:e3:f5:13:0e:6d:ca:fc:1a:95:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3b2805d8776eedeb7aa4cbe5af568cdb2629fc2
Validity
Not Before: Aug 31 06:26:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b70ab6d129af9cfb3efd8d2cc7557eb98257c17d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:47:80:5f:dd:9a:d3:02:c7:33:c2:33:a2:59:
68:ae:ea:00:7a:99:25:fb:3b:0a:03:af:80:9d:70:
9b:43:21:e0:a0:17:e3:9d:94:7d:70:a8:65:24:88:
4e:4e:72:ee:fe:27:bc:71:8a:38:1b:b9:34:72:0a:
3f:b5:f4:44:6f:7b:df:6c:a2:39:cf:93:68:51:f0:
48:f6:dd:8c:d3:f9:d2:db:37:f9:42:9d:77:cd:7a:
d2:1e:21:87:97:62:e7:c5:6f:cd:71:c8:80:6f:0e:
ed:8a:06:51:f6:6e:62:35:6e:01:9d:62:61:4a:df:
3b:e8:4e:84:c3:e1:cd:2d:ff:25:35:b2:11:c3:37:
2b:7b:b7:aa:3c:fe:f4:c1:2a:a8:01:d2:23:c5:68:
17:16:8c:57:ce:dd:90:39:46:e0:b7:61:92:f3:8f:
4b:12:a3:6f:c8:27:4c:fa:7a:e6:e1:56:61:6f:ed:
c2:90:a7:9c:12:bf:71:b8:38:ba:24:f2:38:0b:18:
c0:a7:b3:c5:90:b3:0e:8a:a8:ce:eb:ba:f1:bf:08:
27:1f:51:af:d9:86:ec:9a:3b:ff:ca:78:15:fc:ff:
fd:4c:ec:6c:38:47:c7:47:b5:65:8f:fe:ea:29:f3:
45:5d:5b:d4:5c:aa:69:ad:f9:8e:3c:d2:9f:c6:57:
a8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:0A:B6:D1:29:AF:9C:FB:3E:FD:8D:2C:C7:55:7E:B9:82:57:C1:7D
X509v3 Authority Key Identifier:
keyid:F3:B2:80:5D:87:76:EE:DE:B7:AA:4C:BE:5A:F5:68:CD:B2:62:9F:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/87KAXYd27t63qky-WvVozbJin8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b862d3-6844-46f7-bd98-83bc797278e2/1/twq20SmvnPs-_Y0sx1V-uYJXwX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b862d3-6844-46f7-bd98-83bc797278e2/1/87KAXYd27t63qky-WvVozbJin8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.219.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:bb:39:cb:67:dd:8e:e3:e1:0d:9a:11:ff:76:9c:2f:42:cd:
43:8e:b7:77:d9:83:7a:bd:f2:58:b6:4d:05:ee:96:19:7b:e1:
18:4f:0b:94:ec:e3:14:08:2d:ee:0f:ab:08:bb:0f:50:2d:02:
7c:18:f5:17:97:16:94:37:d2:e5:aa:20:b7:ec:68:7a:21:56:
5f:37:5c:8c:a6:20:d0:54:98:b1:45:06:67:b3:5e:47:c5:e9:
85:51:96:15:56:2d:f7:aa:68:a7:1b:9c:56:10:3c:b3:85:ee:
de:3e:89:0c:1b:5c:25:90:3b:86:9a:8c:70:b5:6d:04:4f:96:
4d:83:c5:d5:f0:44:9d:40:8e:8d:80:a1:fa:6b:58:f0:00:35:
83:46:84:15:c5:b4:d6:86:1f:0c:53:51:ce:88:1d:ab:d3:d3:
5e:5b:f2:e7:8c:79:fc:50:1b:a4:e2:13:5b:b6:3c:d2:fe:0c:
a9:3a:da:97:b8:77:3e:68:a5:92:4d:5b:3c:10:3b:92:a6:d5:
67:df:d8:9f:83:b5:d2:99:fb:69:57:fe:4a:cc:e7:2a:e8:e2:
c9:28:0b:49:6e:f4:22:0b:33:8a:e2:6e:9b:46:61:a3:d8:c3:
fe:3e:1b:02:7f:86:00:6a:36:9c:bc:53:7f:01:99:99:c2:4f:
4d:75:f5:18
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYLylFFzVWrj9RMObcr8GpVsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYzYjI4MDVkODc3NmVlZGViN2FhNGNiZTVhZjU2OGNkYjI2
MjlmYzIwHhcNMjIwODMxMDYyNjIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzBhYjZkMTI5YWY5Y2ZiM2VmZDhkMmNjNzU1N2ViOTgyNTdjMTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjEeAX92a0wLHM8IzolloruoAepkl
+zsKA6+AnXCbQyHgoBfjnZR9cKhlJIhOTnLu/ie8cYo4G7k0cgo/tfREb3vfbKI5
z5NoUfBI9t2M0/nS2zf5Qp13zXrSHiGHl2LnxW/NcciAbw7tigZR9m5iNW4BnWJh
St876E6Ew+HNLf8lNbIRwzcre7eqPP70wSqoAdIjxWgXFoxXzt2QOUbgt2GS849L
EqNvyCdM+nrm4VZhb+3CkKecEr9xuDi6JPI4CxjAp7PFkLMOiqjO67rxvwgnH1Gv
2Ybsmjv/yngV/P/9TOxsOEfHR7Vlj/7qKfNFXVvUXKpprfmOPNKfxleobQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLcKttEpr5z7Pv2NLMdVfrmCV8F9MB8GA1UdIwQY
MBaAFPOygF2Hdu7et6pMvlr1aM2yYp/CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvODdLQVhZZDI3dDYzcWt5LVd2Vm96YkppbjhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iODYyZDMtNjg0NC00NmY3LWJkOTgt
ODNiYzc5NzI3OGUyLzEvdHdxMjBTbXZuUHMtX1kwc3gxVi11WUpYd1gwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9iODYyZDMtNjg0NC00NmY3LWJkOTgtODNiYzc5NzI3OGUy
LzEvODdLQVhZZDI3dDYzcWt5LVd2Vm96YkppbjhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsv/bMA0G
CSqGSIb3DQEBCwUAA4IBAQBsuznLZ92O4+ENmhH/dpwvQs1Djrd32YN6vfJYtk0F
7pYZe+EYTwuU7OMUCC3uD6sIuw9QLQJ8GPUXlxaUN9LlqiC37Gh6IVZfN1yMpiDQ
VJixRQZns15HxemFUZYVVi33qminG5xWEDyzhe7ePokMG1wlkDuGmoxwtW0ET5ZN
g8XV8ESdQI6NgKH6a1jwADWDRoQVxbTWhh8MU1HOiB2r09NeW/LnjHn8UBuk4hNb
tjzS/gypOtqXuHc+aKWSTVs8EDuSptVn39ifg7XSmftpV/5KzOcq6OLJKAtJbvQi
CzOK4m6bRmGj2MP+PhsCf4YAajacvFN/AZmZwk9NdfUY
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:34 2023 by rpki-client on console-fra.rpki-client.org