Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/e9a262-3896-4b91-87e4-bd7379a9d043/1/xjQUuhSHpfsjlYVWjKYais3aFTM.roa
File: xjQUuhSHpfsjlYVWjKYais3aFTM.roa (raw, json)
Hash identifier: FuWt3fjsmH4606gV2f3FAg4a+D8ulUpbORLE4o77ngE=
Subject key identifier: C6:34:14:BA:14:87:A5:FB:23:95:85:56:8C:A6:1A:8A:CD:DA:15:33
Certificate issuer: /CN=1a8eeb83b5a1ed7d5caade8ef1004a5bac19f30f
Certificate serial: E3C123
Authority key identifier: 1A:8E:EB:83:B5:A1:ED:7D:5C:AA:DE:8E:F1:00:4A:5B:AC:19:F3:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Go7rg7Wh7X1cqt6O8QBKW6wZ8w8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/e9a262-3896-4b91-87e4-bd7379a9d043/1/xjQUuhSHpfsjlYVWjKYais3aFTM.roa
Signing time: Sat 15 Jan 2022 07:08:20 +0000
ROA not before: Sat 15 Jan 2022 07:08:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 188.244.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14926115 (0xe3c123)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a8eeb83b5a1ed7d5caade8ef1004a5bac19f30f
Validity
Not Before: Jan 15 07:08:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c63414ba1487a5fb239585568ca61a8acdda1533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a2:cb:c0:44:d8:64:ac:5f:1a:c6:8d:e1:cc:
ff:f5:0b:d4:be:44:71:28:1b:dc:45:74:9e:c6:7b:
70:51:7e:a8:fe:26:36:f9:1c:8e:2a:a6:6c:50:5f:
62:59:03:e1:d3:3c:3e:5f:43:1d:bd:9d:83:2d:7a:
c7:08:70:06:ce:71:45:20:fb:af:61:e2:1a:b0:c5:
d0:2c:73:67:09:55:bf:0b:ab:1e:5b:14:2c:4c:0f:
bf:d5:60:3c:d3:97:0b:17:e1:a3:12:21:4d:81:a0:
f2:17:20:79:78:ac:fe:54:d9:be:33:dd:d9:22:5e:
f8:af:e2:9c:94:f2:f6:01:99:1f:8c:32:0a:46:61:
c7:5f:c5:7f:4d:76:72:c8:5b:0a:a0:9a:73:9c:9b:
67:4b:5a:ba:09:49:1d:98:b9:82:a6:53:9c:b5:dd:
10:c7:07:4e:37:80:a5:47:4b:1f:62:67:32:ee:a0:
73:e6:0b:7b:33:b5:e3:0e:09:06:fb:99:c3:53:bf:
5f:fc:9e:d7:fb:b4:de:ec:8c:a9:dd:52:56:05:6b:
74:58:c1:ce:16:2d:23:6b:2d:d4:e3:d7:aa:e4:dd:
aa:39:5a:bd:9d:e9:b5:af:af:49:80:cd:93:38:23:
14:04:3e:9b:0b:e5:74:64:09:ac:85:f8:ad:01:83:
d5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:34:14:BA:14:87:A5:FB:23:95:85:56:8C:A6:1A:8A:CD:DA:15:33
X509v3 Authority Key Identifier:
keyid:1A:8E:EB:83:B5:A1:ED:7D:5C:AA:DE:8E:F1:00:4A:5B:AC:19:F3:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Go7rg7Wh7X1cqt6O8QBKW6wZ8w8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/e9a262-3896-4b91-87e4-bd7379a9d043/1/xjQUuhSHpfsjlYVWjKYais3aFTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/e9a262-3896-4b91-87e4-bd7379a9d043/1/Go7rg7Wh7X1cqt6O8QBKW6wZ8w8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.244.113.0/24
Signature Algorithm: sha256WithRSAEncryption
90:7b:1f:c6:69:65:d1:a4:af:f0:69:71:e6:3c:80:4d:e1:22:
48:9e:82:bc:03:7d:d0:82:c9:c6:8a:ce:97:50:04:40:2b:4b:
24:3e:ef:e1:6b:2e:a8:fc:51:d8:f8:bf:5a:9f:eb:cc:c3:59:
0c:75:4d:43:49:7b:68:c4:f8:b1:24:92:dd:e6:62:32:18:44:
67:4b:be:84:8f:80:25:83:2d:a3:7e:c3:5c:85:9a:89:21:56:
9c:69:a3:c4:fa:a0:a5:c5:ff:71:4f:43:00:af:2d:ec:91:21:
4c:22:94:34:13:d2:a5:33:e1:b3:90:57:ae:c5:6a:f7:bb:38:
40:5d:f1:8c:f3:a0:33:1a:34:f2:f4:8c:7d:a2:3a:02:e7:b4:
89:d7:6a:db:2b:ef:42:a6:2c:e8:ab:23:1a:fe:7e:01:6d:4c:
cf:a2:ce:e3:b6:17:91:7c:77:18:c5:73:34:f4:6f:2d:b3:1d:
e3:d4:5f:ac:ed:31:99:c5:e1:a9:72:9a:99:58:11:80:bc:15:
48:c4:6b:85:db:53:4e:1e:57:bd:e0:8b:a7:20:18:da:56:27:
9b:5e:7a:69:b8:d7:2b:d5:4e:09:a3:13:62:c8:64:2f:d3:36:
88:7d:24:8c:19:6c:92:7c:41:4d:05:a5:fe:4f:5e:46:9a:03:
e6:8c:66:d9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAOPBIzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YThlZWI4M2I1YTFlZDdkNWNhYWRlOGVmMTAwNGE1YmFjMTlmMzBmMB4XDTIyMDEx
NTA3MDgyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzYzNDE0YmExNDg3
YTVmYjIzOTU4NTU2OGNhNjFhOGFjZGRhMTUzMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAImiy8BE2GSsXxrGjeHM//UL1L5EcSgb3EV0nsZ7cFF+qP4m
NvkcjiqmbFBfYlkD4dM8Pl9DHb2dgy16xwhwBs5xRSD7r2HiGrDF0CxzZwlVvwur
HlsULEwPv9VgPNOXCxfhoxIhTYGg8hcgeXis/lTZvjPd2SJe+K/inJTy9gGZH4wy
CkZhx1/Ff012cshbCqCac5ybZ0tauglJHZi5gqZTnLXdEMcHTjeApUdLH2JnMu6g
c+YLezO14w4JBvuZw1O/X/ye1/u03uyMqd1SVgVrdFjBzhYtI2st1OPXquTdqjla
vZ3pta+vSYDNkzgjFAQ+mwvldGQJrIX4rQGD1fkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTGNBS6FIel+yOVhVaMphqKzdoVMzAfBgNVHSMEGDAWgBQajuuDtaHtfVyq
3o7xAEpbrBnzDzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dvN3JnN1doN1gxY3F0Nk84UUJLVzZ3Wjh3OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjQvZTlhMjYyLTM4OTYtNGI5MS04N2U0LWJkNzM3OWE5ZDA0My8x
L3hqUVV1aFNIcGZzamxZVldqS1lhaXMzYUZUTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjQv
ZTlhMjYyLTM4OTYtNGI5MS04N2U0LWJkNzM3OWE5ZDA0My8xL0dvN3JnN1doN1gx
Y3F0Nk84UUJLVzZ3Wjh3OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALz0cTANBgkqhkiG9w0BAQsFAAOC
AQEAkHsfxmll0aSv8Glx5jyATeEiSJ6CvAN90ILJxorOl1AEQCtLJD7v4WsuqPxR
2Pi/Wp/rzMNZDHVNQ0l7aMT4sSSS3eZiMhhEZ0u+hI+AJYMto37DXIWaiSFWnGmj
xPqgpcX/cU9DAK8t7JEhTCKUNBPSpTPhs5BXrsVq97s4QF3xjPOgMxo08vSMfaI6
Aue0iddq2yvvQqYs6KsjGv5+AW1Mz6LO47YXkXx3GMVzNPRvLbMd49RfrO0xmcXh
qXKamVgRgLwVSMRrhdtTTh5XveCLpyAY2lYnm156abjXK9VOCaMTYshkL9M2iH0k
jBlsknxBTQWl/k9eRpoD5oxm2Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:29 2023 by rpki-client on console-ams.rpki-client.org