Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/18d132-9951-4055-b5a6-dc0e1a725221/1/KInqW--oihLuksobIkXdK1TNtbI.roa
File: KInqW--oihLuksobIkXdK1TNtbI.roa (raw, json)
Hash identifier: 69Kg4WD4J9GhhUF4Ouyp29/mUjfmjhsUH0CpNBFLbV4=
Subject key identifier: 28:89:EA:5B:EF:A8:8A:12:EE:92:CA:1B:22:45:DD:2B:54:CD:B5:B2
Certificate issuer: /CN=d03046d16cfc391b028b88743773ce005cf97b1d
Certificate serial: 08A76A0E
Authority key identifier: D0:30:46:D1:6C:FC:39:1B:02:8B:88:74:37:73:CE:00:5C:F9:7B:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0DBG0Wz8ORsCi4h0N3POAFz5ex0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/18d132-9951-4055-b5a6-dc0e1a725221/1/KInqW--oihLuksobIkXdK1TNtbI.roa
Signing time: Sat 01 Jan 2022 12:02:54 +0000
ROA not before: Sat 01 Jan 2022 12:02:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.163.152.0/24 maxlen: 24
185.163.153.0/24 maxlen: 24
185.163.155.0/24 maxlen: 24
185.163.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145189390 (0x8a76a0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d03046d16cfc391b028b88743773ce005cf97b1d
Validity
Not Before: Jan 1 12:02:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2889ea5befa88a12ee92ca1b2245dd2b54cdb5b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:56:6c:20:d3:cb:1b:39:ea:66:2d:16:c6:69:
3f:06:e4:11:2a:ef:47:68:76:58:8d:8b:3b:b0:ab:
74:7f:44:80:79:83:9c:da:f0:20:4a:af:4e:03:c3:
5e:01:d8:54:7c:3d:18:ba:dc:23:d5:f0:20:78:06:
eb:a2:84:ce:89:5c:88:3b:e3:4f:ef:10:5c:93:c7:
12:8c:10:af:9e:29:d7:9d:fc:1b:66:b7:58:bf:87:
9c:00:b3:e3:0d:08:74:33:b2:71:72:a2:61:55:e4:
f6:ac:a5:56:4f:9a:54:7a:c5:be:42:54:b0:1c:c0:
4f:ee:96:1b:81:67:b0:5e:05:57:13:58:e1:8a:1b:
0f:b9:83:42:59:2e:88:56:bc:1c:79:0e:2e:df:da:
ac:e4:a5:6c:93:34:d3:a8:08:6a:8d:bc:f8:e6:4b:
03:5c:b4:f3:e6:7b:90:89:1b:03:81:40:60:ba:5b:
a7:3f:cb:0c:1f:59:12:8d:84:00:db:8e:67:04:88:
ee:f3:dc:00:c8:3a:0f:6c:41:86:b5:50:8a:f6:9b:
a7:66:f7:ee:6b:52:84:41:39:84:5a:17:d4:17:59:
b7:c9:1a:e8:4e:ca:df:8a:c7:91:f4:10:75:56:17:
9c:9f:10:6b:ad:a6:c6:4c:05:83:2c:37:80:f7:83:
ff:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:89:EA:5B:EF:A8:8A:12:EE:92:CA:1B:22:45:DD:2B:54:CD:B5:B2
X509v3 Authority Key Identifier:
keyid:D0:30:46:D1:6C:FC:39:1B:02:8B:88:74:37:73:CE:00:5C:F9:7B:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0DBG0Wz8ORsCi4h0N3POAFz5ex0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/18d132-9951-4055-b5a6-dc0e1a725221/1/KInqW--oihLuksobIkXdK1TNtbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/18d132-9951-4055-b5a6-dc0e1a725221/1/0DBG0Wz8ORsCi4h0N3POAFz5ex0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.152.0/22
Signature Algorithm: sha256WithRSAEncryption
52:36:e7:33:2c:c6:1e:79:cf:b5:0e:22:f5:1b:70:9d:77:a8:
87:1f:36:1a:b0:9c:c0:bb:ea:7d:48:e7:a9:df:00:05:53:54:
b0:b4:af:af:b7:11:6c:9e:2d:2e:c4:6f:b7:59:ed:89:29:55:
55:51:a1:85:68:7a:ba:7b:ae:44:6c:07:a3:5f:74:59:f3:4d:
d7:41:9b:2d:f0:fa:0a:69:c1:68:51:67:54:43:89:6f:b0:db:
49:79:e9:7c:8f:42:4e:60:db:b4:79:a3:7c:d4:69:45:24:35:
54:12:a5:8d:f4:46:6c:73:46:81:1f:ee:19:fe:48:34:38:da:
0a:09:79:88:f2:b7:1a:81:ca:89:8b:a3:5a:b2:96:23:b9:55:
84:85:21:13:ca:b5:cf:a8:f8:5a:e1:73:07:74:77:75:1e:f5:
76:ed:cf:b0:95:91:8d:12:85:4e:66:a9:75:75:8c:a4:d4:58:
13:49:df:c2:8c:9b:02:e7:d5:eb:43:a8:24:58:a2:5e:cf:2c:
11:99:0f:45:64:1c:42:ea:01:1d:f9:85:cd:40:a8:d0:42:08:
31:59:32:a2:d2:ca:6e:c4:c9:61:5c:2f:42:c1:9e:e2:7a:1f:
b5:4e:08:09:f1:ca:1c:a3:da:3f:6e:33:e2:31:94:61:5a:7f:
ea:49:8a:cb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECKdqDjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MDMwNDZkMTZjZmMzOTFiMDI4Yjg4NzQzNzczY2UwMDVjZjk3YjFkMB4XDTIyMDEw
MTEyMDI1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjg4OWVhNWJlZmE4
OGExMmVlOTJjYTFiMjI0NWRkMmI1NGNkYjViMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALtWbCDTyxs56mYtFsZpPwbkESrvR2h2WI2LO7CrdH9EgHmD
nNrwIEqvTgPDXgHYVHw9GLrcI9XwIHgG66KEzolciDvjT+8QXJPHEowQr54p1538
G2a3WL+HnACz4w0IdDOycXKiYVXk9qylVk+aVHrFvkJUsBzAT+6WG4FnsF4FVxNY
4YobD7mDQlkuiFa8HHkOLt/arOSlbJM006gIao28+OZLA1y08+Z7kIkbA4FAYLpb
pz/LDB9ZEo2EANuOZwSI7vPcAMg6D2xBhrVQivabp2b37mtShEE5hFoX1BdZt8ka
6E7K34rHkfQQdVYXnJ8Qa62mxkwFgyw3gPeD/z0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQoiepb76iKEu6SyhsiRd0rVM21sjAfBgNVHSMEGDAWgBTQMEbRbPw5GwKL
iHQ3c84AXPl7HTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBEQkcwV3o4T1JzQ2k0aDBOM1BPQUZ6NWV4MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmEvMThkMTMyLTk5NTEtNDA1NS1iNWE2LWRjMGUxYTcyNTIyMS8x
L0tJbnFXLS1vaWhMdWtzb2JJa1hkSzFUTnRiSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmEv
MThkMTMyLTk5NTEtNDA1NS1iNWE2LWRjMGUxYTcyNTIyMS8xLzBEQkcwV3o4T1Jz
Q2k0aDBOM1BPQUZ6NWV4MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArmjmDANBgkqhkiG9w0BAQsFAAOC
AQEAUjbnMyzGHnnPtQ4i9RtwnXeohx82GrCcwLvqfUjnqd8ABVNUsLSvr7cRbJ4t
LsRvt1ntiSlVVVGhhWh6unuuRGwHo190WfNN10GbLfD6CmnBaFFnVEOJb7DbSXnp
fI9CTmDbtHmjfNRpRSQ1VBKljfRGbHNGgR/uGf5INDjaCgl5iPK3GoHKiYujWrKW
I7lVhIUhE8q1z6j4WuFzB3R3dR71du3PsJWRjRKFTmapdXWMpNRYE0nfwoybAufV
60OoJFiiXs8sEZkPRWQcQuoBHfmFzUCo0EIIMVkyotLKbsTJYVwvQsGe4noftU4I
CfHKHKPaP24z4jGUYVp/6kmKyw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:47 2023 by rpki-client on console-ams.rpki-client.org