Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/def7ce-25d4-43c1-8eae-1a64cf21a604/1/hI-kviZs6HUMRMZcf7OlazmtE8Y.roa
File: hI-kviZs6HUMRMZcf7OlazmtE8Y.roa (raw, json)
Hash identifier: +x9Rw+S4vrES5iVTCYVwFCWJuWMsed4Wk7CmeqHQfeg=
Subject key identifier: 84:8F:A4:BE:26:6C:E8:75:0C:44:C6:5C:7F:B3:A5:6B:39:AD:13:C6
Certificate issuer: /CN=10f7741cd1af2bb34c86c73ea3bd6c76d9968d0d
Certificate serial: 0AD70C87
Authority key identifier: 10:F7:74:1C:D1:AF:2B:B3:4C:86:C7:3E:A3:BD:6C:76:D9:96:8D:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EPd0HNGvK7NMhsc-o71sdtmWjQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/def7ce-25d4-43c1-8eae-1a64cf21a604/1/hI-kviZs6HUMRMZcf7OlazmtE8Y.roa
Signing time: Sat 01 Jan 2022 08:01:24 +0000
ROA not before: Sat 01 Jan 2022 08:01:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20495
IP address blocks: 185.37.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181865607 (0xad70c87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10f7741cd1af2bb34c86c73ea3bd6c76d9968d0d
Validity
Not Before: Jan 1 08:01:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=848fa4be266ce8750c44c65c7fb3a56b39ad13c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c0:49:8c:7c:21:58:2a:95:39:6f:9d:47:00:
38:96:59:97:85:89:82:4c:36:0c:89:16:2e:73:1d:
20:0a:7f:d9:69:af:57:a6:c6:38:32:97:7a:fe:c4:
cf:72:89:91:85:eb:2c:03:15:49:cf:55:5c:d5:b9:
bd:e7:24:ca:c6:d4:a6:76:44:20:47:53:a1:c1:a7:
6b:4c:85:30:92:88:3f:5b:c1:5a:c7:4e:cc:e1:6f:
63:f0:4d:a8:e8:40:63:8c:3a:c9:00:ba:f8:b8:06:
0a:c0:38:ef:00:7b:cc:2d:ac:0c:85:e1:52:e4:83:
7d:94:8d:4c:72:1c:5f:b2:ec:bb:91:1f:38:cf:34:
12:3c:7a:bb:31:7e:a5:52:8c:ab:a0:2c:4b:04:a3:
d1:c4:83:3b:8a:0f:c4:ff:59:b9:c2:ef:6f:6a:34:
13:eb:36:2b:37:85:49:8e:4d:e2:6b:64:9c:b3:c2:
01:60:46:49:a5:93:e2:a2:fd:5f:ed:f0:dd:e2:fa:
c9:c2:bf:b0:5c:21:73:4f:10:bb:de:d7:36:ab:22:
59:f3:b5:2a:a5:14:32:b6:1c:aa:10:b9:4f:ad:23:
43:2a:ec:70:60:d2:68:83:55:11:d8:1a:40:e8:5c:
df:c3:b2:13:29:84:98:d0:59:72:39:2a:3f:1b:7f:
5c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:8F:A4:BE:26:6C:E8:75:0C:44:C6:5C:7F:B3:A5:6B:39:AD:13:C6
X509v3 Authority Key Identifier:
keyid:10:F7:74:1C:D1:AF:2B:B3:4C:86:C7:3E:A3:BD:6C:76:D9:96:8D:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EPd0HNGvK7NMhsc-o71sdtmWjQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/def7ce-25d4-43c1-8eae-1a64cf21a604/1/hI-kviZs6HUMRMZcf7OlazmtE8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/def7ce-25d4-43c1-8eae-1a64cf21a604/1/EPd0HNGvK7NMhsc-o71sdtmWjQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.7.0/24
Signature Algorithm: sha256WithRSAEncryption
72:bc:f2:fc:a1:f3:36:9c:07:df:96:b2:14:67:b0:d1:20:58:
16:08:1b:60:39:9a:af:69:bb:f9:28:56:c3:fe:d1:2d:65:77:
e4:c3:30:60:f9:d3:eb:58:bf:d7:5a:47:f6:89:5d:bf:ec:43:
77:e8:12:26:d7:e3:22:22:c9:72:64:69:3c:76:9e:4c:13:f3:
9f:c2:a2:21:34:e4:59:98:a1:08:91:34:16:e0:40:64:38:37:
1e:5d:f8:e5:e9:10:f4:55:a6:12:42:d4:ac:b1:92:a2:40:d9:
3c:c4:d2:fb:90:69:9e:7f:39:17:d0:68:e3:57:a4:84:bb:ec:
33:b1:72:ed:ec:f9:b3:af:1b:78:2a:c0:cc:32:5c:ce:85:72:
b1:47:bb:5d:ac:64:84:cf:bd:0e:cc:ca:9d:b7:f2:cd:28:88:
7a:5e:10:ad:cf:28:c0:58:c7:83:c1:5a:fe:67:05:f5:f6:b9:
27:ee:6d:cb:24:0c:52:27:ec:ba:6c:48:37:3e:2b:af:97:43:
34:ff:9a:cb:10:ed:20:1f:7d:ef:22:b4:cc:4a:10:85:2d:8e:
a2:d6:b7:3d:2c:b1:c2:01:c3:ed:66:0e:0a:c3:34:d8:77:22:
a7:e0:f9:62:f3:dc:9a:b6:f5:85:94:61:8e:18:de:95:66:ca:
88:ea:5a:11
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECtcMhzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MGY3NzQxY2QxYWYyYmIzNGM4NmM3M2VhM2JkNmM3NmQ5OTY4ZDBkMB4XDTIyMDEw
MTA4MDEyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODQ4ZmE0YmUyNjZj
ZTg3NTBjNDRjNjVjN2ZiM2E1NmIzOWFkMTNjNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKjASYx8IVgqlTlvnUcAOJZZl4WJgkw2DIkWLnMdIAp/2Wmv
V6bGODKXev7Ez3KJkYXrLAMVSc9VXNW5veckysbUpnZEIEdTocGna0yFMJKIP1vB
WsdOzOFvY/BNqOhAY4w6yQC6+LgGCsA47wB7zC2sDIXhUuSDfZSNTHIcX7Lsu5Ef
OM80Ejx6uzF+pVKMq6AsSwSj0cSDO4oPxP9ZucLvb2o0E+s2KzeFSY5N4mtknLPC
AWBGSaWT4qL9X+3w3eL6ycK/sFwhc08Qu97XNqsiWfO1KqUUMrYcqhC5T60jQyrs
cGDSaINVEdgaQOhc38OyEymEmNBZcjkqPxt/XBsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSEj6S+JmzodQxExlx/s6VrOa0TxjAfBgNVHSMEGDAWgBQQ93Qc0a8rs0yG
xz6jvWx22ZaNDTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VQZDBITkd2SzdOTWhzYy1vNzFzZHRtV2pRMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmIvZGVmN2NlLTI1ZDQtNDNjMS04ZWFlLTFhNjRjZjIxYTYwNC8x
L2hJLWt2aVpzNkhVTVJNWmNmN09sYXptdEU4WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmIv
ZGVmN2NlLTI1ZDQtNDNjMS04ZWFlLTFhNjRjZjIxYTYwNC8xL0VQZDBITkd2SzdO
TWhzYy1vNzFzZHRtV2pRMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALklBzANBgkqhkiG9w0BAQsFAAOC
AQEAcrzy/KHzNpwH35ayFGew0SBYFggbYDmar2m7+ShWw/7RLWV35MMwYPnT61i/
11pH9oldv+xDd+gSJtfjIiLJcmRpPHaeTBPzn8KiITTkWZihCJE0FuBAZDg3Hl34
5ekQ9FWmEkLUrLGSokDZPMTS+5Bpnn85F9Bo41ekhLvsM7Fy7ez5s68beCrAzDJc
zoVysUe7XaxkhM+9DszKnbfyzSiIel4Qrc8owFjHg8Fa/mcF9fa5J+5tyyQMUifs
umxINz4rr5dDNP+ayxDtIB997yK0zEoQhS2Oota3PSyxwgHD7WYOCsM02Hcip+D5
YvPcmrb1hZRhjhjelWbKiOpaEQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:51 2023 by rpki-client on console-ams.rpki-client.org