Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/2c1937-9d9b-4315-a3c5-c0ae80b742b0/1/cODzYePkFGNxUhitbsvN-m5W-4I.roa
File: cODzYePkFGNxUhitbsvN-m5W-4I.roa (raw, json)
Hash identifier: XfC5QJ7r+sGyxWCxjjwkbRprVwa3UcEE6ipHJrMpiZY=
Subject key identifier: 70:E0:F3:61:E3:E4:14:63:71:52:18:AD:6E:CB:CD:FA:6E:56:FB:82
Certificate issuer: /CN=0f554afe672744742b4e35027b402e8613c20377
Certificate serial: 053DF099
Authority key identifier: 0F:55:4A:FE:67:27:44:74:2B:4E:35:02:7B:40:2E:86:13:C2:03:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D1VK_mcnRHQrTjUCe0AuhhPCA3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/2c1937-9d9b-4315-a3c5-c0ae80b742b0/1/cODzYePkFGNxUhitbsvN-m5W-4I.roa
Signing time: Sat 01 Jan 2022 05:54:39 +0000
ROA not before: Sat 01 Jan 2022 05:54:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60686
IP address blocks: 185.19.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87945369 (0x53df099)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f554afe672744742b4e35027b402e8613c20377
Validity
Not Before: Jan 1 05:54:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70e0f361e3e41463715218ad6ecbcdfa6e56fb82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c3:6c:91:e5:2f:dc:38:ad:7b:91:ff:48:b8:
4a:84:51:57:59:c4:1a:a0:e5:5c:91:11:9d:2f:82:
18:e5:66:1a:c3:a0:b3:8d:43:9b:e3:fa:59:5c:e0:
d3:60:50:0c:b2:22:52:9c:a6:aa:65:8f:7e:a8:f6:
14:90:fa:92:89:60:2c:81:74:df:8d:1a:92:52:48:
86:fc:32:c4:e0:f0:b3:5c:dc:02:d4:e8:47:f6:74:
9f:fa:08:0c:dc:ef:7b:c8:4b:62:a4:cc:7b:d2:91:
96:c3:47:b9:b3:44:04:81:40:28:7b:42:0b:7a:91:
1b:3e:e4:b8:ba:73:98:ac:42:38:30:75:b4:83:d1:
e8:7f:68:67:d2:ff:d5:42:12:8a:a1:38:5c:3c:c1:
31:83:d1:38:75:c9:d7:19:0a:fb:50:cb:9e:7c:04:
8b:a8:5e:2f:57:9f:c0:6c:58:a4:ab:d4:29:82:8b:
14:e7:bb:25:d2:51:72:4f:92:bb:ef:61:cb:8f:81:
f9:e0:82:08:72:d8:ef:b5:82:fa:7c:2a:1a:24:e6:
e5:fa:27:d5:93:e4:c7:7e:76:c6:cb:f1:77:51:a4:
20:a0:51:bf:4d:ea:93:76:46:5c:2a:e0:0a:a3:29:
cc:5f:5a:b9:a0:b9:f8:43:70:19:17:e7:bf:b3:93:
f2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E0:F3:61:E3:E4:14:63:71:52:18:AD:6E:CB:CD:FA:6E:56:FB:82
X509v3 Authority Key Identifier:
keyid:0F:55:4A:FE:67:27:44:74:2B:4E:35:02:7B:40:2E:86:13:C2:03:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D1VK_mcnRHQrTjUCe0AuhhPCA3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2c1937-9d9b-4315-a3c5-c0ae80b742b0/1/cODzYePkFGNxUhitbsvN-m5W-4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2c1937-9d9b-4315-a3c5-c0ae80b742b0/1/D1VK_mcnRHQrTjUCe0AuhhPCA3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.160.0/22
Signature Algorithm: sha256WithRSAEncryption
47:2b:6c:40:aa:52:78:37:cb:05:72:31:b9:e8:4f:ac:ef:50:
97:b3:b1:db:1f:fb:08:39:2a:5f:de:47:9a:f2:6c:e9:ef:65:
34:fd:a0:9e:10:77:69:9e:bc:9f:88:d5:2d:65:c4:46:79:7a:
4d:2e:7e:7c:b1:f4:39:97:d9:b5:b0:ad:67:78:45:20:16:63:
98:7f:6c:2f:9d:f5:37:da:78:90:0b:39:22:53:7f:14:76:69:
70:3d:90:5a:c0:69:a2:36:c7:5e:72:57:ba:66:d8:05:43:79:
1c:e8:08:b5:71:87:76:a8:e7:fb:d8:8f:27:e7:f7:c2:5c:43:
76:1a:d7:16:90:5b:3c:2c:80:b2:36:ed:f8:2a:4b:fa:cd:cd:
0c:0a:ed:f2:42:e6:99:38:f7:a7:6b:b4:29:7d:5f:1b:bd:a1:
31:6e:29:a6:b9:7d:13:ee:e6:7b:12:b7:d1:fc:87:1e:f6:fa:
bc:19:6f:2c:cc:94:32:c4:9a:ea:a6:c7:5a:ed:1f:f5:cd:b5:
87:cb:c3:84:49:b3:58:8f:a0:76:8f:0c:22:48:16:5a:88:56:
79:8d:d3:46:31:22:4f:26:b4:84:26:7a:fa:af:75:06:ea:10:
b3:0f:89:d9:8c:a3:99:3d:bb:9b:76:c1:4b:58:90:31:61:37:
0a:64:12:c7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBT3wmTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZjU1NGFmZTY3Mjc0NDc0MmI0ZTM1MDI3YjQwMmU4NjEzYzIwMzc3MB4XDTIyMDEw
MTA1NTQzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzBlMGYzNjFlM2U0
MTQ2MzcxNTIxOGFkNmVjYmNkZmE2ZTU2ZmI4MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMvDbJHlL9w4rXuR/0i4SoRRV1nEGqDlXJERnS+CGOVmGsOg
s41Dm+P6WVzg02BQDLIiUpymqmWPfqj2FJD6kolgLIF0340aklJIhvwyxODws1zc
AtToR/Z0n/oIDNzve8hLYqTMe9KRlsNHubNEBIFAKHtCC3qRGz7kuLpzmKxCODB1
tIPR6H9oZ9L/1UISiqE4XDzBMYPROHXJ1xkK+1DLnnwEi6heL1efwGxYpKvUKYKL
FOe7JdJRck+Su+9hy4+B+eCCCHLY77WC+nwqGiTm5fon1ZPkx352xsvxd1GkIKBR
v03qk3ZGXCrgCqMpzF9auaC5+ENwGRfnv7OT8u8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRw4PNh4+QUY3FSGK1uy836blb7gjAfBgNVHSMEGDAWgBQPVUr+ZydEdCtO
NQJ7QC6GE8IDdzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0QxVktfbWNuUkhRclRqVUNlMEF1aGhQQ0EzYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzcvMmMxOTM3LTlkOWItNDMxNS1hM2M1LWMwYWU4MGI3NDJiMC8x
L2NPRHpZZVBrRkdOeFVoaXRic3ZOLW01Vy00SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcv
MmMxOTM3LTlkOWItNDMxNS1hM2M1LWMwYWU4MGI3NDJiMC8xL0QxVktfbWNuUkhR
clRqVUNlMEF1aGhQQ0EzYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArkToDANBgkqhkiG9w0BAQsFAAOC
AQEARytsQKpSeDfLBXIxuehPrO9Ql7Ox2x/7CDkqX95HmvJs6e9lNP2gnhB3aZ68
n4jVLWXERnl6TS5+fLH0OZfZtbCtZ3hFIBZjmH9sL531N9p4kAs5IlN/FHZpcD2Q
WsBpojbHXnJXumbYBUN5HOgItXGHdqjn+9iPJ+f3wlxDdhrXFpBbPCyAsjbt+CpL
+s3NDArt8kLmmTj3p2u0KX1fG72hMW4pprl9E+7mexK30fyHHvb6vBlvLMyUMsSa
6qbHWu0f9c21h8vDhEmzWI+gdo8MIkgWWohWeY3TRjEiTya0hCZ6+q91BuoQsw+J
2YyjmT27m3bBS1iQMWE3CmQSxw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:36 2023 by rpki-client on console-ams.rpki-client.org