Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a31b82-d7ea-4f0b-863d-61605b26f82d/1/bLo4h5DXspfDfU91G4oxRV3K_CU.roa
File: bLo4h5DXspfDfU91G4oxRV3K_CU.roa (raw, json)
Hash identifier: ru3QjlbaM2ah2PxaJNiNtCjtPIV//7KReRrhT19abDY=
Subject key identifier: 6C:BA:38:87:90:D7:B2:97:C3:7D:4F:75:1B:8A:31:45:5D:CA:FC:25
Certificate issuer: /CN=23ac486807398ac1ceec0921d04d409a4f7f479b
Certificate serial: 0899999A
Authority key identifier: 23:AC:48:68:07:39:8A:C1:CE:EC:09:21:D0:4D:40:9A:4F:7F:47:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6xIaAc5isHO7Akh0E1Amk9_R5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a31b82-d7ea-4f0b-863d-61605b26f82d/1/bLo4h5DXspfDfU91G4oxRV3K_CU.roa
Signing time: Sat 01 Jan 2022 06:05:51 +0000
ROA not before: Sat 01 Jan 2022 06:05:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199345
IP address blocks: 176.124.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144284058 (0x899999a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ac486807398ac1ceec0921d04d409a4f7f479b
Validity
Not Before: Jan 1 06:05:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cba388790d7b297c37d4f751b8a31455dcafc25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d0:8d:1c:1f:1e:69:10:77:e9:10:58:21:30:
34:4e:05:6c:b2:30:1a:76:ee:76:ad:0c:1f:10:05:
fd:60:c9:84:ec:97:44:d5:0f:73:7e:8d:ef:d2:03:
2a:c1:3f:97:79:cc:81:6d:3d:85:48:6e:c0:a7:ef:
bb:07:30:66:1f:f9:e3:a0:72:d5:da:c1:23:2c:cc:
65:6e:d2:c7:da:a7:b9:cd:f0:bf:e6:16:31:dc:f7:
3f:18:d2:d6:25:bf:ed:7f:d0:0b:00:9f:35:0a:d6:
de:3d:4b:ed:c0:b7:e8:d2:59:a7:0e:8b:33:eb:bb:
42:bf:a5:35:93:25:23:e2:78:aa:72:81:db:0e:e2:
b7:5c:a4:c0:77:fa:96:7a:55:6e:10:7f:dc:65:cc:
2a:2f:10:27:95:ab:18:33:99:e7:ea:38:0d:54:75:
f4:f0:b4:ba:a2:29:b3:49:e1:5e:43:e9:19:2b:ec:
69:25:15:dc:6f:48:4e:48:4f:df:08:fe:79:4c:ed:
b2:52:9a:10:89:ba:81:7a:56:72:f4:ae:82:9a:17:
67:5e:a4:25:12:0a:22:d0:54:0c:a5:8c:3a:18:98:
3d:b0:91:92:68:8d:37:e0:99:7b:9c:1c:d4:01:bf:
d6:00:fe:1a:5b:36:c7:85:db:68:c4:62:a8:16:89:
ad:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:BA:38:87:90:D7:B2:97:C3:7D:4F:75:1B:8A:31:45:5D:CA:FC:25
X509v3 Authority Key Identifier:
keyid:23:AC:48:68:07:39:8A:C1:CE:EC:09:21:D0:4D:40:9A:4F:7F:47:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6xIaAc5isHO7Akh0E1Amk9_R5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a31b82-d7ea-4f0b-863d-61605b26f82d/1/bLo4h5DXspfDfU91G4oxRV3K_CU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a31b82-d7ea-4f0b-863d-61605b26f82d/1/I6xIaAc5isHO7Akh0E1Amk9_R5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.148.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:1e:42:44:1e:bc:ad:cd:26:69:a0:57:17:b6:53:92:ba:cb:
c7:cd:61:90:29:a9:8b:5b:f4:19:ea:39:ab:65:5b:2f:4c:1d:
00:cd:7b:fc:69:aa:5c:2b:ba:d1:d8:c9:b6:ec:33:b2:59:06:
8e:57:0d:a6:f2:ec:4a:89:cd:ea:a9:e5:cb:8f:11:a5:6d:ab:
36:76:3a:81:38:fc:12:f1:57:7d:5f:ce:c6:5d:76:6d:5f:be:
1b:88:32:75:29:aa:ba:b7:63:c4:d7:f0:fa:7e:89:aa:82:91:
03:ef:fa:4b:0f:16:df:ff:c7:f5:ac:d6:cd:38:cd:4c:91:d1:
a6:5b:0c:3c:fc:1e:3f:5a:a0:5c:5d:23:45:09:7a:01:61:4b:
01:28:7c:40:35:31:4f:e4:31:98:bb:83:f9:ff:82:0d:c0:b9:
6d:44:4b:a7:51:9e:b3:11:bd:eb:9e:34:6a:dc:57:86:c0:51:
9e:50:08:0b:9a:6b:17:35:27:48:3a:fd:99:05:b7:e7:9f:c7:
58:dd:51:4d:89:0f:e2:d2:a0:38:99:97:30:c1:15:5f:65:29:
80:fd:a3:d3:46:dd:17:27:50:a4:cd:ce:ed:4a:62:46:a4:50:
53:8d:3a:49:6d:dd:89:1e:3e:41:25:f6:fb:bd:56:8b:f0:e3:
6f:b1:31:3f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECJmZmjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
M2FjNDg2ODA3Mzk4YWMxY2VlYzA5MjFkMDRkNDA5YTRmN2Y0NzliMB4XDTIyMDEw
MTA2MDU1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmNiYTM4ODc5MGQ3
YjI5N2MzN2Q0Zjc1MWI4YTMxNDU1ZGNhZmMyNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMnQjRwfHmkQd+kQWCEwNE4FbLIwGnbudq0MHxAF/WDJhOyX
RNUPc36N79IDKsE/l3nMgW09hUhuwKfvuwcwZh/546By1drBIyzMZW7Sx9qnuc3w
v+YWMdz3PxjS1iW/7X/QCwCfNQrW3j1L7cC36NJZpw6LM+u7Qr+lNZMlI+J4qnKB
2w7it1ykwHf6lnpVbhB/3GXMKi8QJ5WrGDOZ5+o4DVR19PC0uqIps0nhXkPpGSvs
aSUV3G9ITkhP3wj+eUztslKaEIm6gXpWcvSugpoXZ16kJRIKItBUDKWMOhiYPbCR
kmiNN+CZe5wc1AG/1gD+Gls2x4XbaMRiqBaJrXcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRsujiHkNeyl8N9T3UbijFFXcr8JTAfBgNVHSMEGDAWgBQjrEhoBzmKwc7s
CSHQTUCaT39HmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0k2eElhQWM1aXNITzdBa2gwRTFBbWs5X1I1cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzcvYTMxYjgyLWQ3ZWEtNGYwYi04NjNkLTYxNjA1YjI2ZjgyZC8x
L2JMbzRoNURYc3BmRGZVOTFHNG94UlYzS19DVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcv
YTMxYjgyLWQ3ZWEtNGYwYi04NjNkLTYxNjA1YjI2ZjgyZC8xL0k2eElhQWM1aXNI
TzdBa2gwRTFBbWs5X1I1cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALB8lDANBgkqhkiG9w0BAQsFAAOC
AQEATh5CRB68rc0maaBXF7ZTkrrLx81hkCmpi1v0Geo5q2VbL0wdAM17/GmqXCu6
0djJtuwzslkGjlcNpvLsSonN6qnly48RpW2rNnY6gTj8EvFXfV/Oxl12bV++G4gy
dSmqurdjxNfw+n6JqoKRA+/6Sw8W3//H9azWzTjNTJHRplsMPPweP1qgXF0jRQl6
AWFLASh8QDUxT+QxmLuD+f+CDcC5bURLp1GesxG96540atxXhsBRnlAIC5prFzUn
SDr9mQW355/HWN1RTYkP4tKgOJmXMMEVX2UpgP2j00bdFydQpM3O7UpiRqRQU406
SW3diR4+QSX2+71Wi/Djb7ExPw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:41 2023 by rpki-client on console-ams.rpki-client.org