Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/q-_nb0CyuO8YOk4I0i0ImvMigBU.roa
File: q-_nb0CyuO8YOk4I0i0ImvMigBU.roa (raw, json)
Hash identifier: GKsUZPM1tzj9mqbkla4ULnFLHJKNnkPij/DATcMEowY=
Subject key identifier: AB:EF:E7:6F:40:B2:B8:EF:18:3A:4E:08:D2:2D:08:9A:F3:22:80:15
Certificate issuer: /CN=8b054485ee62c6f1939613cba20669eef4504f79
Certificate serial: 01823CA54AF7E2F714C0D01B0970F0FD0DDF
Authority key identifier: 8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/q-_nb0CyuO8YOk4I0i0ImvMigBU.roa
Signing time: Tue 26 Jul 2022 22:34:01 +0000
ROA not before: Tue 26 Jul 2022 22:34:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200064
IP address blocks: 141.170.208.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3c:a5:4a:f7:e2:f7:14:c0:d0:1b:09:70:f0:fd:0d:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b054485ee62c6f1939613cba20669eef4504f79
Validity
Not Before: Jul 26 22:34:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abefe76f40b2b8ef183a4e08d22d089af3228015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:1e:65:1a:d4:ba:54:37:2a:de:e3:e7:64:92:
c4:cd:aa:f5:fa:50:b6:aa:bb:b7:e9:f8:ac:e4:62:
0d:eb:a5:b7:f9:f3:f2:05:ee:a3:4a:06:17:b9:63:
5c:fa:55:de:7f:88:c6:f8:7d:12:f7:02:04:5e:5b:
5c:90:90:c1:fe:fa:96:1a:96:94:0e:45:32:40:9a:
ce:b5:05:03:bb:ce:04:91:12:5f:5a:94:dd:37:be:
27:44:5f:be:a8:dc:6b:e6:ff:05:4a:81:fa:9a:db:
d5:56:f1:e3:30:85:23:31:44:af:b3:3f:9b:af:f5:
45:de:87:66:cf:8b:dc:70:85:13:09:7d:a1:93:fa:
b0:0d:57:55:72:27:ba:7f:62:48:3d:e1:12:d5:e3:
2d:6e:bb:98:66:3d:53:0d:1d:12:85:c9:10:48:af:
82:6c:33:ce:54:99:a7:97:9a:42:e3:f5:df:39:0f:
31:fa:46:b3:d3:2d:11:e4:eb:4e:65:05:91:52:45:
c4:e2:bb:1b:82:bd:55:f8:8d:d1:97:0e:46:ca:e9:
91:b3:7d:c6:b4:51:a5:15:b4:e8:19:ec:8a:14:f0:
0a:30:be:16:73:0b:25:f3:b2:d4:9a:29:39:1e:a1:
66:a3:f7:85:77:7a:a5:da:c1:53:91:16:30:55:3c:
60:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:EF:E7:6F:40:B2:B8:EF:18:3A:4E:08:D2:2D:08:9A:F3:22:80:15
X509v3 Authority Key Identifier:
keyid:8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/q-_nb0CyuO8YOk4I0i0ImvMigBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.170.208.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:da:89:11:aa:3f:7e:45:fc:7e:3e:29:2a:4b:49:26:b8:62:
da:89:ca:7f:db:af:23:6a:bd:83:98:0b:bd:63:07:64:98:93:
42:9c:8e:3b:d9:ca:52:b4:76:09:0e:82:a3:f4:88:37:c3:ea:
26:57:a9:d8:ec:8c:4f:fa:d0:58:6c:0a:3e:2a:58:30:a8:55:
48:91:b1:5a:5b:d6:41:d3:c7:2a:03:91:3e:94:d8:5d:86:ce:
5b:20:75:e9:34:c5:36:93:f0:ad:cb:d6:03:92:82:c8:8e:7b:
40:53:91:1a:92:6f:91:9f:81:46:d4:64:54:25:e2:58:04:c9:
bb:09:37:f3:f1:99:b5:37:46:3c:8e:6c:61:38:8a:54:24:c4:
f9:2b:8a:4d:24:fd:68:37:06:03:3c:b2:cb:ea:31:31:34:85:
15:b7:fd:1c:a7:fd:69:f8:f9:b7:10:e5:39:af:f1:d5:34:5f:
b0:42:92:9a:ef:45:89:1b:6c:72:d9:a0:70:a6:f8:66:69:15:
99:36:ef:c9:7b:16:45:85:28:f4:61:dc:04:ba:eb:2d:3c:63:
4f:25:72:63:60:45:bc:25:55:51:da:74:2b:a2:69:56:ec:b1:
fd:97:fd:c3:04:30:02:9d:46:c2:00:dc:d9:30:23:b1:31:e7:
64:8d:7e:a3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYI8pUr34vcUwNAbCXDw/Q3fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiMDU0NDg1ZWU2MmM2ZjE5Mzk2MTNjYmEyMDY2OWVlZjQ1
MDRmNzkwHhcNMjIwNzI2MjIzNDAxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYmVmZTc2ZjQwYjJiOGVmMTgzYTRlMDhkMjJkMDg5YWYzMjI4MDE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhx5lGtS6VDcq3uPnZJLEzar1+lC2
qru36fis5GIN66W3+fPyBe6jSgYXuWNc+lXef4jG+H0S9wIEXltckJDB/vqWGpaU
DkUyQJrOtQUDu84EkRJfWpTdN74nRF++qNxr5v8FSoH6mtvVVvHjMIUjMUSvsz+b
r/VF3odmz4vccIUTCX2hk/qwDVdVcie6f2JIPeES1eMtbruYZj1TDR0ShckQSK+C
bDPOVJmnl5pC4/XfOQ8x+kaz0y0R5OtOZQWRUkXE4rsbgr1V+I3Rlw5GyumRs33G
tFGlFbToGeyKFPAKML4Wcwsl87LUmik5HqFmo/eFd3ql2sFTkRYwVTxgWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKvv529AsrjvGDpOCNItCJrzIoAVMB8GA1UdIwQY
MBaAFIsFRIXuYsbxk5YTy6IGae70UE95MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXdWRWhlNWl4dkdUbGhQTG9nWnA3dlJRVDNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC83NzljMDktZjQ5YS00YjM4LWE3Nzgt
NmJjMzkwOTk1Y2FiLzEvcS1fbmIwQ3l1TzhZT2s0STBpMEltdk1pZ0JVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC83NzljMDktZjQ5YS00YjM4LWE3NzgtNmJjMzkwOTk1Y2Fi
LzEvaXdWRWhlNWl4dkdUbGhQTG9nWnA3dlJRVDNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBjarQMA0G
CSqGSIb3DQEBCwUAA4IBAQB92okRqj9+Rfx+PikqS0kmuGLaicp/268jar2DmAu9
YwdkmJNCnI472cpStHYJDoKj9Ig3w+omV6nY7IxP+tBYbAo+KlgwqFVIkbFaW9ZB
08cqA5E+lNhdhs5bIHXpNMU2k/Cty9YDkoLIjntAU5Eakm+Rn4FG1GRUJeJYBMm7
CTfz8Zm1N0Y8jmxhOIpUJMT5K4pNJP1oNwYDPLLL6jExNIUVt/0cp/1p+Pm3EOU5
r/HVNF+wQpKa70WJG2xy2aBwpvhmaRWZNu/JexZFhSj0YdwEuustPGNPJXJjYEW8
JVVR2nQromlW7LH9l/3DBDACnUbCANzZMCOxMedkjX6j
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:20 2024 by rpki-client on console-fra.rpki-client.org