Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/e5d580-eee8-463e-84a8-eaccb8b42dc9/1/aegQlSetWRnJ6RkdhGGIJJ_IfqY.roa
File: aegQlSetWRnJ6RkdhGGIJJ_IfqY.roa (raw, json)
Hash identifier: XhWZs3wE5zixAA/KKg522qdLSyj/nbLmru6QBtl1q00=
Subject key identifier: 69:E8:10:95:27:AD:59:19:C9:E9:19:1D:84:61:88:24:9F:C8:7E:A6
Certificate issuer: /CN=b7e34f57d007166def4dd881d8f7d5b6ed95e656
Certificate serial: 0184CE6C17D62785716E6476B3AF8F1333C4
Authority key identifier: B7:E3:4F:57:D0:07:16:6D:EF:4D:D8:81:D8:F7:D5:B6:ED:95:E6:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t-NPV9AHFm3vTdiB2PfVtu2V5lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/e5d580-eee8-463e-84a8-eaccb8b42dc9/1/aegQlSetWRnJ6RkdhGGIJJ_IfqY.roa
Signing time: Thu 01 Dec 2022 16:01:41 +0000
ROA not before: Thu 01 Dec 2022 16:01:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24961
IP address blocks: 185.171.218.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ce:6c:17:d6:27:85:71:6e:64:76:b3:af:8f:13:33:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7e34f57d007166def4dd881d8f7d5b6ed95e656
Validity
Not Before: Dec 1 16:01:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69e8109527ad5919c9e9191d846188249fc87ea6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:53:e4:9c:45:23:97:bb:3a:fc:c2:4a:92:4b:
b9:77:fe:12:26:64:1e:e0:e9:d6:7d:1d:33:0e:24:
de:5a:93:2f:5b:ba:b3:76:23:9e:32:c3:af:6c:2c:
56:20:67:a2:ab:61:f1:bd:4d:7b:79:0f:63:be:c7:
e4:f7:94:de:3c:4c:e2:a1:0d:fe:47:32:52:86:4b:
0a:ee:0a:0d:c1:dd:4d:64:f0:a3:aa:bd:37:9b:38:
5f:2b:2e:c6:08:75:f9:7b:14:3c:ce:26:e8:f4:b7:
64:35:a5:30:9b:aa:73:46:0c:61:f4:43:53:28:dd:
5e:8e:36:9f:6a:15:c9:0c:0e:8d:bf:10:eb:e7:69:
76:fe:6b:fc:86:49:b9:e1:2f:cc:d6:75:fe:2a:25:
92:bc:c2:60:de:f9:b4:2a:1a:30:80:69:b2:21:ac:
ed:c8:fe:7a:2f:35:36:43:47:1f:96:7f:af:f6:c9:
02:7d:19:38:24:98:0e:2c:a2:4a:63:bc:91:44:64:
62:94:0a:47:0d:d6:7f:f7:db:c1:90:a3:8a:e5:bb:
82:be:68:34:f4:fe:6b:13:af:04:07:b9:b5:17:d0:
15:54:ff:72:d5:c5:f9:08:ee:08:de:3e:00:3d:da:
44:f9:db:05:cb:53:25:12:32:57:d6:ec:76:a2:a6:
bf:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:E8:10:95:27:AD:59:19:C9:E9:19:1D:84:61:88:24:9F:C8:7E:A6
X509v3 Authority Key Identifier:
keyid:B7:E3:4F:57:D0:07:16:6D:EF:4D:D8:81:D8:F7:D5:B6:ED:95:E6:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t-NPV9AHFm3vTdiB2PfVtu2V5lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/e5d580-eee8-463e-84a8-eaccb8b42dc9/1/aegQlSetWRnJ6RkdhGGIJJ_IfqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/e5d580-eee8-463e-84a8-eaccb8b42dc9/1/t-NPV9AHFm3vTdiB2PfVtu2V5lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.218.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:aa:a9:c4:42:06:1e:03:0e:1a:38:8a:57:6e:69:c4:46:1d:
43:0b:09:cf:1b:7c:ea:96:56:f5:ce:d0:d4:94:3e:31:a1:fb:
d8:4b:b5:c8:39:d9:76:4f:df:30:d7:7b:96:f9:73:00:8b:fc:
d0:ab:5c:7e:e8:a0:b6:8c:de:49:7b:67:bf:68:06:89:96:63:
b6:ab:99:3f:33:9d:7e:26:a3:9f:da:5d:34:df:dd:17:3f:f7:
ac:fe:73:9a:f0:d5:af:66:78:52:06:41:23:2b:c1:f1:5e:57:
1a:14:0f:39:51:7a:a2:5b:f3:cf:66:36:1a:7a:fe:c2:d5:e0:
e9:22:d7:a4:31:94:37:dc:19:d3:33:3e:50:41:9c:51:19:fa:
44:54:59:f3:9e:5d:59:d0:ee:d6:ff:a7:e1:8a:47:49:d1:d9:
52:d1:7c:7f:58:85:86:cb:d4:9f:2d:38:8b:84:d8:76:e2:f6:
4b:11:62:2c:f2:d0:77:55:6e:e1:36:17:9d:90:ed:37:47:4c:
11:c1:f2:39:b9:68:52:6f:73:34:6d:26:c1:a5:ca:81:4b:4e:
cf:86:1c:7a:fc:84:17:29:9a:a5:70:34:c2:b5:77:11:fc:69:
f0:41:8a:f5:fc:e2:7c:6f:18:b8:3e:70:93:63:ca:5c:0f:f9:
00:ba:b6:a6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTObBfWJ4VxbmR2s6+PEzPEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3ZTM0ZjU3ZDAwNzE2NmRlZjRkZDg4MWQ4ZjdkNWI2ZWQ5
NWU2NTYwHhcNMjIxMjAxMTYwMTQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OWU4MTA5NTI3YWQ1OTE5YzllOTE5MWQ4NDYxODgyNDlmYzg3ZWE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+VPknEUjl7s6/MJKkku5d/4SJmQe
4OnWfR0zDiTeWpMvW7qzdiOeMsOvbCxWIGeiq2HxvU17eQ9jvsfk95TePEzioQ3+
RzJShksK7goNwd1NZPCjqr03mzhfKy7GCHX5exQ8zibo9LdkNaUwm6pzRgxh9ENT
KN1ejjafahXJDA6NvxDr52l2/mv8hkm54S/M1nX+KiWSvMJg3vm0KhowgGmyIazt
yP56LzU2Q0cfln+v9skCfRk4JJgOLKJKY7yRRGRilApHDdZ/99vBkKOK5buCvmg0
9P5rE68EB7m1F9AVVP9y1cX5CO4I3j4APdpE+dsFy1MlEjJX1ux2oqa/HQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGnoEJUnrVkZyekZHYRhiCSfyH6mMB8GA1UdIwQY
MBaAFLfjT1fQBxZt703Ygdj31bbtleZWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdC1OUFY5QUhGbTN2VGRpQjJQZlZ0dTJWNWxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9lNWQ1ODAtZWVlOC00NjNlLTg0YTgt
ZWFjY2I4YjQyZGM5LzEvYWVnUWxTZXRXUm5KNlJrZGhHR0lKSl9JZnFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9lNWQ1ODAtZWVlOC00NjNlLTg0YTgtZWFjY2I4YjQyZGM5
LzEvdC1OUFY5QUhGbTN2VGRpQjJQZlZ0dTJWNWxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuavaMA0G
CSqGSIb3DQEBCwUAA4IBAQAuqqnEQgYeAw4aOIpXbmnERh1DCwnPG3zqllb1ztDU
lD4xofvYS7XIOdl2T98w13uW+XMAi/zQq1x+6KC2jN5Je2e/aAaJlmO2q5k/M51+
JqOf2l00390XP/es/nOa8NWvZnhSBkEjK8HxXlcaFA85UXqiW/PPZjYaev7C1eDp
ItekMZQ33BnTMz5QQZxRGfpEVFnznl1Z0O7W/6fhikdJ0dlS0Xx/WIWGy9SfLTiL
hNh24vZLEWIs8tB3VW7hNhedkO03R0wRwfI5uWhSb3M0bSbBpcqBS07Phhx6/IQX
KZqlcDTCtXcR/GnwQYr1/OJ8bxi4PnCTY8pcD/kAuram
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:39 2024 by rpki-client on console-ams.rpki-client.org