Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/0d1c33-9117-4a11-bbfe-db81a18e242e/1/x8WrCJwK1in2vyjkL0VXXOxMRYY.roa
File: x8WrCJwK1in2vyjkL0VXXOxMRYY.roa (raw, json)
Hash identifier: c2EvuMw2VneqhkciDHKmRQv0D8wEc5gYIVd6pzfnh84=
Subject key identifier: C7:C5:AB:08:9C:0A:D6:29:F6:BF:28:E4:2F:45:57:5C:EC:4C:45:86
Certificate issuer: /CN=7d645e584f1ef9a881f1fbbc4d27a3423de3dff1
Certificate serial: 07FB2547
Authority key identifier: 7D:64:5E:58:4F:1E:F9:A8:81:F1:FB:BC:4D:27:A3:42:3D:E3:DF:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fWReWE8e-aiB8fu8TSejQj3j3_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/0d1c33-9117-4a11-bbfe-db81a18e242e/1/x8WrCJwK1in2vyjkL0VXXOxMRYY.roa
Signing time: Sat 01 Jan 2022 01:52:43 +0000
ROA not before: Sat 01 Jan 2022 01:52:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12605
IP address blocks: 83.164.0.0/17 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133899591 (0x7fb2547)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d645e584f1ef9a881f1fbbc4d27a3423de3dff1
Validity
Not Before: Jan 1 01:52:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7c5ab089c0ad629f6bf28e42f45575cec4c4586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a2:92:6a:9f:4b:f3:50:36:63:3e:69:89:77:
71:2e:f9:1f:34:e8:42:63:e6:07:59:b4:7a:f1:11:
12:9a:92:c3:02:ba:f4:20:21:51:41:90:30:57:48:
e9:1d:f2:27:dc:3f:7d:39:80:f5:18:34:8f:dc:f6:
b6:3a:47:42:9d:c4:6a:57:8f:91:ac:ae:d5:fe:c4:
89:9b:14:a3:50:9e:99:b2:a5:34:69:6e:df:a5:d0:
a4:49:c7:80:73:54:ef:9c:f1:da:58:4f:a0:4d:5f:
37:76:2e:58:ae:ca:45:59:db:79:7d:a8:b2:03:fb:
a6:43:31:48:2b:64:d3:6b:64:5a:99:1c:6f:c5:ab:
ef:0d:fd:b7:f3:95:0c:0a:0a:99:34:e0:00:e6:98:
8d:88:c3:02:c8:34:21:e2:e5:da:28:1d:1e:9b:fd:
76:d8:28:72:9b:ef:9a:35:dc:c1:e2:2e:43:fd:ce:
da:a5:69:83:46:92:d5:05:f9:23:5e:0b:46:39:db:
f5:31:d0:ab:03:f0:59:69:65:be:ad:d0:91:14:8d:
a6:56:0a:87:1d:b4:3d:89:41:b7:66:b6:17:4e:c1:
89:8e:0c:d3:c5:0a:43:58:8e:55:7f:fa:c2:bc:a2:
f7:1c:67:3a:c2:15:e0:3c:0b:d2:3f:86:b4:b1:a0:
f7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:C5:AB:08:9C:0A:D6:29:F6:BF:28:E4:2F:45:57:5C:EC:4C:45:86
X509v3 Authority Key Identifier:
keyid:7D:64:5E:58:4F:1E:F9:A8:81:F1:FB:BC:4D:27:A3:42:3D:E3:DF:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fWReWE8e-aiB8fu8TSejQj3j3_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0d1c33-9117-4a11-bbfe-db81a18e242e/1/x8WrCJwK1in2vyjkL0VXXOxMRYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0d1c33-9117-4a11-bbfe-db81a18e242e/1/fWReWE8e-aiB8fu8TSejQj3j3_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.164.0.0/17
Signature Algorithm: sha256WithRSAEncryption
5f:6e:ea:cd:57:85:7b:a4:bc:de:be:55:83:3d:78:c9:d4:2d:
56:ff:5e:b3:57:34:ba:d0:26:10:99:2d:e3:cb:21:d1:9c:5d:
41:eb:18:bc:49:eb:4d:79:72:ad:70:df:de:78:c4:0c:ed:26:
04:23:a9:d5:28:88:f2:30:f1:62:ce:c9:92:29:45:81:43:50:
eb:af:4a:70:98:ff:1d:a8:3c:c7:67:bc:cc:ad:63:2b:94:d0:
47:4f:74:79:81:7a:a3:8d:67:f2:5b:3c:42:d9:47:32:5c:93:
ac:07:f7:f0:70:c5:73:bf:be:fd:df:7c:a6:40:ee:8c:41:e7:
ff:56:25:fd:9c:1f:5f:ce:00:81:16:c8:77:81:39:c4:f9:91:
8e:5f:d0:35:32:4f:ab:5c:91:3a:bd:ee:d0:09:06:88:f9:7e:
1e:49:76:53:54:02:9b:af:7e:ad:df:1c:5d:f3:33:64:c8:81:
7f:47:6b:ff:44:2f:ca:65:d4:58:14:92:1d:38:36:63:7e:6f:
79:b0:bc:34:bc:c7:68:27:d7:bf:d5:30:a1:32:8b:40:04:dc:
7c:f5:3b:87:04:dd:e1:5a:9c:de:95:a2:96:f3:32:4a:0e:74:
38:df:9c:ac:d1:6d:d4:76:31:a0:3b:c4:90:68:3b:93:74:17:
12:99:ab:bb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB/slRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDY0NWU1ODRmMWVmOWE4ODFmMWZiYmM0ZDI3YTM0MjNkZTNkZmYxMB4XDTIyMDEw
MTAxNTI0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzdjNWFiMDg5YzBh
ZDYyOWY2YmYyOGU0MmY0NTU3NWNlYzRjNDU4NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANqikmqfS/NQNmM+aYl3cS75HzToQmPmB1m0evEREpqSwwK6
9CAhUUGQMFdI6R3yJ9w/fTmA9Rg0j9z2tjpHQp3EalePkayu1f7EiZsUo1CembKl
NGlu36XQpEnHgHNU75zx2lhPoE1fN3YuWK7KRVnbeX2osgP7pkMxSCtk02tkWpkc
b8Wr7w39t/OVDAoKmTTgAOaYjYjDAsg0IeLl2igdHpv9dtgocpvvmjXcweIuQ/3O
2qVpg0aS1QX5I14LRjnb9THQqwPwWWllvq3QkRSNplYKhx20PYlBt2a2F07BiY4M
08UKQ1iOVX/6wryi9xxnOsIV4DwL0j+GtLGg9yMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTHxasInArWKfa/KOQvRVdc7ExFhjAfBgNVHSMEGDAWgBR9ZF5YTx75qIHx
+7xNJ6NCPePf8TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZXUmVXRThlLWFpQjhmdThUU2VqUWozajNfRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTkvMGQxYzMzLTkxMTctNGExMS1iYmZlLWRiODFhMThlMjQyZS8x
L3g4V3JDSndLMWluMnZ5amtMMFZYWE94TVJZWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTkv
MGQxYzMzLTkxMTctNGExMS1iYmZlLWRiODFhMThlMjQyZS8xL2ZXUmVXRThlLWFp
QjhmdThUU2VqUWozajNfRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB1OkADANBgkqhkiG9w0BAQsFAAOC
AQEAX27qzVeFe6S83r5Vgz14ydQtVv9es1c0utAmEJkt48sh0ZxdQesYvEnrTXly
rXDf3njEDO0mBCOp1SiI8jDxYs7JkilFgUNQ669KcJj/Hag8x2e8zK1jK5TQR090
eYF6o41n8ls8QtlHMlyTrAf38HDFc7++/d98pkDujEHn/1Yl/ZwfX84AgRbId4E5
xPmRjl/QNTJPq1yROr3u0AkGiPl+Hkl2U1QCm69+rd8cXfMzZMiBf0dr/0QvymXU
WBSSHTg2Y35vebC8NLzHaCfXv9UwoTKLQATcfPU7hwTd4Vqc3pWilvMySg50ON+c
rNFt1HYxoDvEkGg7k3QXEpmruw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:48 2023 by rpki-client on console-fra.rpki-client.org