Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/0jIhjafw4gsUmGp2chPXZPVczxM.roa
File: 0jIhjafw4gsUmGp2chPXZPVczxM.roa (raw, json)
Hash identifier: 2ujNFvmGZqLZzo1wYoccdw/daL/V8ke4RHWGw59BT6Y=
Subject key identifier: D2:32:21:8D:A7:F0:E2:0B:14:98:6A:76:72:13:D7:64:F5:5C:CF:13
Certificate issuer: /CN=6a366fdfcaa20e80e8bfc330a4d8b1be7de6a1d0
Certificate serial: 09B7C758
Authority key identifier: 6A:36:6F:DF:CA:A2:0E:80:E8:BF:C3:30:A4:D8:B1:BE:7D:E6:A1:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajZv38qiDoDov8MwpNixvn3modA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/0jIhjafw4gsUmGp2chPXZPVczxM.roa
Signing time: Sat 01 Jan 2022 02:50:40 +0000
ROA not before: Sat 01 Jan 2022 02:50:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199351
IP address blocks: 176.124.231.0/24 maxlen: 24
194.60.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163039064 (0x9b7c758)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a366fdfcaa20e80e8bfc330a4d8b1be7de6a1d0
Validity
Not Before: Jan 1 02:50:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d232218da7f0e20b14986a767213d764f55ccf13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a7:98:87:0e:9e:5e:7d:72:d8:2b:f6:c6:a7:
e4:16:31:29:9d:52:35:30:ad:bf:88:83:da:f5:bd:
db:fc:de:8e:e5:a6:7e:10:9c:d9:8a:3c:83:ee:1f:
ec:2e:dc:2f:76:09:a9:32:dd:a1:f9:be:27:b5:a0:
78:01:69:65:82:55:97:c5:7a:6c:00:8b:e2:1b:7e:
1c:29:2c:87:20:1e:e2:48:44:23:12:cd:fe:b6:9b:
85:3d:da:10:25:df:78:82:ec:75:c5:66:47:72:cf:
49:49:66:39:80:be:d6:90:b9:05:4c:35:c7:71:fc:
8b:da:2a:80:f8:79:2b:54:19:67:05:c7:63:89:78:
2e:6d:d7:d9:ef:bf:a8:ab:b6:12:d5:cc:38:7c:dd:
13:80:a0:26:9f:60:e5:1d:0f:85:0c:f6:fa:42:ce:
f7:bf:f3:97:f3:cc:2b:0d:c3:67:59:c5:0e:2b:22:
68:1f:20:99:bd:cc:07:d9:3b:e6:12:d1:53:be:26:
c2:4f:7e:fc:0e:f2:72:f4:3b:5c:2a:3b:07:19:af:
bd:8c:8b:da:47:38:e5:d1:c1:69:50:00:75:0c:c4:
fe:80:31:7e:b0:77:0f:41:2f:a8:58:03:0b:e3:57:
db:2d:98:13:37:9c:af:93:9a:d0:ed:55:c4:f0:0f:
0c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:32:21:8D:A7:F0:E2:0B:14:98:6A:76:72:13:D7:64:F5:5C:CF:13
X509v3 Authority Key Identifier:
keyid:6A:36:6F:DF:CA:A2:0E:80:E8:BF:C3:30:A4:D8:B1:BE:7D:E6:A1:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajZv38qiDoDov8MwpNixvn3modA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/0jIhjafw4gsUmGp2chPXZPVczxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/ajZv38qiDoDov8MwpNixvn3modA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.231.0/24
194.60.253.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:b3:84:a3:b6:fd:f0:8e:15:5d:23:fc:82:76:99:b4:55:af:
10:ae:3f:f6:db:0d:e6:31:cf:18:52:28:dc:f2:89:13:c4:5a:
f6:66:40:e5:3c:a0:c9:2a:34:fb:78:87:63:a3:5f:e6:95:9d:
72:7b:8c:9a:c7:90:68:04:7b:4e:17:2e:9f:15:44:93:79:6b:
20:2d:ee:82:ce:32:6b:6e:df:84:bf:bd:25:b5:54:e7:e0:20:
bb:35:7d:72:0b:0a:30:fb:9a:06:1f:08:e1:9f:8c:89:47:b9:
52:c1:03:7f:63:56:0b:ff:c2:27:01:08:89:2e:e0:e8:c8:0e:
92:6a:c9:c4:53:d1:9c:25:04:a2:68:85:57:5b:e3:88:72:b6:
2f:e9:f5:3d:9c:5b:68:a9:0d:9b:68:e5:b9:15:fb:37:17:bb:
00:77:6e:65:08:c6:8f:0d:5d:5a:ed:b0:87:9c:e0:8b:62:4e:
93:87:bf:22:1c:f8:3c:7d:ae:3b:08:d2:0c:d2:d9:e2:64:ef:
69:fa:46:13:a9:25:20:c3:92:94:ea:2d:4b:92:b8:4f:c4:d2:
bd:6b:32:ba:88:37:a1:9e:49:3e:a7:7a:68:eb:c1:4c:6c:bc:
b1:05:b7:66:03:2a:c9:d0:6a:5f:79:16:a1:ff:95:90:a3:0b:
33:a1:78:0b
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECbfHWDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YTM2NmZkZmNhYTIwZTgwZThiZmMzMzBhNGQ4YjFiZTdkZTZhMWQwMB4XDTIyMDEw
MTAyNTA0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDIzMjIxOGRhN2Yw
ZTIwYjE0OTg2YTc2NzIxM2Q3NjRmNTVjY2YxMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMenmIcOnl59ctgr9san5BYxKZ1SNTCtv4iD2vW92/zejuWm
fhCc2Yo8g+4f7C7cL3YJqTLdofm+J7WgeAFpZYJVl8V6bACL4ht+HCkshyAe4khE
IxLN/rabhT3aECXfeILsdcVmR3LPSUlmOYC+1pC5BUw1x3H8i9oqgPh5K1QZZwXH
Y4l4Lm3X2e+/qKu2EtXMOHzdE4CgJp9g5R0PhQz2+kLO97/zl/PMKw3DZ1nFDisi
aB8gmb3MB9k75hLRU74mwk9+/A7ycvQ7XCo7BxmvvYyL2kc45dHBaVAAdQzE/oAx
frB3D0EvqFgDC+NX2y2YEzecr5Oa0O1VxPAPDNsCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTSMiGNp/DiCxSYanZyE9dk9VzPEzAfBgNVHSMEGDAWgBRqNm/fyqIOgOi/
wzCk2LG+feah0DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2FqWnYzOHFpRG9Eb3Y4TXdwTml4dm4zbW9kQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjMvOGM0ZWM0LWQ2MzctNGQzZi05ZGU4LTA1NTU5YzFmNTkxNS8x
LzBqSWhqYWZ3NGdzVW1HcDJjaFBYWlBWY3p4TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMv
OGM0ZWM0LWQ2MzctNGQzZi05ZGU4LTA1NTU5YzFmNTkxNS8xL2FqWnYzOHFpRG9E
b3Y4TXdwTml4dm4zbW9kQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEALB85wMEAMI8/TANBgkqhkiG9w0B
AQsFAAOCAQEAXbOEo7b98I4VXSP8gnaZtFWvEK4/9tsN5jHPGFIo3PKJE8Ra9mZA
5TygySo0+3iHY6Nf5pWdcnuMmseQaAR7ThcunxVEk3lrIC3ugs4ya27fhL+9JbVU
5+AguzV9cgsKMPuaBh8I4Z+MiUe5UsEDf2NWC//CJwEIiS7g6MgOkmrJxFPRnCUE
omiFV1vjiHK2L+n1PZxbaKkNm2jluRX7Nxe7AHduZQjGjw1dWu2wh5zgi2JOk4e/
Ihz4PH2uOwjSDNLZ4mTvafpGE6klIMOSlOotS5K4T8TSvWsyuog3oZ5JPqd6aOvB
TGy8sQW3ZgMqydBqX3kWof+VkKMLM6F4Cw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:27 2024 by rpki-client on console-ams.rpki-client.org