Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/4578b8-b261-4988-90d4-b477a962e365/1/mHr9ZxyK5XkJ6koNwKLWpEs_pWw.roa
File: mHr9ZxyK5XkJ6koNwKLWpEs_pWw.roa (raw, json)
Hash identifier: haAL6Kj7eapuRdGHQ8ZQAaEcduJs6qk2JyEXQvB+tFc=
Subject key identifier: 98:7A:FD:67:1C:8A:E5:79:09:EA:4A:0D:C0:A2:D6:A4:4B:3F:A5:6C
Certificate issuer: /CN=19d6ad902c949e9c5ecf896f8c50107eb659ffe7
Certificate serial: 01B5CC
Authority key identifier: 19:D6:AD:90:2C:94:9E:9C:5E:CF:89:6F:8C:50:10:7E:B6:59:FF:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GdatkCyUnpxez4lvjFAQfrZZ_-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/4578b8-b261-4988-90d4-b477a962e365/1/mHr9ZxyK5XkJ6koNwKLWpEs_pWw.roa
Signing time: Thu 20 Jan 2022 01:06:11 +0000
ROA not before: Thu 20 Jan 2022 01:06:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 37.72.132.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112076 (0x1b5cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19d6ad902c949e9c5ecf896f8c50107eb659ffe7
Validity
Not Before: Jan 20 01:06:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=987afd671c8ae57909ea4a0dc0a2d6a44b3fa56c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f7:3c:c1:87:fb:8e:18:09:4d:0d:4d:21:ac:
a5:71:b1:5a:3f:81:7e:df:f3:b4:71:e7:44:fe:1b:
7f:43:f6:42:83:5e:fa:03:30:09:a3:26:c0:e9:2c:
1e:e5:1c:3d:8e:8a:25:7f:06:af:68:56:2d:bd:cf:
46:69:c5:bf:c1:ec:42:e8:3a:2f:f3:c3:51:cf:f5:
32:07:45:b8:d5:1b:cc:26:87:65:ca:8c:02:97:a9:
ba:4c:f2:2a:87:e4:34:ad:72:fa:20:6e:cf:57:2b:
6c:a0:b6:e7:08:5d:95:f6:64:cb:d0:7d:fb:0f:2a:
15:5d:f0:8f:12:78:bd:f7:c2:0d:12:45:96:af:4b:
02:c4:02:f2:65:27:cd:f1:90:a9:61:e4:5c:3b:4e:
76:4e:f4:ab:70:60:2c:21:3c:72:c1:f1:fa:ca:b1:
dc:db:de:8a:63:c8:28:70:c4:62:c3:0d:68:fd:01:
6b:ae:35:7c:e1:c0:f2:40:ce:4a:5b:3b:99:35:51:
a8:bc:f7:c2:a5:74:e8:4b:0e:2f:40:e2:74:61:02:
3d:99:db:72:c8:57:99:99:7a:99:2f:99:0d:fe:13:
8e:8e:37:bb:ad:b8:2b:c0:f5:6b:fa:d6:35:36:fa:
49:84:db:7d:58:46:d6:2f:3c:64:48:f9:31:20:be:
86:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:7A:FD:67:1C:8A:E5:79:09:EA:4A:0D:C0:A2:D6:A4:4B:3F:A5:6C
X509v3 Authority Key Identifier:
keyid:19:D6:AD:90:2C:94:9E:9C:5E:CF:89:6F:8C:50:10:7E:B6:59:FF:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GdatkCyUnpxez4lvjFAQfrZZ_-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4578b8-b261-4988-90d4-b477a962e365/1/mHr9ZxyK5XkJ6koNwKLWpEs_pWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4578b8-b261-4988-90d4-b477a962e365/1/GdatkCyUnpxez4lvjFAQfrZZ_-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.132.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:53:3c:cd:ab:94:b4:76:40:5a:07:aa:31:64:f3:2b:18:23:
80:c4:40:1d:92:e6:ec:1f:7f:0c:e0:35:4d:5d:a8:64:6e:b9:
58:11:92:c3:35:af:e4:52:51:5b:f5:6c:d2:a6:a1:ea:b7:5a:
d1:1f:56:36:31:e8:c4:12:2a:46:a1:36:18:c2:0c:61:d7:91:
4c:ca:f8:79:37:6d:67:33:01:8d:6e:f6:64:69:2a:83:d9:65:
e0:45:c6:e9:bb:af:77:0c:b3:ad:00:f2:b9:80:ee:08:7a:32:
44:bf:a1:07:cc:f8:08:1e:94:ff:a3:2b:43:f4:2b:41:11:f1:
cc:f3:6f:86:ae:11:fa:14:b9:a3:42:46:87:33:dc:df:15:74:
55:2f:50:2f:1a:9f:2a:1b:08:9c:63:14:ed:6e:35:80:21:35:
18:92:53:d4:5a:e5:51:7a:60:0b:84:45:1a:ea:33:ee:67:98:
bc:12:de:89:24:24:8d:a1:27:a3:1f:47:4d:42:e4:07:9b:30:
8c:66:25:7b:56:31:8e:0a:22:bb:1e:25:9b:b7:ed:a6:03:42:
9a:45:3b:fa:c7:56:a2:58:2e:a4:38:22:d3:b1:3d:37:7a:82:
33:6c:19:3b:a1:94:67:df:11:a8:00:98:c8:26:6c:f2:79:6c:
0e:4e:65:f7
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAbXMMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDE5
ZDZhZDkwMmM5NDllOWM1ZWNmODk2ZjhjNTAxMDdlYjY1OWZmZTcwHhcNMjIwMTIw
MDEwNjExWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg5ODdhZmQ2NzFjOGFl
NTc5MDllYTRhMGRjMGEyZDZhNDRiM2ZhNTZjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAovc8wYf7jhgJTQ1NIaylcbFaP4F+3/O0cedE/ht/Q/ZCg176
AzAJoybA6Swe5Rw9joolfwavaFYtvc9GacW/wexC6Dov88NRz/UyB0W41RvMJodl
yowCl6m6TPIqh+Q0rXL6IG7PVytsoLbnCF2V9mTL0H37DyoVXfCPEni998INEkWW
r0sCxALyZSfN8ZCpYeRcO052TvSrcGAsITxywfH6yrHc296KY8gocMRiww1o/QFr
rjV84cDyQM5KWzuZNVGovPfCpXToSw4vQOJ0YQI9mdtyyFeZmXqZL5kN/hOOjje7
rbgrwPVr+tY1NvpJhNt9WEbWLzxkSPkxIL6GAQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFJh6/WcciuV5CepKDcCi1qRLP6VsMB8GA1UdIwQYMBaAFBnWrZAslJ6cXs+J
b4xQEH62Wf/nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
R2RhdGtDeVVucHhlejRsdmpGQVFmclpaXy1jLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mNi80NTc4YjgtYjI2MS00OTg4LTkwZDQtYjQ3N2E5NjJlMzY1LzEv
bUhyOVp4eUs1WGtKNmtvTndLTFdwRXNfcFd3LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi80
NTc4YjgtYjI2MS00OTg4LTkwZDQtYjQ3N2E5NjJlMzY1LzEvR2RhdGtDeVVucHhl
ejRsdmpGQVFmclpaXy1jLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJUiEMA0GCSqGSIb3DQEBCwUAA4IB
AQCdUzzNq5S0dkBaB6oxZPMrGCOAxEAdkubsH38M4DVNXahkbrlYEZLDNa/kUlFb
9WzSpqHqt1rRH1Y2MejEEipGoTYYwgxh15FMyvh5N21nMwGNbvZkaSqD2WXgRcbp
u693DLOtAPK5gO4IejJEv6EHzPgIHpT/oytD9CtBEfHM82+GrhH6FLmjQkaHM9zf
FXRVL1AvGp8qGwicYxTtbjWAITUYklPUWuVRemALhEUa6jPuZ5i8Et6JJCSNoSej
H0dNQuQHmzCMZiV7VjGOCiK7HiWbt+2mA0KaRTv6x1aiWC6kOCLTsT03eoIzbBk7
oZRn3xGoAJjIJmzyeWwOTmX3
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:25 2023 by rpki-client on console-ams.rpki-client.org