Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/7pUbv8ZV4JEXBALs_Etfw84mFE8.roa
File: 7pUbv8ZV4JEXBALs_Etfw84mFE8.roa (raw, json)
Hash identifier: xiIMv+10F3NprgIqiYoblFAltWdLkLukn/QujHvOWJs=
Subject key identifier: EE:95:1B:BF:C6:55:E0:91:17:04:02:EC:FC:4B:5F:C3:CE:26:14:4F
Certificate issuer: /CN=7979863cea82aeb8e9df384b39aa5176f4bcfa61
Certificate serial: 2420D509
Authority key identifier: 79:79:86:3C:EA:82:AE:B8:E9:DF:38:4B:39:AA:51:76:F4:BC:FA:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eXmGPOqCrrjp3zhLOapRdvS8-mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/7pUbv8ZV4JEXBALs_Etfw84mFE8.roa
Signing time: Sat 01 Jan 2022 02:57:14 +0000
ROA not before: Sat 01 Jan 2022 02:57:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43349
IP address blocks: 178.16.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 606131465 (0x2420d509)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7979863cea82aeb8e9df384b39aa5176f4bcfa61
Validity
Not Before: Jan 1 02:57:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee951bbfc655e091170402ecfc4b5fc3ce26144f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b9:f4:50:2c:83:6b:cd:b4:95:61:37:b5:4c:
ff:ab:5f:2d:75:78:63:d1:d1:3a:57:c1:e9:e6:f2:
cd:ee:c2:d5:0d:6e:c6:b3:d0:4b:1b:f1:d6:bc:8c:
6a:8a:ef:5a:fc:8a:e2:c0:f0:26:d9:6c:7d:47:bf:
b4:2e:b4:ea:96:15:0f:ed:7c:6a:77:77:cd:2f:81:
fe:61:64:e6:5f:77:72:76:33:f4:8d:43:f1:97:36:
28:6c:de:22:69:76:e1:d6:00:bd:22:8d:7e:7e:a4:
1f:74:c5:c3:58:d1:b7:8d:7e:e4:77:e2:ea:54:b2:
af:c1:b6:e9:72:cb:05:90:c9:09:f5:40:de:ba:46:
9e:c3:93:70:7a:2d:f0:21:85:e1:af:7f:74:c8:0f:
c5:fc:83:9c:ee:14:7a:97:53:fb:9c:77:0e:a8:13:
cf:87:0a:8f:63:46:3b:3e:0c:e9:f2:ab:71:09:3c:
70:da:86:d3:b6:73:52:85:80:ff:fd:7c:f9:d0:d2:
0a:56:a2:2d:af:b8:0f:9b:dd:d7:5d:76:f7:24:d7:
a9:5e:95:9f:69:7a:05:bb:37:ef:5b:e5:ac:84:82:
22:1a:99:60:66:58:95:7e:4d:3a:34:4b:08:87:2c:
24:73:44:96:2a:7e:07:f4:f2:bd:37:da:2d:b9:4a:
40:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:95:1B:BF:C6:55:E0:91:17:04:02:EC:FC:4B:5F:C3:CE:26:14:4F
X509v3 Authority Key Identifier:
keyid:79:79:86:3C:EA:82:AE:B8:E9:DF:38:4B:39:AA:51:76:F4:BC:FA:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXmGPOqCrrjp3zhLOapRdvS8-mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/7pUbv8ZV4JEXBALs_Etfw84mFE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/eXmGPOqCrrjp3zhLOapRdvS8-mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.16.148.0/24
Signature Algorithm: sha256WithRSAEncryption
50:4e:53:6d:da:42:97:68:89:45:8d:77:2e:53:ed:c6:3d:5c:
dc:43:8d:95:72:55:a2:35:3b:c7:5b:9f:28:a5:ec:f7:b9:25:
b5:65:fc:0b:db:03:22:5f:f1:fa:f2:76:e7:b0:23:4e:6b:30:
e1:d3:29:9d:bc:16:69:62:30:dd:9a:79:c7:ef:6c:0e:40:89:
92:a0:94:e2:7e:ef:4c:f8:3c:f4:e9:df:19:87:ed:a5:4a:67:
54:a6:29:78:bf:df:f8:07:3a:4c:57:b9:06:bb:24:ec:90:74:
92:80:87:1a:e1:ff:81:99:14:9d:08:cc:6c:c6:a5:03:48:c7:
8e:32:4b:f1:79:cb:bd:2b:7e:11:55:d5:91:99:f5:db:bb:88:
b7:34:ae:96:6a:3b:5a:83:15:3c:cc:54:19:3e:09:79:e3:26:
85:a0:3d:dd:a9:4c:1e:da:1c:16:5f:28:5b:79:90:57:49:bc:
35:96:01:01:9e:31:b8:40:ac:e2:a8:ad:be:3b:52:69:e0:2d:
94:22:a1:c6:03:06:4c:51:1f:4f:13:68:46:c7:82:9b:44:e5:
59:57:89:e0:2f:81:6f:8c:f4:81:6e:ae:5b:23:82:f5:08:7a:
c7:1c:4d:3d:47:b6:85:61:40:b2:cb:a5:08:e8:ef:91:82:e6:
5f:03:46:22
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEJCDVCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
OTc5ODYzY2VhODJhZWI4ZTlkZjM4NGIzOWFhNTE3NmY0YmNmYTYxMB4XDTIyMDEw
MTAyNTcxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWU5NTFiYmZjNjU1
ZTA5MTE3MDQwMmVjZmM0YjVmYzNjZTI2MTQ0ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKy59FAsg2vNtJVhN7VM/6tfLXV4Y9HROlfB6ebyze7C1Q1u
xrPQSxvx1ryMaorvWvyK4sDwJtlsfUe/tC606pYVD+18and3zS+B/mFk5l93cnYz
9I1D8Zc2KGzeIml24dYAvSKNfn6kH3TFw1jRt41+5Hfi6lSyr8G26XLLBZDJCfVA
3rpGnsOTcHot8CGF4a9/dMgPxfyDnO4UepdT+5x3DqgTz4cKj2NGOz4M6fKrcQk8
cNqG07ZzUoWA//18+dDSClaiLa+4D5vd11129yTXqV6Vn2l6Bbs371vlrISCIhqZ
YGZYlX5NOjRLCIcsJHNElip+B/TyvTfaLblKQBMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTulRu/xlXgkRcEAuz8S1/DziYUTzAfBgNVHSMEGDAWgBR5eYY86oKuuOnf
OEs5qlF29Lz6YTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VYbUdQT3FDcnJqcDN6aExPYXBSZHZTOC1tRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmQvMWNjZjI1LTIwZGUtNGIyZS1hMGUxLWRlNGFjZjQ0N2ZhZS8x
LzdwVWJ2OFpWNEpFWEJBTHNfRXRmdzg0bUZFOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQv
MWNjZjI1LTIwZGUtNGIyZS1hMGUxLWRlNGFjZjQ0N2ZhZS8xL2VYbUdQT3FDcnJq
cDN6aExPYXBSZHZTOC1tRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALIQlDANBgkqhkiG9w0BAQsFAAOC
AQEAUE5TbdpCl2iJRY13LlPtxj1c3EONlXJVojU7x1ufKKXs97kltWX8C9sDIl/x
+vJ257AjTmsw4dMpnbwWaWIw3Zp5x+9sDkCJkqCU4n7vTPg89OnfGYftpUpnVKYp
eL/f+Ac6TFe5Brsk7JB0koCHGuH/gZkUnQjMbMalA0jHjjJL8XnLvSt+EVXVkZn1
27uItzSulmo7WoMVPMxUGT4JeeMmhaA93alMHtocFl8oW3mQV0m8NZYBAZ4xuECs
4qitvjtSaeAtlCKhxgMGTFEfTxNoRseCm0TlWVeJ4C+Bb4z0gW6uWyOC9Qh6xxxN
PUe2hWFAssulCOjvkYLmXwNGIg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:47 2023 by rpki-client on console-ams.rpki-client.org