Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/672af8-3348-4213-b47c-0618c9a8cac4/1/a76nl4VGZJO_3SNu7MRMgFOo0tE.roa
File: a76nl4VGZJO_3SNu7MRMgFOo0tE.roa (raw, json)
Hash identifier: Q3rj0w5+PX3KbMh+I94NZoZU2Vm9o+5Ohj9IXIK3tAM=
Subject key identifier: 6B:BE:A7:97:85:46:64:93:BF:DD:23:6E:EC:C4:4C:80:53:A8:D2:D1
Certificate issuer: /CN=8a08c28be15516290b9da5135e58f55fbb80ffb4
Certificate serial: 09C26846
Authority key identifier: 8A:08:C2:8B:E1:55:16:29:0B:9D:A5:13:5E:58:F5:5F:BB:80:FF:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/igjCi-FVFikLnaUTXlj1X7uA_7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/672af8-3348-4213-b47c-0618c9a8cac4/1/a76nl4VGZJO_3SNu7MRMgFOo0tE.roa
Signing time: Sat 01 Jan 2022 08:04:43 +0000
ROA not before: Sat 01 Jan 2022 08:04:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21449
IP address blocks: 160.53.75.0/24 maxlen: 24
160.53.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163735622 (0x9c26846)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a08c28be15516290b9da5135e58f55fbb80ffb4
Validity
Not Before: Jan 1 08:04:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bbea79785466493bfdd236eecc44c8053a8d2d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:eb:02:6a:87:88:ba:8d:66:33:90:e3:3a:d3:
bc:c8:36:a3:0a:6a:55:5e:b8:69:c2:e5:0b:83:4a:
81:30:31:b3:ec:ba:28:09:83:55:0f:01:78:fb:44:
b6:de:5a:df:02:2b:5a:3d:fa:f3:4a:80:3e:28:de:
be:6c:9a:42:5b:52:c6:03:f7:61:67:de:ec:e0:6d:
26:73:af:cb:cc:08:4b:94:fb:5c:15:f2:86:23:46:
2c:a8:b8:84:ab:8f:4f:31:03:d2:ba:6c:3c:f7:4d:
b1:ce:2d:3e:0a:09:9d:6e:48:ed:70:4e:44:41:3d:
53:99:bb:e6:3b:0f:e0:9f:b4:02:fd:c2:b3:a7:d7:
fb:28:bf:bd:e6:43:79:47:ce:45:e9:ba:39:e0:c2:
a0:25:25:7d:cc:74:6d:11:b0:4b:54:69:90:93:e8:
30:fd:05:b5:73:34:62:b3:2e:68:c0:2d:0a:fe:1b:
9f:90:a0:20:3a:89:60:8f:f3:2e:e7:3a:ed:de:db:
9f:b5:34:80:22:1a:c8:02:c1:16:74:bd:71:91:ca:
6e:81:b3:09:f6:e8:11:fb:cc:37:92:5e:c9:6b:68:
45:9f:ae:e2:ed:e5:2f:c6:23:42:ae:81:dd:a2:f3:
4d:82:9a:7a:cd:6c:4e:1c:bf:33:59:8e:bc:be:e1:
07:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:BE:A7:97:85:46:64:93:BF:DD:23:6E:EC:C4:4C:80:53:A8:D2:D1
X509v3 Authority Key Identifier:
keyid:8A:08:C2:8B:E1:55:16:29:0B:9D:A5:13:5E:58:F5:5F:BB:80:FF:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/igjCi-FVFikLnaUTXlj1X7uA_7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/672af8-3348-4213-b47c-0618c9a8cac4/1/a76nl4VGZJO_3SNu7MRMgFOo0tE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/672af8-3348-4213-b47c-0618c9a8cac4/1/igjCi-FVFikLnaUTXlj1X7uA_7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.53.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a0:e1:f3:6d:8c:bf:fe:4f:8c:d0:e3:8e:7d:98:71:75:e8:bf:
98:d0:80:6e:37:0a:fe:fb:69:30:99:2d:64:4e:d5:c2:5e:55:
90:16:2f:94:ec:32:c6:43:18:e9:56:35:94:a1:54:e3:96:2f:
61:61:6a:1b:e2:b8:60:8a:c9:8d:68:d9:d8:d6:a1:02:e2:ec:
9b:74:29:6d:ea:fe:91:6e:84:ea:09:ae:bc:6c:3c:4d:f9:f8:
2f:21:73:b8:ec:d1:7b:0b:e9:00:34:66:8f:4f:1b:96:59:eb:
99:58:64:15:b1:07:a8:fb:05:24:c0:97:43:a6:e0:2c:5a:17:
1a:8e:2c:03:4e:86:85:17:07:8a:c1:28:2a:de:24:3f:53:66:
87:c6:08:cb:3a:c9:47:fb:24:49:f7:fd:34:bc:5d:fa:7b:f3:
fb:1a:68:98:42:d9:70:71:ca:24:f2:08:ea:b5:94:bb:75:8f:
cb:37:16:a7:de:d0:a6:df:4b:55:04:3d:00:3f:b1:21:ac:ec:
90:b2:a1:88:06:55:c8:a2:64:81:dd:ff:6d:18:a2:ba:bd:b6:
dc:94:2c:c3:60:f0:da:49:9d:6b:f7:b4:6c:89:62:8f:a0:cc:
9b:ae:1e:95:b8:65:65:1e:9e:2f:29:0b:5a:98:b4:e9:a9:71:
49:75:14:ec
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIECcJoRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
YTA4YzI4YmUxNTUxNjI5MGI5ZGE1MTM1ZTU4ZjU1ZmJiODBmZmI0MB4XDTIyMDEw
MTA4MDQ0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmJiZWE3OTc4NTQ2
NjQ5M2JmZGQyMzZlZWNjNDRjODA1M2E4ZDJkMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALvrAmqHiLqNZjOQ4zrTvMg2owpqVV64acLlC4NKgTAxs+y6
KAmDVQ8BePtEtt5a3wIrWj3680qAPijevmyaQltSxgP3YWfe7OBtJnOvy8wIS5T7
XBXyhiNGLKi4hKuPTzED0rpsPPdNsc4tPgoJnW5I7XBOREE9U5m75jsP4J+0Av3C
s6fX+yi/veZDeUfORem6OeDCoCUlfcx0bRGwS1RpkJPoMP0FtXM0YrMuaMAtCv4b
n5CgIDqJYI/zLuc67d7bn7U0gCIayALBFnS9cZHKboGzCfboEfvMN5JeyWtoRZ+u
4u3lL8YjQq6B3aLzTYKaes1sThy/M1mOvL7hB88CAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBRrvqeXhUZkk7/dI27sxEyAU6jS0TAfBgNVHSMEGDAWgBSKCMKL4VUWKQud
pRNeWPVfu4D/tDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lnakNpLUZWRmlrTG5hVVRYbGoxWDd1QV83US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmUvNjcyYWY4LTMzNDgtNDIxMy1iNDdjLTA2MThjOWE4Y2FjNC8x
L2E3Nm5sNFZHWkpPXzNTTnU3TVJNZ0ZPbzB0RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmUv
NjcyYWY4LTMzNDgtNDIxMy1iNDdjLTA2MThjOWE4Y2FjNC8xL2lnakNpLUZWRmlr
TG5hVVRYbGoxWDd1QV83US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAKA1MA0GCSqGSIb3DQEBCwUAA4IB
AQCg4fNtjL/+T4zQ4459mHF16L+Y0IBuNwr++2kwmS1kTtXCXlWQFi+U7DLGQxjp
VjWUoVTjli9hYWob4rhgismNaNnY1qEC4uybdClt6v6RboTqCa68bDxN+fgvIXO4
7NF7C+kANGaPTxuWWeuZWGQVsQeo+wUkwJdDpuAsWhcajiwDToaFFweKwSgq3iQ/
U2aHxgjLOslH+yRJ9/00vF36e/P7GmiYQtlwccok8gjqtZS7dY/LNxan3tCm30tV
BD0AP7EhrOyQsqGIBlXIomSB3f9tGKK6vbbclCzDYPDaSZ1r97RsiWKPoMybrh6V
uGVlHp4vKQtamLTpqXFJdRTs
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:15 2025 by rpki-client