Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/b72JC-89QTmgvq1YtBnWgRLeig0.roa
File: b72JC-89QTmgvq1YtBnWgRLeig0.roa (raw, json)
Hash identifier: M73lJBIQaMUZYU4i2hSZWpZaEsd33kWhYA0KEJXJe3c=
Subject key identifier: 6F:BD:89:0B:EF:3D:41:39:A0:BE:AD:58:B4:19:D6:81:12:DE:8A:0D
Certificate issuer: /CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Certificate serial: 01847F8F3BB18CFBD14F75438B70A2AE8073
Authority key identifier: 66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/b72JC-89QTmgvq1YtBnWgRLeig0.roa
Signing time: Wed 16 Nov 2022 08:30:04 +0000
ROA not before: Wed 16 Nov 2022 08:30:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34170
IP address blocks: 158.181.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7f:8f:3b:b1:8c:fb:d1:4f:75:43:8b:70:a2:ae:80:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Validity
Not Before: Nov 16 08:30:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fbd890bef3d4139a0bead58b419d68112de8a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:47:08:f5:4c:c3:fe:c4:2f:f5:16:54:97:f8:
fc:45:a6:00:bb:8d:79:e2:41:55:67:7c:96:64:61:
24:a2:6b:03:93:cc:ca:d8:df:54:86:41:26:dd:9f:
f5:7b:dc:ec:f2:f6:77:d9:3f:f8:b0:4f:56:d3:7c:
91:dc:8b:26:a9:ad:49:0c:f6:91:eb:01:44:d6:0f:
0d:1e:1f:15:8e:6c:e1:c5:6d:03:86:f7:1a:26:b4:
f5:59:c0:32:e5:b0:05:c6:db:a2:49:48:6e:93:ad:
26:a1:b1:9e:2f:ef:2e:c5:ed:78:ea:5e:e3:97:2a:
09:d6:ec:31:5d:2e:f5:b2:cd:3f:c5:c4:3c:0c:46:
33:0c:ae:db:ae:11:47:f3:c6:40:38:70:bd:ba:d4:
28:c0:cd:4c:77:78:30:c6:29:85:4c:76:f6:ab:41:
0f:30:09:01:84:0c:7f:8a:5c:4d:3b:35:d5:74:84:
be:59:fb:3c:db:ae:ea:1c:f9:6d:2b:14:72:7d:33:
00:4c:0f:80:97:fa:8e:5f:1a:ff:aa:1e:35:2c:08:
55:7a:83:97:3f:51:1a:10:75:59:0a:cc:92:03:c2:
21:02:2e:9c:c1:27:72:22:ac:6d:6b:32:14:25:89:
c4:6b:f1:fa:80:1b:f4:d9:43:05:88:b9:76:51:20:
aa:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:BD:89:0B:EF:3D:41:39:A0:BE:AD:58:B4:19:D6:81:12:DE:8A:0D
X509v3 Authority Key Identifier:
keyid:66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/b72JC-89QTmgvq1YtBnWgRLeig0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.181.32.0/24
Signature Algorithm: sha256WithRSAEncryption
83:c6:6d:1e:68:47:82:96:71:79:17:97:14:ba:90:99:9a:54:
50:80:2d:d5:fc:71:5d:58:45:34:fe:ad:20:36:63:62:dc:dc:
70:be:f5:35:6b:fd:ad:89:6b:13:ae:3a:74:70:7d:a5:5f:da:
c8:eb:07:c8:15:4b:2d:93:a9:4e:44:ed:52:ac:e2:f6:0d:5a:
1c:92:9c:1e:8c:b0:ee:e8:9e:d2:11:55:11:d0:a1:1b:06:79:
e5:99:28:0f:c6:ec:9b:72:f4:3e:2a:a9:92:f3:96:a3:23:b4:
42:33:b7:57:52:19:a0:7d:7f:96:b4:9f:1b:b8:10:0c:c9:8f:
ca:a1:c5:f7:a7:f5:55:ad:a9:e7:53:54:a1:af:8a:e7:fb:74:
2f:5d:64:6b:18:7a:d0:e0:bd:d0:62:da:1d:37:ab:a9:36:51:
4a:26:b6:58:53:98:22:7c:d8:08:b7:54:af:70:b5:c1:cd:75:
f3:90:d8:8b:8a:99:2d:bd:27:4f:47:62:e2:ea:0c:18:c9:c3:
7e:42:04:e3:7f:09:b3:43:20:07:72:66:62:71:b2:b4:57:93:
49:d2:e1:c6:f9:2b:67:49:69:44:a6:8b:87:c4:76:59:e2:fa:
aa:ed:4f:09:28:9c:a9:8f:71:86:3a:d9:50:e3:91:28:7e:ab:
ab:3d:a4:84
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYR/jzuxjPvRT3VDi3CiroBzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2NjAzNGNhNmExNmJiZDAxNDRhYmRmNWNmMjQ1OGY5Njhi
MTU4OWMwHhcNMjIxMTE2MDgzMDA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmJkODkwYmVmM2Q0MTM5YTBiZWFkNThiNDE5ZDY4MTEyZGU4YTBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUcI9UzD/sQv9RZUl/j8RaYAu415
4kFVZ3yWZGEkomsDk8zK2N9UhkEm3Z/1e9zs8vZ32T/4sE9W03yR3Ismqa1JDPaR
6wFE1g8NHh8VjmzhxW0DhvcaJrT1WcAy5bAFxtuiSUhuk60mobGeL+8uxe146l7j
lyoJ1uwxXS71ss0/xcQ8DEYzDK7brhFH88ZAOHC9utQowM1Md3gwximFTHb2q0EP
MAkBhAx/ilxNOzXVdIS+Wfs8267qHPltKxRyfTMATA+Al/qOXxr/qh41LAhVeoOX
P1EaEHVZCsySA8IhAi6cwSdyIqxtazIUJYnEa/H6gBv02UMFiLl2USCqewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG+9iQvvPUE5oL6tWLQZ1oES3ooNMB8GA1UdIwQY
MBaAFGZgNMpqFrvQFEq99c8kWPlosVicMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWm1BMHltb1d1OUFVU3IzMXp5UlktV2l4V0p3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9mNGI3MzMtMjlhZC00ZDU2LWI5ZDIt
NWQ0OGJjZDdjMWRjLzEvYjcySkMtODlRVG1ndnExWXRCbldnUkxlaWcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9mNGI3MzMtMjlhZC00ZDU2LWI5ZDItNWQ0OGJjZDdjMWRj
LzEvWm1BMHltb1d1OUFVU3IzMXp5UlktV2l4V0p3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnrUgMA0G
CSqGSIb3DQEBCwUAA4IBAQCDxm0eaEeClnF5F5cUupCZmlRQgC3V/HFdWEU0/q0g
NmNi3NxwvvU1a/2tiWsTrjp0cH2lX9rI6wfIFUstk6lORO1SrOL2DVockpwejLDu
6J7SEVUR0KEbBnnlmSgPxuybcvQ+KqmS85ajI7RCM7dXUhmgfX+WtJ8buBAMyY/K
ocX3p/VVrannU1Shr4rn+3QvXWRrGHrQ4L3QYtodN6upNlFKJrZYU5gifNgIt1Sv
cLXBzXXzkNiLipktvSdPR2Li6gwYycN+QgTjfwmzQyAHcmZicbK0V5NJ0uHG+Stn
SWlEpouHxHZZ4vqq7U8JKJypj3GGOtlQ45EofqurPaSE
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:06 2023 by rpki-client on console.sobornost.net