Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0d8088-ea93-4abb-8996-21cf56cbce12/1/cb1scrYf7Cf74eyDoiIZ1ghj65s.roa
File: cb1scrYf7Cf74eyDoiIZ1ghj65s.roa (raw, json)
Hash identifier: cBZ9LuHt7vN3Dy4AKEqbWrgPQOW9UnI4nKx0PG9+UuM=
Subject key identifier: 71:BD:6C:72:B6:1F:EC:27:FB:E1:EC:83:A2:22:19:D6:08:63:EB:9B
Certificate issuer: /CN=44a7e5a33d9c5a965d9fbfdeecdc871af0a5d4f8
Certificate serial: 08A91DE9
Authority key identifier: 44:A7:E5:A3:3D:9C:5A:96:5D:9F:BF:DE:EC:DC:87:1A:F0:A5:D4:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKfloz2cWpZdn7_e7NyHGvCl1Pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0d8088-ea93-4abb-8996-21cf56cbce12/1/cb1scrYf7Cf74eyDoiIZ1ghj65s.roa
Signing time: Sat 01 Jan 2022 05:56:32 +0000
ROA not before: Sat 01 Jan 2022 05:56:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25473
IP address blocks: 82.196.160.0/19 maxlen: 19
2a01:e8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145300969 (0x8a91de9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44a7e5a33d9c5a965d9fbfdeecdc871af0a5d4f8
Validity
Not Before: Jan 1 05:56:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71bd6c72b61fec27fbe1ec83a22219d60863eb9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ab:73:44:bd:65:31:56:9f:11:fc:ab:18:00:
a0:4f:f4:ae:75:39:78:09:ed:17:95:b7:47:52:59:
55:ca:0f:a4:50:61:fc:c5:dc:df:e7:09:7c:3d:61:
8f:63:f9:2a:27:1b:86:49:e0:81:36:a9:54:66:45:
f3:d8:25:e6:1d:83:5f:61:71:fe:95:3d:9a:a8:11:
1e:ee:74:b9:13:80:39:60:ba:09:e3:f1:35:8e:7d:
9d:68:d1:a2:94:95:5d:e5:6b:9d:4b:5e:a1:6e:d5:
e7:f8:1c:1c:27:f7:ba:84:5a:f5:df:d2:c4:21:fd:
a3:c4:b4:b4:37:be:65:4d:b5:7d:fc:ca:99:11:4c:
bc:9b:d7:31:62:70:33:b6:b7:d7:8e:e5:a2:67:f3:
81:a8:c0:e9:e7:2e:80:60:8a:c9:c6:5c:01:0b:62:
d1:99:83:19:fa:e5:8f:43:9d:e6:50:10:a2:b3:4b:
df:69:c0:c2:4b:d6:a4:b8:3c:97:f7:b6:f0:4c:90:
9d:49:8d:5e:59:d4:c0:e8:83:e8:d3:3f:e2:07:12:
2c:77:08:93:a9:65:20:04:ff:3c:b7:5b:f1:98:12:
01:8b:d6:4e:39:e9:58:89:44:dd:4d:c5:c2:50:73:
0b:a3:a4:d1:93:5f:30:29:44:37:46:70:3c:98:39:
97:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:BD:6C:72:B6:1F:EC:27:FB:E1:EC:83:A2:22:19:D6:08:63:EB:9B
X509v3 Authority Key Identifier:
keyid:44:A7:E5:A3:3D:9C:5A:96:5D:9F:BF:DE:EC:DC:87:1A:F0:A5:D4:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKfloz2cWpZdn7_e7NyHGvCl1Pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0d8088-ea93-4abb-8996-21cf56cbce12/1/cb1scrYf7Cf74eyDoiIZ1ghj65s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0d8088-ea93-4abb-8996-21cf56cbce12/1/RKfloz2cWpZdn7_e7NyHGvCl1Pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.196.160.0/19
IPv6:
2a01:e8::/32
Signature Algorithm: sha256WithRSAEncryption
ba:0c:b3:9d:a2:e0:8e:9a:e3:53:fb:0c:95:fc:d5:c0:61:75:
68:94:d6:fa:fa:f5:f1:b6:31:2c:16:78:af:83:96:d5:8c:d7:
0f:fe:da:01:5a:a0:75:03:37:77:0b:8d:3f:db:56:a4:2c:bb:
e4:a9:20:d3:17:f6:b9:82:49:97:fe:33:e1:50:a8:5f:98:d5:
83:43:92:15:38:6b:67:e6:e2:62:9d:08:3c:75:d8:cd:f1:a9:
06:6c:2b:29:b3:43:21:13:bd:05:c2:e1:a6:55:db:4d:9e:f6:
49:27:96:a8:5a:d9:8a:ea:39:e4:a8:b3:76:a5:06:63:67:7d:
7a:2e:e3:d1:d3:0f:dc:61:8a:32:7e:2c:8c:5c:45:46:8b:a6:
e9:31:ce:fb:6a:fd:88:f1:64:62:34:05:39:75:7d:b5:42:42:
96:e3:88:de:ab:e5:2a:df:03:ce:e3:cf:91:56:3b:12:6f:3d:
e2:b9:7e:c0:e5:0e:21:ce:19:6c:dd:08:c0:b8:ba:15:53:71:
5c:b7:95:ed:92:83:c8:58:90:cc:9f:f7:ed:32:0b:60:ae:79:
99:da:e6:37:22:d1:31:a3:61:8f:a8:90:aa:0c:67:11:e9:89:
54:4a:ba:3e:e4:e4:bc:62:3d:7e:84:96:e1:87:8b:19:c1:73:
77:2f:f3:89
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECKkd6TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NGE3ZTVhMzNkOWM1YTk2NWQ5ZmJmZGVlY2RjODcxYWYwYTVkNGY4MB4XDTIyMDEw
MTA1NTYzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzFiZDZjNzJiNjFm
ZWMyN2ZiZTFlYzgzYTIyMjE5ZDYwODYzZWI5YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJOrc0S9ZTFWnxH8qxgAoE/0rnU5eAntF5W3R1JZVcoPpFBh
/MXc3+cJfD1hj2P5KicbhknggTapVGZF89gl5h2DX2Fx/pU9mqgRHu50uROAOWC6
CePxNY59nWjRopSVXeVrnUteoW7V5/gcHCf3uoRa9d/SxCH9o8S0tDe+ZU21ffzK
mRFMvJvXMWJwM7a3147lomfzgajA6ecugGCKycZcAQti0ZmDGfrlj0Od5lAQorNL
32nAwkvWpLg8l/e28EyQnUmNXlnUwOiD6NM/4gcSLHcIk6llIAT/PLdb8ZgSAYvW
TjnpWIlE3U3FwlBzC6Ok0ZNfMClEN0ZwPJg5l8MCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRxvWxyth/sJ/vh7IOiIhnWCGPrmzAfBgNVHSMEGDAWgBREp+WjPZxall2f
v97s3Ica8KXU+DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1JLZmxvejJjV3BaZG43X2U3TnlIR3ZDbDFQZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGEvMGQ4MDg4LWVhOTMtNGFiYi04OTk2LTIxY2Y1NmNiY2UxMi8x
L2NiMXNjcllmN0NmNzRleURvaUlaMWdoajY1cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGEv
MGQ4MDg4LWVhOTMtNGFiYi04OTk2LTIxY2Y1NmNiY2UxMi8xL1JLZmxvejJjV3Ba
ZG43X2U3TnlIR3ZDbDFQZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEBVLEoDANBAIAAjAHAwUAKgEA6DAN
BgkqhkiG9w0BAQsFAAOCAQEAugyznaLgjprjU/sMlfzVwGF1aJTW+vr18bYxLBZ4
r4OW1YzXD/7aAVqgdQM3dwuNP9tWpCy75Kkg0xf2uYJJl/4z4VCoX5jVg0OSFThr
Z+biYp0IPHXYzfGpBmwrKbNDIRO9BcLhplXbTZ72SSeWqFrZiuo55KizdqUGY2d9
ei7j0dMP3GGKMn4sjFxFRoum6THO+2r9iPFkYjQFOXV9tUJCluOI3qvlKt8DzuPP
kVY7Em894rl+wOUOIc4ZbN0IwLi6FVNxXLeV7ZKDyFiQzJ/37TILYK55mdrmNyLR
MaNhj6iQqgxnEemJVEq6PuTkvGI9foSW4YeLGcFzdy/ziQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:53 2023 by rpki-client on console.sobornost.net