Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/SBIHtqW-euSpmDWpoMT3u_PbrRI.roa
File: SBIHtqW-euSpmDWpoMT3u_PbrRI.roa (raw, json)
Hash identifier: Tg63uEJO+daAo4ivQFXfrnEkDmetBC8/VKJXBksQ3II=
Subject key identifier: 48:12:07:B6:A5:BE:7A:E4:A9:98:35:A9:A0:C4:F7:BB:F3:DB:AD:12
Certificate issuer: /CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Certificate serial: 01833FEFB0E5D242D7B7E46D929590D7E811
Authority key identifier: F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/SBIHtqW-euSpmDWpoMT3u_PbrRI.roa
Signing time: Thu 15 Sep 2022 06:56:56 +0000
ROA not before: Thu 15 Sep 2022 06:56:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3257
IP address blocks: 83.136.208.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3f:ef:b0:e5:d2:42:d7:b7:e4:6d:92:95:90:d7:e8:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Validity
Not Before: Sep 15 06:56:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=481207b6a5be7ae4a99835a9a0c4f7bbf3dbad12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e0:01:75:3b:c6:f5:88:08:29:31:6b:1f:1c:
84:6a:f0:e3:b5:3e:b2:4c:c0:29:e4:30:ed:62:1c:
fd:0b:00:19:81:d4:c0:d5:7e:22:d0:ef:15:4c:1c:
5b:5c:3a:00:16:2b:d4:06:40:16:05:16:2b:95:99:
f3:54:b3:97:89:12:38:04:7a:35:32:e3:b4:ac:98:
47:b8:11:24:0c:74:92:f9:58:dd:d0:78:44:98:00:
a8:57:04:e1:b6:39:3e:0a:85:19:f9:d4:30:c5:43:
4e:f7:04:cb:3c:55:fd:cc:b8:3d:f3:ad:f7:4d:26:
9f:33:91:49:07:14:50:11:4a:86:6f:8c:a4:d2:80:
7b:a0:7c:3e:b4:34:fe:a7:e1:20:cc:4a:94:6c:23:
dd:c0:dc:e5:2d:bc:dd:a7:60:15:c1:cc:52:92:65:
88:5d:64:b8:1b:cc:4b:72:90:8f:66:a5:fc:6f:8c:
1a:4d:09:86:ad:8b:f0:a0:b9:5c:5b:5a:d6:1c:19:
5b:14:0d:70:d2:07:b8:2f:9b:63:f0:1f:64:e1:f6:
b1:19:2d:39:d5:4a:30:60:85:a2:f1:1a:d5:70:65:
af:c0:c6:83:ae:af:87:81:d5:4d:90:1c:87:d3:ee:
8f:15:53:a0:9d:b8:88:da:60:79:f3:ea:ff:7d:66:
67:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:12:07:B6:A5:BE:7A:E4:A9:98:35:A9:A0:C4:F7:BB:F3:DB:AD:12
X509v3 Authority Key Identifier:
keyid:F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/SBIHtqW-euSpmDWpoMT3u_PbrRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.208.0/22
Signature Algorithm: sha256WithRSAEncryption
35:05:c7:94:44:de:71:f2:2f:79:75:6f:0e:be:27:77:fc:12:
bf:c6:01:76:ba:2e:17:ed:01:42:5e:34:b1:26:86:73:ec:c0:
a4:11:94:28:6d:95:b9:11:86:ff:9d:a6:4b:8e:12:e4:76:03:
ab:54:a7:a6:8c:9d:58:e0:36:e4:ff:46:7d:ef:c4:b1:74:e0:
d2:57:57:3b:75:bd:b0:0c:2e:25:d2:d8:88:70:59:24:52:f8:
9a:13:78:2b:5c:8c:90:28:f8:8f:f9:b3:1c:94:52:0a:64:26:
94:9b:94:16:65:b2:f4:47:f4:25:e9:2e:39:09:52:89:d6:1e:
b3:cb:ce:b4:c5:94:82:2c:ec:c7:f7:29:16:c9:70:67:6f:63:
6b:63:41:80:4b:8f:1a:56:cf:5d:6d:7a:0f:b8:d8:20:b0:ea:
15:a2:8e:d2:cb:ae:40:58:3c:77:34:55:86:8f:40:02:41:d5:
87:d0:6f:45:c3:13:66:cc:84:75:70:80:c0:66:46:71:23:11:
33:1c:b5:91:32:10:e2:39:8e:a8:50:f6:7f:a6:a4:14:83:74:
80:a3:f3:8b:b2:ed:93:ba:2e:c7:bd:13:da:5d:5d:5a:f4:37:
51:99:7c:9f:4b:a9:4d:4c:6d:d3:f9:8b:ba:e5:e1:08:1b:35:
cf:8c:d7:cc
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYM/77Dl0kLXt+RtkpWQ1+gRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4Nzk5ODhlMGY0OTk3MWEzMjZmNDE5ZTVjZmFjYmZkZGNj
OTkzZTcwHhcNMjIwOTE1MDY1NjU2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ODEyMDdiNmE1YmU3YWU0YTk5ODM1YTlhMGM0ZjdiYmYzZGJhZDEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvuABdTvG9YgIKTFrHxyEavDjtT6y
TMAp5DDtYhz9CwAZgdTA1X4i0O8VTBxbXDoAFivUBkAWBRYrlZnzVLOXiRI4BHo1
MuO0rJhHuBEkDHSS+Vjd0HhEmACoVwThtjk+CoUZ+dQwxUNO9wTLPFX9zLg98633
TSafM5FJBxRQEUqGb4yk0oB7oHw+tDT+p+EgzEqUbCPdwNzlLbzdp2AVwcxSkmWI
XWS4G8xLcpCPZqX8b4waTQmGrYvwoLlcW1rWHBlbFA1w0ge4L5tj8B9k4faxGS05
1UowYIWi8RrVcGWvwMaDrq+HgdVNkByH0+6PFVOgnbiI2mB58+r/fWZnewIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFEgSB7alvnrkqZg1qaDE97vz260SMB8GA1UdIwQY
MBaAFPh5mI4PSZcaMm9Bnlz6y/3cyZPnMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1IbVlqZzlKbHhveWIwR2VYUHJMX2R6SmstYy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDUvYWYzZDgxLTAwNDctNDEzYy05MWY0
LTA0NzBiNGJiMzBkYi8xL1NCSUh0cVctZXVTcG1EV3BvTVQzdV9QYnJSSS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMDUvYWYzZDgxLTAwNDctNDEzYy05MWY0LTA0NzBiNGJiMzBk
Yi8xLzEtSG1Zamc5Smx4b3liMEdlWFByTF9kekprLWMuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJTiNAw
DQYJKoZIhvcNAQELBQADggEBADUFx5RE3nHyL3l1bw6+J3f8Er/GAXa6LhftAUJe
NLEmhnPswKQRlChtlbkRhv+dpkuOEuR2A6tUp6aMnVjgNuT/Rn3vxLF04NJXVzt1
vbAMLiXS2IhwWSRS+JoTeCtcjJAo+I/5sxyUUgpkJpSblBZlsvRH9CXpLjkJUonW
HrPLzrTFlIIs7Mf3KRbJcGdvY2tjQYBLjxpWz11teg+42CCw6hWijtLLrkBYPHc0
VYaPQAJB1YfQb0XDE2bMhHVwgMBmRnEjETMctZEyEOI5jqhQ9n+mpBSDdICj84uy
7ZO6Lse9E9pdXVr0N1GZfJ9LqU1MbdP5i7rl4QgbNc+M18w=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:38 2024 by rpki-client on console-fra.rpki-client.org