Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/8mhvv7lpiLhvrNjpjK1nTFBvcGA.roa
File: 8mhvv7lpiLhvrNjpjK1nTFBvcGA.roa (raw, json)
Hash identifier: s0EK+Cw5Y4mHNeN7J2vJlnGbhqLbOXNmr4Ml8aPusf8=
Subject key identifier: F2:68:6F:BF:B9:69:88:B8:6F:AC:D8:E9:8C:AD:67:4C:50:6F:70:60
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 0183A447660F6D9B172F949997C2F2908740
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/8mhvv7lpiLhvrNjpjK1nTFBvcGA.roa
Signing time: Tue 04 Oct 2022 18:34:46 +0000
ROA not before: Tue 04 Oct 2022 18:34:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202776
IP address blocks: 2a0d:2587:c250::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a4:47:66:0f:6d:9b:17:2f:94:99:97:c2:f2:90:87:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Oct 4 18:34:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f2686fbfb96988b86facd8e98cad674c506f7060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b9:4c:f3:d4:60:c1:61:93:11:58:18:ec:f1:
79:d9:d3:16:1c:ef:c6:ed:3e:be:e0:74:3b:a7:14:
72:53:c1:47:7b:50:a0:e5:8a:48:61:91:4f:a6:5f:
4d:c9:b7:23:0c:1b:c6:ff:88:ec:b6:db:c9:ec:d6:
f8:d6:74:fb:c8:b6:fa:7a:ab:eb:9a:b1:7f:83:e6:
35:0e:9c:b7:27:fd:5a:d1:78:02:63:1d:f0:ce:5a:
c3:1c:75:9f:50:98:41:ab:da:05:d1:49:7f:b8:35:
a7:d5:b1:13:76:23:e4:3c:a9:7e:e6:26:12:3a:02:
76:ee:fb:41:b3:30:2f:6b:f5:21:e5:ea:fc:c8:f4:
07:48:b8:e7:e0:46:8f:e9:0a:83:c3:43:45:14:8f:
bd:46:8a:4e:a7:84:8f:ae:87:b2:0a:ac:80:f8:34:
77:e5:a2:71:8f:b4:a2:73:82:95:27:be:54:37:1d:
66:06:cf:5d:83:68:01:49:9e:68:74:75:aa:12:5d:
29:a9:63:45:0a:f1:49:6a:4a:84:1c:3f:16:4b:a9:
6c:f7:a9:31:0d:28:0e:bb:22:cc:1c:f8:d3:e2:ae:
15:26:66:4e:08:c6:27:d3:05:bc:16:92:14:b5:81:
45:3d:59:c4:b4:65:6b:a2:92:70:b3:5d:c9:31:96:
17:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:68:6F:BF:B9:69:88:B8:6F:AC:D8:E9:8C:AD:67:4C:50:6F:70:60
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/8mhvv7lpiLhvrNjpjK1nTFBvcGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2587:c250::/44
Signature Algorithm: sha256WithRSAEncryption
ab:ec:22:9f:cd:db:8b:61:23:eb:9f:73:9b:7f:a0:4c:6a:28:
bd:72:ad:6e:ff:56:a9:9a:db:0e:74:0c:f3:f1:72:0f:b9:47:
56:d5:cc:d1:fe:21:10:17:b2:7b:45:46:01:87:a5:07:48:55:
c2:51:06:06:5a:f7:e4:a2:db:a6:8b:8a:98:fd:df:ac:f1:c4:
b9:0a:c0:f3:fd:bf:8f:e0:d7:45:cd:87:69:3c:1c:c0:e0:49:
a6:a5:52:20:02:1b:9a:af:7d:bb:3b:4e:23:7a:a8:ce:14:6f:
29:b1:1f:90:30:2c:fa:6a:c7:52:14:7a:bc:5d:da:12:c2:f7:
de:b3:3a:4e:42:d2:15:2d:5e:13:36:57:bc:4b:31:56:68:1f:
57:e7:c5:fa:f1:85:d2:fe:68:d8:d9:91:7e:d3:50:fb:0e:54:
0f:31:7e:69:eb:97:b1:ff:6b:99:6c:0f:61:d6:71:26:d6:37:
58:26:d4:74:ba:8a:26:a8:fe:8f:d4:c5:d4:3a:61:8d:85:42:
f1:70:35:08:33:6e:51:27:d6:ce:2f:0e:d0:95:d7:53:42:77:
b8:64:cf:08:2b:99:7c:c5:a8:99:94:15:42:94:50:51:b5:aa:
61:b5:50:a9:00:7c:cb:9c:e3:ad:22:cd:9e:2b:68:d0:b8:80:
82:2c:40:12
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYOkR2YPbZsXL5SZl8LykIdAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczYzY5ZDA0NTgzNTAwYzVlZjgxMTM2ODMxMjM3NTkzZTBi
Yjg2Y2UwHhcNMjIxMDA0MTgzNDQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMjY4NmZiZmI5Njk4OGI4NmZhY2Q4ZTk4Y2FkNjc0YzUwNmY3MDYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxrlM89RgwWGTEVgY7PF52dMWHO/G
7T6+4HQ7pxRyU8FHe1Cg5YpIYZFPpl9NybcjDBvG/4jsttvJ7Nb41nT7yLb6eqvr
mrF/g+Y1Dpy3J/1a0XgCYx3wzlrDHHWfUJhBq9oF0Ul/uDWn1bETdiPkPKl+5iYS
OgJ27vtBszAva/Uh5er8yPQHSLjn4EaP6QqDw0NFFI+9RopOp4SProeyCqyA+DR3
5aJxj7Sic4KVJ75UNx1mBs9dg2gBSZ5odHWqEl0pqWNFCvFJakqEHD8WS6ls96kx
DSgOuyLMHPjT4q4VJmZOCMYn0wW8FpIUtYFFPVnEtGVropJws13JMZYXQQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFPJob7+5aYi4b6zY6YytZ0xQb3BgMB8GA1UdIwQY
MBaAFHPGnQRYNQDF74ETaDEjdZPgu4bOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQt
ZjljYjBhN2IyMDZjLzEvOG1odnY3bHBpTGh2ck5qcGpLMW5URkJ2Y0dBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQtZjljYjBhN2IyMDZj
LzEvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg0lh8JQ
MA0GCSqGSIb3DQEBCwUAA4IBAQCr7CKfzduLYSPrn3Obf6BMaii9cq1u/1apmtsO
dAzz8XIPuUdW1czR/iEQF7J7RUYBh6UHSFXCUQYGWvfkotumi4qY/d+s8cS5CsDz
/b+P4NdFzYdpPBzA4EmmpVIgAhuar327O04jeqjOFG8psR+QMCz6asdSFHq8XdoS
wvfeszpOQtIVLV4TNle8SzFWaB9X58X68YXS/mjY2ZF+01D7DlQPMX5p65ex/2uZ
bA9h1nEm1jdYJtR0uoomqP6P1MXUOmGNhULxcDUIM25RJ9bOLw7QlddTQne4ZM8I
K5l8xaiZlBVClFBRtaphtVCpAHzLnOOtIs2eK2jQuICCLEAS
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:47 2023 by rpki-client on console-ams.rpki-client.org