Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1c7c09-e02c-4cbf-9e67-9685555190c4/1/8huiRzaTFqOXlqGAeIoy7Hdeiy4.roa
File: 8huiRzaTFqOXlqGAeIoy7Hdeiy4.roa (raw, json)
Hash identifier: FcgSN/BkSAO8x242Dl7iXYjFTT9fDAcsd5OweqhNK3k=
Subject key identifier: F2:1B:A2:47:36:93:16:A3:97:96:A1:80:78:8A:32:EC:77:5E:8B:2E
Certificate issuer: /CN=d81d42aae019e4ea44a616378eb66b389de8c511
Certificate serial: 0183ECE285CD4FB30602B04AAFE748AD89C3
Authority key identifier: D8:1D:42:AA:E0:19:E4:EA:44:A6:16:37:8E:B6:6B:38:9D:E8:C5:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2B1CquAZ5OpEphY3jrZrOJ3oxRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1c7c09-e02c-4cbf-9e67-9685555190c4/1/8huiRzaTFqOXlqGAeIoy7Hdeiy4.roa
Signing time: Tue 18 Oct 2022 20:56:51 +0000
ROA not before: Tue 18 Oct 2022 20:56:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50902
IP address blocks: 2a0f:fc80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ec:e2:85:cd:4f:b3:06:02:b0:4a:af:e7:48:ad:89:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d81d42aae019e4ea44a616378eb66b389de8c511
Validity
Not Before: Oct 18 20:56:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f21ba247369316a39796a180788a32ec775e8b2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:f8:1a:73:45:eb:39:28:c0:ef:e3:79:a5:39:
42:46:bd:88:a1:76:0b:46:8d:7c:14:27:44:31:54:
75:b9:ae:65:30:40:e6:09:c1:5c:d6:d7:17:a8:81:
f9:c4:8c:9a:fc:44:f0:38:e9:c1:ec:e1:05:41:a8:
1b:f7:09:37:e1:b8:03:f1:5a:2d:09:b0:d7:28:f3:
40:1b:5d:69:b9:fc:10:b1:5a:e1:f9:0b:1e:e0:45:
de:2c:89:c0:4e:5a:34:08:9b:75:4b:19:44:8e:3d:
a7:83:fe:8e:2d:cb:41:64:7e:d0:b5:bc:7c:ca:46:
02:74:fa:f4:0c:37:7c:e8:e5:e3:31:7f:69:15:9e:
62:4d:46:ba:2b:03:3a:e9:04:0d:9b:27:00:b8:a4:
31:8e:77:ba:d7:4b:09:f5:67:66:dc:24:ea:26:4c:
d3:38:d4:47:bd:a0:21:1e:bd:ad:f4:33:4f:73:94:
b2:9e:27:f7:18:91:f1:f8:7a:49:20:b9:df:bf:47:
29:81:3a:28:a1:4d:89:b1:52:37:7e:d0:dc:45:4a:
9d:a6:bd:85:92:9d:ad:a8:ff:0e:ef:6e:34:a5:1d:
0f:f2:3d:e4:d4:26:f6:b6:4f:58:75:27:46:d1:1d:
67:d1:d6:ca:dd:71:2a:20:89:43:90:0b:3f:43:f1:
b1:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:1B:A2:47:36:93:16:A3:97:96:A1:80:78:8A:32:EC:77:5E:8B:2E
X509v3 Authority Key Identifier:
keyid:D8:1D:42:AA:E0:19:E4:EA:44:A6:16:37:8E:B6:6B:38:9D:E8:C5:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2B1CquAZ5OpEphY3jrZrOJ3oxRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1c7c09-e02c-4cbf-9e67-9685555190c4/1/8huiRzaTFqOXlqGAeIoy7Hdeiy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1c7c09-e02c-4cbf-9e67-9685555190c4/1/2B1CquAZ5OpEphY3jrZrOJ3oxRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:fc80::/32
Signature Algorithm: sha256WithRSAEncryption
6e:4b:bb:e2:c5:e8:f3:b5:bf:3e:8d:db:a7:e5:9b:a9:bf:1c:
91:67:9c:36:b3:21:ca:82:cf:b7:dc:4c:94:37:d0:f2:84:ec:
9e:ef:bc:6c:3e:68:f5:56:9f:29:8d:c2:33:27:e8:61:bf:76:
c3:8b:bc:55:7d:6e:64:ea:d2:ab:6c:f1:d0:18:da:bc:ad:1e:
3d:7b:01:f6:c2:7b:c2:17:d4:5a:29:9d:07:00:48:e7:db:2c:
5a:7f:80:f3:55:9e:44:46:07:08:5c:ea:e0:6e:01:22:19:80:
ce:d6:d4:6f:84:9d:0d:7b:7b:c8:95:48:16:ff:22:96:01:5f:
c9:84:91:84:f6:4e:18:43:00:45:d5:2c:dd:61:1d:14:9d:df:
d0:32:e4:9d:2b:f0:a4:bc:3a:3b:e0:f7:84:ef:88:6d:1b:8e:
53:ab:c4:7e:07:55:97:2c:64:0c:63:ba:24:79:68:1d:8e:ae:
a5:be:c3:ca:72:14:94:8b:8f:fd:f7:b2:2c:f9:dd:51:4c:1d:
a8:55:ff:f0:c6:0c:d6:cd:80:1c:0f:2a:3b:e6:15:c2:f9:fe:
08:05:7c:c5:26:f9:59:96:a2:86:53:ae:4d:ce:65:1b:14:47:
e2:d2:c6:60:9b:98:a9:4a:0c:31:de:bb:d4:cc:69:19:70:a4:
d0:c3:f6:7e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYPs4oXNT7MGArBKr+dIrYnDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MWQ0MmFhZTAxOWU0ZWE0NGE2MTYzNzhlYjY2YjM4OWRl
OGM1MTEwHhcNMjIxMDE4MjA1NjUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMjFiYTI0NzM2OTMxNmEzOTc5NmExODA3ODhhMzJlYzc3NWU4YjJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh/gac0XrOSjA7+N5pTlCRr2IoXYL
Ro18FCdEMVR1ua5lMEDmCcFc1tcXqIH5xIya/ETwOOnB7OEFQagb9wk34bgD8Vot
CbDXKPNAG11pufwQsVrh+Qse4EXeLInATlo0CJt1SxlEjj2ng/6OLctBZH7Qtbx8
ykYCdPr0DDd86OXjMX9pFZ5iTUa6KwM66QQNmycAuKQxjne610sJ9Wdm3CTqJkzT
ONRHvaAhHr2t9DNPc5Synif3GJHx+HpJILnfv0cpgToooU2JsVI3ftDcRUqdpr2F
kp2tqP8O7240pR0P8j3k1Cb2tk9YdSdG0R1n0dbK3XEqIIlDkAs/Q/GxxQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPIbokc2kxajl5ahgHiKMux3XosuMB8GA1UdIwQY
MBaAFNgdQqrgGeTqRKYWN462azid6MURMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkIxQ3F1QVo1T3BFcGhZM2pyWnJPSjNveFJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS8xYzdjMDktZTAyYy00Y2JmLTllNjct
OTY4NTU1NTE5MGM0LzEvOGh1aVJ6YVRGcU9YbHFHQWVJb3k3SGRlaXk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS8xYzdjMDktZTAyYy00Y2JmLTllNjctOTY4NTU1NTE5MGM0
LzEvMkIxQ3F1QVo1T3BFcGhZM2pyWnJPSjNveFJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg/8gDAN
BgkqhkiG9w0BAQsFAAOCAQEAbku74sXo87W/Po3bp+Wbqb8ckWecNrMhyoLPt9xM
lDfQ8oTsnu+8bD5o9VafKY3CMyfoYb92w4u8VX1uZOrSq2zx0BjavK0ePXsB9sJ7
whfUWimdBwBI59ssWn+A81WeREYHCFzq4G4BIhmAztbUb4SdDXt7yJVIFv8ilgFf
yYSRhPZOGEMARdUs3WEdFJ3f0DLknSvwpLw6O+D3hO+IbRuOU6vEfgdVlyxkDGO6
JHloHY6upb7DynIUlIuP/feyLPndUUwdqFX/8MYM1s2AHA8qO+YVwvn+CAV8xSb5
WZaihlOuTc5lGxRH4tLGYJuYqUoMMd671MxpGXCk0MP2fg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:28 2024 by rpki-client on console-ams.rpki-client.org