Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/84179d-4c65-44b8-b30b-5dabb4e47abb/1/fl_bDqT3cnFPacGuCJTvM0qlFu0.roa
File: fl_bDqT3cnFPacGuCJTvM0qlFu0.roa (raw, json)
Hash identifier: OYMSxJwnqNmelhA2Xoky5BRWJg9A/mdw1ufTnVAJ70s=
Subject key identifier: 7E:5F:DB:0E:A4:F7:72:71:4F:69:C1:AE:08:94:EF:33:4A:A5:16:ED
Certificate issuer: /CN=37689eaacbaf68af35d3fafb9674de48a6fc0978
Certificate serial: C218
Authority key identifier: 37:68:9E:AA:CB:AF:68:AF:35:D3:FA:FB:96:74:DE:48:A6:FC:09:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N2ieqsuvaK810_r7lnTeSKb8CXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/84179d-4c65-44b8-b30b-5dabb4e47abb/1/fl_bDqT3cnFPacGuCJTvM0qlFu0.roa
Signing time: Tue 17 May 2022 11:19:01 +0000
ROA not before: Tue 17 May 2022 11:19:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 141.80.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49688 (0xc218)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37689eaacbaf68af35d3fafb9674de48a6fc0978
Validity
Not Before: May 17 11:19:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e5fdb0ea4f772714f69c1ae0894ef334aa516ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:59:00:41:84:8c:ba:f6:97:cd:ce:5c:2b:85:
5c:f0:ad:e5:5f:de:5f:7d:4e:12:10:99:ce:4d:28:
45:c9:67:c5:bf:84:2a:02:9c:6b:cd:70:e4:4a:e3:
4c:a8:d0:8e:73:55:80:ae:b9:08:c0:fa:bc:73:6e:
47:4a:0c:8c:18:38:a7:17:a9:92:07:2e:95:ca:29:
76:8c:6c:38:44:d2:a8:02:a7:d3:e9:37:c3:7f:0c:
5f:a8:7e:df:7f:53:38:6d:74:c0:90:be:a1:ab:3f:
f8:2e:cc:9f:07:04:64:3b:dc:b6:b9:52:7d:72:d6:
a6:25:66:41:e7:40:5b:bd:72:2a:63:3b:84:de:2a:
f4:35:c9:ae:05:fd:20:26:73:4c:6a:a8:5d:f6:86:
9b:39:b4:94:c1:18:e1:36:bf:00:53:6d:2f:8c:a1:
fb:c8:e6:33:79:b8:2e:f9:9c:4f:36:01:f5:d7:fe:
7a:28:47:1c:a2:88:a8:92:15:2f:1b:5c:b4:d9:3f:
2e:af:6b:21:00:10:8c:b2:66:b7:07:b6:43:80:0a:
64:fa:dc:a2:14:1a:99:14:c7:04:8b:90:32:67:b3:
df:0d:37:3f:9e:99:1f:87:ad:43:ab:26:75:b5:6f:
7e:48:03:a7:b1:32:c8:36:fc:56:2c:08:61:1f:2f:
31:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:5F:DB:0E:A4:F7:72:71:4F:69:C1:AE:08:94:EF:33:4A:A5:16:ED
X509v3 Authority Key Identifier:
keyid:37:68:9E:AA:CB:AF:68:AF:35:D3:FA:FB:96:74:DE:48:A6:FC:09:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N2ieqsuvaK810_r7lnTeSKb8CXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/84179d-4c65-44b8-b30b-5dabb4e47abb/1/fl_bDqT3cnFPacGuCJTvM0qlFu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/84179d-4c65-44b8-b30b-5dabb4e47abb/1/N2ieqsuvaK810_r7lnTeSKb8CXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.80.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ae:28:be:6c:71:b2:c9:a8:36:f3:8d:3a:57:1e:18:3d:89:63:
8d:0d:7c:53:d3:a4:3a:1d:82:7a:ca:b0:53:dc:81:8a:82:24:
a6:6f:70:f8:5f:86:97:ae:48:b8:5c:61:17:79:3d:0d:d1:38:
f3:5e:ef:1b:00:05:4e:68:8f:64:b5:cb:f4:05:d8:93:b5:ab:
c2:84:b4:f3:87:20:09:41:ed:18:3f:cb:4a:c6:ac:97:9a:31:
2e:46:7b:4d:f4:dd:70:08:11:ca:b0:40:6d:54:67:30:1c:27:
b6:54:5c:8e:54:a2:c2:f7:f9:df:af:71:68:25:8f:c6:9b:4e:
78:29:39:ad:05:5a:62:c1:c1:41:1b:c5:8c:eb:c0:d9:0e:51:
80:7e:3f:a2:0e:a3:b4:07:22:83:5e:43:d6:35:a0:dc:2f:bd:
e7:6f:24:d7:e6:d8:86:f0:d4:5f:a9:74:38:ba:2d:21:f7:34:
ae:3d:a3:41:34:38:53:bb:31:0a:bb:41:c8:36:c9:79:69:a1:
bd:cb:3f:c2:58:44:df:80:ef:5e:e1:d3:61:80:67:58:d6:28:
b6:21:ef:3f:65:2d:14:73:78:0a:9d:1f:92:89:1f:86:5a:f8:
95:7c:57:b9:ce:e6:3b:37:77:f0:e1:b1:b5:62:8c:e4:9e:71:
89:54:9b:6b
-----BEGIN CERTIFICATE-----
MIIE7TCCA9WgAwIBAgIDAMIYMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDM3
Njg5ZWFhY2JhZjY4YWYzNWQzZmFmYjk2NzRkZTQ4YTZmYzA5NzgwHhcNMjIwNTE3
MTExOTAxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg3ZTVmZGIwZWE0Zjc3
MjcxNGY2OWMxYWUwODk0ZWYzMzRhYTUxNmVkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAmFkAQYSMuvaXzc5cK4Vc8K3lX95ffU4SEJnOTShFyWfFv4Qq
ApxrzXDkSuNMqNCOc1WArrkIwPq8c25HSgyMGDinF6mSBy6Vyil2jGw4RNKoAqfT
6TfDfwxfqH7ff1M4bXTAkL6hqz/4LsyfBwRkO9y2uVJ9ctamJWZB50BbvXIqYzuE
3ir0NcmuBf0gJnNMaqhd9oabObSUwRjhNr8AU20vjKH7yOYzebgu+ZxPNgH11/56
KEccooiokhUvG1y02T8ur2shABCMsma3B7ZDgApk+tyiFBqZFMcEi5AyZ7PfDTc/
npkfh61DqyZ1tW9+SAOnsTLINvxWLAhhHy8xxwIDAQABo4ICCDCCAgQwHQYDVR0O
BBYEFH5f2w6k93JxT2nBrgiU7zNKpRbtMB8GA1UdIwQYMBaAFDdonqrLr2ivNdP6
+5Z03kim/Al4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
TjJpZXFzdXZhSzgxMF9yN2xuVGVTS2I4Q1hnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iOS84NDE3OWQtNGM2NS00NGI4LWIzMGItNWRhYmI0ZTQ3YWJiLzEv
ZmxfYkRxVDNjbkZQYWNHdUNKVHZNMHFsRnUwLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS84
NDE3OWQtNGM2NS00NGI4LWIzMGItNWRhYmI0ZTQ3YWJiLzEvTjJpZXFzdXZhSzgx
MF9yN2xuVGVTS2I4Q1hnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4G
CCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjVAwDQYJKoZIhvcNAQELBQADggEB
AK4ovmxxssmoNvONOlceGD2JY40NfFPTpDodgnrKsFPcgYqCJKZvcPhfhpeuSLhc
YRd5PQ3ROPNe7xsABU5oj2S1y/QF2JO1q8KEtPOHIAlB7Rg/y0rGrJeaMS5Ge030
3XAIEcqwQG1UZzAcJ7ZUXI5UosL3+d+vcWglj8abTngpOa0FWmLBwUEbxYzrwNkO
UYB+P6IOo7QHIoNeQ9Y1oNwvvedvJNfm2Ibw1F+pdDi6LSH3NK49o0E0OFO7MQq7
Qcg2yXlpob3LP8JYRN+A717h02GAZ1jWKLYh7z9lLRRzeAqdH5KJH4Za+JV8V7nO
5js3d/DhsbVijOSecYlUm2s=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:31 2024 by rpki-client on console-ams.rpki-client.org