Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/84179d-4c65-44b8-b30b-5dabb4e47abb/1/vRFF7s-4v3MVT_kyFLEGjXaISHw.roa
File: vRFF7s-4v3MVT_kyFLEGjXaISHw.roa (raw, json)
Hash identifier: ayxTFZyUEYuNb5PEzza2vpawGlVeObiqXRRbv94Ej8c=
Subject key identifier: BD:11:45:EE:CF:B8:BF:73:15:4F:F9:32:14:B1:06:8D:76:88:48:7C
Certificate issuer: /CN=37689eaacbaf68af35d3fafb9674de48a6fc0978
Certificate serial: 0182FD1279603844F838DED8A67D956A194E
Authority key identifier: 37:68:9E:AA:CB:AF:68:AF:35:D3:FA:FB:96:74:DE:48:A6:FC:09:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N2ieqsuvaK810_r7lnTeSKb8CXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/84179d-4c65-44b8-b30b-5dabb4e47abb/1/vRFF7s-4v3MVT_kyFLEGjXaISHw.roa
Signing time: Fri 02 Sep 2022 07:20:22 +0000
ROA not before: Fri 02 Sep 2022 07:20:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210482
IP address blocks: 141.80.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fd:12:79:60:38:44:f8:38:de:d8:a6:7d:95:6a:19:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37689eaacbaf68af35d3fafb9674de48a6fc0978
Validity
Not Before: Sep 2 07:20:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd1145eecfb8bf73154ff93214b1068d7688487c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:14:31:cd:e8:b0:6f:bd:d5:49:a7:15:98:29:
3d:d5:96:5b:62:1b:78:1a:66:f5:27:dc:08:d3:be:
c1:cb:fd:c2:2a:98:d6:61:4f:fd:df:f2:0f:11:3d:
44:00:c8:ad:39:cc:4a:62:56:e4:1d:fc:83:f1:c2:
8d:db:4f:7f:5f:a0:7e:18:c7:fb:36:83:6e:1a:9e:
fd:b3:d6:ab:4e:e7:55:17:55:34:d4:33:34:4d:1c:
15:6f:ed:e3:20:53:17:96:58:31:b0:59:72:5d:88:
42:6b:fa:d4:58:a8:93:55:fb:af:22:47:2f:e0:2e:
3c:03:20:62:f8:c1:e7:8e:02:41:58:64:e4:4f:4c:
a2:8a:2d:55:e4:0c:d7:e0:a2:0c:69:48:2d:f5:0b:
1a:b1:f6:5b:4e:be:56:3f:83:fd:d4:19:12:b7:65:
4d:93:03:23:a3:89:a9:0e:56:6f:3c:34:30:6b:35:
ce:b4:e7:36:97:15:4c:59:c9:52:08:7c:fc:c2:c5:
fc:76:79:6c:24:38:7b:d2:d5:09:a6:51:04:64:7e:
df:61:4c:97:c3:22:7e:62:ed:8a:0f:f1:fc:f2:92:
b6:58:d7:06:2f:1f:d6:f9:e4:b0:9c:07:d6:6e:53:
e2:91:43:30:d3:4d:df:30:00:55:16:6d:c0:fc:00:
df:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:11:45:EE:CF:B8:BF:73:15:4F:F9:32:14:B1:06:8D:76:88:48:7C
X509v3 Authority Key Identifier:
keyid:37:68:9E:AA:CB:AF:68:AF:35:D3:FA:FB:96:74:DE:48:A6:FC:09:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N2ieqsuvaK810_r7lnTeSKb8CXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/84179d-4c65-44b8-b30b-5dabb4e47abb/1/vRFF7s-4v3MVT_kyFLEGjXaISHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/84179d-4c65-44b8-b30b-5dabb4e47abb/1/N2ieqsuvaK810_r7lnTeSKb8CXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.80.0.0/16
Signature Algorithm: sha256WithRSAEncryption
76:b1:d2:0e:72:1b:81:68:e1:74:c7:ff:1b:c0:7f:2e:bf:14:
9e:51:44:f6:81:e2:16:63:62:d7:af:bd:5c:93:72:7d:82:18:
9b:bc:62:33:16:b5:9e:0a:f1:25:7b:f5:e1:bf:7c:f5:e8:b1:
e9:68:44:d1:f8:14:38:cb:5c:ee:96:28:c0:9f:46:68:b7:14:
0c:f7:2d:32:ea:64:80:77:1b:ec:79:92:08:4a:ac:d0:9b:24:
eb:2f:58:7e:52:87:92:f1:ac:3b:2f:83:3d:69:a5:fc:78:c1:
5a:3d:b7:bf:de:d1:ca:20:c0:8c:76:b1:fc:d4:52:a7:cc:86:
76:4e:42:75:b1:f1:fc:ac:f4:9a:56:d6:18:bb:93:85:e0:6b:
ba:ca:1f:9c:d2:0b:85:c7:b1:78:c0:86:09:8f:65:d0:bd:0d:
6e:35:c8:bd:b1:80:b6:fd:b5:4d:9a:f0:6e:37:97:19:96:90:
2a:a3:28:22:49:84:b3:76:fb:82:b7:b4:01:36:ac:fa:21:e9:
88:cd:dc:ac:d2:e6:1c:70:f4:2e:b9:db:d5:9a:ab:5d:ff:4d:
32:2c:84:a6:aa:b0:a9:e9:09:af:c1:9a:05:57:47:46:e1:72:
ca:84:53:39:3a:b7:9e:71:f0:de:2a:61:14:f6:74:1e:78:0d:
a3:f6:fe:9f
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYL9EnlgOET4ON7Ypn2VahlOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3Njg5ZWFhY2JhZjY4YWYzNWQzZmFmYjk2NzRkZTQ4YTZm
YzA5NzgwHhcNMjIwOTAyMDcyMDIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZDExNDVlZWNmYjhiZjczMTU0ZmY5MzIxNGIxMDY4ZDc2ODg0ODdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBQxzeiwb73VSacVmCk91ZZbYht4
Gmb1J9wI077By/3CKpjWYU/93/IPET1EAMitOcxKYlbkHfyD8cKN209/X6B+GMf7
NoNuGp79s9arTudVF1U01DM0TRwVb+3jIFMXllgxsFlyXYhCa/rUWKiTVfuvIkcv
4C48AyBi+MHnjgJBWGTkT0yiii1V5AzX4KIMaUgt9QsasfZbTr5WP4P91BkSt2VN
kwMjo4mpDlZvPDQwazXOtOc2lxVMWclSCHz8wsX8dnlsJDh70tUJplEEZH7fYUyX
wyJ+Yu2KD/H88pK2WNcGLx/W+eSwnAfWblPikUMw003fMABVFm3A/ADfqwIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFL0RRe7PuL9zFU/5MhSxBo12iEh8MB8GA1UdIwQY
MBaAFDdonqrLr2ivNdP6+5Z03kim/Al4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTjJpZXFzdXZhSzgxMF9yN2xuVGVTS2I4Q1hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS84NDE3OWQtNGM2NS00NGI4LWIzMGIt
NWRhYmI0ZTQ3YWJiLzEvdlJGRjdzLTR2M01WVF9reUZMRUdqWGFJU0h3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS84NDE3OWQtNGM2NS00NGI4LWIzMGItNWRhYmI0ZTQ3YWJi
LzEvTjJpZXFzdXZhSzgxMF9yN2xuVGVTS2I4Q1hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjVAwDQYJ
KoZIhvcNAQELBQADggEBAHax0g5yG4Fo4XTH/xvAfy6/FJ5RRPaB4hZjYtevvVyT
cn2CGJu8YjMWtZ4K8SV79eG/fPXoseloRNH4FDjLXO6WKMCfRmi3FAz3LTLqZIB3
G+x5kghKrNCbJOsvWH5Sh5LxrDsvgz1ppfx4wVo9t7/e0cogwIx2sfzUUqfMhnZO
QnWx8fys9JpW1hi7k4Xga7rKH5zSC4XHsXjAhgmPZdC9DW41yL2xgLb9tU2a8G43
lxmWkCqjKCJJhLN2+4K3tAE2rPoh6YjN3KzS5hxw9C6529Waq13/TTIshKaqsKnp
Ca/BmgVXR0bhcsqEUzk6t55x8N4qYRT2dB54DaP2/p8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:18 2024 by rpki-client on console-fra.rpki-client.org