Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/580q7f08HBWtY_cj23nDcod7g1I.roa
File: 580q7f08HBWtY_cj23nDcod7g1I.roa (raw, json)
Hash identifier: IBryfzKLvESIR6LIytEIJTmXLmgVMFfAAKDUkePkD4o=
Subject key identifier: E7:CD:2A:ED:FD:3C:1C:15:AD:63:F7:23:DB:79:C3:72:87:7B:83:52
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0183270248F25FF8603752ADB834C2860928
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/580q7f08HBWtY_cj23nDcod7g1I.roa
Signing time: Sat 10 Sep 2022 10:46:44 +0000
ROA not before: Sat 10 Sep 2022 10:46:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211405
IP address blocks: 2a0c:9a40:9200::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:27:02:48:f2:5f:f8:60:37:52:ad:b8:34:c2:86:09:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Sep 10 10:46:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7cd2aedfd3c1c15ad63f723db79c372877b8352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:32:e1:c9:1e:6e:d8:57:bd:ca:fe:2f:84:f5:
01:85:9e:59:a0:e3:56:90:83:d0:79:0d:5a:0f:60:
0f:48:d1:56:85:86:fb:68:a9:af:6e:71:cf:3d:b3:
40:29:6e:42:92:92:96:90:fd:06:76:a6:17:73:d3:
f8:f8:2a:6e:ec:52:2e:58:75:99:7c:11:50:11:1f:
90:8e:24:0b:33:06:b0:e3:6d:ee:78:b7:d4:1e:c6:
18:51:6c:31:84:9b:be:25:93:d3:49:3e:d7:ec:da:
ad:fc:57:d7:5a:1c:f6:18:bc:7a:ee:a5:1b:3c:b2:
2c:c9:05:d4:9b:0b:ba:fb:79:06:09:7a:66:4e:69:
38:d6:f8:d9:1d:52:9f:de:31:ac:e1:e1:f2:f8:60:
48:f1:93:35:11:5e:39:3d:c0:2e:c5:df:2b:a0:cf:
47:a2:d0:8e:49:8e:e9:5d:bd:c2:26:6a:2e:ea:ae:
8a:78:8d:b3:11:bb:37:00:62:4a:73:1e:79:28:c1:
1c:7f:c3:de:b8:a3:9e:6a:e1:ed:a2:99:11:bf:a7:
ca:62:8e:89:c4:15:35:ab:8c:28:09:b5:ab:e7:d0:
8b:5a:ac:bf:b1:49:9f:f6:19:22:af:a4:59:e9:2f:
c5:80:3b:aa:6a:25:4a:6e:6b:bc:a0:b5:47:5a:54:
d7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:CD:2A:ED:FD:3C:1C:15:AD:63:F7:23:DB:79:C3:72:87:7B:83:52
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/580q7f08HBWtY_cj23nDcod7g1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:9200::/40
Signature Algorithm: sha256WithRSAEncryption
5a:a2:52:6e:3f:77:dd:0b:f2:2e:aa:45:c1:e6:2a:f4:a4:2b:
92:ec:0b:63:59:59:11:83:9c:b6:42:9a:06:39:68:a8:06:9a:
c8:1f:d4:89:34:b3:eb:08:ac:29:0c:db:9b:69:7b:e8:94:16:
a0:7d:68:18:fb:4a:b4:5d:b2:47:64:7f:ed:63:f1:87:c5:d3:
02:7b:99:98:98:a7:8d:4f:8f:51:c9:3d:25:b5:80:ee:fe:b0:
55:fb:aa:56:55:64:63:1d:9d:ea:fc:bc:18:44:25:a2:1a:a6:
a5:7f:e7:3e:d3:35:5f:1f:18:14:e2:04:9b:c3:44:8c:13:32:
e8:c7:80:21:f5:a7:5f:76:57:97:a5:ce:49:b7:1d:c6:f3:67:
8d:f3:f8:76:ee:3e:2d:d8:89:e8:ed:7a:d0:e1:b7:74:25:07:
ee:4a:e3:dc:61:aa:0e:58:65:c1:04:a9:ec:b3:ed:60:55:60:
56:68:b7:33:6b:5d:06:12:8b:19:82:16:db:15:a5:50:f4:db:
0e:34:d0:2c:30:e9:7b:fb:2f:10:6e:1e:ff:83:ab:7e:ea:65:
ea:43:a4:b8:72:35:a8:f4:43:cf:01:56:28:e7:f2:31:bb:e3:
96:5a:f2:2e:19:15:53:fc:fd:33:f8:23:0e:95:f2:d7:e5:dd:
8c:b1:f6:e7
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYMnAkjyX/hgN1KtuDTChgkoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl
NDgwMDgwHhcNMjIwOTEwMTA0NjQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlN2NkMmFlZGZkM2MxYzE1YWQ2M2Y3MjNkYjc5YzM3Mjg3N2I4MzUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApjLhyR5u2Fe9yv4vhPUBhZ5ZoONW
kIPQeQ1aD2APSNFWhYb7aKmvbnHPPbNAKW5CkpKWkP0GdqYXc9P4+Cpu7FIuWHWZ
fBFQER+QjiQLMwaw423ueLfUHsYYUWwxhJu+JZPTST7X7Nqt/FfXWhz2GLx67qUb
PLIsyQXUmwu6+3kGCXpmTmk41vjZHVKf3jGs4eHy+GBI8ZM1EV45PcAuxd8roM9H
otCOSY7pXb3CJmou6q6KeI2zEbs3AGJKcx55KMEcf8PeuKOeauHtopkRv6fKYo6J
xBU1q4woCbWr59CLWqy/sUmf9hkir6RZ6S/FgDuqaiVKbmu8oLVHWlTXfQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFOfNKu39PBwVrWP3I9t5w3KHe4NSMB8GA1UdIwQY
MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt
YmY0ZTUyN2I5ZmE4LzEvNTgwcTdmMDhIQld0WV9jajIzbkRjb2Q3ZzFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4
LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgyaQJIw
DQYJKoZIhvcNAQELBQADggEBAFqiUm4/d90L8i6qRcHmKvSkK5LsC2NZWRGDnLZC
mgY5aKgGmsgf1Ik0s+sIrCkM25tpe+iUFqB9aBj7SrRdskdkf+1j8YfF0wJ7mZiY
p41Pj1HJPSW1gO7+sFX7qlZVZGMdner8vBhEJaIapqV/5z7TNV8fGBTiBJvDRIwT
MujHgCH1p192V5elzkm3HcbzZ43z+HbuPi3YiejtetDht3QlB+5K49xhqg5YZcEE
qeyz7WBVYFZotzNrXQYSixmCFtsVpVD02w400Cww6Xv7LxBuHv+Dq37qZepDpLhy
Naj0Q88BVijn8jG745Za8i4ZFVP8/TP4Iw6V8tfl3Yyx9uc=
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:49:28 2025 by rpki-client