Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/K9QrI_toF2sxOQawp3A6bJBE9Xs.roa
File: K9QrI_toF2sxOQawp3A6bJBE9Xs.roa (raw, json)
Hash identifier: cPbfW0Ykil1sTPtE7xUhc2eAELuAFZvtcyDtV4ttbtE=
Subject key identifier: 2B:D4:2B:23:FB:68:17:6B:31:39:06:B0:A7:70:3A:6C:90:44:F5:7B
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01848A7A867D5B2F9AF3F2AE896F336AC4A4
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/K9QrI_toF2sxOQawp3A6bJBE9Xs.roa
Signing time: Fri 18 Nov 2022 11:23:16 +0000
ROA not before: Fri 18 Nov 2022 11:23:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211437
IP address blocks: 80.76.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8a:7a:86:7d:5b:2f:9a:f3:f2:ae:89:6f:33:6a:c4:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 18 11:23:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2bd42b23fb68176b313906b0a7703a6c9044f57b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c5:8b:a5:c9:b9:ad:d5:98:ca:45:a6:16:af:
e0:42:b6:a3:11:20:ce:7b:e1:5d:9a:32:da:9c:97:
53:50:48:40:b1:1e:52:e1:f1:f1:f0:ab:bb:96:16:
1e:1e:e7:2c:9c:a0:24:d3:eb:53:e1:b4:ec:c9:92:
71:0c:08:f3:f4:2f:11:5f:32:1a:52:f8:dc:64:af:
f2:50:44:60:fd:03:9f:26:28:ab:dd:c1:a8:ad:77:
04:d4:1f:fa:40:b6:2e:cb:5b:a5:e4:b5:50:22:af:
db:72:fe:49:3f:0d:5f:62:f7:2f:42:8e:70:56:8d:
31:db:3a:b4:e5:7e:1a:b9:85:05:df:64:58:12:b1:
98:0e:16:25:f4:17:7c:83:1b:47:e8:ce:41:94:19:
7e:60:53:a5:37:a2:94:80:4e:76:34:f4:02:32:8d:
f8:82:e1:7d:de:f5:45:75:de:c0:dc:14:b3:2b:16:
cc:57:75:00:22:4f:2c:69:e3:fe:76:70:7d:65:b7:
fd:95:ba:79:3e:09:ea:b9:3c:2d:5c:9e:2c:5f:cd:
13:dc:f9:b7:db:fb:ed:90:e1:2a:86:ac:0d:05:f4:
70:d5:91:e5:1f:63:dc:15:76:70:66:c3:eb:d6:ba:
9b:04:b9:84:6a:ea:3d:5a:3c:25:34:7f:4b:54:0f:
69:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D4:2B:23:FB:68:17:6B:31:39:06:B0:A7:70:3A:6C:90:44:F5:7B
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/K9QrI_toF2sxOQawp3A6bJBE9Xs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.50.0/24
Signature Algorithm: sha256WithRSAEncryption
16:2c:65:7e:d5:e0:f4:c2:08:59:0a:5c:e9:95:e0:ef:e3:45:
41:b0:f1:b4:25:5d:63:d3:52:28:2f:26:02:6b:20:f5:42:0f:
b7:a9:8f:3a:f1:83:3e:71:fa:4f:b6:21:e8:de:3a:c8:9d:f8:
0b:55:ed:c4:0b:b3:e8:69:f3:8a:ee:b8:2d:82:ad:90:bb:4a:
92:38:e0:ed:75:e7:f9:69:7d:ac:5b:76:d4:52:21:98:92:0a:
fa:8a:6d:19:19:df:45:e7:b2:c8:a5:48:1d:99:85:93:37:07:
57:f7:95:b5:b6:e4:95:6d:57:73:4c:d9:3c:23:04:9e:82:6d:
bc:6f:d2:25:e1:81:d0:db:8b:dc:b3:9d:2f:a4:f5:c4:e2:ec:
c3:98:59:eb:49:60:f4:d6:4c:3c:4b:93:25:ff:a0:ef:b6:af:
d1:93:6b:f5:7d:88:c3:f3:42:31:af:62:9d:74:6d:51:c4:13:
fb:d9:0d:17:db:a0:41:73:9e:f6:86:44:83:eb:65:09:69:b2:
c2:7e:fb:da:12:7e:15:79:35:a6:eb:de:33:2b:75:67:ff:04:
9a:2b:1a:1f:8a:b1:d7:91:9a:63:88:93:35:fd:8f:b8:66:db:
ce:47:6c:a6:a1:2e:67:af:e2:58:13:7a:34:0f:56:67:f1:d5:
75:c8:57:ca
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSKeoZ9Wy+a8/KuiW8zasSkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjIxMTE4MTEyMzE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYmQ0MmIyM2ZiNjgxNzZiMzEzOTA2YjBhNzcwM2E2YzkwNDRmNTdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgsWLpcm5rdWYykWmFq/gQrajESDO
e+FdmjLanJdTUEhAsR5S4fHx8Ku7lhYeHucsnKAk0+tT4bTsyZJxDAjz9C8RXzIa
UvjcZK/yUERg/QOfJiir3cGorXcE1B/6QLYuy1ul5LVQIq/bcv5JPw1fYvcvQo5w
Vo0x2zq05X4auYUF32RYErGYDhYl9Bd8gxtH6M5BlBl+YFOlN6KUgE52NPQCMo34
guF93vVFdd7A3BSzKxbMV3UAIk8saeP+dnB9Zbf9lbp5PgnquTwtXJ4sX80T3Pm3
2/vtkOEqhqwNBfRw1ZHlH2PcFXZwZsPr1rqbBLmEauo9WjwlNH9LVA9pIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCvUKyP7aBdrMTkGsKdwOmyQRPV7MB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvSzlRcklfdG9GMnN4T1Fhd3AzQTZiSkJFOVhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEwyMA0G
CSqGSIb3DQEBCwUAA4IBAQAWLGV+1eD0wghZClzpleDv40VBsPG0JV1j01IoLyYC
ayD1Qg+3qY868YM+cfpPtiHo3jrInfgLVe3EC7PoafOK7rgtgq2Qu0qSOODtdef5
aX2sW3bUUiGYkgr6im0ZGd9F57LIpUgdmYWTNwdX95W1tuSVbVdzTNk8IwSegm28
b9Il4YHQ24vcs50vpPXE4uzDmFnrSWD01kw8S5Ml/6Dvtq/Rk2v1fYjD80Ixr2Kd
dG1RxBP72Q0X26BBc572hkSD62UJabLCfvvaEn4VeTWm694zK3Vn/wSaKxofirHX
kZpjiJM1/Y+4ZtvOR2ymoS5nr+JYE3o0D1Zn8dV1yFfK
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:35 2023 by rpki-client on console-ams.rpki-client.org