Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a2ffd4-2382-4ca2-8603-44d92de438c9/1/pPH44camkGeJtP-Y0muTKvPcj8E.roa
File: pPH44camkGeJtP-Y0muTKvPcj8E.roa (raw, json)
Hash identifier: D/LtYh3+Ug6LYx3JnAdyHiOJaS+LVU2u4pFLRcvaDSs=
Subject key identifier: A4:F1:F8:E1:C6:A6:90:67:89:B4:FF:98:D2:6B:93:2A:F3:DC:8F:C1
Certificate issuer: /CN=c8c1dcf4c023467db3bf2eef3dd15b2efeeb2bd7
Certificate serial: 01827995EB12811B799937B755588B01679A
Authority key identifier: C8:C1:DC:F4:C0:23:46:7D:B3:BF:2E:EF:3D:D1:5B:2E:FE:EB:2B:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yMHc9MAjRn2zvy7vPdFbLv7rK9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ffd4-2382-4ca2-8603-44d92de438c9/1/pPH44camkGeJtP-Y0muTKvPcj8E.roa
Signing time: Sun 07 Aug 2022 18:34:04 +0000
ROA not before: Sun 07 Aug 2022 18:34:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203728
IP address blocks: 2001:678:90c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:79:95:eb:12:81:1b:79:99:37:b7:55:58:8b:01:67:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8c1dcf4c023467db3bf2eef3dd15b2efeeb2bd7
Validity
Not Before: Aug 7 18:34:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4f1f8e1c6a6906789b4ff98d26b932af3dc8fc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:49:7b:7b:54:eb:0a:95:ec:d7:06:59:68:36:
00:4d:c8:57:f9:fd:e2:b7:3b:1b:56:16:4b:94:0a:
75:8e:8e:38:a6:1f:3c:e2:66:0b:d0:8b:30:cb:ca:
b0:e7:76:f7:4a:72:18:b7:b1:82:da:d8:cf:4c:2c:
04:53:4a:a6:57:06:02:22:55:8a:3d:cb:f0:8a:77:
77:f4:7f:8f:27:11:02:6e:67:e2:11:4f:91:a2:11:
a5:51:33:4b:36:44:29:80:64:43:9e:15:4c:a2:76:
4b:7e:0a:56:aa:d6:cc:ce:15:4d:a7:d6:4e:7b:21:
f8:c8:59:99:6a:63:d8:a7:65:45:67:43:07:20:ed:
9a:04:21:0d:07:f0:f3:1e:d1:63:95:0d:61:18:34:
31:be:6a:0b:ab:9e:8c:cd:0f:00:41:5e:4d:97:e2:
81:ce:e4:ea:9b:bd:5b:d1:0a:09:9b:1e:78:83:12:
10:fb:d4:ca:fb:c2:dd:c4:b5:5d:a0:1d:2a:b3:11:
a3:6a:b6:ed:cf:47:a3:28:19:96:8d:8f:c1:dc:c4:
d6:ea:f5:ba:7b:79:a3:ab:17:19:a7:a8:07:c5:da:
91:66:89:6c:d5:a3:75:f2:7d:3f:8c:50:64:7a:cc:
88:5a:7d:f3:49:96:de:0a:70:b2:a9:31:84:3f:14:
ed:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F1:F8:E1:C6:A6:90:67:89:B4:FF:98:D2:6B:93:2A:F3:DC:8F:C1
X509v3 Authority Key Identifier:
keyid:C8:C1:DC:F4:C0:23:46:7D:B3:BF:2E:EF:3D:D1:5B:2E:FE:EB:2B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yMHc9MAjRn2zvy7vPdFbLv7rK9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ffd4-2382-4ca2-8603-44d92de438c9/1/pPH44camkGeJtP-Y0muTKvPcj8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ffd4-2382-4ca2-8603-44d92de438c9/1/yMHc9MAjRn2zvy7vPdFbLv7rK9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:90c::/48
Signature Algorithm: sha256WithRSAEncryption
78:d8:e0:4a:97:cf:d1:20:54:92:07:4e:12:c2:d8:fc:06:a1:
2f:d8:86:ea:3a:a1:7e:64:6c:15:ee:58:68:8b:f4:fd:85:00:
c4:2e:64:3d:68:c3:11:70:7a:6e:22:49:96:9e:2a:2d:85:eb:
94:dd:a2:0d:42:81:5a:6f:69:aa:ef:85:7b:43:9c:d1:28:d1:
0d:f7:6c:0a:8e:b9:1f:d7:c4:a2:66:96:f9:5c:c1:8c:99:0d:
98:74:e1:2d:0a:4b:78:dc:7f:23:68:72:4b:a0:ef:34:2a:5c:
b6:0c:fc:70:41:ce:28:a2:73:d3:5f:1a:fa:5a:61:16:d3:0b:
aa:ca:63:52:71:f5:42:29:87:21:3d:6a:ef:94:7b:32:57:5b:
a3:f3:fd:1d:9e:bb:7c:f8:89:da:59:3d:0d:47:a4:f0:2f:87:
a6:b1:e0:9b:e5:9a:08:04:62:a9:d4:f2:e8:d8:79:f8:1a:35:
bc:1f:1e:d9:74:4e:15:53:8f:c6:76:76:1a:39:e1:cd:b0:01:
a4:7b:8b:8c:3b:97:56:23:15:7c:11:a2:1f:ab:f5:de:90:84:
c6:8c:f7:3d:a5:67:f6:6e:91:a5:24:f7:48:73:8a:06:37:1e:
40:c4:06:52:7a:ab:6e:22:84:8c:cb:28:54:09:79:a8:b8:68:
90:0b:50:28
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYJ5lesSgRt5mTe3VViLAWeaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4YzFkY2Y0YzAyMzQ2N2RiM2JmMmVlZjNkZDE1YjJlZmVl
YjJiZDcwHhcNMjIwODA3MTgzNDA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNGYxZjhlMWM2YTY5MDY3ODliNGZmOThkMjZiOTMyYWYzZGM4ZmMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUl7e1TrCpXs1wZZaDYATchX+f3i
tzsbVhZLlAp1jo44ph884mYL0Iswy8qw53b3SnIYt7GC2tjPTCwEU0qmVwYCIlWK
Pcvwind39H+PJxECbmfiEU+RohGlUTNLNkQpgGRDnhVMonZLfgpWqtbMzhVNp9ZO
eyH4yFmZamPYp2VFZ0MHIO2aBCENB/DzHtFjlQ1hGDQxvmoLq56MzQ8AQV5Nl+KB
zuTqm71b0QoJmx54gxIQ+9TK+8LdxLVdoB0qsxGjarbtz0ejKBmWjY/B3MTW6vW6
e3mjqxcZp6gHxdqRZols1aN18n0/jFBkesyIWn3zSZbeCnCyqTGEPxTtlQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKTx+OHGppBnibT/mNJrkyrz3I/BMB8GA1UdIwQY
MBaAFMjB3PTAI0Z9s78u7z3RWy7+6yvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveU1IYzlNQWpSbjJ6dnk3dlBkRmJMdjdySzljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC9hMmZmZDQtMjM4Mi00Y2EyLTg2MDMt
NDRkOTJkZTQzOGM5LzEvcFBINDRjYW1rR2VKdFAtWTBtdVRLdlBjajhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC9hMmZmZDQtMjM4Mi00Y2EyLTg2MDMtNDRkOTJkZTQzOGM5
LzEveU1IYzlNQWpSbjJ6dnk3dlBkRmJMdjdySzljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAkM
MA0GCSqGSIb3DQEBCwUAA4IBAQB42OBKl8/RIFSSB04Swtj8BqEv2IbqOqF+ZGwV
7lhoi/T9hQDELmQ9aMMRcHpuIkmWniotheuU3aINQoFab2mq74V7Q5zRKNEN92wK
jrkf18SiZpb5XMGMmQ2YdOEtCkt43H8jaHJLoO80Kly2DPxwQc4oonPTXxr6WmEW
0wuqymNScfVCKYchPWrvlHsyV1uj8/0dnrt8+InaWT0NR6TwL4emseCb5ZoIBGKp
1PLo2Hn4GjW8Hx7ZdE4VU4/GdnYaOeHNsAGke4uMO5dWIxV8EaIfq/XekITGjPc9
pWf2bpGlJPdIc4oGNx5AxAZSeqtuIoSMyyhUCXmouGiQC1Ao
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:43 2024 by rpki-client on console-ams.rpki-client.org