Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/i9Zdn3NybOTgak9rt6oOIMlVfxI.roa
File: i9Zdn3NybOTgak9rt6oOIMlVfxI.roa (raw, json)
Hash identifier: LZZTgR5ASpBkAZ+1Va+u7P430/Wbq3FfXDrQVrrjsxI=
Subject key identifier: 8B:D6:5D:9F:73:72:6C:E4:E0:6A:4F:6B:B7:AA:0E:20:C9:55:7F:12
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01853E4B393EFCAF6B264545A33F699039BD
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/i9Zdn3NybOTgak9rt6oOIMlVfxI.roa
Signing time: Fri 23 Dec 2022 09:23:15 +0000
ROA not before: Fri 23 Dec 2022 09:23:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200723
IP address blocks: 37.63.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3e:4b:39:3e:fc:af:6b:26:45:45:a3:3f:69:90:39:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Dec 23 09:23:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bd65d9f73726ce4e06a4f6bb7aa0e20c9557f12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c9:fd:1e:63:ac:e9:65:f5:05:32:c3:1b:22:
22:df:9e:97:09:9d:94:fe:ca:21:74:ea:fa:8e:de:
41:5f:49:e4:38:c2:bf:77:4b:0d:c0:01:63:0a:98:
59:d9:ff:86:c4:01:03:25:be:1b:30:0f:1b:15:85:
72:07:57:95:b2:a7:04:0b:0a:26:95:1f:d9:07:8c:
5d:45:91:ba:13:af:ea:61:cd:e9:fb:30:e3:b2:a5:
81:9f:0f:61:4e:1c:8d:c2:53:9d:c3:0b:38:ea:50:
9a:5e:50:ef:3f:00:d5:4b:74:8c:16:3b:1e:c0:87:
56:03:4d:49:5e:2d:32:a2:f8:dc:e0:b0:94:90:9f:
6e:14:50:43:eb:49:da:ce:f3:0f:b6:cf:27:e3:fb:
44:e3:b9:20:f8:b3:d1:ec:72:c3:2d:52:16:c8:2b:
1f:4c:30:0b:f5:02:4f:91:40:63:f5:cc:99:6f:27:
5b:38:48:6a:43:13:74:93:1a:28:a1:60:b6:8d:6d:
d5:de:b8:6e:58:1c:aa:eb:74:37:88:60:82:1c:86:
83:ba:fb:29:a8:47:54:c4:94:7a:a8:ee:3d:62:3f:
85:09:c9:cc:af:10:4c:f1:5d:c6:a4:db:60:be:dd:
75:6b:bd:a6:06:a8:8f:73:bc:39:9c:77:24:8d:32:
42:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:D6:5D:9F:73:72:6C:E4:E0:6A:4F:6B:B7:AA:0E:20:C9:55:7F:12
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/i9Zdn3NybOTgak9rt6oOIMlVfxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.63.82.0/24
Signature Algorithm: sha256WithRSAEncryption
26:40:d8:75:3d:27:bd:50:08:ee:82:9b:69:5a:ef:a4:04:d7:
b2:c5:25:44:9e:ec:6c:49:a1:32:51:cb:25:ed:37:18:52:8b:
07:1a:c6:62:1e:5a:b2:d2:ab:08:c4:d5:aa:35:fb:db:c5:38:
bc:82:3f:4d:ae:dc:fc:ef:4b:62:6a:05:65:5b:82:ff:c7:89:
7c:d3:30:05:90:75:97:fd:91:36:97:4a:ff:91:08:5c:63:61:
ca:9b:d5:aa:08:b3:a2:c3:6b:15:95:84:ff:cf:4e:56:1c:42:
a5:c1:fa:db:bc:3f:31:db:fd:a3:8e:34:a6:08:64:72:f6:ad:
71:68:35:9c:9f:7b:5f:59:5e:eb:51:42:ec:3a:7a:14:42:73:
95:0d:82:09:47:4f:09:04:36:56:8c:57:7c:50:8d:60:aa:da:
35:b2:71:e3:d6:1d:58:7d:48:d9:32:20:99:e9:5a:20:09:be:
89:86:7c:55:bb:11:d8:76:df:92:b8:37:e3:b0:df:f0:19:3e:
48:fa:11:32:15:de:19:64:ee:f9:bd:82:14:3c:f5:a8:70:c0:
c9:a2:d4:90:cd:bc:e2:0b:bd:2d:ac:8e:fb:27:a7:4e:b9:1c:
2b:92:90:a2:01:bb:fa:01:c6:f0:ac:4b:68:77:8b:54:a9:3d:
d2:ff:c6:38
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYU+Szk+/K9rJkVFoz9pkDm9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj
ZDgyZWMwHhcNMjIxMjIzMDkyMzE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YmQ2NWQ5ZjczNzI2Y2U0ZTA2YTRmNmJiN2FhMGUyMGM5NTU3ZjEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgMn9HmOs6WX1BTLDGyIi356XCZ2U
/sohdOr6jt5BX0nkOMK/d0sNwAFjCphZ2f+GxAEDJb4bMA8bFYVyB1eVsqcECwom
lR/ZB4xdRZG6E6/qYc3p+zDjsqWBnw9hThyNwlOdwws46lCaXlDvPwDVS3SMFjse
wIdWA01JXi0yovjc4LCUkJ9uFFBD60nazvMPts8n4/tE47kg+LPR7HLDLVIWyCsf
TDAL9QJPkUBj9cyZbydbOEhqQxN0kxoooWC2jW3V3rhuWByq63Q3iGCCHIaDuvsp
qEdUxJR6qO49Yj+FCcnMrxBM8V3GpNtgvt11a72mBqiPc7w5nHckjTJC7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIvWXZ9zcmzk4GpPa7eqDiDJVX8SMB8GA1UdIwQY
MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt
N2ZiYmFlNmY5NDM3LzEvaTlaZG4zTnliT1RnYWs5cnQ2b09JTWxWZnhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAtN2ZiYmFlNmY5NDM3
LzEvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJT9SMA0G
CSqGSIb3DQEBCwUAA4IBAQAmQNh1PSe9UAjugptpWu+kBNeyxSVEnuxsSaEyUcsl
7TcYUosHGsZiHlqy0qsIxNWqNfvbxTi8gj9Nrtz870tiagVlW4L/x4l80zAFkHWX
/ZE2l0r/kQhcY2HKm9WqCLOiw2sVlYT/z05WHEKlwfrbvD8x2/2jjjSmCGRy9q1x
aDWcn3tfWV7rUULsOnoUQnOVDYIJR08JBDZWjFd8UI1gqto1snHj1h1YfUjZMiCZ
6VogCb6JhnxVuxHYdt+SuDfjsN/wGT5I+hEyFd4ZZO75vYIUPPWocMDJotSQzbzi
C70trI77J6dOuRwrkpCiAbv6AcbwrEtod4tUqT3S/8Y4
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:20 2023 by rpki-client on console-fra.rpki-client.org