Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/VsKCsZIE0W4JCRrwChZsFdlgrSI.roa
File: VsKCsZIE0W4JCRrwChZsFdlgrSI.roa (raw, json)
Hash identifier: GbYtJzAUA+1H0a/HOsbfDJk32hhYdgo8Cq7jIfA+6kg=
Subject key identifier: 56:C2:82:B1:92:04:D1:6E:09:09:1A:F0:0A:16:6C:15:D9:60:AD:22
Certificate issuer: /CN=b155daddb871b9d6a53cd6b47f776250837f7774
Certificate serial: 0182CFB13E3B4B48FF5D49A83AA2778921F0
Authority key identifier: B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/VsKCsZIE0W4JCRrwChZsFdlgrSI.roa
Signing time: Wed 24 Aug 2022 11:51:15 +0000
ROA not before: Wed 24 Aug 2022 11:51:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 80.66.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:cf:b1:3e:3b:4b:48:ff:5d:49:a8:3a:a2:77:89:21:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155daddb871b9d6a53cd6b47f776250837f7774
Validity
Not Before: Aug 24 11:51:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56c282b19204d16e09091af00a166c15d960ad22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:2b:99:29:d0:45:4e:02:ee:17:f0:e1:98:13:
96:89:4a:ac:9b:c5:e5:1a:76:0a:5c:27:c3:cb:81:
e7:7c:95:15:2b:92:65:93:a7:25:c7:c2:ab:ce:16:
52:24:64:9e:bd:07:52:7d:d8:d2:a7:4c:7e:4a:05:
91:7e:36:af:58:ee:86:bc:4f:67:34:bc:ce:22:00:
84:07:ac:bb:9d:e7:9c:95:41:4b:54:0f:3a:48:39:
26:68:79:21:e9:1c:12:73:73:46:6f:a9:fa:ea:5b:
d9:d7:79:f7:9e:11:ea:f3:0c:ba:16:84:b5:dc:d6:
fb:26:db:34:67:1b:c0:52:4a:a1:f9:14:d3:11:db:
c7:82:8a:e6:e5:89:38:98:b8:07:7d:fe:a3:03:1d:
27:b9:76:48:1e:96:1f:aa:36:c8:cc:5a:97:2a:13:
b4:e8:08:ac:cf:11:30:28:36:41:e5:e8:e4:fc:6a:
03:ce:48:fa:81:a6:c6:61:37:26:68:b4:3b:cf:74:
c8:9c:3f:69:08:65:cf:8f:83:87:c0:06:83:da:3a:
0e:7a:b9:27:32:53:1a:38:8a:e5:e3:b6:a9:d5:1d:
4e:67:57:98:59:5b:7a:9e:27:f7:f1:78:ab:2e:ee:
a3:83:ae:4a:b1:80:e7:34:c5:58:58:7b:ed:9f:d7:
ee:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:C2:82:B1:92:04:D1:6E:09:09:1A:F0:0A:16:6C:15:D9:60:AD:22
X509v3 Authority Key Identifier:
keyid:B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/VsKCsZIE0W4JCRrwChZsFdlgrSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/sVXa3bhxudalPNa0f3diUIN_d3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.0.0/19
Signature Algorithm: sha256WithRSAEncryption
5a:1d:ff:05:99:f1:57:52:1d:9e:b7:af:f3:2f:ec:6d:95:a2:
22:78:f5:6a:34:7d:34:68:47:5b:49:c9:bd:b6:75:98:7f:a1:
ff:d0:42:94:6d:2f:e8:3b:21:10:46:71:66:55:2e:29:10:37:
dc:1d:e1:ac:41:69:7d:7b:dd:6b:7f:67:62:bd:52:bd:0d:5b:
09:59:c0:83:e6:59:dd:ac:88:50:4b:cf:dc:63:95:92:d0:26:
9d:b4:b6:ad:3e:af:08:95:94:64:5a:60:10:50:dc:f4:c3:ee:
fe:98:ac:d8:52:3d:69:f2:eb:f5:89:c8:47:6e:50:ae:02:39:
30:45:b4:9e:51:85:10:cc:c1:e0:b8:bc:1f:53:16:c5:bb:c8:
b3:de:29:9b:11:33:16:36:ea:a6:37:02:c0:1a:8f:db:c7:ab:
74:97:1c:c2:79:7e:53:60:d8:05:b6:21:e8:58:c6:32:87:2c:
16:d9:6a:bb:ec:c2:9b:e1:e8:ba:ab:0b:eb:a5:b8:5e:e5:b5:
b7:bf:1f:12:f6:74:60:75:be:ce:55:b8:30:81:ba:96:0a:62:
fd:e5:f4:88:b0:8e:f1:ec:d5:70:61:06:cc:4e:85:de:9e:24:
88:73:03:ac:19:20:3c:11:37:79:6e:d3:30:65:00:45:a8:55:
a7:f5:6d:aa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYLPsT47S0j/XUmoOqJ3iSHwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTVkYWRkYjg3MWI5ZDZhNTNjZDZiNDdmNzc2MjUwODM3
Zjc3NzQwHhcNMjIwODI0MTE1MTE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NmMyODJiMTkyMDRkMTZlMDkwOTFhZjAwYTE2NmMxNWQ5NjBhZDIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgCuZKdBFTgLuF/DhmBOWiUqsm8Xl
GnYKXCfDy4HnfJUVK5Jlk6clx8KrzhZSJGSevQdSfdjSp0x+SgWRfjavWO6GvE9n
NLzOIgCEB6y7neeclUFLVA86SDkmaHkh6RwSc3NGb6n66lvZ13n3nhHq8wy6FoS1
3Nb7Jts0ZxvAUkqh+RTTEdvHgorm5Yk4mLgHff6jAx0nuXZIHpYfqjbIzFqXKhO0
6AiszxEwKDZB5ejk/GoDzkj6gabGYTcmaLQ7z3TInD9pCGXPj4OHwAaD2joOerkn
MlMaOIrl47ap1R1OZ1eYWVt6nif38XirLu6jg65KsYDnNMVYWHvtn9fuXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFbCgrGSBNFuCQka8AoWbBXZYK0iMB8GA1UdIwQY
MBaAFLFV2t24cbnWpTzWtH93YlCDf3d0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZYYTNiaHh1ZGFsUE5hMGYzZGlVSU5fZDNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS84ZmQ2ZTctNDk2Zi00N2NmLTgwZmIt
NTQ2OGIyY2YwYTc3LzEvVnNLQ3NaSUUwVzRKQ1Jyd0NoWnNGZGxnclNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS84ZmQ2ZTctNDk2Zi00N2NmLTgwZmItNTQ2OGIyY2YwYTc3
LzEvc1ZYYTNiaHh1ZGFsUE5hMGYzZGlVSU5fZDNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFUEIAMA0G
CSqGSIb3DQEBCwUAA4IBAQBaHf8FmfFXUh2et6/zL+xtlaIiePVqNH00aEdbScm9
tnWYf6H/0EKUbS/oOyEQRnFmVS4pEDfcHeGsQWl9e91rf2divVK9DVsJWcCD5lnd
rIhQS8/cY5WS0CadtLatPq8IlZRkWmAQUNz0w+7+mKzYUj1p8uv1ichHblCuAjkw
RbSeUYUQzMHguLwfUxbFu8iz3imbETMWNuqmNwLAGo/bx6t0lxzCeX5TYNgFtiHo
WMYyhywW2Wq77MKb4ei6qwvrpbhe5bW3vx8S9nRgdb7OVbgwgbqWCmL95fSIsI7x
7NVwYQbMToXeniSIcwOsGSA8ETd5btMwZQBFqFWn9W2q
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:54 2024 by rpki-client on console-fra.rpki-client.org