Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/p8I-Gv2dqQa31_ham9qbmXmQzpY.roa
File: p8I-Gv2dqQa31_ham9qbmXmQzpY.roa (raw, json)
Hash identifier: 31qxwni+5iB08WWO9UVIIPfUDDkjHq3OFeoL48S3ha4=
Subject key identifier: A7:C2:3E:1A:FD:9D:A9:06:B7:D7:F8:5A:9B:DA:9B:99:79:90:CE:96
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 0181DDEDE1960ACAD9A5022C06CBA699CA4F
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/p8I-Gv2dqQa31_ham9qbmXmQzpY.roa
Signing time: Fri 08 Jul 2022 13:09:23 +0000
ROA not before: Fri 08 Jul 2022 13:09:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.160.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:dd:ed:e1:96:0a:ca:d9:a5:02:2c:06:cb:a6:99:ca:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Jul 8 13:09:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7c23e1afd9da906b7d7f85a9bda9b997990ce96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:70:0d:e9:b5:79:81:a1:c6:d3:9a:c9:a8:73:
3c:64:bf:4b:f3:f5:23:8c:65:f3:9e:2a:95:99:2b:
86:12:9c:5d:51:d2:bf:d0:aa:8d:d5:c5:09:d5:1c:
4f:a9:95:2e:05:34:49:17:ae:31:ab:87:3a:35:82:
a4:24:5c:45:d7:74:75:3a:e1:53:bd:09:3c:a9:25:
bb:96:bf:fe:ff:77:bf:3e:15:07:75:be:d8:20:b5:
8f:de:ab:73:59:3e:32:b7:58:2d:71:20:ce:96:cd:
3e:02:bf:bb:1f:b0:29:cc:82:05:9e:4f:b8:a3:0e:
a5:d9:e4:0c:0f:ba:57:5e:95:1f:c5:21:23:a6:cb:
6b:3d:4e:7a:93:ec:3c:26:d8:dd:e8:96:6e:78:98:
6e:0e:64:4a:29:cf:41:5d:87:ef:c6:40:6b:c9:c7:
16:d5:44:94:81:3c:c4:e0:6c:c5:dd:11:50:61:c8:
de:3c:ed:14:71:69:a7:d8:00:8b:13:65:0f:86:71:
85:8c:bc:d0:32:d5:f5:65:cc:60:82:79:4c:01:1b:
c4:97:e7:2a:d7:4a:14:00:be:82:be:04:61:b9:35:
dc:b9:4d:e6:48:af:7c:34:8f:e6:f4:40:b5:ea:94:
cd:1b:cd:7e:51:2b:48:48:26:9c:2c:0c:0a:52:7b:
bb:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:C2:3E:1A:FD:9D:A9:06:B7:D7:F8:5A:9B:DA:9B:99:79:90:CE:96
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/p8I-Gv2dqQa31_ham9qbmXmQzpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.8.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:7f:2a:b4:2f:e1:14:85:8a:05:52:cf:85:1d:c9:25:11:f0:
4b:85:a1:93:45:23:58:96:5e:a8:13:00:06:db:8d:55:da:ad:
78:6e:ce:88:38:d3:56:f4:06:bf:5b:db:e3:c0:5b:ff:33:aa:
ef:4f:47:52:72:b9:31:f5:9e:78:de:82:eb:f7:35:01:93:70:
8e:df:89:1c:0e:7d:e7:95:b9:7b:97:19:8f:52:54:50:51:40:
93:5d:31:0c:27:a1:da:44:3a:cf:71:03:89:9e:c7:4b:a1:52:
a3:2e:62:28:a0:5e:b7:67:ce:26:26:72:3e:bb:21:8d:0d:29:
0a:2e:2b:ed:ee:b0:e3:58:83:55:91:75:52:b4:d0:25:53:1c:
09:22:5a:3f:cb:87:9f:46:b0:67:8d:00:98:0f:7f:90:82:95:
2c:a4:d9:83:98:0b:84:a7:53:3e:de:d0:ea:ec:f1:0b:c6:5c:
ee:5f:36:6d:4f:2d:b2:91:9f:2d:1b:ef:8e:b2:58:fe:a7:fb:
e1:10:f1:82:93:b0:9c:da:b3:54:8e:79:e0:80:05:c7:b1:ae:
43:35:c4:f1:3e:ce:a4:19:f8:f9:62:24:34:80:5d:50:8b:a9:
50:4c:2c:d5:a6:54:c9:43:93:1a:8d:cf:c5:4b:d4:98:0b:61:
58:12:d8:ec
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHd7eGWCsrZpQIsBsummcpPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0ZDA4YTFlMWNiYzkwOTI1NGU5ZTZiOWM5MzlmZDg1YTI2
OGIxZTEwHhcNMjIwNzA4MTMwOTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhN2MyM2UxYWZkOWRhOTA2YjdkN2Y4NWE5YmRhOWI5OTc5OTBjZTk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHAN6bV5gaHG05rJqHM8ZL9L8/Uj
jGXzniqVmSuGEpxdUdK/0KqN1cUJ1RxPqZUuBTRJF64xq4c6NYKkJFxF13R1OuFT
vQk8qSW7lr/+/3e/PhUHdb7YILWP3qtzWT4yt1gtcSDOls0+Ar+7H7ApzIIFnk+4
ow6l2eQMD7pXXpUfxSEjpstrPU56k+w8Jtjd6JZueJhuDmRKKc9BXYfvxkBryccW
1USUgTzE4GzF3RFQYcjePO0UcWmn2ACLE2UPhnGFjLzQMtX1ZcxggnlMARvEl+cq
10oUAL6CvgRhuTXcuU3mSK98NI/m9EC16pTNG81+UStISCacLAwKUnu7nwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKfCPhr9nakGt9f4Wpvam5l5kM6WMB8GA1UdIwQY
MBaAFPTQih4cvJCSVOnmuck5/YWiaLHhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOU5DS0hoeThrSkpVNmVhNXlUbjloYUpvc2VFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NDlmZGMtMGQzYS00MWVjLWExY2Ut
ZGNlOTQ3ZTI5NGI2LzEvcDhJLUd2MmRxUWEzMV9oYW05cWJtWG1RenBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NDlmZGMtMGQzYS00MWVjLWExY2UtZGNlOTQ3ZTI5NGI2
LzEvOU5DS0hoeThrSkpVNmVhNXlUbjloYUpvc2VFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaAIMA0G
CSqGSIb3DQEBCwUAA4IBAQCafyq0L+EUhYoFUs+FHcklEfBLhaGTRSNYll6oEwAG
241V2q14bs6IONNW9Aa/W9vjwFv/M6rvT0dScrkx9Z543oLr9zUBk3CO34kcDn3n
lbl7lxmPUlRQUUCTXTEMJ6HaRDrPcQOJnsdLoVKjLmIooF63Z84mJnI+uyGNDSkK
Livt7rDjWINVkXVStNAlUxwJIlo/y4efRrBnjQCYD3+QgpUspNmDmAuEp1M+3tDq
7PELxlzuXzZtTy2ykZ8tG++Oslj+p/vhEPGCk7Cc2rNUjnnggAXHsa5DNcTxPs6k
Gfj5YiQ0gF1Qi6lQTCzVplTJQ5Majc/FS9SYC2FYEtjs
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-ams.rpki-client.org