Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/6c3741-cf8c-4d5d-bb8e-4598689d551e/1/iq82BezcgobnU7HFUM9CbxceHOc.roa
File: iq82BezcgobnU7HFUM9CbxceHOc.roa (raw, json)
Hash identifier: /6Ck3ZBYy694rrNTl7+CB8rqZGGMvUfo/AcIxFWpyqc=
Subject key identifier: 8A:AF:36:05:EC:DC:82:86:E7:53:B1:C5:50:CF:42:6F:17:1E:1C:E7
Certificate issuer: /CN=da6099e7ff3a171bce3b6fe99ebb4d24cb85e461
Certificate serial: 06C80D0D
Authority key identifier: DA:60:99:E7:FF:3A:17:1B:CE:3B:6F:E9:9E:BB:4D:24:CB:85:E4:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2mCZ5_86FxvOO2_pnrtNJMuF5GE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/6c3741-cf8c-4d5d-bb8e-4598689d551e/1/iq82BezcgobnU7HFUM9CbxceHOc.roa
Signing time: Sat 01 Jan 2022 14:07:44 +0000
ROA not before: Sat 01 Jan 2022 14:07:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8787
IP address blocks: 212.9.128.0/19 maxlen: 19
2a03:1f60::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113773837 (0x6c80d0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da6099e7ff3a171bce3b6fe99ebb4d24cb85e461
Validity
Not Before: Jan 1 14:07:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8aaf3605ecdc8286e753b1c550cf426f171e1ce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0d:77:6e:56:d9:3b:2c:a3:29:cb:7b:a5:50:
ab:5a:6e:cd:b6:21:c0:c2:84:44:75:9e:0d:dd:4b:
84:fb:b6:0a:23:c2:8b:4f:95:b2:f0:1c:ae:64:b7:
49:a4:2b:4b:18:d8:b7:cb:5e:a6:dd:a1:e2:60:12:
bc:62:fb:8a:4d:9a:75:d1:26:29:10:b4:01:ea:cc:
ed:98:2e:83:eb:87:5b:68:b2:e8:40:1e:9e:59:ce:
f1:71:16:7c:c5:0d:26:13:4c:71:c3:76:a0:99:ed:
55:d9:28:03:0a:24:87:31:5f:fc:83:9b:e8:3c:fc:
d8:96:66:c6:98:9a:3f:41:46:e1:e6:c6:31:e6:b7:
81:9b:3e:8d:dd:b8:8b:73:e2:4f:62:e8:b7:83:9b:
59:c0:c4:cc:a8:bf:75:93:99:4b:3d:c0:54:75:b8:
3b:8f:10:2d:ad:7c:06:1d:09:19:21:77:85:c5:49:
de:41:db:bb:01:12:18:db:78:8f:a3:34:6b:66:ea:
ab:64:72:c3:72:1f:93:2b:5e:dc:27:db:bc:85:f0:
31:53:26:1b:5e:16:e4:dd:db:cd:57:90:f6:69:e5:
6c:8a:17:4f:13:c6:24:9d:e3:fe:ed:f4:38:9d:7b:
56:b0:f7:ef:c9:24:3f:a6:e1:53:a4:84:78:2c:30:
f1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:AF:36:05:EC:DC:82:86:E7:53:B1:C5:50:CF:42:6F:17:1E:1C:E7
X509v3 Authority Key Identifier:
keyid:DA:60:99:E7:FF:3A:17:1B:CE:3B:6F:E9:9E:BB:4D:24:CB:85:E4:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2mCZ5_86FxvOO2_pnrtNJMuF5GE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6c3741-cf8c-4d5d-bb8e-4598689d551e/1/iq82BezcgobnU7HFUM9CbxceHOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6c3741-cf8c-4d5d-bb8e-4598689d551e/1/2mCZ5_86FxvOO2_pnrtNJMuF5GE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.9.128.0/19
IPv6:
2a03:1f60::/32
Signature Algorithm: sha256WithRSAEncryption
a2:99:29:41:36:d0:9f:b0:e8:0e:95:37:8f:d0:e9:12:10:7b:
84:5b:ab:7c:47:5a:c6:4e:0d:c2:cd:df:71:e9:15:72:75:88:
2d:1b:fe:1a:41:b4:d0:e9:48:83:06:f5:8f:72:19:9a:33:2c:
d0:98:23:97:e0:df:ec:08:e3:e2:05:4c:4a:42:ab:0d:59:69:
9f:a9:60:ad:17:be:7f:54:b7:e1:1c:48:18:12:57:1f:fd:72:
d9:0d:08:92:1b:2e:a4:52:60:1c:17:e7:2f:b8:5e:e3:77:d6:
bc:a8:f4:7d:23:0f:ac:0e:06:4f:48:e4:12:b2:6c:a3:2c:c9:
f2:b8:70:26:69:9f:9d:0e:e2:f4:92:65:5e:f8:22:c4:b5:fc:
0a:34:48:ca:69:8e:ef:30:53:9e:98:1c:22:ac:c6:f7:5a:b9:
42:8c:56:33:74:0a:4c:12:67:31:13:dd:88:35:16:be:08:ea:
ff:7d:65:58:d0:59:d1:4a:b7:70:21:62:7e:85:64:3b:1a:26:
2a:f1:e9:2f:f3:f9:38:b7:a3:a1:80:ba:dd:b6:e7:2a:71:8f:
08:2d:57:12:d8:2f:31:2a:8b:ee:02:8f:d4:b8:ff:89:f6:97:
fb:cb:ce:35:a4:ee:38:9f:22:d0:36:d5:70:c7:f1:6b:a8:f2:
73:cb:27:a8
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBsgNDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YTYwOTllN2ZmM2ExNzFiY2UzYjZmZTk5ZWJiNGQyNGNiODVlNDYxMB4XDTIyMDEw
MTE0MDc0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGFhZjM2MDVlY2Rj
ODI4NmU3NTNiMWM1NTBjZjQyNmYxNzFlMWNlNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALwNd25W2TssoynLe6VQq1puzbYhwMKERHWeDd1LhPu2CiPC
i0+VsvAcrmS3SaQrSxjYt8tept2h4mASvGL7ik2addEmKRC0AerM7Zgug+uHW2iy
6EAenlnO8XEWfMUNJhNMccN2oJntVdkoAwokhzFf/IOb6Dz82JZmxpiaP0FG4ebG
Mea3gZs+jd24i3PiT2Lot4ObWcDEzKi/dZOZSz3AVHW4O48QLa18Bh0JGSF3hcVJ
3kHbuwESGNt4j6M0a2bqq2Ryw3Ifkyte3CfbvIXwMVMmG14W5N3bzVeQ9mnlbIoX
TxPGJJ3j/u30OJ17VrD378kkP6bhU6SEeCww8Z0CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSKrzYF7NyChudTscVQz0JvFx4c5zAfBgNVHSMEGDAWgBTaYJnn/zoXG847
b+meu00ky4XkYTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJtQ1o1Xzg2Rnh2T08yX3BucnROSk11RjVHRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjMvNmMzNzQxLWNmOGMtNGQ1ZC1iYjhlLTQ1OTg2ODlkNTUxZS8x
L2lxODJCZXpjZ29iblU3SEZVTTlDYnhjZUhPYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjMv
NmMzNzQxLWNmOGMtNGQ1ZC1iYjhlLTQ1OTg2ODlkNTUxZS8xLzJtQ1o1Xzg2Rnh2
T08yX3BucnROSk11RjVHRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEBdQJgDANBAIAAjAHAwUAKgMfYDAN
BgkqhkiG9w0BAQsFAAOCAQEAopkpQTbQn7DoDpU3j9DpEhB7hFurfEdaxk4Nws3f
cekVcnWILRv+GkG00OlIgwb1j3IZmjMs0Jgjl+Df7Ajj4gVMSkKrDVlpn6lgrRe+
f1S34RxIGBJXH/1y2Q0IkhsupFJgHBfnL7he43fWvKj0fSMPrA4GT0jkErJsoyzJ
8rhwJmmfnQ7i9JJlXvgixLX8CjRIymmO7zBTnpgcIqzG91q5QoxWM3QKTBJnMRPd
iDUWvgjq/31lWNBZ0Uq3cCFifoVkOxomKvHpL/P5OLejoYC63bbnKnGPCC1XEtgv
MSqL7gKP1Lj/ifaX+8vONaTuOJ8i0DbVcMfxa6jyc8snqA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:12 2024 by rpki-client on console-ams.rpki-client.org