Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/rcky_Y_XerrFiiZXBr5Quw0w6-8.roa
File: rcky_Y_XerrFiiZXBr5Quw0w6-8.roa (raw, json)
Hash identifier: vmnNwPfVdS851hagQ90PnfMGJxB9exB+784rm9/hqQ0=
Subject key identifier: AD:C9:32:FD:8F:D7:7A:BA:C5:8A:26:57:06:BE:50:BB:0D:30:EB:EF
Certificate issuer: /CN=fad7100e77ed9119d66e2321bb6711d7e760982b
Certificate serial: 44377DD3
Authority key identifier: FA:D7:10:0E:77:ED:91:19:D6:6E:23:21:BB:67:11:D7:E7:60:98:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tcQDnftkRnWbiMhu2cR1-dgmCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/rcky_Y_XerrFiiZXBr5Quw0w6-8.roa
Signing time: Sat 01 Jan 2022 09:54:47 +0000
ROA not before: Sat 01 Jan 2022 09:54:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 80.128.0.0/11 maxlen: 11
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1144487379 (0x44377dd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7100e77ed9119d66e2321bb6711d7e760982b
Validity
Not Before: Jan 1 09:54:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=adc932fd8fd77abac58a265706be50bb0d30ebef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3d:e1:94:57:2f:2a:f0:29:de:7a:2b:3e:16:
6d:cd:d6:23:38:2f:9f:36:c1:3b:41:a8:c2:41:d9:
55:b7:42:41:eb:95:ea:6e:2f:70:eb:71:82:2c:17:
fc:e5:56:55:ac:28:d1:1d:6c:ff:a9:ed:f2:19:6e:
3f:9a:70:6a:20:bd:64:8e:97:7a:90:46:17:cd:d1:
2a:62:13:d8:3e:c6:29:a6:30:39:64:4a:0d:52:a3:
03:7c:8a:49:47:ac:fe:cd:f0:83:10:42:61:4b:62:
ac:e3:ae:a5:cb:67:50:6d:23:4e:72:74:5a:72:14:
bc:c9:d7:d1:f7:bc:90:af:ad:26:f7:bf:46:13:06:
a5:7f:10:37:f5:a7:68:c1:c9:3e:6b:b6:11:95:aa:
2f:cc:a0:5c:02:be:a8:1e:01:41:d1:19:b0:75:2b:
c4:da:13:1c:7d:e9:b0:40:d0:43:fb:72:72:38:04:
81:77:ed:d6:23:4f:26:d8:90:12:9a:9b:e5:96:c3:
2f:72:b5:46:ef:fe:7c:1b:a2:f3:61:52:a2:0e:55:
e6:f0:a4:94:38:47:5e:31:ed:13:ab:73:07:6e:ae:
2a:09:e4:ab:49:c7:fe:97:4a:77:1c:83:75:3b:28:
68:e4:dd:ac:f0:cc:76:1b:d7:8d:d2:e0:04:de:eb:
c6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C9:32:FD:8F:D7:7A:BA:C5:8A:26:57:06:BE:50:BB:0D:30:EB:EF
X509v3 Authority Key Identifier:
keyid:FA:D7:10:0E:77:ED:91:19:D6:6E:23:21:BB:67:11:D7:E7:60:98:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tcQDnftkRnWbiMhu2cR1-dgmCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/rcky_Y_XerrFiiZXBr5Quw0w6-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/1-tcQDnftkRnWbiMhu2cR1-dgmCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.128.0.0/11
Signature Algorithm: sha256WithRSAEncryption
8c:ec:92:a8:b4:52:f8:2c:fd:1d:22:fb:a2:ee:8b:fc:54:2d:
a6:10:b3:26:6d:cd:35:6c:a8:3e:fd:e3:88:4d:7b:ee:61:ef:
38:90:80:6b:2d:34:8f:3f:1f:d7:88:51:2c:fa:b1:79:b8:6a:
c5:af:b8:54:b6:af:cc:36:81:37:2e:6d:13:5e:eb:6b:ce:f9:
ab:22:63:42:c8:94:b0:03:9b:c6:85:c7:a9:ae:50:1f:07:06:
39:7a:ed:49:97:48:35:96:13:f3:9a:e4:8c:dd:dd:72:b1:75:
41:ab:d6:c8:20:d9:87:de:54:da:fd:26:2d:24:81:08:8f:32:
45:34:ae:9d:8d:f6:aa:26:00:ee:22:67:e3:51:06:e6:01:75:
80:8c:08:98:10:32:98:80:2c:48:36:5f:66:ae:a5:de:01:71:
d7:f0:6a:82:0b:f1:1b:26:28:36:98:5a:4f:10:b0:31:6a:99:
8d:2d:0f:db:a4:07:00:c3:bb:0d:00:18:ee:dd:a0:25:d5:37:
2e:42:59:75:ee:9f:23:f3:49:a3:40:f4:6e:c2:cd:76:77:20:
d4:a8:7e:23:4d:8f:52:5e:a9:08:38:5b:5a:3a:dc:a2:22:49:
e5:25:ee:07:a6:85:35:91:b5:91:b0:0b:58:99:f4:ac:ef:94:
d0:a7:98:f3
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIERDd90zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YWQ3MTAwZTc3ZWQ5MTE5ZDY2ZTIzMjFiYjY3MTFkN2U3NjA5ODJiMB4XDTIyMDEw
MTA5NTQ0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWRjOTMyZmQ4ZmQ3
N2FiYWM1OGEyNjU3MDZiZTUwYmIwZDMwZWJlZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMw94ZRXLyrwKd56Kz4Wbc3WIzgvnzbBO0GowkHZVbdCQeuV
6m4vcOtxgiwX/OVWVawo0R1s/6nt8hluP5pwaiC9ZI6XepBGF83RKmIT2D7GKaYw
OWRKDVKjA3yKSUes/s3wgxBCYUtirOOupctnUG0jTnJ0WnIUvMnX0fe8kK+tJve/
RhMGpX8QN/WnaMHJPmu2EZWqL8ygXAK+qB4BQdEZsHUrxNoTHH3psEDQQ/tycjgE
gXft1iNPJtiQEpqb5ZbDL3K1Ru/+fBui82FSog5V5vCklDhHXjHtE6tzB26uKgnk
q0nH/pdKdxyDdTsoaOTdrPDMdhvXjdLgBN7rxrcCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBStyTL9j9d6usWKJlcGvlC7DTDr7zAfBgNVHSMEGDAWgBT61xAOd+2RGdZu
IyG7ZxHX52CYKzAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtdGNRRG5mdGtSbldiaU1odTJjUjEtZGdtQ3MuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzNlLzAxZDQxMS1kOTE1LTQyNzctOGZlMi03NmIwZGRhMmJmM2Uv
MS9yY2t5X1lfWGVyckZpaVpYQnI1UXV3MHc2LTgucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNl
LzAxZDQxMS1kOTE1LTQyNzctOGZlMi03NmIwZGRhMmJmM2UvMS8xLXRjUURuZnRr
Um5XYmlNaHUyY1IxLWRnbUNzLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMFUIAwDQYJKoZIhvcNAQELBQAD
ggEBAIzskqi0Uvgs/R0i+6Lui/xULaYQsyZtzTVsqD7944hNe+5h7ziQgGstNI8/
H9eIUSz6sXm4asWvuFS2r8w2gTcubRNe62vO+asiY0LIlLADm8aFx6muUB8HBjl6
7UmXSDWWE/Oa5Izd3XKxdUGr1sgg2YfeVNr9Ji0kgQiPMkU0rp2N9qomAO4iZ+NR
BuYBdYCMCJgQMpiALEg2X2aupd4BcdfwaoIL8RsmKDaYWk8QsDFqmY0tD9ukBwDD
uw0AGO7doCXVNy5CWXXunyPzSaNA9G7CzXZ3INSofiNNj1JeqQg4W1o63KIiSeUl
7gemhTWRtZGwC1iZ9KzvlNCnmPM=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:39 2023 by rpki-client on console-ams.rpki-client.org