Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/n4mVNwItceuvJO_IK1nwKfeXfyg.roa
File: n4mVNwItceuvJO_IK1nwKfeXfyg.roa (raw, json)
Hash identifier: FD+HcpI2PVfd89TiDZe+ZDaMbDPi0++ybPbV6F+QexE=
Subject key identifier: 9F:89:95:37:02:2D:71:EB:AF:24:EF:C8:2B:59:F0:29:F7:97:7F:28
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 14F8F2C7
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/n4mVNwItceuvJO_IK1nwKfeXfyg.roa
Signing time: Sat 01 Jan 2022 13:06:27 +0000
ROA not before: Sat 01 Jan 2022 13:06:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200778
IP address blocks: 84.47.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351859399 (0x14f8f2c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jan 1 13:06:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f899537022d71ebaf24efc82b59f029f7977f28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3c:39:29:f4:04:03:ec:ce:8f:af:54:ab:31:
1b:11:54:98:b4:77:a1:1b:e1:6c:c4:6d:7b:60:c9:
3c:e8:43:61:a2:48:76:cd:17:d9:80:36:36:aa:b7:
ca:9d:54:e3:ae:4b:c8:af:92:5e:2a:01:e4:b7:a5:
00:13:ce:bb:2d:8e:8f:e1:51:1a:92:0b:43:c1:71:
fd:2a:f4:ad:01:b8:44:6d:bc:e9:d7:ee:10:23:8e:
e6:9c:59:27:44:3a:4e:0f:f9:fe:7a:5d:da:47:40:
39:10:8f:00:5d:74:46:73:9a:cc:0b:73:1d:6c:21:
8c:2c:50:dd:82:21:e1:28:e7:be:1c:da:b7:18:5f:
07:be:34:c1:75:86:9d:8a:ab:a5:32:d9:01:3a:de:
65:fe:9c:b6:1a:f6:94:96:e8:01:f0:4e:a7:ce:dc:
fc:de:fd:b9:02:9e:8d:1a:9f:73:aa:43:3e:0a:b1:
c4:9a:4d:c5:9c:e1:1c:d7:03:7f:a2:c0:43:3a:83:
10:2f:b7:7c:cc:38:86:ac:83:cb:bc:cd:f7:05:66:
18:38:f5:93:77:b7:9e:9e:b7:49:85:7c:e4:c8:56:
5f:3c:66:c2:98:62:82:b1:3d:2c:88:9b:c6:b3:9d:
7a:52:58:90:0e:d1:74:c8:bc:78:f2:a1:60:3b:ba:
5e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:89:95:37:02:2D:71:EB:AF:24:EF:C8:2B:59:F0:29:F7:97:7F:28
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/n4mVNwItceuvJO_IK1nwKfeXfyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.130.0/24
Signature Algorithm: sha256WithRSAEncryption
13:59:53:b0:e6:93:7f:14:9e:2b:9d:6a:70:31:5a:bf:e4:d6:
06:80:63:f0:1f:27:96:f6:54:05:eb:e7:cf:8b:af:cb:42:27:
7e:2d:b3:e6:7d:13:b2:fa:58:e4:61:25:79:ee:ec:25:5b:78:
1c:4f:a2:5a:91:27:ca:3e:8c:a1:1f:ce:76:aa:c1:66:1c:04:
49:65:a5:1b:8e:58:40:bd:2f:00:3b:98:c6:8c:76:a6:a0:f9:
df:b5:fa:14:9b:3a:0b:55:ff:c5:a3:90:17:af:a3:72:cd:cc:
f0:9f:21:20:4b:51:0b:ec:63:54:05:f1:a5:6d:79:36:49:f9:
a9:85:a6:71:8d:47:ce:07:f1:87:a5:65:09:45:46:e3:78:83:
31:d0:0c:ef:62:b9:e4:9b:f0:2c:63:4b:6c:8b:91:83:6d:f2:
a2:29:74:98:5e:dd:16:12:8d:bc:bd:c2:96:21:02:4d:27:c5:
88:60:73:81:04:da:84:13:98:de:ff:01:e5:d3:23:fe:31:59:
aa:0c:05:ca:c7:1c:e3:fc:34:cd:e9:58:72:23:e8:5e:0b:da:
01:20:49:09:82:9a:c9:8e:26:1f:5f:9a:f8:1e:ea:cf:d3:da:
c1:d1:26:5c:08:eb:a1:4e:d1:bb:70:f1:87:27:65:21:37:70:
29:80:0a:45
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFPjyxzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZjM4MTg1NTRhNTE4MDhlZWZiODI5ZWM3NDY1YTMyMjJmMjcwMTIzMB4XDTIyMDEw
MTEzMDYyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWY4OTk1MzcwMjJk
NzFlYmFmMjRlZmM4MmI1OWYwMjlmNzk3N2YyODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALs8OSn0BAPszo+vVKsxGxFUmLR3oRvhbMRte2DJPOhDYaJI
ds0X2YA2Nqq3yp1U465LyK+SXioB5LelABPOuy2Oj+FRGpILQ8Fx/Sr0rQG4RG28
6dfuECOO5pxZJ0Q6Tg/5/npd2kdAORCPAF10RnOazAtzHWwhjCxQ3YIh4Sjnvhza
txhfB740wXWGnYqrpTLZATreZf6cthr2lJboAfBOp87c/N79uQKejRqfc6pDPgqx
xJpNxZzhHNcDf6LAQzqDEC+3fMw4hqyDy7zN9wVmGDj1k3e3np63SYV85MhWXzxm
wphigrE9LIibxrOdelJYkA7RdMi8ePKhYDu6Xu8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSfiZU3Ai1x668k78grWfAp95d/KDAfBgNVHSMEGDAWgBSPOBhVSlGAju+4
Kex0ZaMiLycBIzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2p6Z1lWVXBSZ0k3dnVDbnNkR1dqSWk4bkFTTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDYvMDlkYmE0LTFjOTMtNDlkNi04ODg4LWJmYjRiYTMwZTQ1YS8x
L240bVZOd0l0Y2V1dkpPX0lLMW53S2ZlWGZ5Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYv
MDlkYmE0LTFjOTMtNDlkNi04ODg4LWJmYjRiYTMwZTQ1YS8xL2p6Z1lWVXBSZ0k3
dnVDbnNkR1dqSWk4bkFTTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFQvgjANBgkqhkiG9w0BAQsFAAOC
AQEAE1lTsOaTfxSeK51qcDFav+TWBoBj8B8nlvZUBevnz4uvy0Infi2z5n0TsvpY
5GElee7sJVt4HE+iWpEnyj6MoR/OdqrBZhwESWWlG45YQL0vADuYxox2pqD537X6
FJs6C1X/xaOQF6+jcs3M8J8hIEtRC+xjVAXxpW15Nkn5qYWmcY1Hzgfxh6VlCUVG
43iDMdAM72K55JvwLGNLbIuRg23yoil0mF7dFhKNvL3CliECTSfFiGBzgQTahBOY
3v8B5dMj/jFZqgwFyscc4/w0zelYciPoXgvaASBJCYKayY4mH1+a+B7qz9PawdEm
XAjroU7Ru3DxhydlITdwKYAKRQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:03 2023 by rpki-client on console-ams.rpki-client.org