Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ibWzroVUQuI9Q8trOm9eGAxpanY.roa
File: ibWzroVUQuI9Q8trOm9eGAxpanY.roa (raw, json)
Hash identifier: Fv7v/p8827PhpgJ/oM2AMCWg+XSGbTpfRmAMLPkrom4=
Subject key identifier: 89:B5:B3:AE:85:54:42:E2:3D:43:CB:6B:3A:6F:5E:18:0C:69:6A:76
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0184FB3674F7C47AC20CDADDEBC365D9C97B
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ibWzroVUQuI9Q8trOm9eGAxpanY.roa
Signing time: Sat 10 Dec 2022 08:46:00 +0000
ROA not before: Sat 10 Dec 2022 08:46:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203619
IP address blocks: 84.32.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:fb:36:74:f7:c4:7a:c2:0c:da:dd:eb:c3:65:d9:c9:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Dec 10 08:46:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89b5b3ae855442e23d43cb6b3a6f5e180c696a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:73:35:28:d2:d4:5b:c7:eb:5b:ce:0a:07:ba:
cc:75:b6:fd:72:2d:4e:13:20:d6:2e:84:2e:bb:1b:
20:41:14:91:cc:98:78:cd:50:21:72:e4:ec:cf:a6:
6d:9a:f7:bf:b3:67:fc:52:76:4a:c4:2c:94:c0:6b:
02:65:fd:4e:d6:82:bc:f5:ff:1f:fb:a2:e9:3a:53:
3d:51:aa:a9:76:3b:cc:71:fd:ab:96:da:4e:7c:90:
57:3a:6d:61:3e:55:87:8b:bc:7b:0c:2c:99:2f:7f:
89:6b:94:91:29:7f:9f:9f:4b:7d:3d:44:a9:77:7f:
0c:8e:82:b7:7f:d8:c4:0a:00:ee:d1:87:a8:a7:a1:
01:14:9b:63:a2:78:53:24:b3:1e:c3:e7:da:98:6b:
84:f6:20:a4:71:9d:3e:69:e2:63:25:54:14:64:96:
4c:77:46:e0:14:a6:cb:4d:86:57:60:7f:0f:66:b2:
c3:b8:2f:29:25:aa:4e:43:34:0e:43:85:cf:39:bd:
57:4c:af:2b:61:af:b8:1b:3e:30:5e:56:b8:95:f2:
c7:d3:e3:f1:a6:45:0b:dc:5a:6e:22:ae:a2:79:a3:
92:86:7e:c8:11:17:dd:29:b3:f4:6e:14:38:39:05:
a2:e1:d6:dc:84:7d:25:65:d1:cc:31:32:80:54:ec:
fc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B5:B3:AE:85:54:42:E2:3D:43:CB:6B:3A:6F:5E:18:0C:69:6A:76
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ibWzroVUQuI9Q8trOm9eGAxpanY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.41.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:a8:af:34:1f:50:3c:e6:ab:0b:5c:63:37:aa:1f:cb:74:43:
81:ac:89:c4:69:50:63:92:ed:c0:23:9a:5c:eb:75:42:b9:9b:
a6:28:5a:b6:15:1e:37:75:00:23:3c:2f:32:93:ae:0c:27:1e:
74:24:97:a9:8f:61:e3:e2:7c:6b:8d:48:50:2a:db:c2:c3:74:
d6:84:26:7c:80:0a:c5:b4:b1:26:32:7d:da:dc:14:ef:6b:b7:
d0:03:3a:19:97:21:8d:2f:56:36:bc:8b:d3:0f:69:15:a3:37:
68:83:99:c8:36:3f:7b:79:3a:df:78:39:11:56:cf:aa:8f:de:
88:06:9c:21:14:53:46:e5:e2:1d:5d:44:8b:e1:2d:53:7d:ec:
6b:0b:be:c7:a2:03:3c:44:64:68:dc:eb:06:3c:cf:55:dc:4d:
37:08:68:15:9e:47:77:a9:26:56:1a:ad:2c:cf:49:78:2f:0e:
91:6f:d0:ed:87:79:d9:29:80:10:a7:ee:a5:35:5b:0c:d3:a9:
49:54:e8:f4:8f:93:e2:97:65:a9:fe:41:75:82:ca:c9:11:2b:
45:bd:81:08:30:75:9c:54:3e:f4:fe:73:10:05:2a:56:1b:16:
1b:3f:9f:21:f3:01:79:2b:03:5d:63:1d:0b:1f:44:75:9d:e7:
8d:ba:80:33
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYT7NnT3xHrCDNrd68Nl2cl7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjIxMjEwMDg0NjAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OWI1YjNhZTg1NTQ0MmUyM2Q0M2NiNmIzYTZmNWUxODBjNjk2YTc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHM1KNLUW8frW84KB7rMdbb9ci1O
EyDWLoQuuxsgQRSRzJh4zVAhcuTsz6Ztmve/s2f8UnZKxCyUwGsCZf1O1oK89f8f
+6LpOlM9UaqpdjvMcf2rltpOfJBXOm1hPlWHi7x7DCyZL3+Ja5SRKX+fn0t9PUSp
d38MjoK3f9jECgDu0Yeop6EBFJtjonhTJLMew+famGuE9iCkcZ0+aeJjJVQUZJZM
d0bgFKbLTYZXYH8PZrLDuC8pJapOQzQOQ4XPOb1XTK8rYa+4Gz4wXla4lfLH0+Px
pkUL3FpuIq6ieaOShn7IERfdKbP0bhQ4OQWi4dbchH0lZdHMMTKAVOz8XQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIm1s66FVELiPUPLazpvXhgMaWp2MB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvaWJXenJvVlVRdUk5UTh0ck9tOWVHQXhwYW5ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVCApMA0G
CSqGSIb3DQEBCwUAA4IBAQAtqK80H1A85qsLXGM3qh/LdEOBrInEaVBjku3AI5pc
63VCuZumKFq2FR43dQAjPC8yk64MJx50JJepj2Hj4nxrjUhQKtvCw3TWhCZ8gArF
tLEmMn3a3BTva7fQAzoZlyGNL1Y2vIvTD2kVozdog5nINj97eTrfeDkRVs+qj96I
BpwhFFNG5eIdXUSL4S1TfexrC77HogM8RGRo3OsGPM9V3E03CGgVnkd3qSZWGq0s
z0l4Lw6Rb9Dth3nZKYAQp+6lNVsM06lJVOj0j5Pil2Wp/kF1gsrJEStFvYEIMHWc
VD70/nMQBSpWGxYbP58h8wF5KwNdYx0LH0R1neeNuoAz
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:49 2023 by rpki-client on console-fra.rpki-client.org