Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/92I6o1Hwb6Ot5asl3wJwzokQ6hE.roa
File: 92I6o1Hwb6Ot5asl3wJwzokQ6hE.roa (raw, json)
Hash identifier: cUlav6uoo0Ul0SDIjIeP9k4kgpQJvUId8t/99ckeR9o=
Subject key identifier: F7:62:3A:A3:51:F0:6F:A3:AD:E5:AB:25:DF:02:70:CE:89:10:EA:11
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 0182699BA1661484842AF445C4771F627180
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/92I6o1Hwb6Ot5asl3wJwzokQ6hE.roa
Signing time: Thu 04 Aug 2022 16:06:23 +0000
ROA not before: Thu 04 Aug 2022 16:06:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210546
IP address blocks: 87.251.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:69:9b:a1:66:14:84:84:2a:f4:45:c4:77:1f:62:71:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Aug 4 16:06:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7623aa351f06fa3ade5ab25df0270ce8910ea11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:66:d8:ab:36:f8:77:ee:b0:12:21:40:3c:e0:
c5:38:ff:2e:44:e4:e6:f6:75:70:7a:fb:ef:c1:cb:
7c:d7:9f:67:07:40:1c:c5:ad:a5:b9:44:54:d7:7b:
92:0a:f9:57:05:76:d2:2b:e8:46:e3:65:7e:c1:0d:
7a:ac:99:18:3f:2a:43:ea:7f:34:44:aa:d1:f0:64:
78:05:2f:96:94:7e:87:e8:5e:ef:6d:b8:d1:14:7a:
99:fb:c7:b8:36:fe:d7:ea:e9:75:c3:a3:02:11:47:
98:75:58:88:bc:ca:32:19:0a:8f:c3:84:1c:41:26:
fb:c8:74:8e:e4:dc:e4:f3:61:bd:c0:07:69:4d:af:
9f:0b:7c:c2:22:6d:05:39:30:cc:d8:02:14:f5:29:
5f:3b:e7:33:fb:c0:45:ae:97:a7:77:01:2e:f5:ce:
0c:92:1f:21:17:3b:aa:36:e0:b4:ac:ed:27:56:09:
ce:0a:3b:43:b6:3f:42:c1:27:39:ce:fb:8c:40:ae:
2d:45:c7:46:bb:3b:0a:3e:bf:9c:e7:43:8b:eb:0d:
c8:d6:86:d3:2c:20:a0:80:d0:a0:78:4f:3d:99:6a:
a8:8e:53:4e:48:a7:e2:3b:50:c0:90:80:f4:d4:9f:
9d:68:c1:49:06:01:26:a4:aa:68:4e:c7:6e:c6:f6:
45:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:62:3A:A3:51:F0:6F:A3:AD:E5:AB:25:DF:02:70:CE:89:10:EA:11
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/92I6o1Hwb6Ot5asl3wJwzokQ6hE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.78.0/24
Signature Algorithm: sha256WithRSAEncryption
02:12:9d:90:47:aa:1c:94:ce:b5:2d:8d:07:95:77:a5:0a:a1:
12:af:c2:7a:66:ef:cb:ac:cf:22:47:3a:d1:5f:a5:53:59:7e:
4f:9b:00:59:e4:49:d2:86:a0:8c:a5:9e:15:25:8a:0c:9b:10:
c2:48:3a:8c:65:0b:00:d0:da:11:06:d9:87:1c:ef:32:39:aa:
94:fb:10:61:04:95:f0:c0:34:12:24:68:94:3a:4d:7a:14:fa:
a0:88:90:fa:05:5c:fc:54:22:57:33:6e:3d:52:b5:cd:46:a4:
00:a8:85:81:3d:6e:da:48:84:c0:e5:ca:5a:7b:c6:32:68:f5:
93:b8:4b:b8:5d:0e:f2:fa:17:2c:af:e2:2a:62:f1:e6:ca:b2:
ec:c2:0d:93:e2:02:cd:22:29:72:e8:2c:89:1c:4b:02:cf:94:
ce:17:76:3a:96:49:5c:f9:0e:43:3e:03:e7:2d:47:d3:11:c3:
00:40:60:78:91:1e:75:f0:6e:24:10:20:2a:7b:fd:da:87:a1:
71:5b:b2:83:fc:00:b1:39:b8:a5:c4:40:ad:e8:9d:eb:d5:5d:
15:6b:b8:31:51:65:8a:00:fb:ec:89:e7:b0:ef:ee:a1:ed:6a:
62:e6:30:91:b0:e3:f2:53:5a:78:b4:c6:cc:b0:eb:e7:8e:94:
b0:5e:cf:0f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJpm6FmFISEKvRFxHcfYnGAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3M2I0YzEyNDhjNGJjZjIyYjA1NzdkZmNhOWIxNGQ5MDYz
YzI4YzAwHhcNMjIwODA0MTYwNjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNzYyM2FhMzUxZjA2ZmEzYWRlNWFiMjVkZjAyNzBjZTg5MTBlYTExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgWbYqzb4d+6wEiFAPODFOP8uROTm
9nVwevvvwct8159nB0Acxa2luURU13uSCvlXBXbSK+hG42V+wQ16rJkYPypD6n80
RKrR8GR4BS+WlH6H6F7vbbjRFHqZ+8e4Nv7X6ul1w6MCEUeYdViIvMoyGQqPw4Qc
QSb7yHSO5Nzk82G9wAdpTa+fC3zCIm0FOTDM2AIU9SlfO+cz+8BFrpendwEu9c4M
kh8hFzuqNuC0rO0nVgnOCjtDtj9CwSc5zvuMQK4tRcdGuzsKPr+c50OL6w3I1obT
LCCggNCgeE89mWqojlNOSKfiO1DAkID01J+daMFJBgEmpKpoTsduxvZFHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPdiOqNR8G+jreWrJd8CcM6JEOoRMB8GA1UdIwQY
MBaAFAc7TBJIxLzyKwV338qbFNkGPCjAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnp0TUVrakV2UElyQlhmZnlwc1UyUVk4S01BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy82M2RiZTUtNWFhMy00ZjE5LThkYTQt
YThkMzYxY2U2NGFhLzEvOTJJNm8xSHdiNk90NWFzbDN3Snd6b2tRNmhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy82M2RiZTUtNWFhMy00ZjE5LThkYTQtYThkMzYxY2U2NGFh
LzEvQnp0TUVrakV2UElyQlhmZnlwc1UyUVk4S01BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV/tOMA0G
CSqGSIb3DQEBCwUAA4IBAQACEp2QR6oclM61LY0HlXelCqESr8J6Zu/LrM8iRzrR
X6VTWX5PmwBZ5EnShqCMpZ4VJYoMmxDCSDqMZQsA0NoRBtmHHO8yOaqU+xBhBJXw
wDQSJGiUOk16FPqgiJD6BVz8VCJXM249UrXNRqQAqIWBPW7aSITA5cpae8YyaPWT
uEu4XQ7y+hcsr+IqYvHmyrLswg2T4gLNIily6CyJHEsCz5TOF3Y6lklc+Q5DPgPn
LUfTEcMAQGB4kR518G4kECAqe/3ah6FxW7KD/ACxObilxECt6J3r1V0Va7gxUWWK
APvsieew7+6h7Wpi5jCRsOPyU1p4tMbMsOvnjpSwXs8P
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:35 2023 by rpki-client on console-ams.rpki-client.org