Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/n2H3zKFDhwl5WS3bQXuZzqCXgWc.roa
File: n2H3zKFDhwl5WS3bQXuZzqCXgWc.roa (raw, json)
Hash identifier: 39Eo037IAzGAfdYXFJ/rbRP5m+t22sgtpAWiR4DhuQ0=
Subject key identifier: 9F:61:F7:CC:A1:43:87:09:79:59:2D:DB:41:7B:99:CE:A0:97:81:67
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 01850A47269F5C8EE0FA399857A0FD447E4F
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/n2H3zKFDhwl5WS3bQXuZzqCXgWc.roa
Signing time: Tue 13 Dec 2022 06:58:33 +0000
ROA not before: Tue 13 Dec 2022 06:58:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207883
IP address blocks: 87.251.70.0/23 maxlen: 24
80.66.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0a:47:26:9f:5c:8e:e0:fa:39:98:57:a0:fd:44:7e:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Dec 13 06:58:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f61f7cca143870979592ddb417b99cea0978167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:6b:a8:e9:c8:14:f0:7e:b5:32:ca:f7:21:94:
98:8c:33:05:9f:d4:4a:07:ad:76:93:65:42:f5:10:
e1:8e:67:d9:93:39:82:86:f0:88:ec:df:fd:88:84:
da:59:7b:f8:dd:9d:9f:dc:19:23:bb:47:11:c9:c9:
78:e7:02:7a:5b:7f:51:b1:06:08:c8:db:77:24:b1:
02:76:18:88:2d:f7:cf:73:ee:c5:28:03:b6:b5:0a:
1d:8b:4e:f9:66:50:e8:f4:b4:ce:8a:2f:75:05:22:
5a:62:d6:a1:4e:23:4a:04:fc:e6:a2:e9:7b:92:6c:
13:66:3e:f4:f3:e9:d2:34:53:c7:e9:af:fd:27:ac:
7b:1a:0d:5b:e2:6a:c8:82:00:a0:dd:31:ac:c1:1c:
ff:08:7a:6f:15:8e:a6:c0:43:61:ec:4a:99:f4:b4:
f9:d5:96:16:24:c2:3e:67:52:b0:f2:bf:19:02:7f:
e0:fb:da:b5:4a:85:6e:8e:1b:59:bc:3b:89:b1:59:
1b:2d:1f:24:34:b8:33:1c:d7:91:ce:a3:c1:a6:15:
82:39:8e:20:d0:c8:49:c7:f4:a9:bd:de:48:3c:57:
13:14:1a:fa:03:e2:c6:0d:36:d9:8c:74:3e:86:38:
06:57:58:93:29:11:36:80:bf:dd:24:6c:31:a7:59:
66:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:61:F7:CC:A1:43:87:09:79:59:2D:DB:41:7B:99:CE:A0:97:81:67
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/n2H3zKFDhwl5WS3bQXuZzqCXgWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.68.0/24
87.251.70.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:ce:6c:b9:33:f8:3f:d2:e7:5a:b6:e9:33:cc:d5:fd:99:3d:
de:f7:dd:93:24:f6:5d:d5:f0:c6:bb:95:a5:a8:08:32:82:4b:
a8:46:f5:a0:a7:50:db:bd:95:c6:80:c6:24:22:af:53:aa:de:
b5:c4:fa:76:f2:fa:1c:b8:cf:5b:b0:5a:90:01:30:ff:32:a6:
44:18:78:92:d2:61:4d:28:01:f7:72:fb:ba:0b:44:f8:4c:d1:
87:5c:66:17:7a:dc:ee:d5:71:79:e5:c8:4e:f9:58:b9:d3:9e:
7d:e5:8c:aa:d0:36:03:e0:d9:fe:e3:d0:c1:91:53:2e:1a:46:
01:9a:18:7f:cb:24:cb:58:aa:67:cc:cf:25:0c:f2:c4:b5:66:
01:f2:7b:a6:96:88:7e:1f:a6:17:7c:f3:71:f4:bd:d2:fd:d3:
f8:58:79:e9:8f:eb:47:b0:c5:8d:3a:a1:1b:53:61:dc:8b:e7:
07:e7:f0:75:cb:e2:6b:a5:0d:e4:18:3d:9a:5e:28:66:a3:b7:
c4:1d:38:29:44:8e:99:dc:fb:10:69:61:23:e2:f6:53:7a:b3:
35:06:7e:96:3b:14:31:5f:a2:6d:89:16:5f:8a:37:01:92:4f:
29:3e:4b:08:af:39:d4:42:33:80:1f:cb:f2:81:a2:58:fc:de:
2f:e1:5b:25
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYUKRyafXI7g+jmYV6D9RH5PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3M2I0YzEyNDhjNGJjZjIyYjA1NzdkZmNhOWIxNGQ5MDYz
YzI4YzAwHhcNMjIxMjEzMDY1ODMzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZjYxZjdjY2ExNDM4NzA5Nzk1OTJkZGI0MTdiOTljZWEwOTc4MTY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlGuo6cgU8H61Msr3IZSYjDMFn9RK
B612k2VC9RDhjmfZkzmChvCI7N/9iITaWXv43Z2f3Bkju0cRycl45wJ6W39RsQYI
yNt3JLECdhiILffPc+7FKAO2tQodi075ZlDo9LTOii91BSJaYtahTiNKBPzmoul7
kmwTZj708+nSNFPH6a/9J6x7Gg1b4mrIggCg3TGswRz/CHpvFY6mwENh7EqZ9LT5
1ZYWJMI+Z1Kw8r8ZAn/g+9q1SoVujhtZvDuJsVkbLR8kNLgzHNeRzqPBphWCOY4g
0MhJx/Spvd5IPFcTFBr6A+LGDTbZjHQ+hjgGV1iTKRE2gL/dJGwxp1lm0wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJ9h98yhQ4cJeVkt20F7mc6gl4FnMB8GA1UdIwQY
MBaAFAc7TBJIxLzyKwV338qbFNkGPCjAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnp0TUVrakV2UElyQlhmZnlwc1UyUVk4S01BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy82M2RiZTUtNWFhMy00ZjE5LThkYTQt
YThkMzYxY2U2NGFhLzEvbjJIM3pLRkRod2w1V1MzYlFYdVp6cUNYZ1djLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy82M2RiZTUtNWFhMy00ZjE5LThkYTQtYThkMzYxY2U2NGFh
LzEvQnp0TUVrakV2UElyQlhmZnlwc1UyUVk4S01BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUEJEAwQB
V/tGMA0GCSqGSIb3DQEBCwUAA4IBAQAqzmy5M/g/0udatukzzNX9mT3e992TJPZd
1fDGu5WlqAgygkuoRvWgp1DbvZXGgMYkIq9Tqt61xPp28vocuM9bsFqQATD/MqZE
GHiS0mFNKAH3cvu6C0T4TNGHXGYXetzu1XF55chO+Vi505595Yyq0DYD4Nn+49DB
kVMuGkYBmhh/yyTLWKpnzM8lDPLEtWYB8numloh+H6YXfPNx9L3S/dP4WHnpj+tH
sMWNOqEbU2Hci+cH5/B1y+JrpQ3kGD2aXihmo7fEHTgpRI6Z3PsQaWEj4vZTerM1
Bn6WOxQxX6JtiRZfijcBkk8pPksIrznUQjOAH8vygaJY/N4v4Vsl
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:50 2024 by rpki-client on console-ams.rpki-client.org