Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/pp9e8rg98I1b7iGLMDXTK_TAGmc.roa
File: pp9e8rg98I1b7iGLMDXTK_TAGmc.roa (raw, json)
Hash identifier: ZUGKpH6DuzEQTe1HldDrVsa/3P6OT/AkQjlcyrAGGCo=
Subject key identifier: A6:9F:5E:F2:B8:3D:F0:8D:5B:EE:21:8B:30:35:D3:2B:F4:C0:1A:67
Certificate issuer: /CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Certificate serial: 1084AF4D
Authority key identifier: 70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/pp9e8rg98I1b7iGLMDXTK_TAGmc.roa
Signing time: Sat 01 Jan 2022 14:57:06 +0000
ROA not before: Sat 01 Jan 2022 14:57:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 132.252.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277131085 (0x1084af4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Validity
Not Before: Jan 1 14:57:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a69f5ef2b83df08d5bee218b3035d32bf4c01a67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d3:87:1d:2e:dd:b5:f7:c9:ae:8a:a7:38:ce:
10:87:73:03:5a:4c:26:4d:1b:3e:10:3e:da:a3:ef:
cd:48:9e:67:07:1e:d0:14:6a:37:a0:ba:04:93:c3:
9d:84:00:49:73:bf:ff:cf:61:ac:0f:69:aa:13:61:
97:02:62:31:33:1d:1f:9a:80:40:6a:54:45:25:87:
a9:d2:da:5d:fb:3f:e2:49:d2:42:09:47:bf:3d:78:
7e:fa:ce:2c:2f:32:a4:12:4e:48:4d:05:cf:6f:30:
9e:f5:fe:03:42:5d:f8:6e:f1:2c:cc:2a:12:eb:06:
58:b8:6f:55:35:38:26:82:a9:e3:79:2c:bd:90:50:
80:dc:15:89:7d:94:be:61:f2:50:95:71:84:ff:bb:
ca:35:f4:d4:f5:bf:69:81:7c:6d:b8:31:3b:1d:8f:
c2:b8:ee:c7:04:ab:ea:bd:0f:36:42:e0:01:7e:b3:
f0:db:70:e6:cc:00:78:78:05:c4:28:77:07:14:3b:
7b:5e:fc:39:f5:86:ca:09:34:98:1a:5c:0b:b9:51:
65:7b:41:4a:04:7a:4c:81:70:a9:d1:1b:df:74:5d:
97:bb:dd:5d:d9:77:98:5e:23:8e:a5:7f:94:69:e0:
10:91:69:80:08:e8:2c:19:70:03:10:67:cb:ef:0d:
c0:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:9F:5E:F2:B8:3D:F0:8D:5B:EE:21:8B:30:35:D3:2B:F4:C0:1A:67
X509v3 Authority Key Identifier:
keyid:70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/pp9e8rg98I1b7iGLMDXTK_TAGmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.252.0.0/16
Signature Algorithm: sha256WithRSAEncryption
87:99:c7:b6:57:8f:a6:1a:e4:9d:ea:46:7d:41:ea:e9:2b:9c:
c9:8d:18:fe:b9:04:42:a3:4f:46:7e:e0:ee:52:3a:fb:9e:54:
2d:88:06:57:2b:7c:b0:05:0d:28:da:58:e6:c1:c7:79:5b:7a:
ab:8e:22:68:b9:d0:5f:f2:89:19:85:7f:0d:92:d7:8e:dc:67:
4c:73:0b:fc:e8:bd:ab:57:a9:d0:a9:f8:ba:1b:39:55:24:d3:
d2:b5:bc:37:f2:8b:b8:e3:5f:80:a2:4e:bd:59:98:f0:60:42:
eb:62:30:bc:ab:d1:2a:67:37:c7:c1:c3:43:63:9a:6b:10:9d:
b1:17:26:08:69:40:a7:5a:82:ed:7a:8f:b5:8f:ad:c4:fe:25:
92:d7:cb:b5:d3:bb:aa:f6:1c:e0:60:8b:b8:e7:69:f3:55:bd:
02:ad:23:ac:eb:63:58:2e:e3:40:a7:68:79:f5:e6:8b:79:cf:
4a:48:64:b3:f3:44:73:da:d1:87:b2:aa:36:aa:a4:c4:71:5c:
41:ec:98:7f:27:f2:39:35:b0:f3:08:90:b8:29:8d:53:7f:de:
89:50:44:a9:e4:62:1c:28:89:9f:fb:44:03:80:11:c0:64:42:
62:6e:2f:0d:17:46:58:20:ea:f5:9b:e7:0f:90:75:37:81:e0:
21:cf:f6:b7
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIEEISvTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MGRiZWEwNzUzZGYwODNlNTc4MmJiOWYzODBiNWQ3OTljYjc4YTA2MB4XDTIyMDEw
MTE0NTcwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTY5ZjVlZjJiODNk
ZjA4ZDViZWUyMThiMzAzNWQzMmJmNGMwMWE2NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALzThx0u3bX3ya6KpzjOEIdzA1pMJk0bPhA+2qPvzUieZwce
0BRqN6C6BJPDnYQASXO//89hrA9pqhNhlwJiMTMdH5qAQGpURSWHqdLaXfs/4knS
QglHvz14fvrOLC8ypBJOSE0Fz28wnvX+A0Jd+G7xLMwqEusGWLhvVTU4JoKp43ks
vZBQgNwViX2UvmHyUJVxhP+7yjX01PW/aYF8bbgxOx2PwrjuxwSr6r0PNkLgAX6z
8Ntw5swAeHgFxCh3BxQ7e178OfWGygk0mBpcC7lRZXtBSgR6TIFwqdEb33Rdl7vd
Xdl3mF4jjqV/lGngEJFpgAjoLBlwAxBny+8NwL0CAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBSmn17yuD3wjVvuIYswNdMr9MAaZzAfBgNVHSMEGDAWgBRw2+oHU98IPleC
u584C115nLeKBjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NOdnFCMVBmQ0Q1WGdydWZPQXRkZVp5M2lnWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTkvZGVlYzJlLTBjZDYtNDExMy1iMmI5LTJhMGNmMTMxNzNkOC8x
L3BwOWU4cmc5OEkxYjdpR0xNRFhUS19UQUdtYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTkv
ZGVlYzJlLTBjZDYtNDExMy1iMmI5LTJhMGNmMTMxNzNkOC8xL2NOdnFCMVBmQ0Q1
WGdydWZPQXRkZVp5M2lnWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAIT8MA0GCSqGSIb3DQEBCwUAA4IB
AQCHmce2V4+mGuSd6kZ9QerpK5zJjRj+uQRCo09GfuDuUjr7nlQtiAZXK3ywBQ0o
2ljmwcd5W3qrjiJoudBf8okZhX8NkteO3GdMcwv86L2rV6nQqfi6GzlVJNPStbw3
8ou441+Aok69WZjwYELrYjC8q9EqZzfHwcNDY5prEJ2xFyYIaUCnWoLteo+1j63E
/iWS18u107uq9hzgYIu452nzVb0CrSOs62NYLuNAp2h59eaLec9KSGSz80Rz2tGH
sqo2qqTEcVxB7Jh/J/I5NbDzCJC4KY1Tf96JUESp5GIcKImf+0QDgBHAZEJibi8N
F0ZYIOr1m+cPkHU3geAhz/a3
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:26 2024 by rpki-client on console-ams.rpki-client.org