Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/Ab7mrZpB1KspJs5VBiXp4K47-aQ.roa
File: Ab7mrZpB1KspJs5VBiXp4K47-aQ.roa (raw, json)
Hash identifier: r0hInsbiQq4Ss/LPp9WKfCGCSrN7YTUm+xiyxLDc3ZA=
Subject key identifier: 01:BE:E6:AD:9A:41:D4:AB:29:26:CE:55:06:25:E9:E0:AE:3B:F9:A4
Certificate issuer: /CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Certificate serial: 091EF91D
Authority key identifier: 3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/Ab7mrZpB1KspJs5VBiXp4K47-aQ.roa
Signing time: Sat 01 Jan 2022 15:55:51 +0000
ROA not before: Sat 01 Jan 2022 15:55:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137
IP address blocks: 160.80.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153024797 (0x91ef91d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Validity
Not Before: Jan 1 15:55:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01bee6ad9a41d4ab2926ce550625e9e0ae3bf9a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8e:84:33:64:a3:be:85:70:34:c4:d7:57:79:
bd:1b:35:c2:a8:2b:8d:ea:89:7d:08:a9:3a:da:3d:
53:ad:93:6a:82:0c:2d:61:88:a0:d0:40:ae:10:ff:
71:0b:72:0c:2b:17:73:04:d9:9e:bf:ca:02:9c:12:
5e:b2:ed:48:a7:85:2c:25:56:9b:e6:f1:28:8c:d7:
14:33:09:e7:ba:23:68:2f:9d:44:f8:a7:a8:42:e0:
a4:4a:d1:ef:00:43:ab:38:50:f6:95:3e:2a:0e:96:
f4:22:2b:2d:29:42:f5:fd:69:67:4f:24:8e:be:60:
21:78:62:86:8d:e8:dc:3f:fa:f2:4d:ff:08:a3:d3:
aa:39:32:04:2e:ce:90:38:b5:1b:58:57:fd:4f:8a:
0c:cc:54:6e:ad:29:96:9c:26:76:a8:bc:e7:92:13:
64:6d:83:af:41:1a:61:ed:60:c9:87:88:db:95:1f:
d8:df:c1:93:12:2e:a1:6f:ef:0b:4b:52:3e:b2:26:
dd:dd:1d:ab:14:a7:47:40:ee:09:08:f2:69:fd:8b:
03:dd:94:63:bd:de:ca:8a:3b:b8:36:b9:37:60:f2:
cb:97:72:e1:d9:ef:25:bd:66:1f:23:c8:49:1f:7d:
c6:ac:09:fd:36:1b:f1:71:2e:34:2e:ce:df:3e:30:
8f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:BE:E6:AD:9A:41:D4:AB:29:26:CE:55:06:25:E9:E0:AE:3B:F9:A4
X509v3 Authority Key Identifier:
keyid:3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/Ab7mrZpB1KspJs5VBiXp4K47-aQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.80.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a9:08:5e:71:4d:82:43:cb:71:61:a7:87:55:5c:c1:3f:07:d3:
4b:7f:52:44:0d:f0:4e:ac:18:1a:a8:47:ff:64:9e:e7:37:52:
24:7c:ae:20:fd:6b:81:c1:95:f0:75:41:c4:07:a5:1a:cb:a0:
e1:e5:a3:35:24:0e:1b:eb:e9:6e:fe:65:a9:74:6b:7b:71:4c:
86:ef:57:a6:ad:0c:c5:3b:10:2e:2b:02:91:6d:a5:cb:54:14:
94:db:91:7a:4a:2c:6a:2e:58:8a:4e:bd:44:e1:c3:48:ba:7d:
8b:db:e2:b1:6e:b4:99:4c:dd:7e:fa:b7:11:47:9c:87:a4:37:
7d:3d:95:8e:ac:06:9a:f6:da:0d:b9:d4:bf:ee:e0:79:37:c6:
c5:ac:dd:ba:71:02:74:63:8e:f7:1a:7b:c1:89:84:7a:77:f8:
5f:fe:31:18:20:77:d4:e1:3c:75:cb:ad:a4:43:a4:ca:55:52:
79:aa:ec:99:60:2c:0a:b3:77:72:2e:30:4e:f5:a0:1f:d4:ae:
53:38:a4:8c:56:4d:f3:82:5b:04:0d:9e:22:84:f9:52:44:f6:
74:c2:ac:6c:56:d3:c2:b3:c8:73:9e:91:ad:9a:fb:c6:99:31:
97:0b:e8:02:6f:a4:63:90:6b:2e:8c:8e:0a:bc:b7:fc:5f:70:
88:71:94:a3
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIECR75HTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YjE0NjI5Yzc2NWNlMWFjNGY2ODg5NTZlM2I5MGY2YWQ4YzRiNTgyMB4XDTIyMDEw
MTE1NTU1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDFiZWU2YWQ5YTQx
ZDRhYjI5MjZjZTU1MDYyNWU5ZTBhZTNiZjlhNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKOOhDNko76FcDTE11d5vRs1wqgrjeqJfQipOto9U62TaoIM
LWGIoNBArhD/cQtyDCsXcwTZnr/KApwSXrLtSKeFLCVWm+bxKIzXFDMJ57ojaC+d
RPinqELgpErR7wBDqzhQ9pU+Kg6W9CIrLSlC9f1pZ08kjr5gIXhiho3o3D/68k3/
CKPTqjkyBC7OkDi1G1hX/U+KDMxUbq0plpwmdqi855ITZG2Dr0EaYe1gyYeI25Uf
2N/BkxIuoW/vC0tSPrIm3d0dqxSnR0DuCQjyaf2LA92UY73eyoo7uDa5N2Dyy5dy
4dnvJb1mHyPISR99xqwJ/TYb8XEuNC7O3z4wj4MCAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBQBvuatmkHUqykmzlUGJengrjv5pDAfBgNVHSMEGDAWgBQ7FGKcdlzhrE9o
iVbjuQ9q2MS1gjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L094UmluSFpjNGF4UGFJbFc0N2tQYXRqRXRZSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWMvYTM3ZjljLTFlNmEtNDY2NS1hMGUyLWZlMzExMDBkMDgxZi8x
L0FiN21yWnBCMUtzcEpzNVZCaVhwNEs0Ny1hUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWMv
YTM3ZjljLTFlNmEtNDY2NS1hMGUyLWZlMzExMDBkMDgxZi8xL094UmluSFpjNGF4
UGFJbFc0N2tQYXRqRXRZSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAKBQMA0GCSqGSIb3DQEBCwUAA4IB
AQCpCF5xTYJDy3Fhp4dVXME/B9NLf1JEDfBOrBgaqEf/ZJ7nN1IkfK4g/WuBwZXw
dUHEB6Uay6Dh5aM1JA4b6+lu/mWpdGt7cUyG71emrQzFOxAuKwKRbaXLVBSU25F6
SixqLliKTr1E4cNIun2L2+KxbrSZTN1++rcRR5yHpDd9PZWOrAaa9toNudS/7uB5
N8bFrN26cQJ0Y473GnvBiYR6d/hf/jEYIHfU4Tx1y62kQ6TKVVJ5quyZYCwKs3dy
LjBO9aAf1K5TOKSMVk3zglsEDZ4ihPlSRPZ0wqxsVtPCs8hznpGtmvvGmTGXC+gC
b6RjkGsujI4KvLf8X3CIcZSj
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:17 2024 by rpki-client on console-fra.rpki-client.org