Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/d8Uck6YixpTuCzSHd_HozGjGRo8.roa
File: d8Uck6YixpTuCzSHd_HozGjGRo8.roa (raw, json)
Hash identifier: iAs3rnw63L8PcLfz/I952QPBxss+GXmf+lnzhv1VtpA=
Subject key identifier: 77:C5:1C:93:A6:22:C6:94:EE:0B:34:87:77:F1:E8:CC:68:C6:46:8F
Certificate issuer: /CN=f2023e76a68ea6c9f70d3ea72df84e53dc21724f
Certificate serial: 141DF5
Authority key identifier: F2:02:3E:76:A6:8E:A6:C9:F7:0D:3E:A7:2D:F8:4E:53:DC:21:72:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8gI-dqaOpsn3DT6nLfhOU9whck8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/d8Uck6YixpTuCzSHd_HozGjGRo8.roa
Signing time: Sat 01 Jan 2022 01:58:43 +0000
ROA not before: Sat 01 Jan 2022 01:58:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204711
IP address blocks: 2001:67c:24a4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1318389 (0x141df5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2023e76a68ea6c9f70d3ea72df84e53dc21724f
Validity
Not Before: Jan 1 01:58:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77c51c93a622c694ee0b348777f1e8cc68c6468f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d0:e0:d1:13:79:35:f9:d7:15:6a:77:81:b2:
55:f1:f9:25:54:0c:23:97:2c:78:83:5a:03:8e:07:
82:a7:ad:2b:5b:30:2a:d7:48:18:7a:69:7c:03:8d:
9b:32:85:0b:99:7f:d5:f8:be:4f:8d:e7:64:4c:06:
cb:02:30:99:fd:f8:c4:e4:58:68:42:9a:d4:8d:66:
98:73:cc:ab:6e:69:a1:42:b5:35:5d:e9:76:9c:b3:
be:e0:fb:8a:e6:22:63:92:dd:4f:b1:bd:fb:1e:75:
56:b4:b6:44:b0:78:da:4a:d4:59:93:c5:8e:f5:1f:
73:a9:76:4a:53:19:67:e6:7e:fb:ac:76:5e:9a:0e:
f7:7a:2d:c1:f8:ac:74:32:ba:3c:3a:f1:ae:0d:b0:
a4:93:7e:07:35:03:1a:84:e2:7f:b6:77:cd:21:1d:
6b:70:bb:0d:69:95:36:35:81:2a:00:fb:ea:d8:42:
1e:52:28:fc:2a:1f:6c:c2:28:2b:ff:1c:ca:53:68:
14:a1:99:2a:96:b2:bd:ca:c8:1b:ee:09:d7:dd:fd:
87:98:ea:a4:1e:80:f8:d2:9f:d5:0f:d8:f8:58:55:
e6:b6:6e:2e:ed:35:6c:56:88:d2:aa:d2:38:84:01:
fa:d2:9d:ff:31:27:c0:a7:48:fe:2d:59:ba:93:74:
39:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:C5:1C:93:A6:22:C6:94:EE:0B:34:87:77:F1:E8:CC:68:C6:46:8F
X509v3 Authority Key Identifier:
keyid:F2:02:3E:76:A6:8E:A6:C9:F7:0D:3E:A7:2D:F8:4E:53:DC:21:72:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8gI-dqaOpsn3DT6nLfhOU9whck8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/d8Uck6YixpTuCzSHd_HozGjGRo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:24a4::/48
Signature Algorithm: sha256WithRSAEncryption
4f:3e:3a:56:01:6a:3c:f2:f2:89:bc:d6:b6:58:3f:fc:07:71:
e0:44:21:54:aa:ab:28:f4:f9:8f:cb:93:dd:a6:8a:83:47:ed:
2b:eb:fa:54:e3:c7:12:22:ab:0b:84:91:38:63:1e:1b:4c:1b:
5a:08:da:90:59:7c:92:e2:74:77:f2:a2:84:f5:35:05:ab:c6:
41:69:fa:0d:a3:51:0f:af:f1:f3:97:76:ba:a0:c5:9f:5d:70:
7d:54:b8:d5:c3:6d:32:7f:59:05:6a:3c:6f:7b:f5:3f:7b:69:
3a:01:7e:0f:bd:09:1c:d1:a9:8a:17:5f:a3:73:ce:2c:81:cd:
db:56:44:0a:4a:72:64:88:66:dc:40:f8:af:8b:02:82:bd:ee:
fe:62:d6:a1:64:11:3a:f0:76:c2:ce:92:97:8d:dd:6b:73:87:
a3:6b:d0:cd:9b:ac:ee:b1:65:af:3d:c4:34:ec:7f:92:01:ea:
5b:63:63:88:28:68:81:d2:d9:24:39:8f:f7:cd:e4:2d:e5:f0:
80:b4:1d:5a:16:f7:fd:42:ee:12:ed:f8:de:89:7c:0a:b7:59:
da:48:f8:c0:5f:dd:b9:0b:93:69:ba:f1:f4:59:41:f4:57:2d:
aa:aa:0e:3e:a8:72:e5:f5:22:a8:47:80:9f:00:7b:2b:60:69:
da:e6:88:f7
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIDFB31MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGYy
MDIzZTc2YTY4ZWE2YzlmNzBkM2VhNzJkZjg0ZTUzZGMyMTcyNGYwHhcNMjIwMTAx
MDE1ODQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg3N2M1MWM5M2E2MjJj
Njk0ZWUwYjM0ODc3N2YxZThjYzY4YzY0NjhmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAmtDg0RN5NfnXFWp3gbJV8fklVAwjlyx4g1oDjgeCp60rWzAq
10gYeml8A42bMoULmX/V+L5PjedkTAbLAjCZ/fjE5FhoQprUjWaYc8yrbmmhQrU1
Xel2nLO+4PuK5iJjkt1Psb37HnVWtLZEsHjaStRZk8WO9R9zqXZKUxln5n77rHZe
mg73ei3B+Kx0Mro8OvGuDbCkk34HNQMahOJ/tnfNIR1rcLsNaZU2NYEqAPvq2EIe
Uij8Kh9swigr/xzKU2gUoZkqlrK9ysgb7gnX3f2HmOqkHoD40p/VD9j4WFXmtm4u
7TVsVojSqtI4hAH60p3/MSfAp0j+LVm6k3Q5FwIDAQABo4ICDDCCAggwHQYDVR0O
BBYEFHfFHJOmIsaU7gs0h3fx6MxoxkaPMB8GA1UdIwQYMBaAFPICPnamjqbJ9w0+
py34TlPcIXJPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
OGdJLWRxYU9wc24zRFQ2bkxmaE9VOXdoY2s4LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC81ZC83ZThlZDYtYWU3Mi00ZDNmLTk5OWQtNjdjM2FmZmJkMWFhLzEv
ZDhVY2s2WWl4cFR1Q3pTSGRfSG96R2pHUm84LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC83
ZThlZDYtYWU3Mi00ZDNmLTk5OWQtNjdjM2FmZmJkMWFhLzEvOGdJLWRxYU9wc24z
RFQ2bkxmaE9VOXdoY2s4LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIG
CCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCSkMA0GCSqGSIb3DQEBCwUA
A4IBAQBPPjpWAWo88vKJvNa2WD/8B3HgRCFUqqso9PmPy5PdpoqDR+0r6/pU48cS
IqsLhJE4Yx4bTBtaCNqQWXyS4nR38qKE9TUFq8ZBafoNo1EPr/Hzl3a6oMWfXXB9
VLjVw20yf1kFajxve/U/e2k6AX4PvQkc0amKF1+jc84sgc3bVkQKSnJkiGbcQPiv
iwKCve7+YtahZBE68HbCzpKXjd1rc4eja9DNm6zusWWvPcQ07H+SAepbY2OIKGiB
0tkkOY/3zeQt5fCAtB1aFvf9Qu4S7fjeiXwKt1naSPjAX925C5NpuvH0WUH0Vy2q
qg4+qHLl9SKoR4CfAHsrYGna5oj3
-----END CERTIFICATE-----
Generated at Thu Apr 17 20:10:08 2025 by rpki-client