Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/8PsS5pPVUc4hh7v1GJfodUbE4AE.roa
File: 8PsS5pPVUc4hh7v1GJfodUbE4AE.roa (raw, json)
Hash identifier: SUlkfGWoXoR6opR7ZwWTqRJCGecjEGpTENz3QDoiFCc=
Subject key identifier: F0:FB:12:E6:93:D5:51:CE:21:87:BB:F5:18:97:E8:75:46:C4:E0:01
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 0181D15F8BC0F1ADD77D2212ACFB757D15AA
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/8PsS5pPVUc4hh7v1GJfodUbE4AE.roa
Signing time: Wed 06 Jul 2022 02:38:28 +0000
ROA not before: Wed 06 Jul 2022 02:38:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59432
IP address blocks: 91.103.120.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d1:5f:8b:c0:f1:ad:d7:7d:22:12:ac:fb:75:7d:15:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Jul 6 02:38:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0fb12e693d551ce2187bbf51897e87546c4e001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:da:f6:76:c4:84:61:92:d1:2b:d4:db:54:3b:
c2:9c:71:2f:8e:15:48:ab:09:09:84:61:a3:1a:56:
4a:12:f1:d4:bc:c8:09:97:2d:92:7c:a6:06:cf:0f:
ba:d2:9d:30:b0:9c:fc:36:e5:d2:aa:1e:0b:a1:a5:
f9:14:b2:50:5d:e4:56:2b:1d:52:ac:72:0d:2e:d2:
a3:16:0d:03:4e:37:93:78:70:82:f4:07:fa:46:0c:
ab:ed:8b:67:5e:3e:bf:04:e2:d6:85:af:e5:84:93:
9d:70:eb:ba:ed:3b:e4:05:38:f1:e7:db:d5:ce:71:
af:d4:03:d5:71:0d:4b:94:53:03:a6:60:50:66:1c:
60:c6:51:cb:1a:a1:3a:08:ac:35:8f:b6:22:41:ef:
a5:7f:02:f2:ed:aa:31:91:3d:70:cb:08:96:77:d9:
a0:b9:5a:8a:87:85:e2:66:fb:85:1e:61:da:62:69:
21:f7:cd:29:36:3d:9f:37:dc:07:50:b1:e3:8f:85:
30:bc:99:3f:31:58:35:7d:04:89:8c:92:93:ee:db:
7c:35:50:e3:18:1b:0a:f3:ff:38:8f:f5:6a:29:71:
c6:6b:76:1d:50:a3:7b:54:e0:7d:7f:a7:1b:45:23:
c4:03:73:8c:a0:0f:ef:5f:22:c9:09:bf:8f:2b:5e:
ee:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:FB:12:E6:93:D5:51:CE:21:87:BB:F5:18:97:E8:75:46:C4:E0:01
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/8PsS5pPVUc4hh7v1GJfodUbE4AE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.120.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:0b:b5:c4:99:f4:1e:84:3c:14:c1:63:0e:01:09:a4:15:b1:
3e:02:8c:17:ae:10:99:be:28:79:98:b5:c1:75:a5:a6:b3:fd:
2b:c9:83:36:4c:66:ab:17:73:ad:f1:fb:65:7c:5c:05:39:69:
4b:8d:86:ff:02:8c:53:65:16:3f:5c:78:bf:02:2d:ab:62:10:
08:fc:5e:79:c5:54:dc:ac:89:8a:7d:73:35:37:cb:f2:02:b7:
27:c2:81:4b:52:3b:9b:4d:33:a1:5f:ba:ee:49:e6:d8:11:6f:
7e:a1:14:26:d3:e6:d3:9e:c2:d6:29:26:cf:9e:d4:0a:f9:fd:
d0:4d:8d:1a:ef:4c:6d:b6:40:9b:5e:ab:a5:7a:d5:f3:e2:c8:
0e:dc:c5:1e:05:ee:0e:2c:02:40:4c:91:a0:76:65:fd:7d:5a:
1c:c6:4b:da:83:a8:90:08:02:20:a6:93:8c:24:4a:30:7d:73:
28:b8:45:1d:a5:18:9a:8e:d6:f5:75:3b:d3:18:92:69:c4:cf:
45:25:79:9f:6d:7f:60:18:72:8d:7d:e2:8d:5d:ee:cd:ec:9d:
fb:1c:d9:39:24:4a:e8:0d:a6:45:22:53:40:4e:1c:5c:45:89:
55:41:3e:a9:f3:b0:1d:1f:11:ff:00:d7:02:5a:75:6c:75:09:
80:41:17:33
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHRX4vA8a3XfSISrPt1fRWqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0MTY2YjcwNDg0M2QzZDk3NTQwOTVjODNhOTFiNDkzODI4
MjAwYTIwHhcNMjIwNzA2MDIzODI4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMGZiMTJlNjkzZDU1MWNlMjE4N2JiZjUxODk3ZTg3NTQ2YzRlMDAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdr2dsSEYZLRK9TbVDvCnHEvjhVI
qwkJhGGjGlZKEvHUvMgJly2SfKYGzw+60p0wsJz8NuXSqh4LoaX5FLJQXeRWKx1S
rHINLtKjFg0DTjeTeHCC9Af6Rgyr7YtnXj6/BOLWha/lhJOdcOu67TvkBTjx59vV
znGv1APVcQ1LlFMDpmBQZhxgxlHLGqE6CKw1j7YiQe+lfwLy7aoxkT1wywiWd9mg
uVqKh4XiZvuFHmHaYmkh980pNj2fN9wHULHjj4UwvJk/MVg1fQSJjJKT7tt8NVDj
GBsK8/84j/VqKXHGa3YdUKN7VOB9f6cbRSPEA3OMoA/vXyLJCb+PK17u2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPD7EuaT1VHOIYe79RiX6HVGxOABMB8GA1UdIwQY
MBaAFJQWa3BIQ9PZdUCVyDqRtJOCggCiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEJacmNFaEQwOWwxUUpYSU9wRzBrNEtDQUtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi80M2ZmOGYtY2Q1NC00Y2YxLThhYWYt
NGJlMThlZjEyOGI0LzEvOFBzUzVwUFZVYzRoaDd2MUdKZm9kVWJFNEFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi80M2ZmOGYtY2Q1NC00Y2YxLThhYWYtNGJlMThlZjEyOGI0
LzEvbEJacmNFaEQwOWwxUUpYSU9wRzBrNEtDQUtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW2d4MA0G
CSqGSIb3DQEBCwUAA4IBAQAaC7XEmfQehDwUwWMOAQmkFbE+AowXrhCZvih5mLXB
daWms/0ryYM2TGarF3Ot8ftlfFwFOWlLjYb/AoxTZRY/XHi/Ai2rYhAI/F55xVTc
rImKfXM1N8vyArcnwoFLUjubTTOhX7ruSebYEW9+oRQm0+bTnsLWKSbPntQK+f3Q
TY0a70xttkCbXquletXz4sgO3MUeBe4OLAJATJGgdmX9fVocxkvag6iQCAIgppOM
JEowfXMouEUdpRiajtb1dTvTGJJpxM9FJXmfbX9gGHKNfeKNXe7N7J37HNk5JEro
DaZFIlNAThxcRYlVQT6p87AdHxH/ANcCWnVsdQmAQRcz
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:42 2023 by rpki-client on console-ams.rpki-client.org