Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/0pg4cxGfspE1-60ZM6db4MEz0k4.roa
File: 0pg4cxGfspE1-60ZM6db4MEz0k4.roa (raw, json)
Hash identifier: smr9/qiBRFrmdZzCYCqWo4d8+PRvvt4uJL662fVWx8M=
Subject key identifier: D2:98:38:73:11:9F:B2:91:35:FB:AD:19:33:A7:5B:E0:C1:33:D2:4E
Certificate issuer: /CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Certificate serial: 018312D6B211BB35DF60A8CA5A510B900059
Authority key identifier: F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/0pg4cxGfspE1-60ZM6db4MEz0k4.roa
Signing time: Tue 06 Sep 2022 12:46:43 +0000
ROA not before: Tue 06 Sep 2022 12:46:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43120
IP address blocks: 86.111.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:12:d6:b2:11:bb:35:df:60:a8:ca:5a:51:0b:90:00:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Validity
Not Before: Sep 6 12:46:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2983873119fb29135fbad1933a75be0c133d24e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:02:87:89:40:ec:98:c2:96:d1:86:95:85:17:
be:8d:7a:2b:c2:5a:c2:6f:5a:ea:ac:00:fd:fd:d0:
85:72:b0:b5:9b:7f:5c:4a:07:2c:1c:d2:13:dd:3b:
63:82:45:6b:1f:f0:85:e8:b8:f3:f6:4e:7f:00:c1:
de:ce:6b:4f:18:fa:ce:88:ae:31:8f:0d:ca:e2:fa:
40:a4:ef:b5:a6:9d:af:95:3e:a8:95:fa:30:79:99:
35:03:bf:3a:6b:84:f2:17:f0:29:3c:52:60:5c:9e:
08:e5:0e:2c:7f:a3:6f:8e:3d:15:65:d3:dc:6e:62:
e9:5f:5d:d1:d3:ed:ca:83:72:79:20:c5:11:e6:9d:
7c:b9:f5:5d:6d:28:25:8f:20:ab:42:88:3c:93:98:
4b:ee:1a:60:81:d3:1a:39:d4:80:b4:ca:f2:43:0b:
15:f5:2a:4f:c0:07:ef:d7:c6:32:d5:cc:33:0b:a7:
e1:71:5c:76:93:e2:a0:e9:53:ee:af:37:5a:e4:7c:
10:7e:4b:9f:52:fa:74:97:77:24:d2:69:9d:a2:91:
e7:94:a7:ed:f8:be:3a:28:11:e5:02:9c:7f:ef:72:
10:54:99:a4:c7:e2:5f:07:4b:ab:92:6c:18:79:8f:
be:46:e2:89:4d:bc:15:e0:e6:01:99:a6:52:93:0c:
91:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:98:38:73:11:9F:B2:91:35:FB:AD:19:33:A7:5B:E0:C1:33:D2:4E
X509v3 Authority Key Identifier:
keyid:F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/0pg4cxGfspE1-60ZM6db4MEz0k4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/1-EEoFGt77IvRGFu-DDuTQKr1txQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.87.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:7d:d3:87:37:be:44:7a:b4:fd:17:ec:ca:ad:21:8d:05:4c:
d9:f0:21:da:60:aa:a1:ec:c3:7d:55:f7:15:82:50:51:59:03:
33:37:fb:f6:20:1a:3b:42:d6:aa:53:06:d9:ca:a5:4f:73:4d:
a2:a3:eb:7f:d6:7b:a0:d8:fc:8e:bd:d9:54:ad:d7:65:4a:a3:
6d:1b:c6:88:06:4c:c1:68:52:54:b7:90:5f:6a:eb:c2:6d:6a:
5e:9f:a8:6c:89:cf:aa:e7:56:95:94:bd:57:1b:0f:0f:10:5d:
d4:ac:ed:b8:bf:27:78:96:cd:0b:04:67:26:6c:7f:72:db:09:
fd:15:b8:a8:06:18:bf:46:c3:e2:ff:3c:4d:c3:d2:c8:f5:aa:
d2:8e:09:17:94:8d:71:9e:3b:7e:f5:b3:b0:5d:32:be:ea:25:
d2:65:7f:1c:a2:9a:0c:28:f1:ca:d2:a0:44:4c:27:0a:09:49:
7b:0d:af:df:17:d1:6d:58:22:1c:17:8c:f2:78:46:70:aa:bf:
c8:66:ec:d7:ff:a0:7e:3b:ed:23:3a:96:fa:0c:03:47:f8:53:
ab:a7:52:da:37:d1:d2:87:dc:f4:bf:e9:b6:33:b5:5c:c7:1e:
2a:74:dd:1e:a6:b5:38:58:70:65:bb:01:60:05:97:45:7a:4c:
39:43:6c:95
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYMS1rIRuzXfYKjKWlELkABZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4NDEyODE0NmI3YmVjOGJkMTE4NWJiZTBjM2I5MzQwYWFm
NWI3MTQwHhcNMjIwOTA2MTI0NjQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMjk4Mzg3MzExOWZiMjkxMzVmYmFkMTkzM2E3NWJlMGMxMzNkMjRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwKHiUDsmMKW0YaVhRe+jXorwlrC
b1rqrAD9/dCFcrC1m39cSgcsHNIT3TtjgkVrH/CF6Ljz9k5/AMHezmtPGPrOiK4x
jw3K4vpApO+1pp2vlT6olfoweZk1A786a4TyF/ApPFJgXJ4I5Q4sf6Nvjj0VZdPc
bmLpX13R0+3Kg3J5IMUR5p18ufVdbSgljyCrQog8k5hL7hpggdMaOdSAtMryQwsV
9SpPwAfv18Yy1cwzC6fhcVx2k+Kg6VPurzda5HwQfkufUvp0l3ck0mmdopHnlKft
+L46KBHlApx/73IQVJmkx+JfB0urkmwYeY++RuKJTbwV4OYBmaZSkwyRvwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFNKYOHMRn7KRNfutGTOnW+DBM9JOMB8GA1UdIwQY
MBaAFPhBKBRre+yL0Rhbvgw7k0Cq9bcUMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1FRW9GR3Q3N0l2UkdGdS1ERHVUUUtyMXR4US5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjIvZmIyNDExLTQ4NWItNDE0My05MjQx
LTEzODM5NjQwYTYwNC8xLzBwZzRjeEdmc3BFMS02MFpNNmRiNE1FejBrNC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNjIvZmIyNDExLTQ4NWItNDE0My05MjQxLTEzODM5NjQwYTYw
NC8xLzEtRUVvRkd0NzdJdlJHRnUtRER1VFFLcjF0eFEuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABWb1cw
DQYJKoZIhvcNAQELBQADggEBALF904c3vkR6tP0X7MqtIY0FTNnwIdpgqqHsw31V
9xWCUFFZAzM3+/YgGjtC1qpTBtnKpU9zTaKj63/We6DY/I692VSt12VKo20bxogG
TMFoUlS3kF9q68Jtal6fqGyJz6rnVpWUvVcbDw8QXdSs7bi/J3iWzQsEZyZsf3Lb
Cf0VuKgGGL9Gw+L/PE3D0sj1qtKOCReUjXGeO371s7BdMr7qJdJlfxyimgwo8crS
oERMJwoJSXsNr98X0W1YIhwXjPJ4RnCqv8hm7Nf/oH477SM6lvoMA0f4U6unUto3
0dKH3PS/6bYztVzHHip03R6mtThYcGW7AWAFl0V6TDlDbJU=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org