Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/8nXvYJgcxD0ZyLSBvxyyLKyqgHA.roa
File: 8nXvYJgcxD0ZyLSBvxyyLKyqgHA.roa (raw, json)
Hash identifier: hWBA5l/YpT43gCmbkq1bIeHkHPGE+yx+RthClc/9Snw=
Subject key identifier: F2:75:EF:60:98:1C:C4:3D:19:C8:B4:81:BF:1C:B2:2C:AC:AA:80:70
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A7D1D23
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/8nXvYJgcxD0ZyLSBvxyyLKyqgHA.roa
Signing time: Sat 01 Jan 2022 04:52:01 +0000
ROA not before: Sat 01 Jan 2022 04:52:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62025
IP address blocks: 195.136.123.0/24 maxlen: 24
82.177.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 981277987 (0x3a7d1d23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f275ef60981cc43d19c8b481bf1cb22cacaa8070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:28:d1:53:b3:2b:ad:a1:9d:b8:17:b6:b8:e2:
30:59:cd:20:a2:fe:61:3f:2c:d1:45:33:5c:1a:c2:
6e:d3:d0:7e:4b:6a:e1:7b:cc:12:79:8c:01:e2:a0:
a3:5a:8c:6f:45:84:8d:54:92:6d:5d:38:1e:6e:32:
80:ce:77:ad:ae:0e:56:40:d9:d2:aa:3d:e1:c1:8f:
8c:11:b2:53:7a:60:81:d4:67:f9:fe:63:e9:6b:b9:
75:ba:0a:54:cc:d3:9c:e1:a4:d0:dd:1f:cc:c6:47:
65:18:17:cf:e1:3c:b9:61:b0:8d:09:45:2f:ee:4c:
61:cd:04:c4:4b:01:ef:77:83:72:b5:ca:3f:2f:cf:
44:e9:8e:6e:5e:1f:e8:a9:73:c1:5d:36:da:52:17:
23:77:8e:32:30:0c:22:7d:51:04:bb:96:bb:17:67:
1d:99:fd:1b:a7:f0:d0:04:15:cc:08:82:3c:30:6d:
22:15:26:14:97:d0:4a:ec:18:c4:c8:19:28:0c:88:
41:97:c2:ca:db:b6:9a:ed:50:49:6f:e2:ba:db:fb:
64:95:94:f0:f4:2a:14:e7:34:65:71:8b:76:43:3b:
4d:da:4a:8d:ca:91:16:7e:3d:0b:3a:94:67:cc:1a:
10:64:46:9d:27:59:db:af:5d:3c:65:a9:0c:f1:d7:
a7:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:75:EF:60:98:1C:C4:3D:19:C8:B4:81:BF:1C:B2:2C:AC:AA:80:70
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/8nXvYJgcxD0ZyLSBvxyyLKyqgHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.8.0/24
195.136.123.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:4e:57:79:dd:a4:b2:ca:2b:64:3f:42:92:cb:5d:95:ea:87:
05:7c:8f:57:b3:a3:0e:8e:d9:2b:58:1c:f7:c2:a9:3f:06:62:
0b:44:45:58:0d:3f:c3:5c:bb:43:47:da:6d:33:42:a5:fb:56:
ab:92:dd:b5:4a:3c:a7:56:c3:f6:79:7e:64:18:5e:30:01:11:
78:52:f4:a0:27:49:7a:3e:e1:07:62:1d:da:3e:8e:80:f3:52:
18:17:d7:c1:cc:2d:6f:66:ac:52:fc:ac:8a:03:0d:3c:af:8b:
e4:b4:2a:f2:4c:6a:51:a9:db:06:a5:7a:4c:17:da:1f:0f:20:
7d:b1:89:5f:43:98:c4:07:52:b3:10:8b:01:51:69:6c:c6:c6:
6c:64:97:ca:89:16:ed:a9:64:76:7b:85:04:56:30:5d:62:02:
78:52:65:7e:77:54:20:81:b6:27:c6:a7:36:42:8f:7a:32:d3:
9d:a5:c5:f7:d5:88:97:1b:b2:46:2c:cf:7a:4f:39:2f:ca:ad:
42:37:9b:4f:fa:d8:b7:e5:dc:fc:ae:96:5c:8a:53:04:15:fc:
01:6c:48:e8:28:74:b2:ba:66:94:af:7c:ea:6e:d4:03:fd:73:
82:0d:bd:47:11:0b:b3:e1:2a:9f:49:d6:4d:8f:70:c1:79:6d:
20:91:dd:ea
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEOn0dIzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDY4MzRlNjg4OTBmMzk4NmExYjA0NTdjZTBmNTRhZTAzYzJkNzZiMB4XDTIyMDEw
MTA0NTIwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjI3NWVmNjA5ODFj
YzQzZDE5YzhiNDgxYmYxY2IyMmNhY2FhODA3MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANIo0VOzK62hnbgXtrjiMFnNIKL+YT8s0UUzXBrCbtPQfktq
4XvMEnmMAeKgo1qMb0WEjVSSbV04Hm4ygM53ra4OVkDZ0qo94cGPjBGyU3pggdRn
+f5j6Wu5dboKVMzTnOGk0N0fzMZHZRgXz+E8uWGwjQlFL+5MYc0ExEsB73eDcrXK
Py/PROmObl4f6KlzwV022lIXI3eOMjAMIn1RBLuWuxdnHZn9G6fw0AQVzAiCPDBt
IhUmFJfQSuwYxMgZKAyIQZfCytu2mu1QSW/iutv7ZJWU8PQqFOc0ZXGLdkM7TdpK
jcqRFn49CzqUZ8waEGRGnSdZ269dPGWpDPHXp8kCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTyde9gmBzEPRnItIG/HLIsrKqAcDAfBgNVHSMEGDAWgBRUaDTmiJDzmGob
BFfOD1SuA8LXazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZHZzA1b2lRODVocUd3Ulh6ZzlVcmdQQzEycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjkvNWYyZjBiLWZkODItNDRmYS1iNjM0LTUyNzY2YjI0YmFhNC8x
LzhuWHZZSmdjeEQwWnlMU0J2eHl5TEt5cWdIQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkv
NWYyZjBiLWZkODItNDRmYS1iNjM0LTUyNzY2YjI0YmFhNC8xL1ZHZzA1b2lRODVo
cUd3Ulh6ZzlVcmdQQzEycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFKxCAMEAMOIezANBgkqhkiG9w0B
AQsFAAOCAQEAsE5Xed2kssorZD9CkstdleqHBXyPV7OjDo7ZK1gc98KpPwZiC0RF
WA0/w1y7Q0fabTNCpftWq5LdtUo8p1bD9nl+ZBheMAEReFL0oCdJej7hB2Id2j6O
gPNSGBfXwcwtb2asUvysigMNPK+L5LQq8kxqUanbBqV6TBfaHw8gfbGJX0OYxAdS
sxCLAVFpbMbGbGSXyokW7alkdnuFBFYwXWICeFJlfndUIIG2J8anNkKPejLTnaXF
99WIlxuyRizPek85L8qtQjebT/rYt+Xc/K6WXIpTBBX8AWxI6Ch0srpmlK986m7U
A/1zgg29RxELs+Eqn0nWTY9wwXltIJHd6g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:02 2023 by rpki-client on console-ams.rpki-client.org