Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/llIfgpyK0UGIMmP4RPOtKLNUPfE.roa
File: llIfgpyK0UGIMmP4RPOtKLNUPfE.roa (raw, json)
Hash identifier: Sk0mGSOpuxzFDPQmNEjcEeyJnjDpMEfdq1PjO3eH2wQ=
Subject key identifier: 96:52:1F:82:9C:8A:D1:41:88:32:63:F8:44:F3:AD:28:B3:54:3D:F1
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 132327C1
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/llIfgpyK0UGIMmP4RPOtKLNUPfE.roa
Signing time: Sat 01 Jan 2022 04:02:53 +0000
ROA not before: Sat 01 Jan 2022 04:02:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9381
IP address blocks: 82.115.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321071041 (0x132327c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 1 04:02:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96521f829c8ad141883263f844f3ad28b3543df1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:89:f6:17:29:75:5a:0c:90:91:b7:54:2d:74:
78:fb:67:8b:18:0f:4b:46:f5:03:53:19:9c:18:49:
8d:af:42:8b:56:73:79:69:6e:1e:9d:89:f1:77:45:
73:5d:01:73:d1:3a:57:12:34:cb:af:7f:2d:7f:62:
fa:62:5d:14:32:a0:ec:b5:52:90:a8:17:2b:e6:15:
5a:c9:c7:f2:e3:3b:43:5b:2b:19:51:bc:d4:ce:02:
ee:12:8a:76:16:29:fa:32:5a:8a:e4:e8:90:a9:c6:
c5:57:49:89:03:b1:d3:34:c5:53:3e:9d:d9:a4:27:
6a:1e:db:bc:ba:13:90:d3:58:1e:9a:86:c4:df:f8:
55:52:2d:0f:fc:f1:6b:56:1d:ed:03:cb:b3:8d:bb:
22:05:9d:0a:2a:b9:86:f1:e7:26:ab:c8:81:df:8a:
31:5f:fc:61:2c:b3:61:fd:ac:3e:6f:40:11:ff:ba:
2b:54:b9:a7:08:d6:c1:e8:2d:47:ca:d6:de:df:26:
1b:e2:e7:90:7e:de:8a:15:80:0d:85:14:85:c8:66:
b0:74:64:06:99:c4:98:66:61:c2:f1:ad:e5:f7:1d:
78:a5:1e:0d:e5:36:b0:ac:1f:20:19:81:3a:60:be:
b5:91:02:f4:11:1f:bc:e6:19:ca:63:f6:ef:9f:e9:
9d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:52:1F:82:9C:8A:D1:41:88:32:63:F8:44:F3:AD:28:B3:54:3D:F1
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/llIfgpyK0UGIMmP4RPOtKLNUPfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.17.0/24
Signature Algorithm: sha256WithRSAEncryption
90:9d:63:ba:99:77:48:af:30:d6:0c:df:d1:49:e3:63:e4:26:
e6:dd:d7:8b:c8:1e:65:46:dc:5f:55:5e:47:31:03:84:7c:34:
22:18:16:78:83:61:46:e0:cc:7d:fc:c7:85:0d:b1:37:71:23:
d5:33:82:e9:1a:e9:36:25:9e:d6:80:c0:c8:ed:6d:3e:dc:61:
32:68:91:1e:d8:63:02:2b:4c:44:c9:54:30:ed:10:41:9f:4d:
94:24:c2:ec:a7:a4:0a:b5:be:10:02:22:3f:f3:9f:d9:3c:5b:
47:10:7a:c0:d4:a4:9a:af:0e:1b:f7:82:78:ed:94:a6:8e:5f:
66:ef:31:47:af:f1:5f:b9:a3:ba:f2:69:53:8c:2b:28:66:25:
4e:e8:ea:21:42:75:7e:54:14:79:1a:e3:7e:23:8a:52:64:50:
71:84:39:b8:ce:42:7d:4a:20:a4:53:c0:0b:e8:04:2b:f2:fd:
8d:9c:db:95:a3:83:64:fa:8a:06:f2:ee:e4:d1:30:d6:d0:8f:
26:ea:5c:a9:4a:71:71:cf:b0:c8:be:10:c0:5b:f2:08:3a:ac:
e9:ba:cf:56:dd:ed:4a:09:09:f8:ee:be:22:fd:73:a3:af:81:
aa:41:8e:97:85:5b:e6:bc:68:cc:02:20:af:9a:b4:47:78:14:
2a:68:21:fe
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEyMnwTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YWMzZGFhMWIxNDg1MGYyZTYxYzU5MmIyMTkxOTE1YTVlNjVhNDc4MB4XDTIyMDEw
MTA0MDI1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTY1MjFmODI5Yzhh
ZDE0MTg4MzI2M2Y4NDRmM2FkMjhiMzU0M2RmMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALiJ9hcpdVoMkJG3VC10ePtnixgPS0b1A1MZnBhJja9Ci1Zz
eWluHp2J8XdFc10Bc9E6VxI0y69/LX9i+mJdFDKg7LVSkKgXK+YVWsnH8uM7Q1sr
GVG81M4C7hKKdhYp+jJaiuTokKnGxVdJiQOx0zTFUz6d2aQnah7bvLoTkNNYHpqG
xN/4VVItD/zxa1Yd7QPLs427IgWdCiq5hvHnJqvIgd+KMV/8YSyzYf2sPm9AEf+6
K1S5pwjWwegtR8rW3t8mG+LnkH7eihWADYUUhchmsHRkBpnEmGZhwvGt5fcdeKUe
DeU2sKwfIBmBOmC+tZEC9BEfvOYZymP275/pnQsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSWUh+CnIrRQYgyY/hE860os1Q98TAfBgNVHSMEGDAWgBQqw9qhsUhQ8uYc
WSshkZFaXmWkeDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tzUGFvYkZJVVBMbUhGa3JJWkdSV2w1bHBIZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvNDA1YmJkLTU5MTMtNGU5NS04ZTc1LWZlMDY1OTE3NmE1Ni8x
L2xsSWZncHlLMFVHSU1tUDRSUE90S0xOVVBmRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAv
NDA1YmJkLTU5MTMtNGU5NS04ZTc1LWZlMDY1OTE3NmE1Ni8xL0tzUGFvYkZJVVBM
bUhGa3JJWkdSV2w1bHBIZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFJzETANBgkqhkiG9w0BAQsFAAOC
AQEAkJ1jupl3SK8w1gzf0UnjY+Qm5t3Xi8geZUbcX1VeRzEDhHw0IhgWeINhRuDM
ffzHhQ2xN3Ej1TOC6RrpNiWe1oDAyO1tPtxhMmiRHthjAitMRMlUMO0QQZ9NlCTC
7KekCrW+EAIiP/Of2TxbRxB6wNSkmq8OG/eCeO2Upo5fZu8xR6/xX7mjuvJpU4wr
KGYlTujqIUJ1flQUeRrjfiOKUmRQcYQ5uM5CfUogpFPAC+gEK/L9jZzblaODZPqK
BvLu5NEw1tCPJupcqUpxcc+wyL4QwFvyCDqs6brPVt3tSgkJ+O6+Iv1zo6+BqkGO
l4Vb5rxozAIgr5q0R3gUKmgh/g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:45 2023 by rpki-client on console-fra.rpki-client.org