Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/4b99b8-0657-4162-ab04-f572a0fce0ee/1/tYLB99JIAWr9lgzB8PMSw-YF7JE.roa
File: tYLB99JIAWr9lgzB8PMSw-YF7JE.roa (raw, json)
Hash identifier: Zky1V97TK3Kr4HuFFGc3Jtj9cTXF9HyXueu69NSpMt8=
Subject key identifier: B5:82:C1:F7:D2:48:01:6A:FD:96:0C:C1:F0:F3:12:C3:E6:05:EC:91
Certificate issuer: /CN=83c966da5eead50905091c3b599c9a44074739d0
Certificate serial: 018259D8E6CAC71B5AFA3AFACDE4FE3AD43C
Authority key identifier: 83:C9:66:DA:5E:EA:D5:09:05:09:1C:3B:59:9C:9A:44:07:47:39:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8lm2l7q1QkFCRw7WZyaRAdHOdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/4b99b8-0657-4162-ab04-f572a0fce0ee/1/tYLB99JIAWr9lgzB8PMSw-YF7JE.roa
Signing time: Mon 01 Aug 2022 14:39:23 +0000
ROA not before: Mon 01 Aug 2022 14:39:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209242
IP address blocks: 216.120.180.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:59:d8:e6:ca:c7:1b:5a:fa:3a:fa:cd:e4:fe:3a:d4:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c966da5eead50905091c3b599c9a44074739d0
Validity
Not Before: Aug 1 14:39:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b582c1f7d248016afd960cc1f0f312c3e605ec91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3b:3f:93:87:0f:56:f1:03:b5:95:69:95:20:
d3:9e:d5:0c:5e:7b:fe:32:b1:56:08:a7:d9:07:ca:
7e:cb:e2:40:fb:de:72:4f:f8:3a:23:54:b0:10:10:
7d:3f:cf:20:de:bf:f8:97:24:5d:61:9e:62:bd:86:
8c:0c:84:6b:21:d1:b6:bd:a3:54:30:55:80:9d:3a:
fa:92:4d:96:46:58:a4:e3:0d:cd:c9:bc:df:4d:01:
6d:c2:f0:0d:24:e5:82:48:d7:97:86:39:f3:61:78:
34:09:8e:4c:19:ae:85:d0:d7:6f:dc:cf:05:d5:f7:
f1:f0:d4:ad:8c:f5:e0:f0:0d:21:5f:67:cb:16:94:
78:29:bb:88:27:25:a9:77:5a:32:34:82:31:a9:78:
b9:bf:0e:00:d4:83:ad:ed:f7:3f:c7:9b:7c:55:90:
aa:3b:14:6f:fe:a1:30:d4:48:d6:a7:6d:9c:9c:29:
b4:00:dd:5e:5a:94:4c:38:77:e5:ae:ee:32:07:0d:
af:42:86:48:0f:94:6d:71:06:9b:d6:f6:04:b9:17:
e7:32:27:0f:82:80:3e:9b:cd:e8:84:cf:01:37:6b:
64:22:2c:60:0b:84:ff:4f:56:82:4b:61:38:2c:27:
8f:ce:83:33:ca:a2:61:53:83:78:78:03:9e:d8:22:
73:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:82:C1:F7:D2:48:01:6A:FD:96:0C:C1:F0:F3:12:C3:E6:05:EC:91
X509v3 Authority Key Identifier:
keyid:83:C9:66:DA:5E:EA:D5:09:05:09:1C:3B:59:9C:9A:44:07:47:39:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8lm2l7q1QkFCRw7WZyaRAdHOdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4b99b8-0657-4162-ab04-f572a0fce0ee/1/tYLB99JIAWr9lgzB8PMSw-YF7JE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4b99b8-0657-4162-ab04-f572a0fce0ee/1/g8lm2l7q1QkFCRw7WZyaRAdHOdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.120.180.0/23
Signature Algorithm: sha256WithRSAEncryption
10:5a:cf:52:d3:40:49:2e:6c:c2:96:1e:d9:5f:f3:8b:0a:e8:
67:76:e7:10:28:b9:81:a8:fb:1f:bf:34:32:21:44:6f:94:0f:
a2:b4:f3:b9:25:15:fa:fb:74:c5:64:12:cf:c9:ce:14:e8:fe:
ff:c6:22:51:5a:3f:bd:cf:8c:7d:27:63:18:d4:41:21:22:12:
20:6b:07:19:41:8f:f0:6d:ff:e5:a7:be:0c:00:af:3f:15:0a:
d4:33:0f:ff:e7:13:16:c2:d9:75:86:0d:ef:af:56:5b:25:dd:
56:94:06:a3:2b:53:bc:18:cb:bd:fe:09:c5:76:9b:5e:25:25:
c6:ee:7a:ec:f7:51:3d:d3:b0:df:c5:1f:22:b0:7f:fa:13:22:
52:f4:5c:b3:10:51:9d:8a:16:88:74:7a:56:f3:48:41:4e:b9:
3d:28:ee:b4:90:20:04:6b:ae:3e:a8:b1:d5:b6:8e:97:b5:32:
73:eb:23:7c:71:1c:c3:25:5c:9f:a0:dd:0b:48:ae:e8:a2:f2:
91:68:50:ce:ea:de:47:fc:96:4e:48:ca:e6:98:41:0b:ac:a4:
3b:2b:9a:3f:cb:2b:18:17:54:ad:2a:4f:09:e7:39:0c:33:99:
dd:ac:6a:6b:42:be:ad:7a:3c:c8:1a:ed:2b:03:fe:6c:46:70:
15:6e:79:82
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJZ2ObKxxta+jr6zeT+OtQ8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzYzk2NmRhNWVlYWQ1MDkwNTA5MWMzYjU5OWM5YTQ0MDc0
NzM5ZDAwHhcNMjIwODAxMTQzOTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNTgyYzFmN2QyNDgwMTZhZmQ5NjBjYzFmMGYzMTJjM2U2MDVlYzkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDs/k4cPVvEDtZVplSDTntUMXnv+
MrFWCKfZB8p+y+JA+95yT/g6I1SwEBB9P88g3r/4lyRdYZ5ivYaMDIRrIdG2vaNU
MFWAnTr6kk2WRlik4w3NybzfTQFtwvANJOWCSNeXhjnzYXg0CY5MGa6F0Ndv3M8F
1ffx8NStjPXg8A0hX2fLFpR4KbuIJyWpd1oyNIIxqXi5vw4A1IOt7fc/x5t8VZCq
OxRv/qEw1EjWp22cnCm0AN1eWpRMOHflru4yBw2vQoZID5RtcQab1vYEuRfnMicP
goA+m83ohM8BN2tkIixgC4T/T1aCS2E4LCePzoMzyqJhU4N4eAOe2CJzzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLWCwffSSAFq/ZYMwfDzEsPmBeyRMB8GA1UdIwQY
MBaAFIPJZtpe6tUJBQkcO1mcmkQHRznQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzhsbTJsN3ExUWtGQ1J3N1daeWFSQWRIT2RBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC80Yjk5YjgtMDY1Ny00MTYyLWFiMDQt
ZjU3MmEwZmNlMGVlLzEvdFlMQjk5SklBV3I5bGd6QjhQTVN3LVlGN0pFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC80Yjk5YjgtMDY1Ny00MTYyLWFiMDQtZjU3MmEwZmNlMGVl
LzEvZzhsbTJsN3ExUWtGQ1J3N1daeWFSQWRIT2RBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB2Hi0MA0G
CSqGSIb3DQEBCwUAA4IBAQAQWs9S00BJLmzClh7ZX/OLCuhnducQKLmBqPsfvzQy
IURvlA+itPO5JRX6+3TFZBLPyc4U6P7/xiJRWj+9z4x9J2MY1EEhIhIgawcZQY/w
bf/lp74MAK8/FQrUMw//5xMWwtl1hg3vr1ZbJd1WlAajK1O8GMu9/gnFdpteJSXG
7nrs91E907DfxR8isH/6EyJS9FyzEFGdihaIdHpW80hBTrk9KO60kCAEa64+qLHV
to6XtTJz6yN8cRzDJVyfoN0LSK7oovKRaFDO6t5H/JZOSMrmmEELrKQ7K5o/yysY
F1StKk8J5zkMM5ndrGprQr6tejzIGu0rA/5sRnAVbnmC
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:04 2024 by rpki-client on console-ams.rpki-client.org