Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/izJy6XJP8OPff0oX0znHF45yRN0.roa
File: izJy6XJP8OPff0oX0znHF45yRN0.roa (raw, json)
Hash identifier: 2SsV3kjmXsS/u+UH9UG9HPWy26Ik53hsJOP/Z98iXSo=
Subject key identifier: 8B:32:72:E9:72:4F:F0:E3:DF:7F:4A:17:D3:39:C7:17:8E:72:44:DD
Certificate issuer: /CN=bfe3971a32c0692c4e342e911790662470cf31b2
Certificate serial: 0460FA76
Authority key identifier: BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/izJy6XJP8OPff0oX0znHF45yRN0.roa
Signing time: Tue 08 Mar 2022 11:40:01 +0000
ROA not before: Tue 08 Mar 2022 11:40:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207208
IP address blocks: 5.181.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73464438 (0x460fa76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe3971a32c0692c4e342e911790662470cf31b2
Validity
Not Before: Mar 8 11:40:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b3272e9724ff0e3df7f4a17d339c7178e7244dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:33:0c:a4:88:5f:f8:12:cc:81:c4:ae:01:b0:
90:80:d2:2c:00:16:7f:a8:40:cf:87:6b:d0:17:cf:
7e:40:a9:d6:3b:bf:d8:15:c1:6c:19:5c:2c:cf:1d:
63:29:4d:ab:9d:cb:a3:a5:6a:0e:41:2c:c2:3f:97:
1f:59:d8:8d:6f:16:73:05:42:cc:ca:1f:f6:71:30:
68:e1:5c:47:c2:95:ee:be:c1:b6:5d:f4:6f:1b:81:
9b:e3:6b:b7:ea:f7:e3:ae:05:c7:68:e0:4f:3f:61:
bc:de:52:a7:06:cb:bc:b7:92:b2:8a:23:92:e0:ed:
8c:f9:6a:8f:7e:8b:f2:b7:59:bf:8b:ea:7b:c8:3c:
4c:db:9a:fc:18:7d:ec:21:5f:e6:d4:94:f1:55:c9:
ae:3a:08:c7:82:db:5d:b8:29:b5:af:55:4a:a5:10:
cf:c9:3f:73:3e:b2:82:56:91:97:e5:76:61:36:ba:
ae:a9:ad:31:a3:7b:97:04:7a:21:e2:ad:ba:49:0a:
3a:6a:c2:8a:c2:f5:c5:a1:0e:5b:ba:f3:35:17:6b:
59:29:bb:7f:23:e0:ec:d7:fb:a1:f0:f8:0d:70:9f:
86:e3:a7:88:a0:34:5e:c2:08:c7:f0:59:00:93:95:
c0:62:d0:85:96:74:ea:29:43:75:db:4b:2c:c9:c7:
1f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:32:72:E9:72:4F:F0:E3:DF:7F:4A:17:D3:39:C7:17:8E:72:44:DD
X509v3 Authority Key Identifier:
keyid:BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/izJy6XJP8OPff0oX0znHF45yRN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/v-OXGjLAaSxONC6RF5BmJHDPMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.188.0/24
Signature Algorithm: sha256WithRSAEncryption
54:fb:1d:61:f4:d0:06:06:19:8c:2e:c2:39:c6:82:0d:c5:6e:
1d:89:8c:b1:7f:dc:1f:43:5f:b4:84:f5:de:09:bc:05:2b:1b:
2e:55:b0:7d:8a:0b:8a:22:2e:38:d2:8f:2f:63:c6:aa:8e:da:
b4:a4:99:9d:c1:1e:18:eb:9d:aa:4c:24:26:bf:9b:55:30:07:
95:35:f1:93:36:0d:a8:d6:dd:14:d8:59:97:2d:bf:12:d7:0b:
fa:7d:4d:f9:4a:23:a2:36:90:c0:ec:72:a3:df:30:18:47:46:
d7:46:6c:ad:3d:3d:01:85:7c:6d:01:73:77:46:9d:f9:3e:a9:
f2:78:d0:4a:5f:6d:80:2a:9a:fa:9c:5c:6e:78:6b:45:6a:ef:
fb:37:a9:c7:f3:a9:88:bf:70:ea:ab:cc:38:ad:37:8e:ec:41:
9c:ef:83:42:f8:3e:17:3a:bd:02:0a:cb:66:71:09:e8:51:0b:
98:0e:1c:5b:ee:6d:93:ce:e9:7b:24:71:42:2c:4f:06:7f:10:
d1:70:9e:93:48:ec:9f:20:aa:9f:d6:1c:a4:9a:04:4c:0e:10:
de:b8:6d:15:44:4d:99:e3:36:81:65:39:08:8b:0e:10:86:46:
e5:56:bf:a7:69:3e:fc:13:77:a8:9c:f8:c6:be:62:6d:7b:fd:
a7:90:95:ee
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBGD6djANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZmUzOTcxYTMyYzA2OTJjNGUzNDJlOTExNzkwNjYyNDcwY2YzMWIyMB4XDTIyMDMw
ODExNDAwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGIzMjcyZTk3MjRm
ZjBlM2RmN2Y0YTE3ZDMzOWM3MTc4ZTcyNDRkZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJozDKSIX/gSzIHErgGwkIDSLAAWf6hAz4dr0BfPfkCp1ju/
2BXBbBlcLM8dYylNq53Lo6VqDkEswj+XH1nYjW8WcwVCzMof9nEwaOFcR8KV7r7B
tl30bxuBm+Nrt+r3464Fx2jgTz9hvN5SpwbLvLeSsoojkuDtjPlqj36L8rdZv4vq
e8g8TNua/Bh97CFf5tSU8VXJrjoIx4LbXbgpta9VSqUQz8k/cz6yglaRl+V2YTa6
rqmtMaN7lwR6IeKtukkKOmrCisL1xaEOW7rzNRdrWSm7fyPg7Nf7ofD4DXCfhuOn
iKA0XsIIx/BZAJOVwGLQhZZ06ilDddtLLMnHHwMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSLMnLpck/w499/ShfTOccXjnJE3TAfBgNVHSMEGDAWgBS/45caMsBpLE40
LpEXkGYkcM8xsjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3YtT1hHakxBYVN4T05DNlJGNUJtSkhEUE1iSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTEvZDc2YmY4LTU0MWYtNGVmYy05OGM1LWM0ZGNjN2Y2YjdkZi8x
L2l6Snk2WEpQOE9QZmYwb1gwem5IRjQ1eVJOMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTEv
ZDc2YmY4LTU0MWYtNGVmYy05OGM1LWM0ZGNjN2Y2YjdkZi8xL3YtT1hHakxBYVN4
T05DNlJGNUJtSkhEUE1iSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAW1vDANBgkqhkiG9w0BAQsFAAOC
AQEAVPsdYfTQBgYZjC7COcaCDcVuHYmMsX/cH0NftIT13gm8BSsbLlWwfYoLiiIu
ONKPL2PGqo7atKSZncEeGOudqkwkJr+bVTAHlTXxkzYNqNbdFNhZly2/EtcL+n1N
+UojojaQwOxyo98wGEdG10ZsrT09AYV8bQFzd0ad+T6p8njQSl9tgCqa+pxcbnhr
RWrv+zepx/OpiL9w6qvMOK03juxBnO+DQvg+Fzq9AgrLZnEJ6FELmA4cW+5tk87p
eyRxQixPBn8Q0XCek0jsnyCqn9YcpJoETA4Q3rhtFURNmeM2gWU5CIsOEIZG5Va/
p2k+/BN3qJz4xr5ibXv9p5CV7g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:03 2024 by rpki-client on console-ams.rpki-client.org