Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/m8CfUI_Lx0u68nQ5usv5jeSab6Q.roa
File: m8CfUI_Lx0u68nQ5usv5jeSab6Q.roa (raw, json)
Hash identifier: YHF+K81LIqXnwsTqzg+0eF3VsBSFVopn85/cafCwmAQ=
Subject key identifier: 9B:C0:9F:50:8F:CB:C7:4B:BA:F2:74:39:BA:CB:F9:8D:E4:9A:6F:A4
Certificate issuer: /CN=a6562d0869480dc11b74a552cd167b6f6339c8ba
Certificate serial: 0182F451437AB3E46C378011B3625C062274
Authority key identifier: A6:56:2D:08:69:48:0D:C1:1B:74:A5:52:CD:16:7B:6F:63:39:C8:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/plYtCGlIDcEbdKVSzRZ7b2M5yLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/m8CfUI_Lx0u68nQ5usv5jeSab6Q.roa
Signing time: Wed 31 Aug 2022 14:32:22 +0000
ROA not before: Wed 31 Aug 2022 14:32:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 843
IP address blocks: 2a0f:b100:500::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f4:51:43:7a:b3:e4:6c:37:80:11:b3:62:5c:06:22:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6562d0869480dc11b74a552cd167b6f6339c8ba
Validity
Not Before: Aug 31 14:32:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bc09f508fcbc74bbaf27439bacbf98de49a6fa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:17:35:6f:4f:ea:ae:7f:8a:90:a3:d0:e1:0b:
71:d0:71:d7:fe:cc:2c:3e:b1:d7:84:dd:5f:d0:01:
4b:2a:1c:5d:41:4d:be:42:20:99:a4:70:2c:3c:68:
69:55:87:3b:48:d8:74:ca:dd:7c:1b:e8:d7:f3:e9:
e5:df:a8:a7:29:56:06:2e:08:42:58:6f:55:d3:f6:
db:ec:c4:57:08:b8:84:60:7d:b1:13:09:2d:c9:11:
a8:16:66:d6:2f:9c:c4:aa:6e:98:2e:88:ee:61:81:
5f:01:f4:a0:b0:9a:bc:70:63:4b:3b:fd:5e:55:d4:
1c:a6:1e:af:5c:6c:41:9e:f1:47:66:19:dc:9f:80:
c1:8a:7c:00:1e:14:d1:9a:a0:39:df:ab:b8:db:b9:
52:9e:d7:a9:38:2f:f9:c4:b5:00:90:9c:e5:de:40:
fa:aa:e3:85:9b:55:7f:96:5c:47:28:25:75:21:da:
d6:6c:f4:10:37:b6:61:78:e4:96:9d:26:8f:cb:74:
38:55:e7:35:ed:52:4e:7d:80:a1:bc:92:27:4f:af:
1f:ba:c0:91:6a:c0:2a:df:96:be:c8:63:e5:7f:e1:
c0:9c:cb:79:51:31:cc:fd:95:be:a7:99:c2:63:b5:
3c:03:71:a3:58:c4:8e:e0:98:ed:41:ac:e3:7b:3e:
77:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C0:9F:50:8F:CB:C7:4B:BA:F2:74:39:BA:CB:F9:8D:E4:9A:6F:A4
X509v3 Authority Key Identifier:
keyid:A6:56:2D:08:69:48:0D:C1:1B:74:A5:52:CD:16:7B:6F:63:39:C8:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/plYtCGlIDcEbdKVSzRZ7b2M5yLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/m8CfUI_Lx0u68nQ5usv5jeSab6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/plYtCGlIDcEbdKVSzRZ7b2M5yLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b100:500::/40
Signature Algorithm: sha256WithRSAEncryption
b6:c9:9c:9a:ef:4f:ae:31:c8:57:96:a6:c1:af:3c:54:79:22:
79:6e:3b:57:05:0b:9f:70:ea:62:59:92:7d:c1:60:a1:df:a2:
29:27:de:e2:1a:27:bc:ba:62:b8:33:2e:3c:3d:02:90:cb:37:
c6:38:8f:c0:a8:29:30:71:ab:fe:ca:81:ae:b3:d9:97:1d:22:
2b:31:09:ec:dc:d6:f2:ad:28:b2:c4:83:2a:c9:b0:f3:e7:f1:
68:6b:69:fc:7c:7b:45:02:d1:cd:ab:ff:ed:ca:4e:bf:5f:78:
91:4c:98:16:53:92:de:65:9a:bc:c4:29:a8:d8:63:01:2b:03:
c2:9c:e2:75:8f:9e:41:66:29:0f:18:45:04:55:d0:60:ac:fd:
0c:cc:28:a9:c3:47:c6:98:9a:35:16:d1:87:b2:a5:fd:0d:ef:
c5:a3:2b:8b:3b:85:6a:bd:0e:92:3a:ec:82:41:33:6d:2d:c8:
14:4b:63:7c:71:54:39:71:bd:24:ef:fb:1f:1a:1b:31:12:57:
79:5f:f2:fc:27:c2:c5:b2:75:9a:b9:7d:97:13:31:8e:b9:d6:
0c:f8:88:d6:ae:89:8d:41:c5:6b:3e:4a:ea:49:bd:b7:d3:78:
e9:b1:74:31:6e:f2:05:77:81:b6:37:4d:1d:41:01:3c:0b:cd:
f3:db:7f:e9
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYL0UUN6s+RsN4ARs2JcBiJ0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2NTYyZDA4Njk0ODBkYzExYjc0YTU1MmNkMTY3YjZmNjMz
OWM4YmEwHhcNMjIwODMxMTQzMjIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YmMwOWY1MDhmY2JjNzRiYmFmMjc0MzliYWNiZjk4ZGU0OWE2ZmE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqRc1b0/qrn+KkKPQ4Qtx0HHX/sws
PrHXhN1f0AFLKhxdQU2+QiCZpHAsPGhpVYc7SNh0yt18G+jX8+nl36inKVYGLghC
WG9V0/bb7MRXCLiEYH2xEwktyRGoFmbWL5zEqm6YLojuYYFfAfSgsJq8cGNLO/1e
VdQcph6vXGxBnvFHZhncn4DBinwAHhTRmqA536u427lSntepOC/5xLUAkJzl3kD6
quOFm1V/llxHKCV1IdrWbPQQN7ZheOSWnSaPy3Q4Vec17VJOfYChvJInT68fusCR
asAq35a+yGPlf+HAnMt5UTHM/ZW+p5nCY7U8A3GjWMSO4JjtQazjez537wIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFJvAn1CPy8dLuvJ0ObrL+Y3kmm+kMB8GA1UdIwQY
MBaAFKZWLQhpSA3BG3SlUs0We29jOci6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGxZdENHbElEY0ViZEtWU3pSWjdiMk01eUxvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8yMTJkZDItZGE4ZC00MDQ4LTkxNmEt
NDVhOGZlZDNhMmE1LzEvbThDZlVJX0x4MHU2OG5RNXVzdjVqZVNhYjZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny8yMTJkZDItZGE4ZC00MDQ4LTkxNmEtNDVhOGZlZDNhMmE1
LzEvcGxZdENHbElEY0ViZEtWU3pSWjdiMk01eUxvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKg+xAAUw
DQYJKoZIhvcNAQELBQADggEBALbJnJrvT64xyFeWpsGvPFR5InluO1cFC59w6mJZ
kn3BYKHfoikn3uIaJ7y6YrgzLjw9ApDLN8Y4j8CoKTBxq/7Kga6z2ZcdIisxCezc
1vKtKLLEgyrJsPPn8Whrafx8e0UC0c2r/+3KTr9feJFMmBZTkt5lmrzEKajYYwEr
A8Kc4nWPnkFmKQ8YRQRV0GCs/QzMKKnDR8aYmjUW0Yeypf0N78WjK4s7hWq9DpI6
7IJBM20tyBRLY3xxVDlxvSTv+x8aGzESV3lf8vwnwsWydZq5fZcTMY651gz4iNau
iY1BxWs+SupJvbfTeOmxdDFu8gV3gbY3TR1BATwLzfPbf+k=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:30 2023 by rpki-client on console-ams.rpki-client.org