Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/8jpBI5in54t1KnFcBTJ6Zc0tktU.roa
File: 8jpBI5in54t1KnFcBTJ6Zc0tktU.roa (raw, json)
Hash identifier: ffkIVkKGaYlpoFOg7ySbq/iktjBfPSyOXzhCiwARW1k=
Subject key identifier: F2:3A:41:23:98:A7:E7:8B:75:2A:71:5C:05:32:7A:65:CD:2D:92:D5
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 0801BCAB
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/8jpBI5in54t1KnFcBTJ6Zc0tktU.roa
Signing time: Sat 01 Jan 2022 06:58:25 +0000
ROA not before: Sat 01 Jan 2022 06:58:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48108
IP address blocks: 2a09:7c43::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134331563 (0x801bcab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Jan 1 06:58:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f23a412398a7e78b752a715c05327a65cd2d92d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:52:fc:4d:49:53:7c:be:d2:81:08:26:4d:a8:
b6:7f:f1:a6:d2:5a:c9:1d:3f:41:16:c7:34:7b:38:
d5:24:c1:16:f7:4a:a0:4b:c4:58:fd:4d:02:7c:c8:
60:0f:a7:cd:9c:08:4a:9b:4c:5c:5a:08:dd:c1:91:
f3:20:9b:e9:ce:44:1f:20:d2:ab:c5:32:bd:99:25:
de:23:f0:98:c6:42:a6:38:ce:18:85:a7:d0:df:a7:
53:7c:a7:0c:5b:0f:57:c3:d1:b2:dd:59:68:85:10:
43:c0:0c:59:3b:6d:f9:21:83:ba:49:c9:91:b2:22:
c1:09:e2:9c:7d:31:d7:cb:57:87:55:4b:80:89:38:
99:c2:a9:66:81:ab:fc:45:ca:46:5d:60:92:53:40:
1f:f2:e0:be:32:56:0c:15:dd:13:d3:5f:34:f0:96:
33:48:b5:ce:74:aa:3e:f5:2f:a1:2d:e8:d5:ab:2f:
86:84:97:ff:1d:c8:e0:53:d3:48:7b:fd:e0:2c:a3:
48:f2:b2:3f:7b:5f:14:de:2b:ef:fb:a7:22:b0:93:
89:a3:40:91:65:23:9f:53:04:9f:1f:65:73:70:a3:
9a:8c:0f:ec:34:1c:67:ce:a5:f5:a6:3b:e1:2c:0e:
df:93:65:9e:61:cd:22:2a:61:45:91:57:98:94:4e:
dd:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:3A:41:23:98:A7:E7:8B:75:2A:71:5C:05:32:7A:65:CD:2D:92:D5
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/8jpBI5in54t1KnFcBTJ6Zc0tktU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7c43::/32
Signature Algorithm: sha256WithRSAEncryption
48:9d:48:2b:a0:5f:8a:4b:28:3d:5c:36:da:79:04:f1:7b:a6:
a9:b9:19:1a:dc:c0:3c:12:38:8a:78:a5:6e:0f:30:40:17:d6:
f3:f0:d5:e3:1f:24:f8:8f:8a:14:68:cf:79:63:91:90:c0:be:
cb:9c:4a:70:12:a4:44:a0:29:a5:59:d9:d3:b2:fa:f7:7e:92:
a3:7a:7f:e2:c4:b4:cb:f3:01:a9:fa:c9:8a:ec:90:29:54:08:
c7:67:e3:76:63:f0:39:7f:24:47:30:cf:06:99:2d:6a:60:89:
e2:7f:e7:07:88:a5:de:27:5b:57:d5:01:e8:51:52:30:61:9e:
9f:de:5a:dd:05:03:00:0a:45:fc:dc:6f:a2:ac:b8:f7:97:58:
3d:70:7c:d7:4f:be:d7:cc:18:ba:df:1a:cc:ea:dc:a3:c0:53:
de:bc:d6:01:55:b5:fe:69:7e:07:d0:95:f2:af:9c:a0:aa:46:
d1:f8:85:87:cf:c0:c0:52:28:59:97:3f:56:63:af:60:5b:c7:
3b:8a:a2:70:4d:23:af:93:e1:43:2b:cc:af:21:ce:32:e6:5e:
49:94:24:82:16:57:17:9e:ce:6c:01:19:fc:28:3e:a3:20:80:
00:8a:db:87:11:aa:4e:9e:f4:00:f9:0a:0a:96:d3:1d:2e:dd:
73:07:cd:17
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIECAG8qzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YjgzMDYzMGYyM2IwNzBhMmI3YmRmNTI5ZjczOTQ4Yzk3ZWFjZDQwMB4XDTIyMDEw
MTA2NTgyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjIzYTQxMjM5OGE3
ZTc4Yjc1MmE3MTVjMDUzMjdhNjVjZDJkOTJkNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIdS/E1JU3y+0oEIJk2otn/xptJayR0/QRbHNHs41STBFvdK
oEvEWP1NAnzIYA+nzZwISptMXFoI3cGR8yCb6c5EHyDSq8UyvZkl3iPwmMZCpjjO
GIWn0N+nU3ynDFsPV8PRst1ZaIUQQ8AMWTtt+SGDuknJkbIiwQninH0x18tXh1VL
gIk4mcKpZoGr/EXKRl1gklNAH/LgvjJWDBXdE9NfNPCWM0i1znSqPvUvoS3o1asv
hoSX/x3I4FPTSHv94CyjSPKyP3tfFN4r7/unIrCTiaNAkWUjn1MEnx9lc3CjmowP
7DQcZ86l9aY74SwO35NlnmHNIiphRZFXmJRO3TUCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBTyOkEjmKfni3UqcVwFMnplzS2S1TAfBgNVHSMEGDAWgBS7gwYw8jsHCit7
31Kfc5SMl+rNQDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3U0TUdNUEk3QndvcmU5OVNuM09VakpmcXpVQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWUvZjc2ZTIwLTU4NTktNDE1ZC04NmIzLTExOWVmY2JiMjAyMy8x
LzhqcEJJNWluNTR0MUtuRmNCVEo2WmMwdGt0VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWUv
Zjc2ZTIwLTU4NTktNDE1ZC04NmIzLTExOWVmY2JiMjAyMy8xL3U0TUdNUEk3Qndv
cmU5OVNuM09VakpmcXpVQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoJfEMwDQYJKoZIhvcNAQELBQAD
ggEBAEidSCugX4pLKD1cNtp5BPF7pqm5GRrcwDwSOIp4pW4PMEAX1vPw1eMfJPiP
ihRoz3ljkZDAvsucSnASpESgKaVZ2dOy+vd+kqN6f+LEtMvzAan6yYrskClUCMdn
43Zj8Dl/JEcwzwaZLWpgieJ/5weIpd4nW1fVAehRUjBhnp/eWt0FAwAKRfzcb6Ks
uPeXWD1wfNdPvtfMGLrfGszq3KPAU9681gFVtf5pfgfQlfKvnKCqRtH4hYfPwMBS
KFmXP1Zjr2BbxzuKonBNI6+T4UMrzK8hzjLmXkmUJIIWVxeezmwBGfwoPqMggACK
24cRqk6e9AD5CgqW0x0u3XMHzRc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:28 2024 by rpki-client on console-ams.rpki-client.org