Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/rlE3iZtcpthu_x6Mms31R29V7fk.roa
File: rlE3iZtcpthu_x6Mms31R29V7fk.roa (raw, json)
Hash identifier: 0Q99nIiJKazavL9bqZXi6ti2yIGxO3ba541vp11Vwkg=
Subject key identifier: AE:51:37:89:9B:5C:A6:D8:6E:FF:1E:8C:9A:CD:F5:47:6F:55:ED:F9
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A8D008682476576BF7A6FBC0EC652E6
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/rlE3iZtcpthu_x6Mms31R29V7fk.roa
Signing time: Wed 20 Jul 2022 07:40:24 +0000
ROA not before: Wed 20 Jul 2022 07:40:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207868
IP address blocks: 80.120.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:8d:00:86:82:47:65:76:bf:7a:6f:bc:0e:c6:52:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 07:40:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae5137899b5ca6d86eff1e8c9acdf5476f55edf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4f:a7:ae:18:88:ec:9a:ff:54:a9:97:14:b6:
50:e1:4b:43:55:27:a4:7e:18:98:8c:4c:9a:60:2f:
de:a2:58:65:5a:78:83:18:42:50:65:76:70:02:e0:
ce:e8:f4:6e:13:5a:2c:c4:57:8e:17:61:b2:2c:2d:
13:c7:a3:31:03:70:68:84:15:62:92:7d:12:b3:94:
8c:78:20:b6:28:d3:9b:bd:95:de:c3:8e:c8:e5:16:
48:27:6c:a2:a7:64:44:4f:52:cc:c6:80:4d:e8:69:
85:11:48:4e:69:39:3c:9f:5e:fb:86:1a:1a:cf:1b:
7d:8c:a6:70:51:c0:7c:93:7b:a5:5e:d9:2a:02:7c:
70:94:7c:b2:5d:45:06:fd:8f:ef:70:8d:73:28:0c:
d6:9f:cf:37:06:39:22:5a:28:1f:55:d0:78:af:0e:
42:b5:d4:3a:a3:cb:db:b8:a4:a3:b6:9a:c7:d4:cb:
c9:d7:23:ac:b6:e5:e4:a1:5d:f2:2f:b2:6c:61:65:
2b:23:b3:38:62:fd:a7:dc:40:0b:f7:b1:1d:4c:d5:
76:07:5c:93:6e:77:c7:21:43:c3:30:27:b0:01:be:
1e:06:d0:93:20:f2:2b:3f:bd:f7:7d:f0:17:5b:74:
da:b6:20:b5:02:55:98:bf:dd:67:29:dc:9e:80:b6:
87:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:51:37:89:9B:5C:A6:D8:6E:FF:1E:8C:9A:CD:F5:47:6F:55:ED:F9
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/rlE3iZtcpthu_x6Mms31R29V7fk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.120.12.0/24
Signature Algorithm: sha256WithRSAEncryption
86:c3:e3:20:f7:4a:87:74:4e:fd:79:ee:b9:51:b3:73:b4:ea:
98:f9:9c:b8:4b:26:96:ff:9a:db:c0:7d:d6:64:2b:a3:a9:9a:
df:e0:1f:f2:91:56:ea:9e:b9:d9:25:d7:f5:9d:b1:54:a6:3d:
ff:d6:3b:23:ca:58:6e:3b:95:68:1f:39:92:ca:a2:71:b6:f2:
93:46:92:b6:f7:49:4c:64:50:95:7e:db:b0:fa:f3:8d:c0:36:
ba:79:12:53:02:ac:f3:ce:0d:b7:20:56:4a:cb:74:3d:19:1f:
81:cb:05:33:4f:c7:00:b5:fd:47:33:e7:b0:8c:57:e8:6c:13:
35:7a:3a:1a:24:7c:44:6e:7f:85:1a:2a:e0:20:51:fa:a9:11:
58:8e:61:dd:be:77:fb:c9:a9:a7:dc:64:99:bd:8d:6a:68:84:
8e:81:43:74:92:14:66:ec:25:1c:73:e5:c4:35:a5:82:20:c7:
25:74:3b:cf:a6:5b:c9:50:20:a8:cc:1e:a0:4a:29:98:e4:ac:
9f:c1:12:aa:15:f1:2e:e8:ca:a1:80:1b:0a:14:d6:26:5d:c4:
ef:94:c3:61:95:e4:de:f1:f0:49:f5:3f:da:fb:cd:23:80:89:
94:c7:35:40:cc:4e:8c:5e:21:26:28:11:12:99:2f:63:d7:c6:
3f:9b:87:96
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIajQCGgkdldr96b7wOxlLmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MGM1ODlhNGYyMmE5Y2EyZmY5OWI0YzQ4ZjhiZGY0OTI4
NzE3MjUwHhcNMjIwNzIwMDc0MDI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZTUxMzc4OTliNWNhNmQ4NmVmZjFlOGM5YWNkZjU0NzZmNTVlZGY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk0+nrhiI7Jr/VKmXFLZQ4UtDVSek
fhiYjEyaYC/eolhlWniDGEJQZXZwAuDO6PRuE1osxFeOF2GyLC0Tx6MxA3BohBVi
kn0Ss5SMeCC2KNObvZXew47I5RZIJ2yip2RET1LMxoBN6GmFEUhOaTk8n177hhoa
zxt9jKZwUcB8k3ulXtkqAnxwlHyyXUUG/Y/vcI1zKAzWn883BjkiWigfVdB4rw5C
tdQ6o8vbuKSjtprH1MvJ1yOstuXkoV3yL7JsYWUrI7M4Yv2n3EAL97EdTNV2B1yT
bnfHIUPDMCewAb4eBtCTIPIrP733ffAXW3TatiC1AlWYv91nKdyegLaHowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK5RN4mbXKbYbv8ejJrN9UdvVe35MB8GA1UdIwQY
MBaAFIcMWJpPIqnKL/mbTEj4vfSShxclMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHd4WW1rOGlxY292LVp0TVNQaTk5SktIRnlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNTA1YjUtMGU0Ni00YjNmLWJmMWIt
ODQ5ZDNhNmI5YzJkLzEvcmxFM2ladGNwdGh1X3g2TW1zMzFSMjlWN2ZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9mNTA1YjUtMGU0Ni00YjNmLWJmMWItODQ5ZDNhNmI5YzJk
LzEvaHd4WW1rOGlxY292LVp0TVNQaTk5SktIRnlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUHgMMA0G
CSqGSIb3DQEBCwUAA4IBAQCGw+Mg90qHdE79ee65UbNztOqY+Zy4SyaW/5rbwH3W
ZCujqZrf4B/ykVbqnrnZJdf1nbFUpj3/1jsjylhuO5VoHzmSyqJxtvKTRpK290lM
ZFCVftuw+vONwDa6eRJTAqzzzg23IFZKy3Q9GR+BywUzT8cAtf1HM+ewjFfobBM1
ejoaJHxEbn+FGirgIFH6qRFYjmHdvnf7yamn3GSZvY1qaISOgUN0khRm7CUcc+XE
NaWCIMcldDvPplvJUCCozB6gSimY5KyfwRKqFfEu6MqhgBsKFNYmXcTvlMNhleTe
8fBJ9T/a+80jgImUxzVAzE6MXiEmKBESmS9j18Y/m4eW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org