Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/kiXy2_VssgOZG44vi8gqpSkYCI0.roa
File: kiXy2_VssgOZG44vi8gqpSkYCI0.roa (raw, json)
Hash identifier: KMkM1qTGtQjixl9d/KJEmOg7wmA/UcGE38vwJqL8Ils=
Subject key identifier: 92:25:F2:DB:F5:6C:B2:03:99:1B:8E:2F:8B:C8:2A:A5:29:18:08:8D
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 0182F7B2708A2C29E9270A9336056DCCFA80
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/kiXy2_VssgOZG44vi8gqpSkYCI0.roa
Signing time: Thu 01 Sep 2022 06:17:22 +0000
ROA not before: Thu 01 Sep 2022 06:17:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209737
IP address blocks: 80.246.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f7:b2:70:8a:2c:29:e9:27:0a:93:36:05:6d:cc:fa:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Sep 1 06:17:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9225f2dbf56cb203991b8e2f8bc82aa52918088d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:41:65:9a:3d:c3:30:3b:9c:c9:40:9f:81:55:
3f:f8:ff:68:fe:e3:86:39:bf:99:31:d3:73:a3:b8:
7e:ed:de:83:d4:d3:6e:3e:14:a1:a5:78:3f:f2:36:
a4:ff:3c:13:93:50:32:0c:d7:e7:a5:b2:c6:9f:37:
bb:af:fe:76:a1:c2:1f:9f:5c:c2:88:32:e9:e6:5d:
33:66:ca:57:2e:c3:88:5a:2f:33:26:5b:23:46:97:
97:db:01:fe:cf:39:ad:1b:2d:31:46:56:c4:b0:24:
cb:39:ba:ec:b6:6c:5f:90:5d:84:c3:88:00:86:30:
ac:2e:f1:9c:64:75:dd:a1:6b:9a:93:4b:51:39:7c:
23:91:17:93:8f:14:fa:a1:b2:1e:97:21:ce:0d:e5:
0a:73:cc:52:c6:2f:88:5b:74:c0:d9:ec:8b:97:32:
c6:35:a0:41:fd:d4:18:a7:28:82:8a:8d:8b:1d:e2:
bd:f2:95:e1:19:54:35:00:b9:21:dc:0e:33:ce:8b:
1a:69:c9:9b:11:83:dc:eb:f6:43:01:ef:42:e2:56:
77:dd:41:cf:03:90:74:d9:28:f2:22:4b:e0:49:34:
b5:af:7e:57:24:75:18:76:45:f4:f0:4e:91:62:1c:
35:05:1b:ba:0a:c1:03:b6:0c:6b:45:aa:22:5a:e3:
39:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:25:F2:DB:F5:6C:B2:03:99:1B:8E:2F:8B:C8:2A:A5:29:18:08:8D
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/kiXy2_VssgOZG44vi8gqpSkYCI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.224.0/21
Signature Algorithm: sha256WithRSAEncryption
43:d9:b0:ee:79:48:0f:12:44:f1:77:17:08:61:51:20:2e:67:
e4:1c:69:8a:b0:ff:8e:71:25:30:a9:b6:3c:e0:46:8a:d3:04:
2c:6d:83:e7:73:5d:ae:c0:e9:9b:a8:33:a3:d6:ea:81:27:25:
b4:15:63:2e:db:8b:dc:84:2e:d6:ce:e2:47:51:e6:57:35:38:
59:56:b5:25:4c:fd:4d:88:de:f9:b4:b6:57:51:b1:1c:f2:15:
27:c0:ba:82:7e:41:01:7e:9c:9a:b9:0e:13:a3:96:42:a0:73:
15:58:d5:6e:0c:b9:58:e9:f6:fd:59:eb:1f:a9:84:7a:e2:f0:
8d:0a:0d:5e:6f:9c:4f:7d:52:9f:eb:48:91:2b:e9:24:5b:b1:
1d:7f:6c:ad:af:cd:09:7e:d7:55:3f:02:9a:84:d7:bc:bc:29:
98:d1:b3:44:15:f7:d7:bc:33:f5:f5:27:bd:7c:45:c6:78:70:
07:74:cb:54:d6:a6:13:60:84:a2:d9:aa:cb:d2:09:01:6e:85:
44:a1:f6:7e:41:58:71:ab:72:16:18:33:0a:94:0e:6a:91:2a:
c3:49:2b:b5:f7:81:d2:30:85:d5:8d:80:7a:09:e7:b4:9d:68:
5e:dd:0e:34:5b:33:e8:cf:90:8d:3e:1f:87:91:5d:ca:62:ad:
e2:25:4e:55
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYL3snCKLCnpJwqTNgVtzPqAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NjM3NjkyZmY1YzQ1NDg2ZDEwNTNiMTQ5ZGMxNDIwMDI2
Y2Q3MzMwHhcNMjIwOTAxMDYxNzIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MjI1ZjJkYmY1NmNiMjAzOTkxYjhlMmY4YmM4MmFhNTI5MTgwODhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkEFlmj3DMDucyUCfgVU/+P9o/uOG
Ob+ZMdNzo7h+7d6D1NNuPhShpXg/8jak/zwTk1AyDNfnpbLGnze7r/52ocIfn1zC
iDLp5l0zZspXLsOIWi8zJlsjRpeX2wH+zzmtGy0xRlbEsCTLObrstmxfkF2Ew4gA
hjCsLvGcZHXdoWuak0tROXwjkReTjxT6obIelyHODeUKc8xSxi+IW3TA2eyLlzLG
NaBB/dQYpyiCio2LHeK98pXhGVQ1ALkh3A4zzosaacmbEYPc6/ZDAe9C4lZ33UHP
A5B02SjyIkvgSTS1r35XJHUYdkX08E6RYhw1BRu6CsEDtgxrRaoiWuM5IQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJIl8tv1bLIDmRuOL4vIKqUpGAiNMB8GA1UdIwQY
MBaAFNVjdpL/XEVIbRBTsUncFCACbNczMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVdOMmt2OWNSVWh0RUZPeFNkd1VJQUpzMXpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi85OGUxMTMtZTAwMi00ZDkzLTlhNDkt
YWRlYWRlMjg2NWMxLzEva2lYeTJfVnNzZ09aRzQ0dmk4Z3FwU2tZQ0kwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi85OGUxMTMtZTAwMi00ZDkzLTlhNDktYWRlYWRlMjg2NWMx
LzEvMVdOMmt2OWNSVWh0RUZPeFNkd1VJQUpzMXpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDUPbgMA0G
CSqGSIb3DQEBCwUAA4IBAQBD2bDueUgPEkTxdxcIYVEgLmfkHGmKsP+OcSUwqbY8
4EaK0wQsbYPnc12uwOmbqDOj1uqBJyW0FWMu24vchC7WzuJHUeZXNThZVrUlTP1N
iN75tLZXUbEc8hUnwLqCfkEBfpyauQ4To5ZCoHMVWNVuDLlY6fb9WesfqYR64vCN
Cg1eb5xPfVKf60iRK+kkW7Edf2ytr80JftdVPwKahNe8vCmY0bNEFffXvDP19Se9
fEXGeHAHdMtU1qYTYISi2arL0gkBboVEofZ+QVhxq3IWGDMKlA5qkSrDSSu194HS
MIXVjYB6Cee0nWhe3Q40WzPoz5CNPh+HkV3KYq3iJU5V
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:09 2023 by rpki-client on console-ams.rpki-client.org