Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/RK9EDZ-0XRphH0sbI7BrBQPecGE.roa
File: RK9EDZ-0XRphH0sbI7BrBQPecGE.roa (raw, json)
Hash identifier: gBrQSpsc79P64nluNGRf3+mEsAQfgd5ywE53MNcjqqg=
Subject key identifier: 44:AF:44:0D:9F:B4:5D:1A:61:1F:4B:1B:23:B0:6B:05:03:DE:70:61
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0183CECB09C2C4860C27D453B03B834B5852
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/RK9EDZ-0XRphH0sbI7BrBQPecGE.roa
Signing time: Thu 13 Oct 2022 00:42:36 +0000
ROA not before: Thu 13 Oct 2022 00:42:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 81.28.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ce:cb:09:c2:c4:86:0c:27:d4:53:b0:3b:83:4b:58:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Oct 13 00:42:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44af440d9fb45d1a611f4b1b23b06b0503de7061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:13:64:60:fd:42:d6:b7:cd:90:95:9c:4e:bb:
ca:2e:ff:ee:a3:cb:de:fc:d3:f7:7a:55:94:52:06:
7c:af:52:a1:81:36:4e:f0:e9:dd:a8:58:c6:49:78:
f3:61:78:17:2a:9c:32:1d:4c:84:a3:36:85:b2:09:
65:ab:46:87:aa:ff:2a:29:4a:0c:5b:ec:e9:84:e3:
84:05:ec:d9:9d:b8:52:74:6b:8c:c4:21:8f:45:17:
ad:f8:17:1a:d6:5f:33:b0:18:36:b9:ad:e3:6f:2d:
b0:59:a7:97:37:ab:34:4c:c1:ec:b9:3c:32:78:e7:
5d:93:86:bc:f6:7c:59:2f:de:2a:17:65:2a:b3:90:
9f:80:b2:f0:34:4d:4c:42:5d:3d:0c:9a:1a:16:8e:
0b:25:9e:ea:f3:61:cb:84:72:25:5b:b8:be:41:ef:
66:5e:45:a2:55:80:20:72:a9:c3:66:73:40:19:fd:
74:88:5c:12:95:c0:d6:40:81:a8:ad:8f:62:85:fb:
0c:e9:19:f4:49:c2:e2:17:d2:b4:9b:ce:4b:31:b2:
be:fe:1e:63:ca:a0:fa:90:dd:e6:62:bb:1d:c0:90:
df:5b:50:30:1f:ea:80:39:6c:64:98:30:a2:26:46:
06:b7:94:07:3a:8c:23:31:15:b3:08:ef:cf:a7:d6:
70:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:AF:44:0D:9F:B4:5D:1A:61:1F:4B:1B:23:B0:6B:05:03:DE:70:61
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/RK9EDZ-0XRphH0sbI7BrBQPecGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.28.255.0/24
Signature Algorithm: sha256WithRSAEncryption
97:37:47:94:5d:8a:21:3d:80:26:21:b0:c9:2f:4d:8a:a9:3a:
40:1e:54:d6:d8:b7:c6:fb:a3:b3:6e:24:20:d3:14:96:a2:47:
87:97:55:20:df:10:89:59:30:e5:ce:c8:b5:f8:ee:0e:bf:a6:
54:cf:ed:db:5b:01:bd:11:44:98:01:7f:c7:c3:83:3d:c3:48:
09:44:64:41:00:15:c6:19:b6:80:e4:bf:2e:e1:b2:0d:9e:e5:
f1:50:b8:18:8e:07:2c:45:8c:19:70:3a:d4:90:d9:48:c7:ed:
12:f8:e0:0d:f5:b9:0c:d9:93:10:c4:de:64:c2:23:cb:0d:3a:
52:52:fd:b8:0c:0a:81:a4:be:66:54:aa:07:be:41:3a:3d:4a:
6a:fa:a3:0a:9b:ab:41:78:22:c0:ff:bb:ea:18:18:e1:f5:1d:
32:70:d8:f5:82:f0:f7:bc:d9:1c:fa:94:8e:aa:a9:4f:26:38:
23:26:40:81:17:4d:43:bf:06:d4:c7:af:bf:dd:b8:74:b0:62:
ed:d3:7d:d8:59:32:0f:d0:36:21:df:6c:77:24:cc:1b:86:d3:
39:cc:be:54:01:c2:dc:ef:ab:c7:3e:1a:b8:5f:03:12:d1:93:
96:65:b8:57:2d:35:d8:d0:06:3f:f2:50:09:ae:2e:1c:ef:23:
27:72:2a:21
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPOywnCxIYMJ9RTsDuDS1hSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliMGMwZDA0MjI1NTY2ZGI5NWU5YWQzYjJlZjYwNTAxNDk3
NWFhYTIwHhcNMjIxMDEzMDA0MjM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NGFmNDQwZDlmYjQ1ZDFhNjExZjRiMWIyM2IwNmIwNTAzZGU3MDYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxNkYP1C1rfNkJWcTrvKLv/uo8ve
/NP3elWUUgZ8r1KhgTZO8OndqFjGSXjzYXgXKpwyHUyEozaFsgllq0aHqv8qKUoM
W+zphOOEBezZnbhSdGuMxCGPRRet+Bca1l8zsBg2ua3jby2wWaeXN6s0TMHsuTwy
eOddk4a89nxZL94qF2Uqs5CfgLLwNE1MQl09DJoaFo4LJZ7q82HLhHIlW7i+Qe9m
XkWiVYAgcqnDZnNAGf10iFwSlcDWQIGorY9ihfsM6Rn0ScLiF9K0m85LMbK+/h5j
yqD6kN3mYrsdwJDfW1AwH+qAOWxkmDCiJkYGt5QHOowjMRWzCO/Pp9Zw+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFESvRA2ftF0aYR9LGyOwawUD3nBhMB8GA1UdIwQY
MBaAFJsMDQQiVWbblemtOy72BQFJdaqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMt
ZThlZjJmMDk1OThlLzEvUks5RURaLTBYUnBoSDBzYkk3QnJCUVBlY0dFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMtZThlZjJmMDk1OThl
LzEvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAURz/MA0G
CSqGSIb3DQEBCwUAA4IBAQCXN0eUXYohPYAmIbDJL02KqTpAHlTW2LfG+6OzbiQg
0xSWokeHl1Ug3xCJWTDlzsi1+O4Ov6ZUz+3bWwG9EUSYAX/Hw4M9w0gJRGRBABXG
GbaA5L8u4bINnuXxULgYjgcsRYwZcDrUkNlIx+0S+OAN9bkM2ZMQxN5kwiPLDTpS
Uv24DAqBpL5mVKoHvkE6PUpq+qMKm6tBeCLA/7vqGBjh9R0ycNj1gvD3vNkc+pSO
qqlPJjgjJkCBF01DvwbUx6+/3bh0sGLt033YWTIP0DYh32x3JMwbhtM5zL5UAcLc
76vHPhq4XwMS0ZOWZbhXLTXY0AY/8lAJri4c7yMncioh
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:42 2024 by rpki-client on console-ams.rpki-client.org