Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/h-NNHJY1nXIb2RyAah1IdHak9TM.roa
File: h-NNHJY1nXIb2RyAah1IdHak9TM.roa (raw, json)
Hash identifier: Wv4FH2+NIP3lcL4EDdLwsA1BJEzYf4VD2oF8xoMDns8=
Subject key identifier: 87:E3:4D:1C:96:35:9D:72:1B:D9:1C:80:6A:1D:48:74:76:A4:F5:33
Certificate issuer: /CN=e79ef19c273deded19cef6b36839b3ceb01edefd
Certificate serial: 01840EC4D8F943AD884614ED54D5A283B745
Authority key identifier: E7:9E:F1:9C:27:3D:ED:ED:19:CE:F6:B3:68:39:B3:CE:B0:1E:DE:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/557xnCc97e0ZzvazaDmzzrAe3v0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/h-NNHJY1nXIb2RyAah1IdHak9TM.roa
Signing time: Tue 25 Oct 2022 10:51:32 +0000
ROA not before: Tue 25 Oct 2022 10:51:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209232
IP address blocks: 2.56.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:c4:d8:f9:43:ad:88:46:14:ed:54:d5:a2:83:b7:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e79ef19c273deded19cef6b36839b3ceb01edefd
Validity
Not Before: Oct 25 10:51:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87e34d1c96359d721bd91c806a1d487476a4f533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:db:1e:fc:90:70:9c:5b:54:b8:3d:00:9f:bc:
e5:9d:15:6a:5a:68:2f:2f:01:d9:a8:2e:eb:8e:5b:
9d:d7:22:ff:56:08:58:cb:ae:37:a8:84:98:7b:f6:
1e:6c:09:9d:c6:75:2c:74:a5:dc:d4:5c:72:a1:5e:
2c:06:cb:57:ee:2b:2a:66:db:1d:03:36:f8:e3:de:
40:5b:d2:e3:d3:40:0d:17:a8:6d:07:9f:70:3b:65:
6b:57:81:14:f2:38:6b:c8:5e:ef:db:f8:90:4b:4f:
b0:5d:b6:6d:5a:49:b4:74:ba:0c:f0:72:d9:a2:1a:
c4:71:ea:37:24:70:c1:69:08:44:07:a7:98:f9:fd:
e1:f4:df:e6:30:10:9e:89:11:e7:f2:a8:69:e4:34:
ed:16:29:90:88:55:48:e3:d5:ed:80:22:0f:1a:47:
72:06:f3:44:34:86:8b:b1:27:cb:30:1e:09:4a:fb:
d5:87:4a:a7:80:1a:97:07:96:9f:c0:45:06:cf:23:
c3:ec:16:06:ac:7c:e3:d4:6a:ae:88:79:6e:3a:11:
22:3f:21:77:c5:c7:05:85:4c:32:d2:d1:c6:11:27:
3b:26:04:6e:b0:6c:01:e7:96:3b:26:4a:f2:52:90:
a3:23:db:a6:9c:95:41:ab:d5:1b:bf:b6:8a:8b:18:
27:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:E3:4D:1C:96:35:9D:72:1B:D9:1C:80:6A:1D:48:74:76:A4:F5:33
X509v3 Authority Key Identifier:
keyid:E7:9E:F1:9C:27:3D:ED:ED:19:CE:F6:B3:68:39:B3:CE:B0:1E:DE:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/557xnCc97e0ZzvazaDmzzrAe3v0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/h-NNHJY1nXIb2RyAah1IdHak9TM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3dde8d-bc09-47eb-8b5e-d9b72ed7cb4d/1/557xnCc97e0ZzvazaDmzzrAe3v0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.132.0/24
Signature Algorithm: sha256WithRSAEncryption
08:14:95:46:a9:ae:22:3a:22:7c:7d:cf:db:34:50:ee:49:3a:
d5:1d:15:4e:c1:28:52:ee:c4:51:3a:eb:2c:3c:12:d5:c7:55:
bc:1c:59:1a:d9:74:99:4e:90:ee:54:da:85:f3:e2:32:f3:e0:
9e:b7:9a:4d:f1:a2:d8:ae:30:cf:f7:7c:4c:66:54:d6:5e:da:
c3:af:7d:77:9b:30:a1:27:fa:1a:24:70:05:b9:24:79:4f:bc:
1c:69:b9:05:e3:3a:05:45:8b:2c:02:50:aa:ec:2c:54:22:5e:
6e:b2:2c:9b:45:5c:ad:42:46:d1:64:89:76:62:c6:9a:7b:03:
7f:85:c1:a5:1a:17:1f:7f:f0:18:5a:66:12:27:e4:89:69:18:
5a:a1:a0:66:02:c8:d7:2c:aa:68:f8:d8:9f:eb:15:3a:5f:95:
f6:4e:a1:0c:7b:49:5f:7a:0b:57:7c:64:2a:b4:7f:49:a2:e5:
4a:24:0b:a3:05:2d:06:26:8d:09:49:e0:3b:10:2b:1f:62:27:
08:e7:de:58:b0:bc:46:42:fe:61:71:ad:96:b7:ef:4b:7a:c5:
8a:4c:ad:d9:e0:6b:ae:87:67:80:75:d6:bf:c1:3e:d5:43:98:
c0:2e:d3:28:db:ff:a1:6c:7e:b4:52:ea:64:b6:67:48:38:e4:
9f:fb:89:26
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQOxNj5Q62IRhTtVNWig7dFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3OWVmMTljMjczZGVkZWQxOWNlZjZiMzY4MzliM2NlYjAx
ZWRlZmQwHhcNMjIxMDI1MTA1MTMyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4N2UzNGQxYzk2MzU5ZDcyMWJkOTFjODA2YTFkNDg3NDc2YTRmNTMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzdse/JBwnFtUuD0An7zlnRVqWmgv
LwHZqC7rjlud1yL/VghYy643qISYe/YebAmdxnUsdKXc1FxyoV4sBstX7isqZtsd
Azb4495AW9Lj00ANF6htB59wO2VrV4EU8jhryF7v2/iQS0+wXbZtWkm0dLoM8HLZ
ohrEceo3JHDBaQhEB6eY+f3h9N/mMBCeiRHn8qhp5DTtFimQiFVI49XtgCIPGkdy
BvNENIaLsSfLMB4JSvvVh0qngBqXB5afwEUGzyPD7BYGrHzj1GquiHluOhEiPyF3
xccFhUwy0tHGESc7JgRusGwB55Y7JkryUpCjI9umnJVBq9Ubv7aKixgn+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIfjTRyWNZ1yG9kcgGodSHR2pPUzMB8GA1UdIwQY
MBaAFOee8ZwnPe3tGc72s2g5s86wHt79MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTU3eG5DYzk3ZTBaenZhemFEbXp6ckFlM3YwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8zZGRlOGQtYmMwOS00N2ViLThiNWUt
ZDliNzJlZDdjYjRkLzEvaC1OTkhKWTFuWEliMlJ5QWFoMUlkSGFrOVRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8zZGRlOGQtYmMwOS00N2ViLThiNWUtZDliNzJlZDdjYjRk
LzEvNTU3eG5DYzk3ZTBaenZhemFEbXp6ckFlM3YwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjiEMA0G
CSqGSIb3DQEBCwUAA4IBAQAIFJVGqa4iOiJ8fc/bNFDuSTrVHRVOwShS7sRROuss
PBLVx1W8HFka2XSZTpDuVNqF8+Iy8+Cet5pN8aLYrjDP93xMZlTWXtrDr313mzCh
J/oaJHAFuSR5T7wcabkF4zoFRYssAlCq7CxUIl5usiybRVytQkbRZIl2YsaaewN/
hcGlGhcff/AYWmYSJ+SJaRhaoaBmAsjXLKpo+Nif6xU6X5X2TqEMe0lfegtXfGQq
tH9JouVKJAujBS0GJo0JSeA7ECsfYicI595YsLxGQv5hca2Wt+9LesWKTK3Z4Guu
h2eAdda/wT7VQ5jALtMo2/+hbH60UupktmdIOOSf+4km
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:13 2023 by rpki-client on console-ams.rpki-client.org