Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/xSPSKzU_yQVwV2WXHibMhtQBIqc.roa
File: xSPSKzU_yQVwV2WXHibMhtQBIqc.roa (raw, json)
Hash identifier: BUafvZAjuiUZg8/DhqQL1aZ7s/oobJ86Iw6iqtLrFg0=
Subject key identifier: C5:23:D2:2B:35:3F:C9:05:70:57:65:97:1E:26:CC:86:D4:01:22:A7
Certificate issuer: /CN=13a0f7143ffa22113442dc8589ee1352ebe3daa3
Certificate serial: 7FA3
Authority key identifier: 13:A0:F7:14:3F:FA:22:11:34:42:DC:85:89:EE:13:52:EB:E3:DA:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E6D3FD_6IhE0QtyFie4TUuvj2qM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/xSPSKzU_yQVwV2WXHibMhtQBIqc.roa
Signing time: Mon 13 Jun 2022 10:25:56 +0000
ROA not before: Mon 13 Jun 2022 10:25:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50889
IP address blocks: 80.84.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32675 (0x7fa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13a0f7143ffa22113442dc8589ee1352ebe3daa3
Validity
Not Before: Jun 13 10:25:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c523d22b353fc905705765971e26cc86d40122a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5a:d7:e6:7d:2d:5b:8e:d1:89:97:6d:71:b8:
9c:dd:f6:b3:32:95:79:2e:8a:cd:5a:80:4c:b7:4a:
33:cc:30:b3:f8:06:0e:77:13:7b:bf:a8:e8:14:16:
c2:17:c9:a0:01:db:18:3e:b3:9d:80:10:98:da:05:
7b:1a:48:1a:09:1a:b2:be:a4:8f:19:f4:79:db:12:
ef:8b:1d:68:b9:f6:4b:49:17:72:ea:9e:77:78:33:
ea:78:44:af:f8:cf:45:a5:fc:3f:91:6d:7f:d0:53:
91:00:e7:2d:35:e5:97:28:58:1a:94:d4:87:b0:70:
bf:70:89:06:49:db:97:ec:96:e8:fb:8d:fd:33:74:
a8:cb:d3:e6:3c:4f:56:1a:a3:01:fc:5d:54:11:30:
87:98:f9:b4:57:90:df:3f:c9:ce:2c:91:e6:80:a4:
e7:3a:72:b8:a4:06:e4:bd:b9:ea:d1:e9:3b:ee:26:
a1:77:92:93:0a:ec:27:e6:29:7c:3b:c2:1f:85:b8:
f9:46:a0:93:49:33:d2:31:7d:90:c6:99:4a:3f:c8:
fb:60:55:26:3a:e1:bc:36:a9:63:ec:67:e8:0c:2a:
65:5e:37:fd:9e:30:1c:6d:92:cb:0a:42:0f:02:32:
65:d1:97:0f:fa:23:be:75:69:ca:df:49:98:62:fa:
a5:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:23:D2:2B:35:3F:C9:05:70:57:65:97:1E:26:CC:86:D4:01:22:A7
X509v3 Authority Key Identifier:
keyid:13:A0:F7:14:3F:FA:22:11:34:42:DC:85:89:EE:13:52:EB:E3:DA:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E6D3FD_6IhE0QtyFie4TUuvj2qM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/xSPSKzU_yQVwV2WXHibMhtQBIqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/E6D3FD_6IhE0QtyFie4TUuvj2qM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.84.167.0/24
Signature Algorithm: sha256WithRSAEncryption
55:d9:eb:0b:39:ec:3e:7e:f4:02:4f:03:1d:c8:99:29:6c:24:
14:1a:74:cd:05:15:fc:59:9d:7d:2d:8a:72:f7:4d:66:fe:30:
6c:99:f4:d3:e1:5e:ba:68:ac:44:26:56:fe:17:6b:35:60:50:
c4:e2:33:32:6a:fd:68:4e:22:78:8f:a7:cd:16:b6:46:30:ed:
65:e2:5b:45:2e:f4:4e:05:0f:70:9c:ce:14:fc:26:1a:12:b0:
8b:9b:0a:63:91:a9:70:bf:f5:08:41:e1:2a:27:6d:c5:2e:97:
65:95:5d:c9:45:f8:99:b3:fb:b1:3c:6c:6a:8e:0f:35:92:a7:
13:67:6e:f3:31:3c:6d:7c:72:f2:93:3d:cf:ff:4b:7b:c8:76:
15:d3:93:a0:ff:fa:ac:24:07:5c:62:77:5c:30:22:f3:92:36:
1f:a2:bd:9a:e8:3d:44:76:5a:13:aa:c2:46:9d:2a:09:2a:da:
85:8d:28:42:d6:78:78:92:e8:15:81:2a:28:a1:d8:af:a1:c4:
c3:b1:15:2b:41:8e:62:20:ba:42:25:61:05:e5:4c:12:2a:38:
88:19:d5:bc:c6:89:65:44:7c:2f:f7:5a:12:fa:ca:74:15:9b:
95:bb:d9:18:26:17:5e:ed:dc:d7:67:42:11:b9:2e:e2:15:ac:
44:43:61:87
-----BEGIN CERTIFICATE-----
MIIE7TCCA9WgAwIBAgICf6MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTNh
MGY3MTQzZmZhMjIxMTM0NDJkYzg1ODllZTEzNTJlYmUzZGFhMzAeFw0yMjA2MTMx
MDI1NTZaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKGM1MjNkMjJiMzUzZmM5
MDU3MDU3NjU5NzFlMjZjYzg2ZDQwMTIyYTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7WtfmfS1bjtGJl21xuJzd9rMylXkuis1agEy3SjPMMLP4Bg53
E3u/qOgUFsIXyaAB2xg+s52AEJjaBXsaSBoJGrK+pI8Z9HnbEu+LHWi59ktJF3Lq
nnd4M+p4RK/4z0Wl/D+RbX/QU5EA5y015ZcoWBqU1IewcL9wiQZJ25fsluj7jf0z
dKjL0+Y8T1YaowH8XVQRMIeY+bRXkN8/yc4skeaApOc6crikBuS9uerR6TvuJqF3
kpMK7CfmKXw7wh+FuPlGoJNJM9IxfZDGmUo/yPtgVSY64bw2qWPsZ+gMKmVeN/2e
MBxtkssKQg8CMmXRlw/6I751acrfSZhi+qUVAgMBAAGjggIJMIICBTAdBgNVHQ4E
FgQUxSPSKzU/yQVwV2WXHibMhtQBIqcwHwYDVR0jBBgwFoAUE6D3FD/6IhE0QtyF
ie4TUuvj2qMwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9F
NkQzRkRfNkloRTBRdHlGaWU0VFV1dmoycU0uY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxUL2JiLzQ0M2Y4Ny00YWUwLTQxOTgtYmNiOC0xMDRhMzM0Mzc2NjUvMS94
U1BTS3pVX3lRVndWMldYSGliTWh0UUJJcWMucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JiLzQ0
M2Y4Ny00YWUwLTQxOTgtYmNiOC0xMDRhMzM0Mzc2NjUvMS9FNkQzRkRfNkloRTBR
dHlGaWU0VFV1dmoycU0uY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABQVKcwDQYJKoZIhvcNAQELBQADggEB
AFXZ6ws57D5+9AJPAx3ImSlsJBQadM0FFfxZnX0tinL3TWb+MGyZ9NPhXrporEQm
Vv4XazVgUMTiMzJq/WhOIniPp80WtkYw7WXiW0Uu9E4FD3CczhT8JhoSsIubCmOR
qXC/9QhB4SonbcUul2WVXclF+Jmz+7E8bGqODzWSpxNnbvMxPG18cvKTPc//S3vI
dhXTk6D/+qwkB1xid1wwIvOSNh+ivZroPUR2WhOqwkadKgkq2oWNKELWeHiS6BWB
Kiih2K+hxMOxFStBjmIgukIlYQXlTBIqOIgZ1bzGiWVEfC/3WhL6ynQVm5W72Rgm
F17t3NdnQhG5LuIVrERDYYc=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:50 2023 by rpki-client on console-ams.rpki-client.org