Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/Bvp6R2zWC2FFwyFHp7l-5IEXXcE.roa
File: Bvp6R2zWC2FFwyFHp7l-5IEXXcE.roa (raw, json)
Hash identifier: deF+wq0dKw8HsUhNKjphuHn6vTyYaxnpuWfP++YLpC8=
Subject key identifier: 06:FA:7A:47:6C:D6:0B:61:45:C3:21:47:A7:B9:7E:E4:81:17:5D:C1
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 037BF59C
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/Bvp6R2zWC2FFwyFHp7l-5IEXXcE.roa
Signing time: Thu 09 Jun 2022 10:53:02 +0000
ROA not before: Thu 09 Jun 2022 10:53:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 217.25.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58455452 (0x37bf59c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: Jun 9 10:53:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06fa7a476cd60b6145c32147a7b97ee481175dc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d0:0e:c6:37:18:8f:95:7c:b0:25:b3:96:64:
91:95:90:46:fb:12:dd:94:b1:5f:65:2e:6c:3c:ef:
06:20:71:ef:1c:4c:cb:9b:f2:d8:08:bb:96:aa:5f:
05:53:5d:d8:fe:3a:0c:cf:54:74:e4:29:7e:c2:45:
51:32:59:68:8f:45:1a:cd:51:b2:3a:59:85:f9:f2:
38:e1:e3:34:13:d2:43:cd:40:1b:4f:2a:3a:64:4c:
65:2b:7a:f4:76:8d:3a:85:bf:e3:fe:50:23:c0:ac:
32:e5:6f:12:a0:6e:63:f2:c8:7b:05:de:26:c0:81:
65:a9:29:80:da:47:c6:8c:57:cc:af:c0:d0:3d:b9:
88:aa:f1:57:bd:e7:02:5c:c5:f2:ac:77:1c:37:44:
c1:34:41:62:4a:85:ef:c4:45:5a:c7:ea:fe:9b:67:
c6:d7:72:9c:f4:1f:1b:ab:22:3a:2a:b8:dc:f5:c0:
6b:fd:0f:69:e7:72:f4:e0:47:b0:27:20:54:2a:2d:
69:e7:42:a2:d7:4e:c6:b7:57:b1:94:f0:9a:b6:d8:
9a:a6:c8:5a:54:47:9c:82:65:f8:f0:08:35:12:a1:
0f:56:48:3f:45:72:a6:dc:a1:15:14:e3:f7:47:d4:
20:34:bf:ea:75:a8:13:4a:19:49:79:46:42:94:f3:
14:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:FA:7A:47:6C:D6:0B:61:45:C3:21:47:A7:B9:7E:E4:81:17:5D:C1
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/Bvp6R2zWC2FFwyFHp7l-5IEXXcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.25.1.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:8b:94:52:6d:ac:2d:f0:9f:ff:ab:90:53:1a:4e:29:61:35:
88:f5:52:4e:a2:b9:4d:aa:8a:2c:da:bc:81:c6:c3:18:e9:8b:
ad:98:c7:98:69:9d:6a:41:ee:65:e4:bb:08:4f:6b:27:42:2f:
7d:68:32:77:7d:aa:16:c9:4d:d5:b6:f9:75:c0:55:37:31:38:
b9:bf:79:06:f7:58:b9:7c:c4:e7:61:43:b2:21:f2:6c:fe:36:
d3:ae:e9:ce:fb:3c:02:6e:20:ad:73:74:5b:31:ee:d4:0d:7f:
74:3a:d5:53:48:29:e7:d8:de:33:5c:09:4d:b6:5a:7d:b3:45:
a4:04:16:50:76:02:22:e6:66:39:b2:18:45:18:36:11:05:ce:
08:24:8c:69:7f:ad:e8:cc:d1:fe:9b:a3:0b:6a:a8:3d:0c:ff:
4b:5a:9d:5a:94:ff:36:f5:a6:f3:08:28:72:fe:e3:bb:59:f7:
47:a6:6b:8e:90:cf:6b:3e:bb:29:18:0e:e7:64:c1:f6:65:07:
61:88:fa:2d:5c:ee:bd:83:7b:8d:d4:d0:19:21:83:8d:26:9d:
b1:df:2a:86:0c:33:6f:2b:bc:65:a2:c8:7b:f4:6d:59:4a:07:
d3:63:38:5d:b9:2d:c0:cd:fd:c7:2c:6b:98:61:dd:13:ea:0d:
76:7d:bb:e9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA3v1nDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZmY4MGNiZGZlMTgzNTRhM2NmZGJhMmZlMDc5YWEyZWJjNThkY2Q0MB4XDTIyMDYw
OTEwNTMwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDZmYTdhNDc2Y2Q2
MGI2MTQ1YzMyMTQ3YTdiOTdlZTQ4MTE3NWRjMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMLQDsY3GI+VfLAls5ZkkZWQRvsS3ZSxX2UubDzvBiBx7xxM
y5vy2Ai7lqpfBVNd2P46DM9UdOQpfsJFUTJZaI9FGs1RsjpZhfnyOOHjNBPSQ81A
G08qOmRMZSt69HaNOoW/4/5QI8CsMuVvEqBuY/LIewXeJsCBZakpgNpHxoxXzK/A
0D25iKrxV73nAlzF8qx3HDdEwTRBYkqF78RFWsfq/ptnxtdynPQfG6siOiq43PXA
a/0Paedy9OBHsCcgVCotaedCotdOxrdXsZTwmrbYmqbIWlRHnIJl+PAINRKhD1ZI
P0VyptyhFRTj90fUIDS/6nWoE0oZSXlGQpTzFAECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQG+npHbNYLYUXDIUenuX7kgRddwTAfBgNVHSMEGDAWgBQP+Ay9/hg1Sjz9
ui/geaouvFjc1DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RfZ012ZjRZTlVvOF9ib3Y0SG1xTHJ4WTNOUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTkvMTI5NTY0LWYxZGItNGRjNS04OTA2LTZmY2RjZDVhYjY2MC8x
L0J2cDZSMnpXQzJGRnd5RkhwN2wtNUlFWFhjRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTkv
MTI5NTY0LWYxZGItNGRjNS04OTA2LTZmY2RjZDVhYjY2MC8xL0RfZ012ZjRZTlVv
OF9ib3Y0SG1xTHJ4WTNOUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANkZATANBgkqhkiG9w0BAQsFAAOC
AQEArouUUm2sLfCf/6uQUxpOKWE1iPVSTqK5TaqKLNq8gcbDGOmLrZjHmGmdakHu
ZeS7CE9rJ0IvfWgyd32qFslN1bb5dcBVNzE4ub95BvdYuXzE52FDsiHybP42067p
zvs8Am4grXN0WzHu1A1/dDrVU0gp59jeM1wJTbZafbNFpAQWUHYCIuZmObIYRRg2
EQXOCCSMaX+t6MzR/pujC2qoPQz/S1qdWpT/NvWm8wgocv7ju1n3R6ZrjpDPaz67
KRgO52TB9mUHYYj6LVzuvYN7jdTQGSGDjSadsd8qhgwzbyu8ZaLIe/RtWUoH02M4
XbktwM39xyxrmGHdE+oNdn276Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:38 2023 by rpki-client on console-ams.rpki-client.org