Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/Byws74tcoiG4Q9A-m8YMYD7mUmw.roa
File: Byws74tcoiG4Q9A-m8YMYD7mUmw.roa (raw, json)
Hash identifier: LqP+OTJTGaLiigUwuGJ7qhkPaCWwiET3+TycceTXKeE=
Subject key identifier: 07:2C:2C:EF:8B:5C:A2:21:B8:43:D0:3E:9B:C6:0C:60:3E:E6:52:6C
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 0183FBFCCB95DBC84A89E42B4C6FE1A403FF
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/Byws74tcoiG4Q9A-m8YMYD7mUmw.roa
Signing time: Fri 21 Oct 2022 19:19:51 +0000
ROA not before: Fri 21 Oct 2022 19:19:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14445
IP address blocks: 87.254.9.0/24 maxlen: 24
87.254.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fb:fc:cb:95:db:c8:4a:89:e4:2b:4c:6f:e1:a4:03:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: Oct 21 19:19:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=072c2cef8b5ca221b843d03e9bc60c603ee6526c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9f:6a:f1:f3:3f:e3:6f:05:d7:49:f1:be:fd:
9f:b1:a0:db:55:8b:f6:70:56:e6:c4:60:0d:d7:c9:
c4:ed:0c:66:cb:95:66:67:98:1e:b7:85:a4:32:ff:
a8:6f:4e:b4:f1:25:f3:4f:9e:da:8c:7c:1e:4e:46:
ea:a5:85:c7:62:1e:99:ff:74:4b:64:6d:08:a1:24:
da:3b:c4:31:d3:10:56:b4:88:47:07:8c:a3:57:55:
06:23:94:09:92:69:60:ef:2a:da:2c:c8:81:bc:5a:
06:e7:cb:5d:91:f3:28:a1:fc:8a:c1:a9:0c:df:76:
ad:88:1f:38:36:0c:9e:b9:47:47:64:b9:e6:12:3b:
ef:de:96:e1:60:b8:3c:60:e8:cb:ed:c3:fa:e0:38:
d6:82:f7:c7:de:46:4a:fb:18:f8:22:da:68:1c:24:
bd:6e:c9:27:a1:14:ec:3f:c4:e3:0e:53:67:45:23:
f0:09:5c:b2:c0:de:20:48:6f:15:93:b6:68:e2:33:
90:b6:8d:ee:97:f1:18:c7:1f:14:1c:e5:c6:82:f1:
44:d8:2c:5e:c9:d3:77:8e:13:f2:40:3a:88:ac:4e:
79:16:2e:57:68:ea:74:92:57:ae:47:ee:49:04:fb:
3b:ce:b9:dc:56:6b:c0:cd:17:50:15:d5:95:a8:33:
14:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:2C:2C:EF:8B:5C:A2:21:B8:43:D0:3E:9B:C6:0C:60:3E:E6:52:6C
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/Byws74tcoiG4Q9A-m8YMYD7mUmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.8.0/23
Signature Algorithm: sha256WithRSAEncryption
33:42:c4:8c:c6:24:db:24:c9:36:c3:d5:1c:40:62:3e:75:23:
24:3b:77:9f:d1:17:ba:d1:d2:e4:58:d1:2f:70:7c:d7:08:8d:
57:90:fe:54:48:79:4e:a3:12:c3:a7:b2:cd:5b:32:96:1e:7c:
41:08:00:8a:e3:0b:f3:f1:80:06:ea:85:55:b8:10:81:e3:c0:
4c:00:b6:8d:c0:e1:b7:ca:df:f4:1f:33:b1:a6:9a:b0:35:10:
b6:07:22:dc:d3:56:5d:fb:5c:81:af:bb:2b:5d:4c:b5:12:6d:
7b:bb:a1:c3:1c:b2:23:2f:13:c2:56:a7:44:08:04:31:0b:21:
67:fc:d1:74:10:62:84:aa:87:13:03:d0:f6:65:fa:87:15:4b:
87:ca:ed:87:f8:a6:85:58:69:e4:4a:66:e2:1c:e3:5b:af:d0:
6d:b9:13:d0:d2:cf:34:95:2a:71:91:0c:a6:e6:42:68:52:a6:
2a:32:c7:ac:e8:f6:b9:db:9c:94:d5:19:a5:5a:4c:69:28:57:
03:4d:20:07:a3:b4:a7:4b:5f:c7:2d:61:92:0b:9b:ca:74:1e:
b4:7d:b5:08:9e:d1:ce:db:19:80:ce:29:94:bc:16:e5:ce:e8:
06:83:e5:07:3e:66:5c:32:85:be:58:97:76:cd:94:f0:63:73:
87:bf:de:9d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYP7/MuV28hKieQrTG/hpAP/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmZjgwY2JkZmUxODM1NGEzY2ZkYmEyZmUwNzlhYTJlYmM1
OGRjZDQwHhcNMjIxMDIxMTkxOTUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzJjMmNlZjhiNWNhMjIxYjg0M2QwM2U5YmM2MGM2MDNlZTY1MjZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxp9q8fM/428F10nxvv2fsaDbVYv2
cFbmxGAN18nE7Qxmy5VmZ5get4WkMv+ob0608SXzT57ajHweTkbqpYXHYh6Z/3RL
ZG0IoSTaO8Qx0xBWtIhHB4yjV1UGI5QJkmlg7yraLMiBvFoG58tdkfMoofyKwakM
33atiB84NgyeuUdHZLnmEjvv3pbhYLg8YOjL7cP64DjWgvfH3kZK+xj4ItpoHCS9
bsknoRTsP8TjDlNnRSPwCVyywN4gSG8Vk7Zo4jOQto3ul/EYxx8UHOXGgvFE2Cxe
ydN3jhPyQDqIrE55Fi5XaOp0kleuR+5JBPs7zrncVmvAzRdQFdWVqDMURwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAcsLO+LXKIhuEPQPpvGDGA+5lJsMB8GA1UdIwQY
MBaAFA/4DL3+GDVKPP26L+B5qi68WNzUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRF9nTXZmNFlOVW84X2JvdjRIbXFMcnhZM05RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8xMjk1NjQtZjFkYi00ZGM1LTg5MDYt
NmZjZGNkNWFiNjYwLzEvQnl3czc0dGNvaUc0UTlBLW04WU1ZRDdtVW13LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS8xMjk1NjQtZjFkYi00ZGM1LTg5MDYtNmZjZGNkNWFiNjYw
LzEvRF9nTXZmNFlOVW84X2JvdjRIbXFMcnhZM05RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBV/4IMA0G
CSqGSIb3DQEBCwUAA4IBAQAzQsSMxiTbJMk2w9UcQGI+dSMkO3ef0Re60dLkWNEv
cHzXCI1XkP5USHlOoxLDp7LNWzKWHnxBCACK4wvz8YAG6oVVuBCB48BMALaNwOG3
yt/0HzOxppqwNRC2ByLc01Zd+1yBr7srXUy1Em17u6HDHLIjLxPCVqdECAQxCyFn
/NF0EGKEqocTA9D2ZfqHFUuHyu2H+KaFWGnkSmbiHONbr9BtuRPQ0s80lSpxkQym
5kJoUqYqMses6Pa525yU1RmlWkxpKFcDTSAHo7SnS1/HLWGSC5vKdB60fbUIntHO
2xmAzimUvBblzugGg+UHPmZcMoW+WJd2zZTwY3OHv96d
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:38 2023 by rpki-client on console-ams.rpki-client.org