Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/vDjgRbzVLvizjK2feXFr6pinlt0.roa
File: vDjgRbzVLvizjK2feXFr6pinlt0.roa (raw, json)
Hash identifier: ytAawDQ84T07rrG0fU+JoMA2JZsr+G/n8Luon2zfUEE=
Subject key identifier: BC:38:E0:45:BC:D5:2E:F8:B3:8C:AD:9F:79:71:6B:EA:98:A7:96:DD
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 0183ACF94D2E2196E87D142A84D70666FF3D
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/vDjgRbzVLvizjK2feXFr6pinlt0.roa
Signing time: Thu 06 Oct 2022 11:06:02 +0000
ROA not before: Thu 06 Oct 2022 11:06:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 87.254.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ac:f9:4d:2e:21:96:e8:7d:14:2a:84:d7:06:66:ff:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: Oct 6 11:06:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc38e045bcd52ef8b38cad9f79716bea98a796dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bb:87:4f:a5:a5:d8:87:c1:45:f0:f3:3c:52:
6b:3d:05:06:b6:97:f6:76:21:b3:da:08:7e:46:5d:
37:ce:a4:03:9d:75:09:e2:70:15:e1:4a:12:94:d0:
76:e3:4e:66:b0:0e:88:5d:0c:a4:f7:da:32:f7:ab:
11:89:23:82:54:1f:62:73:0d:66:f6:e5:0b:d9:9f:
54:1f:4c:3b:3a:21:58:18:86:b5:78:1c:98:18:2a:
c3:2a:ed:ab:b4:78:23:02:bc:2c:bc:ba:40:13:12:
a6:91:62:af:66:f1:6f:d2:24:fb:5e:39:db:4c:d8:
d0:ea:02:b5:fb:74:e6:78:89:11:d0:28:10:e6:77:
a4:02:34:e8:ef:20:6d:09:6f:ea:33:b1:c3:66:16:
51:7b:ce:6a:c8:5d:d1:b5:b2:3f:dc:86:43:16:43:
81:02:3e:42:a6:ec:cb:2d:fb:62:86:a5:c8:83:9d:
9d:e3:80:a6:d6:d9:af:66:80:79:0b:53:11:44:c4:
5f:ca:a8:42:6c:e3:fc:72:dc:02:29:e2:8b:1d:72:
31:a4:8b:b3:33:2c:75:c0:e1:94:0f:0e:c7:4b:9b:
3b:c4:e9:6e:6c:17:0e:c4:64:f9:d6:4e:2f:9a:cf:
9f:aa:c4:82:9b:01:c0:c9:7b:b4:2a:68:c9:fe:98:
1e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:38:E0:45:BC:D5:2E:F8:B3:8C:AD:9F:79:71:6B:EA:98:A7:96:DD
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/vDjgRbzVLvizjK2feXFr6pinlt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.3.0/24
Signature Algorithm: sha256WithRSAEncryption
65:b6:ad:21:0e:4b:32:6a:82:f5:4f:51:28:88:00:be:24:1f:
c1:49:ca:97:2d:39:97:28:bc:d5:dc:3f:3d:bb:7b:93:04:f3:
55:91:1f:c3:2e:1d:7f:9b:e1:1f:2c:b3:ce:fb:56:33:81:4c:
e9:56:f4:b8:31:07:2b:c1:66:f1:d3:1b:37:55:5d:d2:1d:d4:
c8:c8:4c:06:82:8b:aa:0f:60:88:73:cf:ac:dc:4c:fb:d5:0c:
fc:11:08:a6:48:72:ee:3e:23:6d:54:af:26:f6:e4:a0:ec:0b:
49:f3:33:b6:ea:f6:44:98:a8:cf:ff:39:5a:03:e1:db:fa:1f:
2e:cb:09:9e:92:ce:00:87:61:c9:fb:9e:e5:27:59:ce:d0:64:
16:75:46:2d:5e:44:08:54:f1:e2:66:77:13:9d:80:d5:2a:d0:
f5:ff:10:a5:85:a3:68:e7:66:98:be:28:3b:7a:2e:30:a3:bb:
71:4f:19:84:62:f8:fe:f4:89:db:b6:9c:89:d0:63:c8:5a:b3:
ee:79:d0:fb:da:16:5b:f6:dd:ef:a3:0f:eb:8d:20:0d:f1:d9:
47:13:b6:ef:7a:2d:34:ec:45:0f:4d:32:3d:c5:72:b4:10:73:
9c:c8:11:9f:63:4a:64:d1:4c:d7:c8:3f:f1:b6:c5:cc:ce:d7:
15:2a:9a:f2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOs+U0uIZbofRQqhNcGZv89MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmZjgwY2JkZmUxODM1NGEzY2ZkYmEyZmUwNzlhYTJlYmM1
OGRjZDQwHhcNMjIxMDA2MTEwNjAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYzM4ZTA0NWJjZDUyZWY4YjM4Y2FkOWY3OTcxNmJlYTk4YTc5NmRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7uHT6Wl2IfBRfDzPFJrPQUGtpf2
diGz2gh+Rl03zqQDnXUJ4nAV4UoSlNB2405msA6IXQyk99oy96sRiSOCVB9icw1m
9uUL2Z9UH0w7OiFYGIa1eByYGCrDKu2rtHgjArwsvLpAExKmkWKvZvFv0iT7Xjnb
TNjQ6gK1+3TmeIkR0CgQ5nekAjTo7yBtCW/qM7HDZhZRe85qyF3RtbI/3IZDFkOB
Aj5CpuzLLftihqXIg52d44Cm1tmvZoB5C1MRRMRfyqhCbOP8ctwCKeKLHXIxpIuz
Myx1wOGUDw7HS5s7xOlubBcOxGT51k4vms+fqsSCmwHAyXu0KmjJ/pgeBwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLw44EW81S74s4ytn3lxa+qYp5bdMB8GA1UdIwQY
MBaAFA/4DL3+GDVKPP26L+B5qi68WNzUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRF9nTXZmNFlOVW84X2JvdjRIbXFMcnhZM05RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8xMjk1NjQtZjFkYi00ZGM1LTg5MDYt
NmZjZGNkNWFiNjYwLzEvdkRqZ1JielZMdml6aksyZmVYRnI2cGlubHQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS8xMjk1NjQtZjFkYi00ZGM1LTg5MDYtNmZjZGNkNWFiNjYw
LzEvRF9nTXZmNFlOVW84X2JvdjRIbXFMcnhZM05RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV/4DMA0G
CSqGSIb3DQEBCwUAA4IBAQBltq0hDksyaoL1T1EoiAC+JB/BScqXLTmXKLzV3D89
u3uTBPNVkR/DLh1/m+EfLLPO+1YzgUzpVvS4MQcrwWbx0xs3VV3SHdTIyEwGgouq
D2CIc8+s3Ez71Qz8EQimSHLuPiNtVK8m9uSg7AtJ8zO26vZEmKjP/zlaA+Hb+h8u
ywmeks4Ah2HJ+57lJ1nO0GQWdUYtXkQIVPHiZncTnYDVKtD1/xClhaNo52aYvig7
ei4wo7txTxmEYvj+9InbtpyJ0GPIWrPuedD72hZb9t3vow/rjSAN8dlHE7bvei00
7EUPTTI9xXK0EHOcyBGfY0pk0UzXyD/xtsXMztcVKpry
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:48 2023 by rpki-client on console-fra.rpki-client.org