Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/pA9NmavhvDxxW2Rjpq3OxsBdjZ8.roa
File: pA9NmavhvDxxW2Rjpq3OxsBdjZ8.roa (raw, json)
Hash identifier: zH3bAjAfl1WNgMvW1R3Y2Du/DEBoTgPDV3DziHNMZk0=
Subject key identifier: A4:0F:4D:99:AB:E1:BC:3C:71:5B:64:63:A6:AD:CE:C6:C0:5D:8D:9F
Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Certificate serial: 032CC6D6
Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/pA9NmavhvDxxW2Rjpq3OxsBdjZ8.roa
Signing time: Sat 01 Jan 2022 13:07:48 +0000
ROA not before: Sat 01 Jan 2022 13:07:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51446
IP address blocks: 83.217.12.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53266134 (0x32cc6d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Validity
Not Before: Jan 1 13:07:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a40f4d99abe1bc3c715b6463a6adcec6c05d8d9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b0:28:87:ff:4d:e7:ff:18:d9:66:01:87:7f:
3b:e6:ef:89:7d:78:91:38:96:ab:f5:c4:3b:8c:b2:
64:14:80:f9:2b:30:e9:e6:59:82:63:dd:92:ab:60:
a4:44:01:f9:c8:6d:11:1e:6b:21:91:c9:b1:ab:35:
47:80:68:81:97:67:26:49:66:dd:9c:83:94:3c:d8:
22:dc:d5:e5:d1:84:e2:51:a6:d5:52:cb:7b:9a:72:
12:be:2d:ad:37:41:bf:dc:32:2a:ea:c1:f2:5c:03:
ea:ce:fb:82:be:ed:7e:28:73:4c:c8:eb:55:e2:f0:
33:20:1f:8c:e6:d0:3d:7d:86:da:4d:29:47:3a:ec:
c9:35:07:2e:0e:f5:2c:6e:01:c3:3c:8f:fa:be:8e:
67:da:29:45:13:4d:1e:21:46:04:7c:e9:81:92:aa:
d0:d1:03:47:77:ad:dc:f7:ef:36:fc:b3:9b:d3:11:
79:f6:08:3e:9f:c3:ce:ed:35:c9:98:ce:bb:0f:b7:
07:30:83:93:e1:26:3a:11:71:5d:29:59:ec:9d:38:
65:8b:23:f7:93:50:75:f4:d1:03:47:21:ea:82:79:
73:37:d4:ac:51:47:3a:6a:6a:2d:1a:2a:3c:51:4d:
dc:1d:46:91:6a:c0:54:ee:86:7f:58:b0:b5:3e:7f:
d7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:0F:4D:99:AB:E1:BC:3C:71:5B:64:63:A6:AD:CE:C6:C0:5D:8D:9F
X509v3 Authority Key Identifier:
keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/pA9NmavhvDxxW2Rjpq3OxsBdjZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.12.0/23
Signature Algorithm: sha256WithRSAEncryption
26:d9:97:40:bc:b1:5a:8a:ab:ff:5a:45:b3:bf:df:d5:19:a4:
71:da:44:44:15:d1:a4:06:3b:be:9a:37:a6:f7:cc:2f:65:c7:
86:4c:e9:f6:c9:a6:65:89:ac:19:b0:a6:b0:d3:ef:d9:1e:0a:
41:88:56:50:7f:77:d0:50:17:8f:e6:f6:f9:3f:ba:1a:a1:b9:
57:10:3b:e6:4c:ea:05:f5:14:7b:5e:d1:2d:5d:72:1e:13:cb:
9f:97:4a:6f:b9:9d:02:2b:b8:d3:09:25:a6:4b:6d:7d:12:dd:
73:ac:2f:c8:40:4c:05:37:c1:87:82:06:de:31:73:11:a2:0c:
9c:9c:d5:01:d6:7e:4e:89:af:5e:38:28:c4:ec:a9:cc:76:d0:
59:fb:58:16:ed:af:52:da:43:d6:49:95:90:da:09:df:42:8b:
55:8f:f8:ea:1d:44:39:78:b8:49:cc:f2:66:ed:4e:bf:b2:fa:
55:70:9a:e7:59:38:ae:68:c6:12:aa:19:84:2f:85:ba:8c:f9:
89:01:94:d5:18:21:ab:25:59:1c:79:85:a1:8b:b9:3f:6c:61:
d0:d7:b1:63:e1:ee:d4:61:36:d2:ba:c8:28:46:89:63:38:1e:
0c:1e:06:a1:95:d2:7a:72:99:65:da:6b:af:57:e7:a8:82:ca:
2e:29:89:d3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAyzG1jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OTQwYjY5NGJiYTA5NTM0NGU0YmRiOTlmNTFlMWYxMDIzYmU1N2NlMB4XDTIyMDEw
MTEzMDc0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTQwZjRkOTlhYmUx
YmMzYzcxNWI2NDYzYTZhZGNlYzZjMDVkOGQ5ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMmwKIf/Tef/GNlmAYd/O+bviX14kTiWq/XEO4yyZBSA+Ssw
6eZZgmPdkqtgpEQB+chtER5rIZHJsas1R4BogZdnJklm3ZyDlDzYItzV5dGE4lGm
1VLLe5pyEr4trTdBv9wyKurB8lwD6s77gr7tfihzTMjrVeLwMyAfjObQPX2G2k0p
RzrsyTUHLg71LG4BwzyP+r6OZ9opRRNNHiFGBHzpgZKq0NEDR3et3PfvNvyzm9MR
efYIPp/Dzu01yZjOuw+3BzCDk+EmOhFxXSlZ7J04ZYsj95NQdfTRA0ch6oJ5czfU
rFFHOmpqLRoqPFFN3B1GkWrAVO6Gf1iwtT5/15UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSkD02Zq+G8PHFbZGOmrc7GwF2NnzAfBgNVHSMEGDAWgBQpQLaUu6CVNE5L
25n1Hh8QI75XzjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tVQzJsTHVnbFRST1M5dVo5UjRmRUNPLVY4NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWYvNjEwN2U0LTQzOTMtNGNiZS1hNmMyLTI3YzFhMzU5NzZkZS8x
L3BBOU5tYXZodkR4eFcyUmpwcTNPeHNCZGpaOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWYv
NjEwN2U0LTQzOTMtNGNiZS1hNmMyLTI3YzFhMzU5NzZkZS8xL0tVQzJsTHVnbFRS
T1M5dVo5UjRmRUNPLVY4NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVPZDDANBgkqhkiG9w0BAQsFAAOC
AQEAJtmXQLyxWoqr/1pFs7/f1RmkcdpERBXRpAY7vpo3pvfML2XHhkzp9smmZYms
GbCmsNPv2R4KQYhWUH930FAXj+b2+T+6GqG5VxA75kzqBfUUe17RLV1yHhPLn5dK
b7mdAiu40wklpkttfRLdc6wvyEBMBTfBh4IG3jFzEaIMnJzVAdZ+TomvXjgoxOyp
zHbQWftYFu2vUtpD1kmVkNoJ30KLVY/46h1EOXi4SczyZu1Ov7L6VXCa51k4rmjG
EqoZhC+Fuoz5iQGU1RghqyVZHHmFoYu5P2xh0NexY+Hu1GE20rrIKEaJYzgeDB4G
oZXSenKZZdprr1fnqILKLimJ0w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:00 2023 by rpki-client on console-ams.rpki-client.org