Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/vxjjGHPl405q8gsxy5bZ4sjmE30.roa
File: vxjjGHPl405q8gsxy5bZ4sjmE30.roa (raw, json)
Hash identifier: J4XPPUlVIooSGgv6V24+BdPNBBIb06hQYLrnVjL7+YE=
Subject key identifier: BF:18:E3:18:73:E5:E3:4E:6A:F2:0B:31:CB:96:D9:E2:C8:E6:13:7D
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 0182D05C38174947E7F4208B25E1C3C99A0E
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/vxjjGHPl405q8gsxy5bZ4sjmE30.roa
Signing time: Wed 24 Aug 2022 14:58:00 +0000
ROA not before: Wed 24 Aug 2022 14:58:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207807
IP address blocks: 2a00:7180:800c::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d0:5c:38:17:49:47:e7:f4:20:8b:25:e1:c3:c9:9a:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Aug 24 14:58:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf18e31873e5e34e6af20b31cb96d9e2c8e6137d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6e:d3:89:85:73:b5:72:b6:1e:f1:3f:f1:10:
2f:47:36:1d:98:07:be:4a:a1:1c:2f:59:1f:e4:6a:
c5:f4:c7:e2:24:fd:5a:d9:61:4d:23:64:bb:ee:31:
12:36:9d:2f:08:fe:67:fc:b1:f8:1c:fc:a5:5e:bc:
6e:20:e8:c6:2a:6b:34:22:9a:d1:d2:de:d0:c9:4f:
58:47:56:16:37:18:42:67:d2:97:f4:28:40:37:1a:
4c:c7:63:3d:38:54:d3:e0:a3:9f:6b:58:12:48:27:
de:67:55:20:bf:e7:95:5b:19:ee:ad:e6:25:dd:d3:
bf:8c:18:3d:26:1a:ba:71:19:e5:fa:db:e3:c7:d6:
17:8b:eb:48:43:fb:f1:e1:cc:96:c9:19:76:50:9f:
c6:fe:b3:50:c3:8c:32:75:68:b5:79:2a:ab:60:30:
4c:78:5e:3a:dc:49:a8:31:72:ea:c9:af:01:1b:ef:
17:42:9c:42:a2:c5:0c:80:3d:f0:c7:65:67:c0:46:
c2:af:29:5a:ce:7a:8f:15:4c:32:1f:d4:15:60:b0:
c4:13:15:46:64:f6:d8:a6:db:5a:68:44:59:1b:4b:
67:6c:72:a5:10:fc:82:1d:75:ab:c6:dd:8c:16:b2:
96:f5:dd:d4:61:21:7a:6c:03:4b:f4:c1:d9:b6:47:
07:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:18:E3:18:73:E5:E3:4E:6A:F2:0B:31:CB:96:D9:E2:C8:E6:13:7D
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/vxjjGHPl405q8gsxy5bZ4sjmE30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:7180:800c::/46
Signature Algorithm: sha256WithRSAEncryption
57:9c:56:f0:2c:a0:ee:df:a0:40:55:ff:49:93:e9:f8:b8:cd:
a8:29:3d:bd:07:1e:1c:a8:c3:48:f8:42:4c:e2:6d:78:7f:2a:
f1:9b:6c:10:18:f3:81:3d:3f:f2:69:f9:17:20:b5:90:80:da:
aa:21:74:6f:c6:9f:4d:75:a1:eb:c5:f4:95:a0:64:b9:72:fe:
fd:36:f4:ab:fb:5c:4f:e2:6d:26:bb:fc:5d:a8:ac:ff:a6:d7:
fa:08:88:26:73:d0:37:22:cf:ad:38:1b:b7:c1:70:52:2f:e8:
9b:15:ed:70:05:af:a5:35:24:9f:cd:67:e7:7f:24:19:04:28:
53:bb:94:ab:33:4e:77:53:74:8e:b7:f3:13:4b:f3:cb:b2:52:
14:3c:ab:37:8c:1a:e3:9e:e9:ec:ea:43:1c:ac:85:46:a0:a7:
34:da:7b:52:f1:46:30:f1:dc:62:9d:80:68:9f:f7:14:d1:b4:
3a:f3:0d:15:91:b0:c2:64:16:a3:96:b3:f6:a8:8a:c5:d8:8a:
9a:7b:02:ad:c8:5c:02:c2:38:1a:fe:79:53:c5:ae:3d:bd:cd:
d0:3e:78:4b:7c:9c:8d:ae:a7:83:f9:46:63:a3:82:d0:6f:41:
41:01:50:41:ed:3d:52:da:2d:d1:60:89:b3:16:a3:ba:3f:21:
24:28:be:05
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYLQXDgXSUfn9CCLJeHDyZoOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZWY1ZmJiZmNhN2E5M2NmZWU5NjVlZWI2YmRlZTZmYjQz
YzQwM2UwHhcNMjIwODI0MTQ1ODAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZjE4ZTMxODczZTVlMzRlNmFmMjBiMzFjYjk2ZDllMmM4ZTYxMzdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl27TiYVztXK2HvE/8RAvRzYdmAe+
SqEcL1kf5GrF9MfiJP1a2WFNI2S77jESNp0vCP5n/LH4HPylXrxuIOjGKms0IprR
0t7QyU9YR1YWNxhCZ9KX9ChANxpMx2M9OFTT4KOfa1gSSCfeZ1Ugv+eVWxnureYl
3dO/jBg9Jhq6cRnl+tvjx9YXi+tIQ/vx4cyWyRl2UJ/G/rNQw4wydWi1eSqrYDBM
eF463EmoMXLqya8BG+8XQpxCosUMgD3wx2VnwEbCrylaznqPFUwyH9QVYLDEExVG
ZPbYpttaaERZG0tnbHKlEPyCHXWrxt2MFrKW9d3UYSF6bANL9MHZtkcHuQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFL8Y4xhz5eNOavILMcuW2eLI5hN9MB8GA1UdIwQY
MBaAFKDvX7v8p6k8/ull7ra97m+0PEA+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2Mt
MDI5MmIwMjAxNTBhLzEvdnhqakdIUGw0MDVxOGdzeHk1Ylo0c2ptRTMwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2MtMDI5MmIwMjAxNTBh
LzEvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcCKgBxgIAM
MA0GCSqGSIb3DQEBCwUAA4IBAQBXnFbwLKDu36BAVf9Jk+n4uM2oKT29Bx4cqMNI
+EJM4m14fyrxm2wQGPOBPT/yafkXILWQgNqqIXRvxp9NdaHrxfSVoGS5cv79NvSr
+1xP4m0mu/xdqKz/ptf6CIgmc9A3Is+tOBu3wXBSL+ibFe1wBa+lNSSfzWfnfyQZ
BChTu5SrM053U3SOt/MTS/PLslIUPKs3jBrjnuns6kMcrIVGoKc02ntS8UYw8dxi
nYBon/cU0bQ68w0VkbDCZBajlrP2qIrF2IqaewKtyFwCwjga/nlTxa49vc3QPnhL
fJyNrqeD+UZjo4LQb0FBAVBB7T1S2i3RYImzFqO6PyEkKL4F
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org