Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/_viaHDXW6zkaYNhU2U5ayGql16E.roa
File: _viaHDXW6zkaYNhU2U5ayGql16E.roa (raw, json)
Hash identifier: DOAa+GHz34RJ+0GnTWWyssrANIlG3zSek3WBtZx0YB8=
Subject key identifier: FE:F8:9A:1C:35:D6:EB:39:1A:60:D8:54:D9:4E:5A:C8:6A:A5:D7:A1
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 0588E44D
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/_viaHDXW6zkaYNhU2U5ayGql16E.roa
Signing time: Sat 01 Jan 2022 05:01:22 +0000
ROA not before: Sat 01 Jan 2022 05:01:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142549
IP address blocks: 2a0d:2686::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92857421 (0x588e44d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 05:01:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fef89a1c35d6eb391a60d854d94e5ac86aa5d7a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:cb:37:66:52:a0:12:c7:5d:a4:7a:e0:f8:d1:
16:fc:9d:e8:33:f3:c1:19:27:70:66:90:95:63:8c:
ee:9e:67:ad:39:00:47:ab:60:75:b7:7a:e0:de:a1:
d4:de:a7:b2:4a:e9:26:ad:db:f8:0e:72:80:8e:19:
2d:56:9d:97:00:18:57:ec:9d:78:c3:83:f3:0b:ad:
57:9f:33:02:de:61:e4:ac:29:bb:5e:4b:97:d2:0e:
d1:62:59:01:2a:ca:72:f3:f3:6c:d9:8b:1a:11:65:
79:0b:44:07:59:ac:d7:56:e5:bc:2e:2e:63:d1:d9:
aa:2e:78:d2:59:b5:43:4f:12:e5:1c:69:6e:81:10:
1d:bf:33:8d:f9:e8:7b:9a:de:8f:a1:fd:14:0b:fc:
66:16:99:a0:46:f3:9f:96:1c:bc:bc:bd:d5:ec:b3:
01:27:e0:18:e4:6f:d6:b2:6a:3e:28:4e:83:b2:47:
32:5f:e1:56:a8:d2:52:0a:b7:dd:93:06:ff:ff:87:
39:ed:e7:69:2e:4c:bb:93:cb:57:6b:59:87:72:fd:
5a:6a:d3:7b:61:9a:0a:93:df:94:b5:02:85:20:99:
e4:d7:d3:26:98:42:88:27:40:47:9e:3b:ef:a1:1d:
93:19:c7:41:5c:8f:90:94:aa:f9:9f:39:34:db:79:
6d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F8:9A:1C:35:D6:EB:39:1A:60:D8:54:D9:4E:5A:C8:6A:A5:D7:A1
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/_viaHDXW6zkaYNhU2U5ayGql16E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2686::/32
Signature Algorithm: sha256WithRSAEncryption
78:70:19:ae:fa:2b:11:9c:02:81:79:17:aa:af:ec:b6:4c:51:
23:cb:8a:12:61:bd:f1:6f:13:f1:d9:12:ad:0f:07:d0:34:5f:
01:ed:56:a2:f6:7c:14:23:73:e1:e0:a5:31:5b:8e:8a:56:58:
29:32:21:f3:dd:a4:c1:fc:4c:d6:d3:37:c4:bc:14:ba:31:81:
67:5f:12:8f:7e:4c:8d:b7:57:81:1e:67:c8:6a:f8:87:f3:c7:
a2:a8:70:f0:0d:fb:41:4f:2f:b9:f4:88:73:8a:3e:95:f0:c1:
7f:f5:3d:6c:29:64:0a:3f:2a:58:84:98:12:a7:1e:02:bc:19:
25:16:17:1f:17:1e:fe:06:3d:da:4f:9e:2c:38:ae:4c:51:3a:
29:53:33:86:17:ea:10:d7:92:dd:1d:5f:24:47:c1:77:98:62:
ae:fe:73:1c:32:90:fa:18:13:16:63:93:aa:4d:c9:2c:5f:f6:
84:74:2a:0a:c3:e0:84:5c:1b:09:92:7c:ea:39:c8:8e:ba:a0:
70:43:2d:16:c4:2f:95:b6:b0:37:db:ac:9e:d4:99:f9:ab:84:
6f:fd:d3:57:7e:6e:92:23:99:48:0e:eb:4b:a9:bf:d5:d1:94:
a6:d8:f7:3c:27:ab:72:c6:6d:3a:b2:96:1c:ac:0e:56:67:84:
cb:2b:a1:b4
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEBYjkTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
M2M2OWQwNDU4MzUwMGM1ZWY4MTEzNjgzMTIzNzU5M2UwYmI4NmNlMB4XDTIyMDEw
MTA1MDEyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmVmODlhMWMzNWQ2
ZWIzOTFhNjBkODU0ZDk0ZTVhYzg2YWE1ZDdhMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIjLN2ZSoBLHXaR64PjRFvyd6DPzwRkncGaQlWOM7p5nrTkA
R6tgdbd64N6h1N6nskrpJq3b+A5ygI4ZLVadlwAYV+ydeMOD8wutV58zAt5h5Kwp
u15Ll9IO0WJZASrKcvPzbNmLGhFleQtEB1ms11blvC4uY9HZqi540lm1Q08S5Rxp
boEQHb8zjfnoe5rej6H9FAv8ZhaZoEbzn5YcvLy91eyzASfgGORv1rJqPihOg7JH
Ml/hVqjSUgq33ZMG//+HOe3naS5Mu5PLV2tZh3L9WmrTe2GaCpPflLUChSCZ5NfT
JphCiCdAR54776EdkxnHQVyPkJSq+Z85NNt5bQsCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT++JocNdbrORpg2FTZTlrIaqXXoTAfBgNVHSMEGDAWgBRzxp0EWDUAxe+B
E2gxI3WT4LuGzjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2M4YWRCRmcxQU1YdmdSTm9NU04xay1DN2hzNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzgvNmY2Y2UyLWU2ZWUtNGUyYS05MDVkLWY5Y2IwYTdiMjA2Yy8x
L192aWFIRFhXNnprYVlOaFUyVTVheUdxbDE2RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgv
NmY2Y2UyLWU2ZWUtNGUyYS05MDVkLWY5Y2IwYTdiMjA2Yy8xL2M4YWRCRmcxQU1Y
dmdSTm9NU04xay1DN2hzNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoNJoYwDQYJKoZIhvcNAQELBQAD
ggEBAHhwGa76KxGcAoF5F6qv7LZMUSPLihJhvfFvE/HZEq0PB9A0XwHtVqL2fBQj
c+HgpTFbjopWWCkyIfPdpMH8TNbTN8S8FLoxgWdfEo9+TI23V4EeZ8hq+Ifzx6Ko
cPAN+0FPL7n0iHOKPpXwwX/1PWwpZAo/KliEmBKnHgK8GSUWFx8XHv4GPdpPniw4
rkxROilTM4YX6hDXkt0dXyRHwXeYYq7+cxwykPoYExZjk6pNySxf9oR0KgrD4IRc
GwmSfOo5yI66oHBDLRbEL5W2sDfbrJ7UmfmrhG/901d+bpIjmUgO60upv9XRlKbY
9zwnq3LGbTqylhysDlZnhMsrobQ=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:11 2023 by rpki-client on console-fra.rpki-client.org