Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/gpdLgvzOeTLNMyESK2CZrJPu868.roa
File: gpdLgvzOeTLNMyESK2CZrJPu868.roa (raw, json)
Hash identifier: 68zSrZiCG0GatEoRbiwUaxVpdB9R6WSrVGSXTsV2Dyw=
Subject key identifier: 82:97:4B:82:FC:CE:79:32:CD:33:21:12:2B:60:99:AC:93:EE:F3:AF
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 0181EC49B9B708A8C15EA7C198DB3E421B1B
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/gpdLgvzOeTLNMyESK2CZrJPu868.roa
Signing time: Mon 11 Jul 2022 08:04:23 +0000
ROA not before: Mon 11 Jul 2022 08:04:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60326
IP address blocks: 2a0c:e642::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ec:49:b9:b7:08:a8:c1:5e:a7:c1:98:db:3e:42:1b:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jul 11 08:04:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82974b82fcce7932cd3321122b6099ac93eef3af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d4:8c:99:e0:20:46:f3:21:df:a2:2b:7f:9f:
8e:95:e6:85:ff:9e:5f:71:03:de:bf:c9:cb:ca:65:
78:a0:e5:cc:d2:be:7d:ff:76:b4:f3:99:df:75:c1:
99:15:d5:6c:40:89:f0:d1:c1:73:6f:9c:3d:df:d9:
95:c9:56:4a:f5:d6:48:49:aa:28:80:0c:be:90:6a:
3d:fc:83:e4:4b:b9:3f:78:ed:ef:2f:03:1b:5d:f1:
62:25:32:24:c0:62:c8:8f:1a:f9:2e:6f:04:ff:9a:
8e:56:d0:ca:8e:7c:b8:af:6d:32:9b:b5:25:63:02:
aa:51:dd:c7:88:fa:32:12:40:b3:1b:5d:65:63:19:
92:7e:06:1d:31:a7:6f:a6:9f:bf:17:4b:be:b4:af:
a9:f8:6b:fc:01:1d:48:ba:5a:d3:ac:f6:f5:29:b4:
d5:bf:ff:42:92:55:1d:5e:90:2e:03:22:4b:5b:c9:
22:4d:c8:37:ff:25:b8:ee:7b:9f:64:37:50:20:3a:
f6:f5:48:33:68:26:c5:e2:f0:11:67:5e:bc:77:85:
e1:be:c9:d0:9d:d0:93:73:17:45:3e:93:91:b6:f0:
c0:24:a4:15:20:c1:ac:d7:1e:8c:c9:90:08:e7:c9:
85:8f:9c:9d:9e:8b:43:4d:04:d3:b7:85:ac:e6:67:
da:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:97:4B:82:FC:CE:79:32:CD:33:21:12:2B:60:99:AC:93:EE:F3:AF
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/gpdLgvzOeTLNMyESK2CZrJPu868.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:e642::/32
Signature Algorithm: sha256WithRSAEncryption
98:ea:9c:29:18:9d:9d:45:72:0e:d5:e9:56:93:c7:af:d7:1d:
f7:09:02:2f:25:63:9e:da:47:33:f8:03:5b:13:49:57:84:c0:
7d:29:c2:37:70:23:78:dc:c9:ef:e0:68:ae:61:18:e7:9e:a7:
d1:ff:80:56:8b:a0:f3:11:d7:ed:d7:f0:30:dd:e9:5e:ab:70:
c9:f3:c6:16:09:b2:13:86:c0:a3:a9:01:f1:ca:de:14:2a:d6:
27:71:22:8c:d3:d8:2b:1a:59:66:38:13:ac:ea:9f:bd:87:21:
d3:de:c2:a0:29:0c:17:73:ab:33:10:45:2d:10:d4:b6:4f:a7:
66:5e:04:53:33:35:46:a6:8d:bb:0a:10:ca:39:46:f9:c9:75:
f4:45:b1:a5:eb:01:3e:2c:53:94:4f:80:48:79:ab:f9:bf:5d:
bd:89:3b:4d:63:87:fd:41:47:83:63:43:37:80:80:20:53:e9:
31:a7:d3:f9:a8:57:2a:76:e7:fd:65:1d:70:a1:ea:e3:27:53:
12:d2:cf:ca:ff:a3:c0:e1:88:0b:3a:4e:57:46:8b:49:e4:64:
da:e4:ff:dd:0b:a7:89:69:c6:e7:40:e1:17:72:b2:a7:ca:4d:
49:cd:d5:fc:c5:97:10:e6:3f:65:98:85:ac:81:c6:43:75:85:
f5:b4:c7:10
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYHsSbm3CKjBXqfBmNs+QhsbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczYzY5ZDA0NTgzNTAwYzVlZjgxMTM2ODMxMjM3NTkzZTBi
Yjg2Y2UwHhcNMjIwNzExMDgwNDIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4Mjk3NGI4MmZjY2U3OTMyY2QzMzIxMTIyYjYwOTlhYzkzZWVmM2FmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdSMmeAgRvMh36Irf5+OleaF/55f
cQPev8nLymV4oOXM0r59/3a085nfdcGZFdVsQInw0cFzb5w939mVyVZK9dZISaoo
gAy+kGo9/IPkS7k/eO3vLwMbXfFiJTIkwGLIjxr5Lm8E/5qOVtDKjny4r20ym7Ul
YwKqUd3HiPoyEkCzG11lYxmSfgYdMadvpp+/F0u+tK+p+Gv8AR1IulrTrPb1KbTV
v/9CklUdXpAuAyJLW8kiTcg3/yW47nufZDdQIDr29UgzaCbF4vARZ168d4XhvsnQ
ndCTcxdFPpORtvDAJKQVIMGs1x6MyZAI58mFj5ydnotDTQTTt4Ws5mfagQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFIKXS4L8znkyzTMhEitgmayT7vOvMB8GA1UdIwQY
MBaAFHPGnQRYNQDF74ETaDEjdZPgu4bOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQt
ZjljYjBhN2IyMDZjLzEvZ3BkTGd2ek9lVExOTXlFU0syQ1pySlB1ODY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQtZjljYjBhN2IyMDZj
LzEvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgzmQjAN
BgkqhkiG9w0BAQsFAAOCAQEAmOqcKRidnUVyDtXpVpPHr9cd9wkCLyVjntpHM/gD
WxNJV4TAfSnCN3AjeNzJ7+BormEY556n0f+AVoug8xHX7dfwMN3pXqtwyfPGFgmy
E4bAo6kB8creFCrWJ3EijNPYKxpZZjgTrOqfvYch097CoCkMF3OrMxBFLRDUtk+n
Zl4EUzM1RqaNuwoQyjlG+cl19EWxpesBPixTlE+ASHmr+b9dvYk7TWOH/UFHg2ND
N4CAIFPpMafT+ahXKnbn/WUdcKHq4ydTEtLPyv+jwOGICzpOV0aLSeRk2uT/3Qun
iWnG50DhF3Kyp8pNSc3V/MWXEOY/ZZiFrIHGQ3WF9bTHEA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:11 2023 by rpki-client on console-fra.rpki-client.org