Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/vGIOYZsloT7kpHdlU-utiXdK3Wg.roa
File: vGIOYZsloT7kpHdlU-utiXdK3Wg.roa (raw, json)
Hash identifier: NJ8HdGxJlvTXzOGj1cgOreOrqelmT1D7Y6DkNFQUdPk=
Subject key identifier: BC:62:0E:61:9B:25:A1:3E:E4:A4:77:65:53:EB:AD:89:77:4A:DD:68
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 10BFD649
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/vGIOYZsloT7kpHdlU-utiXdK3Wg.roa
Signing time: Mon 21 Mar 2022 16:12:06 +0000
ROA not before: Mon 21 Mar 2022 16:12:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210286
IP address blocks: 2a06:e881:9000::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281007689 (0x10bfd649)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Mar 21 16:12:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc620e619b25a13ee4a4776553ebad89774add68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6e:af:57:7b:9b:f6:fb:68:cb:a6:ca:9d:b9:
ff:08:6a:11:d9:fb:76:22:f2:19:3f:3d:ae:ac:cc:
c8:6f:78:de:17:a7:d4:4e:21:33:a2:78:00:ab:29:
ce:f4:b0:17:25:d7:d6:85:a6:fd:86:13:78:4d:1b:
8b:e3:8a:d0:c9:d9:4e:33:4f:f1:77:45:67:dd:bb:
38:9b:f7:c6:a2:bb:2c:95:33:7f:4c:70:35:b4:61:
7f:36:40:d8:1c:39:95:6d:e1:09:69:29:04:d1:9e:
08:7f:a1:b4:b6:9d:8f:50:2a:b5:9a:28:6e:e6:ae:
0e:a8:03:8c:53:1e:d9:07:c0:81:1a:00:7d:43:9d:
7a:e4:1f:c6:68:1c:a0:53:71:98:74:c1:0d:0e:33:
6c:35:8b:d8:33:cd:d4:76:5e:f9:ea:98:d8:5a:13:
63:8f:9c:81:2f:fc:9c:f8:4f:7c:4c:9f:8e:d0:fc:
c8:e5:d9:5d:7f:85:a0:a2:b6:9f:3c:03:b1:1d:d3:
4e:7b:43:d7:cb:1e:0a:34:0e:ab:ad:ba:6c:2a:a5:
c3:f1:50:72:3d:56:17:ed:44:31:89:8c:3d:f4:c6:
a8:90:86:43:b4:d8:41:38:d8:39:be:fd:46:c1:c9:
ed:1a:49:20:7d:bf:99:f9:ad:e6:5d:1a:e6:dc:0b:
8b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:62:0E:61:9B:25:A1:3E:E4:A4:77:65:53:EB:AD:89:77:4A:DD:68
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/vGIOYZsloT7kpHdlU-utiXdK3Wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:9000::/44
Signature Algorithm: sha256WithRSAEncryption
3f:de:90:60:a4:3a:f9:f3:db:63:3b:9e:02:f1:01:63:57:e5:
79:5f:e2:e1:33:56:08:e3:98:a6:61:3f:c7:7c:2d:a0:18:12:
41:06:ce:fd:67:f2:8e:c0:f3:10:4e:46:02:85:cc:23:06:b1:
62:b7:f1:00:5b:ca:85:3e:b4:7a:08:70:31:11:cd:86:1e:fc:
56:7e:8e:78:be:a2:47:3e:3f:54:dc:d2:a1:28:cf:27:a2:d7:
ab:2c:f8:9d:1f:12:1a:c2:37:8d:e6:dc:36:4d:f6:5d:96:64:
36:74:67:ac:80:78:ad:f6:d7:91:1d:c8:22:0a:9d:6f:98:6c:
37:fc:d2:a7:c9:55:78:7f:7e:53:14:ba:c6:21:58:c7:16:91:
ff:80:c0:ce:64:d1:74:65:92:ad:93:b1:24:93:9f:c3:02:fa:
0a:37:69:07:8c:9b:51:0c:12:19:74:84:fb:b8:14:41:b3:f5:
97:b2:55:f1:c3:a6:9d:0d:ee:d0:0a:3e:e8:07:26:1a:f9:28:
2d:db:bf:b2:90:82:a3:6d:fd:6b:81:94:b4:7e:e2:87:53:82:
64:1e:51:96:20:ae:e7:eb:3b:c1:e8:d9:ea:54:fe:d4:97:25:
23:14:86:10:01:40:7c:87:84:75:4e:7f:de:52:69:1c:13:85:
aa:fb:1b:17
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEEL/WSTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ODA3NGI0MTllYWQ0Y2VmZWEyZjJhZDJjMjU5ZDk3OGM1ZWQ3OTU0MB4XDTIyMDMy
MTE2MTIwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmM2MjBlNjE5YjI1
YTEzZWU0YTQ3NzY1NTNlYmFkODk3NzRhZGQ2ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKdur1d7m/b7aMumyp25/whqEdn7diLyGT89rqzMyG943hen
1E4hM6J4AKspzvSwFyXX1oWm/YYTeE0bi+OK0MnZTjNP8XdFZ927OJv3xqK7LJUz
f0xwNbRhfzZA2Bw5lW3hCWkpBNGeCH+htLadj1AqtZoobuauDqgDjFMe2QfAgRoA
fUOdeuQfxmgcoFNxmHTBDQ4zbDWL2DPN1HZe+eqY2FoTY4+cgS/8nPhPfEyfjtD8
yOXZXX+FoKK2nzwDsR3TTntD18seCjQOq626bCqlw/FQcj1WF+1EMYmMPfTGqJCG
Q7TYQTjYOb79RsHJ7RpJIH2/mfmt5l0a5twLi1ECAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBS8Yg5hmyWhPuSkd2VT662Jd0rdaDAfBgNVHSMEGDAWgBS4B0tBnq1M7+ov
KtLCWdl4xe15VDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VBZExRWjZ0VE9fcUx5clN3bG5aZU1YdGVWUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWIvMWU0M2U0LWQwNmUtNGE1NS1iZGI2LTNkOTFlZGU1YjJiMS8x
L3ZHSU9ZWnNsb1Q3a3BIZGxVLXV0aVhkSzNXZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIv
MWU0M2U0LWQwNmUtNGE1NS1iZGI2LTNkOTFlZGU1YjJiMS8xL3VBZExRWjZ0VE9f
cUx5clN3bG5aZU1YdGVWUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoG6IGQADANBgkqhkiG9w0BAQsF
AAOCAQEAP96QYKQ6+fPbYzueAvEBY1fleV/i4TNWCOOYpmE/x3wtoBgSQQbO/Wfy
jsDzEE5GAoXMIwaxYrfxAFvKhT60eghwMRHNhh78Vn6OeL6iRz4/VNzSoSjPJ6LX
qyz4nR8SGsI3jebcNk32XZZkNnRnrIB4rfbXkR3IIgqdb5hsN/zSp8lVeH9+UxS6
xiFYxxaR/4DAzmTRdGWSrZOxJJOfwwL6CjdpB4ybUQwSGXSE+7gUQbP1l7JV8cOm
nQ3u0Ao+6AcmGvkoLdu/spCCo239a4GUtH7ih1OCZB5RliCu5+s7wejZ6lT+1Jcl
IxSGEAFAfIeEdU5/3lJpHBOFqvsbFw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:55 2023 by rpki-client on console-fra.rpki-client.org