Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/XE7HTRSGtKeSWVy9ESDbm_FEjLY.roa
File: XE7HTRSGtKeSWVy9ESDbm_FEjLY.roa (raw, json)
Hash identifier: Lz/21jRYFKiOui7f0FxwZpAHuLapzAMX9QmxFgucQC0=
Subject key identifier: 5C:4E:C7:4D:14:86:B4:A7:92:59:5C:BD:11:20:DB:9B:F1:44:8C:B6
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19DA0D4F
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/XE7HTRSGtKeSWVy9ESDbm_FEjLY.roa
Signing time: Sat 01 Jan 2022 15:56:43 +0000
ROA not before: Sat 01 Jan 2022 15:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39351
IP address blocks: 2a07:e341::/32 maxlen: 32
2a07:e340::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 433720655 (0x19da0d4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c4ec74d1486b4a792595cbd1120db9bf1448cb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a7:62:cf:66:d9:a8:8c:10:36:b2:d2:26:e0:
d2:9c:ff:16:a8:37:48:3c:c0:ef:86:ea:84:d5:00:
94:29:c4:7b:5a:9d:67:76:a0:7e:d9:c5:66:20:14:
b4:23:13:62:fc:42:bb:49:a7:33:53:92:3a:8c:b3:
36:67:bf:f8:0f:db:ed:9e:51:17:0a:e6:82:c3:c0:
01:e3:fd:57:d8:56:a3:9a:fe:ab:19:b9:02:16:3b:
35:94:4e:ab:b4:5d:2e:ba:16:e1:d1:b5:1a:87:64:
42:16:eb:76:ec:a1:74:0b:6f:30:93:1e:55:3c:03:
6b:04:45:51:f7:cc:74:09:d5:01:be:2e:a1:ba:37:
b9:e0:d1:fb:38:e9:8d:78:28:a7:97:10:9d:c9:19:
69:80:da:fd:4b:a5:ff:bd:62:d2:7d:d9:f4:f6:a4:
ce:11:38:ef:ae:33:be:27:72:b7:7e:16:b0:e8:de:
b3:e7:01:0f:76:17:11:b1:09:3b:8d:ff:20:3b:10:
ec:8f:a2:53:34:4f:88:eb:c4:33:2c:bc:02:20:32:
49:62:18:25:69:36:e4:c7:da:dc:cb:47:03:58:ff:
d1:8e:25:9d:a9:27:55:8a:a3:49:4a:d2:95:f4:1e:
92:02:7a:06:b7:fd:19:df:47:89:68:85:76:e8:69:
6f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:4E:C7:4D:14:86:B4:A7:92:59:5C:BD:11:20:DB:9B:F1:44:8C:B6
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/XE7HTRSGtKeSWVy9ESDbm_FEjLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:e340::/31
Signature Algorithm: sha256WithRSAEncryption
8e:52:97:40:76:40:0a:b6:af:73:ee:86:ed:ee:30:ad:48:dd:
f3:0e:96:c5:4a:c6:fe:d7:b2:04:54:89:5b:c3:66:5f:a1:2c:
60:57:75:d5:3d:3d:b3:2b:4a:03:0b:d3:48:08:21:fe:32:80:
2b:4d:f0:19:86:8a:d5:42:3a:f4:37:b7:26:7c:88:8b:5e:c5:
b6:d4:33:61:7f:24:ba:ad:d8:5e:1b:60:f0:b5:8a:ac:81:55:
13:6e:2f:31:00:d3:11:7b:27:01:3d:69:82:f5:4b:2d:9a:4d:
71:2f:38:59:f0:ef:3a:dc:b8:db:52:c1:74:ba:d0:7a:ed:d8:
5e:dd:5f:24:99:ef:81:62:30:92:fa:9c:b7:07:16:a2:3b:56:
79:d5:bf:9e:c1:f0:07:dc:fe:92:c9:90:52:af:66:c9:4e:ac:
38:23:df:0f:19:f1:be:e1:35:27:cd:05:d8:a8:8b:e5:fe:e4:
8f:01:79:fb:de:7e:3c:91:e1:ed:5e:f9:28:60:ff:9a:9b:1a:
f8:5e:df:d2:88:10:c1:bf:0e:1f:50:de:cc:ba:5e:ab:db:8d:
f2:4d:9b:7a:18:f7:be:c7:f6:9f:aa:76:2d:14:76:33:00:2c:
4a:99:f2:fb:02:7d:ce:d5:46:05:99:67:9a:1c:df:a2:4f:92:
da:c7:27:c6
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEGdoNTzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MTU1MDA5YzNkZTQyMWNjNGU2N2I5YTlhZTQyM2JiMzVkZTBiOTI2MB4XDTIyMDEw
MTE1NTY0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWM0ZWM3NGQxNDg2
YjRhNzkyNTk1Y2JkMTEyMGRiOWJmMTQ0OGNiNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANWnYs9m2aiMEDay0ibg0pz/Fqg3SDzA74bqhNUAlCnEe1qd
Z3agftnFZiAUtCMTYvxCu0mnM1OSOoyzNme/+A/b7Z5RFwrmgsPAAeP9V9hWo5r+
qxm5AhY7NZROq7RdLroW4dG1GodkQhbrduyhdAtvMJMeVTwDawRFUffMdAnVAb4u
obo3ueDR+zjpjXgop5cQnckZaYDa/Uul/71i0n3Z9PakzhE4764zvidyt34WsOje
s+cBD3YXEbEJO43/IDsQ7I+iUzRPiOvEMyy8AiAySWIYJWk25Mfa3MtHA1j/0Y4l
naknVYqjSUrSlfQekgJ6Brf9Gd9HiWiFduhpb4ECAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBRcTsdNFIa0p5JZXL0RINub8USMtjAfBgNVHSMEGDAWgBSxVQCcPeQhzE5n
uamuQjuzXeC5JjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NWVUFuRDNrSWN4T1o3bXBya0k3czEzZ3VTWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTAvZGU5MDJjLTNkMTMtNDdkMS1hNWU2LTczODU2YWY0OWYzZS8x
L1hFN0hUUlNHdEtlU1dWeTlFU0RibV9GRWpMWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTAv
ZGU5MDJjLTNkMTMtNDdkMS1hNWU2LTczODU2YWY0OWYzZS8xL3NWVUFuRDNrSWN4
T1o3bXBya0k3czEzZ3VTWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFASoH40AwDQYJKoZIhvcNAQELBQAD
ggEBAI5Sl0B2QAq2r3Puhu3uMK1I3fMOlsVKxv7XsgRUiVvDZl+hLGBXddU9PbMr
SgML00gIIf4ygCtN8BmGitVCOvQ3tyZ8iItexbbUM2F/JLqt2F4bYPC1iqyBVRNu
LzEA0xF7JwE9aYL1Sy2aTXEvOFnw7zrcuNtSwXS60Hrt2F7dXySZ74FiMJL6nLcH
FqI7VnnVv57B8Afc/pLJkFKvZslOrDgj3w8Z8b7hNSfNBdioi+X+5I8BefvefjyR
4e1e+Shg/5qbGvhe39KIEMG/Dh9Q3sy6XqvbjfJNm3oY977H9p+qdi0UdjMALEqZ
8vsCfc7VRgWZZ5oc36JPktrHJ8Y=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org