Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/evboQ6eQxFjXyerq_3rJ-tUCFeM.roa
File: evboQ6eQxFjXyerq_3rJ-tUCFeM.roa (raw, json)
Hash identifier: rVV1YV9Dzqlh065eHwuK9nKctEeVRvNXwvZpUdvALZ8=
Subject key identifier: 7A:F6:E8:43:A7:90:C4:58:D7:C9:EA:EA:FF:7A:C9:FA:D5:02:15:E3
Certificate issuer: /CN=32508fb781ca6dbd8221f2c2f954a3a7446b2b42
Certificate serial: 08DEAE82
Authority key identifier: 32:50:8F:B7:81:CA:6D:BD:82:21:F2:C2:F9:54:A3:A7:44:6B:2B:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlCPt4HKbb2CIfLC-VSjp0RrK0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/evboQ6eQxFjXyerq_3rJ-tUCFeM.roa
Signing time: Sat 01 Jan 2022 14:59:00 +0000
ROA not before: Sat 01 Jan 2022 14:59:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208886
IP address blocks: 2a09:b280:cccf::/48 maxlen: 48
2a09:b280:beef::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148811394 (0x8deae82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32508fb781ca6dbd8221f2c2f954a3a7446b2b42
Validity
Not Before: Jan 1 14:59:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7af6e843a790c458d7c9eaeaff7ac9fad50215e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:00:a3:be:c6:64:78:71:55:60:e0:e0:ec:5d:
f3:04:14:ca:17:9a:33:25:3a:b0:90:6f:b5:51:ba:
10:bc:d0:fd:53:05:c9:08:2d:af:ef:78:d4:b2:e5:
77:29:2e:f2:ac:b6:04:f1:aa:cf:df:67:0e:51:02:
fd:39:f6:c8:41:2e:5a:80:4f:f5:7a:4e:ce:8a:59:
9b:56:7c:bc:33:c0:b9:68:93:2c:f1:8c:76:1a:b5:
d1:50:09:2d:5b:d6:61:2a:be:73:66:bd:47:a7:1f:
ce:25:74:b1:20:f6:d3:42:37:89:43:8a:27:14:95:
e2:ef:ae:ea:cb:63:81:98:54:0b:61:5f:81:f0:8e:
9c:ac:52:69:e0:aa:90:26:cc:1b:ca:ec:c2:e8:f1:
6f:33:50:ed:10:cb:92:32:db:b0:0a:89:ad:6e:fb:
48:76:10:3a:1e:98:cf:8d:59:da:ee:19:f5:fe:e5:
4a:c5:d9:bf:e6:b6:3c:f6:b0:d4:7a:08:a3:31:55:
95:3a:b7:41:d8:8f:03:f0:b5:d1:fc:9f:80:3a:c7:
27:ad:86:d1:92:15:ac:11:e1:3f:5a:f9:20:7e:f6:
7d:d3:a7:ba:54:5b:bc:19:08:e8:7c:f5:99:44:72:
07:83:06:f7:a8:b4:79:c7:7c:f7:8b:3c:0e:b0:5e:
d3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:F6:E8:43:A7:90:C4:58:D7:C9:EA:EA:FF:7A:C9:FA:D5:02:15:E3
X509v3 Authority Key Identifier:
keyid:32:50:8F:B7:81:CA:6D:BD:82:21:F2:C2:F9:54:A3:A7:44:6B:2B:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlCPt4HKbb2CIfLC-VSjp0RrK0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/evboQ6eQxFjXyerq_3rJ-tUCFeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/MlCPt4HKbb2CIfLC-VSjp0RrK0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:b280:beef::/48
2a09:b280:cccf::/48
Signature Algorithm: sha256WithRSAEncryption
09:dd:90:11:88:94:d6:0c:c0:e8:32:27:95:b2:18:48:a3:13:
7f:fc:22:9d:14:47:55:3a:25:de:4f:c9:d1:1e:85:c9:6d:2a:
46:a4:d9:87:07:2b:04:53:40:92:26:36:e4:47:3e:bc:d5:74:
ca:8c:e7:a3:d2:3d:d3:1f:eb:0d:66:4b:99:98:89:c0:b8:ce:
d0:e4:8c:2e:78:ba:fc:92:c9:cf:fd:fd:33:fa:3d:be:2f:69:
d9:82:80:c6:9d:c5:60:f9:eb:6b:a1:6f:b8:19:b2:65:67:32:
16:52:b2:f1:a0:70:03:62:16:06:93:4e:9b:8f:91:2e:d4:d3:
e4:20:21:79:f2:a1:ef:e1:d2:9b:5f:2e:b8:7b:e9:49:05:e7:
c6:1f:4d:e0:f0:da:46:4d:d4:1e:46:e5:b1:0a:66:75:7c:34:
cd:a2:58:f2:b2:1e:49:94:52:7c:bf:8b:f2:e9:e5:9f:1d:9c:
14:fa:7f:fd:a5:3e:e0:97:ae:ad:bf:9b:a0:cf:9a:7b:10:81:
e1:e6:55:79:63:7c:75:c6:29:e0:e6:50:9d:9e:9d:10:9f:1f:
c6:78:7a:c8:8a:e3:97:f3:fb:d2:f0:d3:1a:b8:9e:8b:0d:65:
1a:76:d3:3d:51:7f:f4:47:a8:a8:e5:26:53:52:58:8f:8a:90:
3b:cd:de:e6
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIECN6ugjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MjUwOGZiNzgxY2E2ZGJkODIyMWYyYzJmOTU0YTNhNzQ0NmIyYjQyMB4XDTIyMDEw
MTE0NTkwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2FmNmU4NDNhNzkw
YzQ1OGQ3YzllYWVhZmY3YWM5ZmFkNTAyMTVlMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKwAo77GZHhxVWDg4Oxd8wQUyheaMyU6sJBvtVG6ELzQ/VMF
yQgtr+941LLldyku8qy2BPGqz99nDlEC/Tn2yEEuWoBP9XpOzopZm1Z8vDPAuWiT
LPGMdhq10VAJLVvWYSq+c2a9R6cfziV0sSD200I3iUOKJxSV4u+u6stjgZhUC2Ff
gfCOnKxSaeCqkCbMG8rswujxbzNQ7RDLkjLbsAqJrW77SHYQOh6Yz41Z2u4Z9f7l
SsXZv+a2PPaw1HoIozFVlTq3QdiPA/C10fyfgDrHJ62G0ZIVrBHhP1r5IH72fdOn
ulRbvBkI6Hz1mURyB4MG96i0ecd894s8DrBe0/UCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBR69uhDp5DEWNfJ6ur/esn61QIV4zAfBgNVHSMEGDAWgBQyUI+3gcptvYIh
8sL5VKOnRGsrQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01sQ1B0NEhLYmIyQ0lmTEMtVlNqcDBSckswSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjIvNmMyMDNkLTYyMjEtNDYwYS1hZjQ5LWMxMjIxODc2NTE1NC8x
L2V2Ym9RNmVReEZqWHllcnFfM3JKLXRVQ0ZlTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjIv
NmMyMDNkLTYyMjEtNDYwYS1hZjQ5LWMxMjIxODc2NTE1NC8xL01sQ1B0NEhLYmIy
Q0lmTEMtVlNqcDBSckswSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAIwEgMHACoJsoC+7wMHACoJsoDMzzANBgkq
hkiG9w0BAQsFAAOCAQEACd2QEYiU1gzA6DInlbIYSKMTf/winRRHVTol3k/J0R6F
yW0qRqTZhwcrBFNAkiY25Ec+vNV0yozno9I90x/rDWZLmZiJwLjO0OSMLni6/JLJ
z/39M/o9vi9p2YKAxp3FYPnra6FvuBmyZWcyFlKy8aBwA2IWBpNOm4+RLtTT5CAh
efKh7+HSm18uuHvpSQXnxh9N4PDaRk3UHkblsQpmdXw0zaJY8rIeSZRSfL+L8unl
nx2cFPp//aU+4Jeurb+boM+aexCB4eZVeWN8dcYp4OZQnZ6dEJ8fxnh6yIrjl/P7
0vDTGrieiw1lGnbTPVF/9EeoqOUmU1JYj4qQO83e5g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:28 2023 by rpki-client on console-fra.rpki-client.org