Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/825cce-0643-4b0b-94b8-b7273c8e3023/1/viWuUBufAaP-EE2yW4Z38dY14oQ.roa
File: viWuUBufAaP-EE2yW4Z38dY14oQ.roa (raw, json)
Hash identifier: +Z7JV3KBg0btJUB2T/u75jf6fXjHfm1i3R3eX+R5ZIA=
Subject key identifier: BE:25:AE:50:1B:9F:01:A3:FE:10:4D:B2:5B:86:77:F1:D6:35:E2:84
Certificate issuer: /CN=9dd642fd4e35595b5fd458a43a3acac8b91395ce
Certificate serial: 0182FBCBA183CD7C16B86814F4DB06679644
Authority key identifier: 9D:D6:42:FD:4E:35:59:5B:5F:D4:58:A4:3A:3A:CA:C8:B9:13:95:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ndZC_U41WVtf1FikOjrKyLkTlc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/825cce-0643-4b0b-94b8-b7273c8e3023/1/viWuUBufAaP-EE2yW4Z38dY14oQ.roa
Signing time: Fri 02 Sep 2022 01:23:22 +0000
ROA not before: Fri 02 Sep 2022 01:23:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203496
IP address blocks: 2001:67c:1948::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fb:cb:a1:83:cd:7c:16:b8:68:14:f4:db:06:67:96:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dd642fd4e35595b5fd458a43a3acac8b91395ce
Validity
Not Before: Sep 2 01:23:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be25ae501b9f01a3fe104db25b8677f1d635e284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:14:70:ef:c8:ab:b6:7a:60:dc:99:d8:c5:b0:
0e:34:03:52:fb:bb:d6:50:cf:2b:62:a9:58:68:4a:
34:f2:35:9b:dc:3e:c8:2f:a2:cb:1c:21:4d:ef:99:
74:be:3e:57:22:5e:7c:71:0f:db:3f:9d:41:ec:38:
12:6f:14:2a:6a:ee:04:16:37:8d:34:ee:e9:ef:71:
0a:7d:95:a9:e9:03:92:5d:db:af:41:22:7b:64:a5:
b7:cb:0b:c8:04:67:22:71:f9:40:1e:e2:ea:dc:28:
9c:0e:5c:0d:63:21:a0:bd:c4:e8:35:b7:76:32:13:
39:4e:be:7c:40:03:01:41:ea:02:b1:1f:1b:d2:dc:
ad:4a:4b:c5:c9:f7:a9:a3:35:30:82:07:c8:56:09:
47:4a:41:99:14:1a:b6:73:73:38:e8:e0:b9:22:e6:
50:22:84:53:41:7b:af:f2:0e:2a:6e:ca:59:dd:0d:
46:cb:96:cd:4e:e6:d9:dc:ab:ab:c6:c2:67:91:8a:
c5:47:5d:e0:7b:57:ac:21:28:ff:1b:96:f3:ab:81:
6c:7b:29:3d:04:83:59:02:7a:cd:62:b5:2d:57:b8:
f5:b5:40:a0:c1:6a:83:23:95:eb:af:a5:53:86:37:
1f:60:8e:2d:70:e1:41:63:6e:f8:a7:08:9e:2f:0e:
c5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:25:AE:50:1B:9F:01:A3:FE:10:4D:B2:5B:86:77:F1:D6:35:E2:84
X509v3 Authority Key Identifier:
keyid:9D:D6:42:FD:4E:35:59:5B:5F:D4:58:A4:3A:3A:CA:C8:B9:13:95:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ndZC_U41WVtf1FikOjrKyLkTlc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/825cce-0643-4b0b-94b8-b7273c8e3023/1/viWuUBufAaP-EE2yW4Z38dY14oQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/825cce-0643-4b0b-94b8-b7273c8e3023/1/ndZC_U41WVtf1FikOjrKyLkTlc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1948::/48
Signature Algorithm: sha256WithRSAEncryption
23:c4:2f:97:67:23:91:79:e2:84:1d:cc:9c:4c:32:ed:8e:83:
61:09:a9:c9:a8:7c:af:c2:d7:65:0f:bf:dd:60:08:64:a8:d5:
2d:e9:d4:43:3e:28:00:24:27:77:1c:49:31:62:80:87:54:5e:
ed:f9:00:f9:d2:2f:80:88:52:db:a5:1c:eb:d8:67:eb:7f:34:
ee:d6:b2:36:f2:1b:0b:ba:95:4e:fd:1d:90:fe:8c:42:b4:4a:
54:da:a4:30:15:47:19:db:ce:2b:77:a0:a4:47:0f:de:fc:35:
5b:9a:c5:51:26:d4:5a:66:3b:30:6d:67:fc:9d:73:ac:37:7b:
55:58:0d:56:da:cd:56:e1:e3:fe:52:20:4a:cf:a3:34:ca:17:
1e:d3:35:c3:f9:3d:79:af:83:a6:d6:e2:85:ef:08:19:8b:81:
bc:81:9c:90:6a:65:c2:14:91:01:6e:68:82:e0:a7:f2:a6:8d:
a6:7c:96:e2:68:3a:e5:8b:93:01:a7:91:99:a2:59:8e:d1:43:
54:82:71:fc:6b:66:0c:1e:e1:4c:94:3b:b9:07:ba:30:68:6b:
ee:43:00:11:0b:da:b0:db:d0:8e:70:9f:ad:5c:89:63:2c:91:
7b:12:b7:74:9d:c4:90:73:e6:a2:2b:10:94:e7:9e:bb:55:97:
47:41:03:d0
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYL7y6GDzXwWuGgU9NsGZ5ZEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkZDY0MmZkNGUzNTU5NWI1ZmQ0NThhNDNhM2FjYWM4Yjkx
Mzk1Y2UwHhcNMjIwOTAyMDEyMzIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZTI1YWU1MDFiOWYwMWEzZmUxMDRkYjI1Yjg2NzdmMWQ2MzVlMjg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoxRw78irtnpg3JnYxbAONANS+7vW
UM8rYqlYaEo08jWb3D7IL6LLHCFN75l0vj5XIl58cQ/bP51B7DgSbxQqau4EFjeN
NO7p73EKfZWp6QOSXduvQSJ7ZKW3ywvIBGcicflAHuLq3CicDlwNYyGgvcToNbd2
MhM5Tr58QAMBQeoCsR8b0tytSkvFyfepozUwggfIVglHSkGZFBq2c3M46OC5IuZQ
IoRTQXuv8g4qbspZ3Q1Gy5bNTubZ3KurxsJnkYrFR13ge1esISj/G5bzq4Fseyk9
BINZAnrNYrUtV7j1tUCgwWqDI5Xrr6VThjcfYI4tcOFBY274pwieLw7FowIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFL4lrlAbnwGj/hBNsluGd/HWNeKEMB8GA1UdIwQY
MBaAFJ3WQv1ONVlbX9RYpDo6ysi5E5XOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmRaQ19VNDFXVnRmMUZpa09qckt5TGtUbGM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS84MjVjY2UtMDY0My00YjBiLTk0Yjgt
YjcyNzNjOGUzMDIzLzEvdmlXdVVCdWZBYVAtRUUyeVc0WjM4ZFkxNG9RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS84MjVjY2UtMDY0My00YjBiLTk0YjgtYjcyNzNjOGUzMDIz
LzEvbmRaQ19VNDFXVnRmMUZpa09qckt5TGtUbGM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBlI
MA0GCSqGSIb3DQEBCwUAA4IBAQAjxC+XZyOReeKEHcycTDLtjoNhCanJqHyvwtdl
D7/dYAhkqNUt6dRDPigAJCd3HEkxYoCHVF7t+QD50i+AiFLbpRzr2GfrfzTu1rI2
8hsLupVO/R2Q/oxCtEpU2qQwFUcZ284rd6CkRw/e/DVbmsVRJtRaZjswbWf8nXOs
N3tVWA1W2s1W4eP+UiBKz6M0yhce0zXD+T15r4Om1uKF7wgZi4G8gZyQamXCFJEB
bmiC4Kfypo2mfJbiaDrli5MBp5GZolmO0UNUgnH8a2YMHuFMlDu5B7owaGvuQwAR
C9qw29COcJ+tXIljLJF7Erd0ncSQc+aiKxCU5567VZdHQQPQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:00 2024 by rpki-client on console-fra.rpki-client.org