Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3257d9-3fb8-4cdf-98aa-93e9403eb019/1/EWSqz3ef977DFu3KE55CsH6B5ZY.roa
File: EWSqz3ef977DFu3KE55CsH6B5ZY.roa (raw, json)
Hash identifier: Mdgh9ci8delkXK6FI9GV60n7zWgTnhURM4DCZyx+oL0=
Subject key identifier: 11:64:AA:CF:77:9F:F7:BE:C3:16:ED:CA:13:9E:42:B0:7E:81:E5:96
Certificate issuer: /CN=3aea4dae3e994fd9fe7be7433e42f96f67159378
Certificate serial: 038F42
Authority key identifier: 3A:EA:4D:AE:3E:99:4F:D9:FE:7B:E7:43:3E:42:F9:6F:67:15:93:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OupNrj6ZT9n-e-dDPkL5b2cVk3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3257d9-3fb8-4cdf-98aa-93e9403eb019/1/EWSqz3ef977DFu3KE55CsH6B5ZY.roa
Signing time: Thu 27 Jan 2022 15:37:01 +0000
ROA not before: Thu 27 Jan 2022 15:37:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209460
IP address blocks: 2001:67c:918::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 233282 (0x38f42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aea4dae3e994fd9fe7be7433e42f96f67159378
Validity
Not Before: Jan 27 15:37:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1164aacf779ff7bec316edca139e42b07e81e596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:93:43:1b:73:d8:d1:6d:a4:80:41:e0:fc:90:
b9:3c:75:f8:2b:5c:b1:ed:bc:eb:6b:80:05:eb:8a:
be:34:bc:3e:f5:7e:c4:f2:3a:e5:7b:9b:d5:40:96:
bd:c8:60:3f:60:65:0e:f3:67:06:35:d2:e2:cf:99:
d9:f7:78:f5:52:17:d0:9a:86:aa:5d:39:8e:cc:10:
8a:08:74:32:12:fc:92:28:6d:5a:c6:76:26:26:2e:
3c:7d:ab:56:ac:dd:88:64:b3:5d:6b:fe:5c:78:f0:
da:77:77:cc:b6:33:2d:5c:03:ac:c3:1c:1f:d7:5f:
ba:5e:63:90:bb:6e:51:75:fd:f7:aa:fd:3c:69:35:
db:fe:ce:4f:3b:24:f9:fa:a2:83:36:c5:d4:a6:52:
5c:71:39:e0:e5:87:9d:be:7c:14:9e:5b:ae:83:0d:
35:e0:d2:0a:3b:3f:f1:ef:55:4e:73:38:50:6e:95:
53:41:3c:e1:94:fa:19:35:0b:21:c4:ff:09:66:20:
e6:79:0c:00:43:91:6b:77:c2:7a:b3:f3:a7:c9:6e:
4f:d6:a6:65:4a:ac:76:fb:0c:0b:6a:9f:e1:7d:8a:
01:0d:38:2b:47:13:a4:cf:d8:3f:8a:e9:de:44:7b:
a1:14:d7:1e:9c:a9:37:7b:8e:87:b2:89:c3:52:e8:
6c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:64:AA:CF:77:9F:F7:BE:C3:16:ED:CA:13:9E:42:B0:7E:81:E5:96
X509v3 Authority Key Identifier:
keyid:3A:EA:4D:AE:3E:99:4F:D9:FE:7B:E7:43:3E:42:F9:6F:67:15:93:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OupNrj6ZT9n-e-dDPkL5b2cVk3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3257d9-3fb8-4cdf-98aa-93e9403eb019/1/EWSqz3ef977DFu3KE55CsH6B5ZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3257d9-3fb8-4cdf-98aa-93e9403eb019/1/OupNrj6ZT9n-e-dDPkL5b2cVk3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:918::/48
Signature Algorithm: sha256WithRSAEncryption
c0:58:3e:6e:ee:85:e9:35:ed:b7:a2:a7:cc:62:01:3b:88:bb:
8f:af:51:65:8b:88:44:44:52:2f:ba:08:a1:02:00:12:6b:6e:
73:99:26:a0:a4:4a:2f:43:43:43:b9:39:b9:9b:12:42:b8:74:
17:f9:1c:06:98:da:6b:2b:40:05:2f:e2:bd:80:fe:31:0c:7f:
1a:2b:96:ca:bd:c1:34:1d:da:e5:46:9d:3c:22:a4:40:92:9d:
f5:a8:0d:3f:3c:4e:76:0c:7d:75:2b:29:ee:db:01:58:3c:52:
e9:06:86:94:75:b7:f7:ed:7d:1f:9b:62:00:3d:73:b4:21:3d:
3f:a6:25:1c:29:3c:ff:b5:fa:92:ec:6f:b5:aa:ff:ee:d0:a4:
2c:a9:9a:5f:a1:ea:f0:be:04:6e:c8:e4:56:b1:24:a3:e1:69:
6e:3d:82:c9:7c:8e:22:80:19:28:2c:3c:df:07:27:c7:cf:4f:
98:ae:ae:7f:87:d6:60:2a:e8:ab:bb:6c:a3:2a:23:10:6e:be:
18:bd:c0:4b:e1:f3:d4:ad:26:7c:f9:e6:46:27:12:64:1c:0c:
a1:4a:19:f9:4a:7d:7f:0b:09:a5:35:d7:8a:d2:e8:42:c2:eb:
38:2d:61:f3:e0:cf:cb:77:52:e6:13:db:82:ff:f4:02:24:3c:
bd:20:1f:45
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIDA49CMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDNh
ZWE0ZGFlM2U5OTRmZDlmZTdiZTc0MzNlNDJmOTZmNjcxNTkzNzgwHhcNMjIwMTI3
MTUzNzAxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygxMTY0YWFjZjc3OWZm
N2JlYzMxNmVkY2ExMzllNDJiMDdlODFlNTk2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA9JNDG3PY0W2kgEHg/JC5PHX4K1yx7bzra4AF64q+NLw+9X7E
8jrle5vVQJa9yGA/YGUO82cGNdLiz5nZ93j1UhfQmoaqXTmOzBCKCHQyEvySKG1a
xnYmJi48fatWrN2IZLNda/5cePDad3fMtjMtXAOswxwf11+6XmOQu25Rdf33qv08
aTXb/s5POyT5+qKDNsXUplJccTng5YedvnwUnluugw014NIKOz/x71VOczhQbpVT
QTzhlPoZNQshxP8JZiDmeQwAQ5Frd8J6s/OnyW5P1qZlSqx2+wwLap/hfYoBDTgr
RxOkz9g/iuneRHuhFNcenKk3e46HsonDUuhsmwIDAQABo4ICDDCCAggwHQYDVR0O
BBYEFBFkqs93n/e+wxbtyhOeQrB+geWWMB8GA1UdIwQYMBaAFDrqTa4+mU/Z/nvn
Qz5C+W9nFZN4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
T3VwTnJqNlpUOW4tZS1kRFBrTDViMmNWazNnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8wYy8zMjU3ZDktM2ZiOC00Y2RmLTk4YWEtOTNlOTQwM2ViMDE5LzEv
RVdTcXozZWY5NzdERnUzS0U1NUNzSDZCNVpZLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8z
MjU3ZDktM2ZiOC00Y2RmLTk4YWEtOTNlOTQwM2ViMDE5LzEvT3VwTnJqNlpUOW4t
ZS1kRFBrTDViMmNWazNnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIG
CCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAkYMA0GCSqGSIb3DQEBCwUA
A4IBAQDAWD5u7oXpNe23oqfMYgE7iLuPr1Fli4hERFIvugihAgASa25zmSagpEov
Q0NDuTm5mxJCuHQX+RwGmNprK0AFL+K9gP4xDH8aK5bKvcE0HdrlRp08IqRAkp31
qA0/PE52DH11Kynu2wFYPFLpBoaUdbf37X0fm2IAPXO0IT0/piUcKTz/tfqS7G+1
qv/u0KQsqZpfoerwvgRuyORWsSSj4WluPYLJfI4igBkoLDzfByfHz0+Yrq5/h9Zg
Kuiru2yjKiMQbr4YvcBL4fPUrSZ8+eZGJxJkHAyhShn5Sn1/CwmlNdeK0uhCwus4
LWHz4M/Ld1LmE9uC//QCJDy9IB9F
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:27 2023 by rpki-client on console-ams.rpki-client.org