Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/6d854c-c513-4290-95d4-93f9aefeeb12/1/_f3QkWGlqIOXMqtAgL5e62RsVeY.roa
File: _f3QkWGlqIOXMqtAgL5e62RsVeY.roa (raw, json)
Hash identifier: ji/WbYwQ3DBlpXj2lh86kWYa0nwc9254FdCnDLfp8AY=
Subject key identifier: FD:FD:D0:91:61:A5:A8:83:97:32:AB:40:80:BE:5E:EB:64:6C:55:E6
Certificate issuer: /CN=2bc27de0816f7e0b87a733dd3199089e537f261c
Certificate serial: 018215E86CC926B14339DBF52C78AA781174
Authority key identifier: 2B:C2:7D:E0:81:6F:7E:0B:87:A7:33:DD:31:99:08:9E:53:7F:26:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8J94IFvfguHpzPdMZkInlN_Jhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/6d854c-c513-4290-95d4-93f9aefeeb12/1/_f3QkWGlqIOXMqtAgL5e62RsVeY.roa
Signing time: Tue 19 Jul 2022 10:02:09 +0000
ROA not before: Tue 19 Jul 2022 10:02:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201395
IP address blocks: 2001:678:740::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:15:e8:6c:c9:26:b1:43:39:db:f5:2c:78:aa:78:11:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bc27de0816f7e0b87a733dd3199089e537f261c
Validity
Not Before: Jul 19 10:02:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdfdd09161a5a8839732ab4080be5eeb646c55e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:1e:60:0b:40:30:86:9f:39:ce:8b:18:9d:5e:
4a:7a:f9:9b:66:a1:37:10:e4:5c:aa:ae:ab:da:72:
a6:86:fe:ab:b5:af:85:b6:04:39:6c:c8:f5:9f:6c:
90:65:6e:6a:ad:b0:ab:8c:da:e4:5b:31:31:9b:95:
f5:49:f6:26:1e:06:5e:ef:7e:e6:a7:9f:98:55:61:
03:f0:0d:c8:38:f8:f8:83:2a:a6:df:0c:bb:b9:ff:
7d:88:b9:ab:f7:4c:f9:65:0f:41:01:6e:e7:d8:64:
ec:66:77:58:9c:52:35:2a:30:b6:a2:aa:30:6d:64:
94:71:5b:be:d8:3a:57:41:56:6e:0c:d3:89:b8:46:
81:16:0c:8a:bb:03:7c:8e:4f:16:e5:22:ef:17:a6:
b3:e0:68:ee:d4:9e:38:64:a0:71:8c:69:0a:ea:7b:
93:26:de:6e:c3:53:ed:d4:41:72:eb:10:dc:e9:04:
de:03:c9:c3:68:bd:f0:0c:47:94:53:25:44:c3:fd:
bc:71:df:f6:ae:37:18:7b:9a:28:23:ad:9e:70:9e:
80:be:9f:f6:f1:f0:51:3a:42:11:37:ad:f7:d8:00:
12:f9:64:fe:f5:9e:8f:e9:e7:de:b8:a1:db:fe:16:
1f:2f:01:9a:fd:68:fb:a0:f3:60:f2:5e:47:e2:e5:
0b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:FD:D0:91:61:A5:A8:83:97:32:AB:40:80:BE:5E:EB:64:6C:55:E6
X509v3 Authority Key Identifier:
keyid:2B:C2:7D:E0:81:6F:7E:0B:87:A7:33:DD:31:99:08:9E:53:7F:26:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8J94IFvfguHpzPdMZkInlN_Jhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/6d854c-c513-4290-95d4-93f9aefeeb12/1/_f3QkWGlqIOXMqtAgL5e62RsVeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/6d854c-c513-4290-95d4-93f9aefeeb12/1/K8J94IFvfguHpzPdMZkInlN_Jhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:740::/48
Signature Algorithm: sha256WithRSAEncryption
c4:84:ee:0d:8f:14:80:31:fe:4a:af:7b:09:e4:5f:e7:7c:7a:
6d:16:37:52:38:30:7f:56:a2:f9:26:98:71:9e:0a:33:71:9b:
49:af:3a:34:9d:bf:13:e3:e5:77:de:0a:b3:88:75:66:bc:d8:
b5:6f:53:e0:0a:fe:81:d7:06:a1:03:79:fd:ae:8e:e4:08:53:
2c:21:3d:bc:2e:87:6e:5e:8c:73:98:f1:b1:6e:6b:e9:99:ea:
fb:db:60:f1:f5:11:44:f8:13:2a:dd:78:b0:f2:72:99:c7:b3:
63:93:36:d4:79:66:33:c6:3c:54:b8:ed:0b:1a:9b:90:7a:4a:
bb:2a:3f:90:e6:95:97:0c:93:62:48:f9:b9:e0:1f:40:12:2f:
68:7d:87:73:32:fb:10:f8:fa:b9:46:d2:c4:64:7a:a1:9f:93:
aa:f8:96:52:9e:71:82:22:a2:4d:18:cb:85:00:4a:4e:32:3b:
c5:5b:c7:c4:c6:11:60:b2:07:fc:5b:ca:3a:d6:74:77:3c:cf:
6b:bf:36:95:c5:20:c5:78:aa:3b:a4:2c:e1:5b:12:51:55:6f:
36:9d:bb:e9:31:e6:48:f2:7b:58:92:f3:48:0c:aa:a0:32:2c:
69:84:05:6a:d1:ac:12:e2:91:89:da:01:64:00:36:99:0b:67:
79:9e:4d:ee
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYIV6GzJJrFDOdv1LHiqeBF0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiYzI3ZGUwODE2ZjdlMGI4N2E3MzNkZDMxOTkwODllNTM3
ZjI2MWMwHhcNMjIwNzE5MTAwMjA5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZGZkZDA5MTYxYTVhODgzOTczMmFiNDA4MGJlNWVlYjY0NmM1NWU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4R5gC0Awhp85zosYnV5KevmbZqE3
EORcqq6r2nKmhv6rta+FtgQ5bMj1n2yQZW5qrbCrjNrkWzExm5X1SfYmHgZe737m
p5+YVWED8A3IOPj4gyqm3wy7uf99iLmr90z5ZQ9BAW7n2GTsZndYnFI1KjC2oqow
bWSUcVu+2DpXQVZuDNOJuEaBFgyKuwN8jk8W5SLvF6az4Gju1J44ZKBxjGkK6nuT
Jt5uw1Pt1EFy6xDc6QTeA8nDaL3wDEeUUyVEw/28cd/2rjcYe5ooI62ecJ6Avp/2
8fBROkIRN6332AAS+WT+9Z6P6efeuKHb/hYfLwGa/Wj7oPNg8l5H4uUL4wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFP390JFhpaiDlzKrQIC+XutkbFXmMB8GA1UdIwQY
MBaAFCvCfeCBb34Lh6cz3TGZCJ5TfyYcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzhKOTRJRnZmZ3VIcHpQZE1aa0lubE5fSmh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy82ZDg1NGMtYzUxMy00MjkwLTk1ZDQt
OTNmOWFlZmVlYjEyLzEvX2YzUWtXR2xxSU9YTXF0QWdMNWU2MlJzVmVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy82ZDg1NGMtYzUxMy00MjkwLTk1ZDQtOTNmOWFlZmVlYjEy
LzEvSzhKOTRJRnZmZ3VIcHpQZE1aa0lubE5fSmh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAdA
MA0GCSqGSIb3DQEBCwUAA4IBAQDEhO4NjxSAMf5Kr3sJ5F/nfHptFjdSODB/VqL5
JphxngozcZtJrzo0nb8T4+V33gqziHVmvNi1b1PgCv6B1wahA3n9ro7kCFMsIT28
LoduXoxzmPGxbmvpmer722Dx9RFE+BMq3Xiw8nKZx7NjkzbUeWYzxjxUuO0LGpuQ
ekq7Kj+Q5pWXDJNiSPm54B9AEi9ofYdzMvsQ+Pq5RtLEZHqhn5Oq+JZSnnGCIqJN
GMuFAEpOMjvFW8fExhFgsgf8W8o61nR3PM9rvzaVxSDFeKo7pCzhWxJRVW82nbvp
MeZI8ntYkvNIDKqgMixphAVq0awS4pGJ2gFkADaZC2d5nk3u
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:37 2024 by rpki-client on console-fra.rpki-client.org