Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/66MYUNpdU7-QnODmy2Pgv_v5xi0.roa
File: 66MYUNpdU7-QnODmy2Pgv_v5xi0.roa (raw, json)
Hash identifier: 6e4OdI7JCUaY1Z9f46AuU51Z5ZjzykqR1n5LxVJxHLY=
Subject key identifier: EB:A3:18:50:DA:5D:53:BF:90:9C:E0:E6:CB:63:E0:BF:FB:F9:C6:2D
Certificate issuer: /CN=3a0b05f40a6916394782302d1b5660737257a48b
Certificate serial: 075E97D7
Authority key identifier: 3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/66MYUNpdU7-QnODmy2Pgv_v5xi0.roa
Signing time: Sat 01 Jan 2022 04:57:18 +0000
ROA not before: Sat 01 Jan 2022 04:57:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213252
IP address blocks: 2a0f:6580:100::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123639767 (0x75e97d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a0b05f40a6916394782302d1b5660737257a48b
Validity
Not Before: Jan 1 04:57:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eba31850da5d53bf909ce0e6cb63e0bffbf9c62d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8e:cb:52:7f:b4:36:e4:57:e7:47:73:97:cc:
8a:fc:ac:f2:ef:62:4b:ee:1d:fd:70:39:f5:65:bc:
ae:5a:86:5c:1f:46:fd:9d:ef:95:0b:80:5f:ad:6d:
81:7c:f7:00:5f:00:06:1f:69:52:dc:70:e6:78:bf:
83:07:41:67:76:03:aa:0d:a0:7e:ea:98:51:96:71:
e8:81:b9:71:db:48:8b:b0:ec:90:bd:e1:5d:a9:e3:
61:17:1d:8d:6f:53:0f:a7:9a:8d:a7:18:85:c7:fd:
5e:78:10:1a:44:25:9e:48:29:fd:19:f0:c1:e4:84:
5a:56:ff:8c:d9:29:46:24:a0:3d:7e:e5:b5:34:7f:
5b:27:32:6a:2a:c9:1c:85:b4:d7:22:2e:be:e5:57:
b8:08:32:25:08:17:83:09:36:8a:84:44:d4:74:71:
d5:95:1d:8b:5d:9e:39:86:67:f3:7e:01:bc:10:0e:
2a:34:53:27:b4:0b:c7:4e:fd:86:54:4c:75:e5:71:
bc:66:d9:65:38:35:90:e8:95:36:e6:92:62:7c:20:
5c:6a:c1:48:f8:47:1c:d5:eb:93:1d:a4:8f:8a:5d:
0d:0d:1f:5d:79:c4:3f:64:85:e7:a4:58:5c:b7:3b:
d3:f9:71:a0:52:05:5f:30:74:60:d8:4b:0a:c0:73:
9a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:A3:18:50:DA:5D:53:BF:90:9C:E0:E6:CB:63:E0:BF:FB:F9:C6:2D
X509v3 Authority Key Identifier:
keyid:3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/66MYUNpdU7-QnODmy2Pgv_v5xi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/OgsF9AppFjlHgjAtG1Zgc3JXpIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6580:100::/48
Signature Algorithm: sha256WithRSAEncryption
a5:e3:cc:22:f0:83:82:b6:c5:99:d0:aa:b4:7f:89:ab:53:f0:
a1:53:25:af:f1:1e:84:4f:41:6b:91:0d:fa:cd:04:ad:b0:22:
8a:b8:d8:d7:05:b3:55:6d:ed:13:86:20:75:7e:7d:65:d1:9b:
51:6e:94:98:97:c0:6a:46:17:89:f0:1a:2d:d0:52:8b:8c:e6:
3e:46:a4:14:84:9c:6a:3d:13:13:11:c5:51:9e:eb:bd:56:45:
59:0f:aa:a3:ac:f2:12:5f:f0:c3:b9:d2:be:f4:4b:d0:f9:7e:
f4:d6:7c:1a:68:b3:db:4a:ac:c7:c1:2a:3e:e4:37:a2:6c:5e:
ea:00:b8:4c:e2:a1:a4:63:bb:2a:f2:eb:13:94:4d:cd:4f:27:
fa:54:c5:ea:f4:91:39:31:be:13:5f:05:b8:3a:a9:cf:85:45:
b1:4f:81:c7:15:54:be:7a:31:fa:62:9a:c5:32:e9:24:b7:8e:
9e:c9:6b:8f:db:9b:70:8c:a6:08:07:da:89:14:c2:1f:0b:90:
53:1e:ec:fb:32:ac:1a:cb:af:27:b9:69:40:19:04:8d:30:1e:
9d:25:5d:4d:22:09:50:4b:9b:78:c5:74:91:e0:f4:fc:57:26:
b6:7e:2d:b7:6b:6f:5b:17:94:5b:4b:66:43:fb:48:93:b7:da:
0a:10:a9:8b
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEB16X1zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YTBiMDVmNDBhNjkxNjM5NDc4MjMwMmQxYjU2NjA3MzcyNTdhNDhiMB4XDTIyMDEw
MTA0NTcxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWJhMzE4NTBkYTVk
NTNiZjkwOWNlMGU2Y2I2M2UwYmZmYmY5YzYyZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKaOy1J/tDbkV+dHc5fMivys8u9iS+4d/XA59WW8rlqGXB9G
/Z3vlQuAX61tgXz3AF8ABh9pUtxw5ni/gwdBZ3YDqg2gfuqYUZZx6IG5cdtIi7Ds
kL3hXanjYRcdjW9TD6eajacYhcf9XngQGkQlnkgp/RnwweSEWlb/jNkpRiSgPX7l
tTR/WycyairJHIW01yIuvuVXuAgyJQgXgwk2ioRE1HRx1ZUdi12eOYZn834BvBAO
KjRTJ7QLx079hlRMdeVxvGbZZTg1kOiVNuaSYnwgXGrBSPhHHNXrkx2kj4pdDQ0f
XXnEP2SF56RYXLc70/lxoFIFXzB0YNhLCsBzmp0CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTroxhQ2l1Tv5Cc4ObLY+C/+/nGLTAfBgNVHSMEGDAWgBQ6CwX0CmkWOUeC
MC0bVmBzclekizAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09nc0Y5QXBwRmpsSGdqQXRHMVpnYzNKWHBJcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGQvNzU4M2NiLWQzMWUtNGUwMy1iMTRiLWIyMGUyOGY1MTg4Zi8x
LzY2TVlVTnBkVTctUW5PRG15MlBndl92NXhpMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGQv
NzU4M2NiLWQzMWUtNGUwMy1iMTRiLWIyMGUyOGY1MTg4Zi8xL09nc0Y5QXBwRmps
SGdqQXRHMVpnYzNKWHBJcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoPZYABADANBgkqhkiG9w0BAQsF
AAOCAQEApePMIvCDgrbFmdCqtH+Jq1PwoVMlr/EehE9Ba5EN+s0ErbAiirjY1wWz
VW3tE4YgdX59ZdGbUW6UmJfAakYXifAaLdBSi4zmPkakFIScaj0TExHFUZ7rvVZF
WQ+qo6zyEl/ww7nSvvRL0Pl+9NZ8Gmiz20qsx8EqPuQ3omxe6gC4TOKhpGO7KvLr
E5RNzU8n+lTF6vSROTG+E18FuDqpz4VFsU+BxxVUvnox+mKaxTLpJLeOnslrj9ub
cIymCAfaiRTCHwuQUx7s+zKsGsuvJ7lpQBkEjTAenSVdTSIJUEubeMV0keD0/Fcm
tn4tt2tvWxeUW0tmQ/tIk7faChCpiw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:42 2023 by rpki-client on console-fra.rpki-client.org