Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/c33905-ecc5-44b7-8146-e91ff5fe6c26/1/pCyyY0TjIA_htuCT_MRBf7DL69o.roa
File: pCyyY0TjIA_htuCT_MRBf7DL69o.roa (raw, json)
Hash identifier: 5/N04TEMRw1E7Pg3J0RqoUHTc2lKf2qbcDzheyVVnIs=
Subject key identifier: A4:2C:B2:63:44:E3:20:0F:E1:B6:E0:93:FC:C4:41:7F:B0:CB:EB:DA
Certificate issuer: /CN=89c3c92a4e1d4fe88572bfa68c985c31e3368c82
Certificate serial: 0185627F81C1FCC03E4F7A54C9EE027D24E5
Authority key identifier: 89:C3:C9:2A:4E:1D:4F:E8:85:72:BF:A6:8C:98:5C:31:E3:36:8C:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/icPJKk4dT-iFcr-mjJhcMeM2jII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/c33905-ecc5-44b7-8146-e91ff5fe6c26/1/pCyyY0TjIA_htuCT_MRBf7DL69o.roa
Signing time: Fri 30 Dec 2022 10:06:41 +0000
ROA not before: Fri 30 Dec 2022 10:06:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199302
IP address blocks: 2001:67c:150c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:7f:81:c1:fc:c0:3e:4f:7a:54:c9:ee:02:7d:24:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89c3c92a4e1d4fe88572bfa68c985c31e3368c82
Validity
Not Before: Dec 30 10:06:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a42cb26344e3200fe1b6e093fcc4417fb0cbebda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:83:5b:56:c5:78:cf:eb:0c:5f:1c:a6:1f:00:
6f:30:5c:57:ee:99:9e:72:ba:b1:08:aa:27:af:63:
a7:28:76:ee:ed:11:b8:03:40:62:92:d4:05:9d:93:
a6:c2:17:28:71:db:36:77:af:4f:dd:f1:90:73:f9:
64:7f:16:a4:61:0b:ea:a7:de:37:75:58:16:79:2c:
b6:ed:bd:5d:ec:84:27:6b:f8:b6:d4:fc:f4:6a:00:
fb:40:54:8c:ff:e1:c4:13:e3:c3:aa:15:52:69:cd:
aa:b8:1c:01:03:7d:78:65:06:9e:b1:e4:1a:dd:ee:
8f:69:df:c5:27:2e:23:78:3f:67:6c:00:a7:25:20:
bb:71:d8:47:74:89:de:1b:24:6b:ee:d5:52:46:57:
07:a8:38:57:77:5a:dc:fa:cd:8c:5a:85:9c:47:b6:
2b:c9:2d:e0:c7:02:09:d0:41:d1:12:8f:5b:b1:23:
a3:5c:15:8e:4c:30:b8:51:18:2d:0a:1c:64:d0:d9:
e6:96:52:27:8d:e4:e7:57:c0:fb:f8:af:b4:dd:72:
3c:7a:a6:44:29:44:f4:05:aa:4f:9a:98:f0:b7:32:
1c:2f:fa:bb:d8:1c:53:a2:09:61:6e:a3:48:06:41:
91:3b:c7:73:80:19:e0:79:32:c4:78:5c:7e:3b:88:
a5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:2C:B2:63:44:E3:20:0F:E1:B6:E0:93:FC:C4:41:7F:B0:CB:EB:DA
X509v3 Authority Key Identifier:
keyid:89:C3:C9:2A:4E:1D:4F:E8:85:72:BF:A6:8C:98:5C:31:E3:36:8C:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/icPJKk4dT-iFcr-mjJhcMeM2jII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/c33905-ecc5-44b7-8146-e91ff5fe6c26/1/pCyyY0TjIA_htuCT_MRBf7DL69o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/c33905-ecc5-44b7-8146-e91ff5fe6c26/1/icPJKk4dT-iFcr-mjJhcMeM2jII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:150c::/48
Signature Algorithm: sha256WithRSAEncryption
19:c6:27:eb:be:45:da:b3:da:64:b5:26:32:65:9b:f0:96:61:
ba:7b:67:7a:96:26:d8:7d:38:7b:be:15:c4:ec:e4:c2:d7:2b:
75:15:b6:4a:71:44:80:41:81:0b:17:28:28:d6:64:5c:e5:8b:
ef:b5:50:a6:8b:2c:66:d0:58:1b:7f:76:76:fa:14:be:53:c6:
4e:27:20:bb:d3:dd:ac:7b:d4:8a:85:19:c5:c8:a5:4f:25:23:
82:e2:dd:4d:a0:bb:62:06:a7:5a:ba:42:d9:c7:93:40:7e:b1:
35:ab:03:83:25:ea:0c:39:91:b2:4d:99:45:ba:40:f2:22:f3:
ec:1a:43:32:b5:1b:8d:e9:03:79:59:ef:ef:8c:ad:c2:72:89:
8b:66:53:5e:ae:4b:37:f4:8b:ee:97:b6:89:c8:78:65:b5:ad:
59:e7:b8:47:fe:91:79:88:81:47:0e:5b:56:36:31:2f:2e:87:
5a:8a:07:e8:0a:63:89:0c:7e:eb:b5:4e:ec:86:9e:99:a5:1b:
67:ad:cb:ea:c6:41:61:46:69:5f:f6:26:2b:c6:e2:d4:2e:97:
bd:e7:e0:78:52:83:5f:be:11:2b:f9:70:a7:20:be:1c:37:21:
85:80:98:4d:14:3e:95:f1:e7:9f:1a:99:71:6b:f7:3d:36:91:
92:2a:8a:14
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVif4HB/MA+T3pUye4CfSTlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5YzNjOTJhNGUxZDRmZTg4NTcyYmZhNjhjOTg1YzMxZTMz
NjhjODIwHhcNMjIxMjMwMTAwNjQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNDJjYjI2MzQ0ZTMyMDBmZTFiNmUwOTNmY2M0NDE3ZmIwY2JlYmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgYNbVsV4z+sMXxymHwBvMFxX7pme
crqxCKonr2OnKHbu7RG4A0BiktQFnZOmwhcocds2d69P3fGQc/lkfxakYQvqp943
dVgWeSy27b1d7IQna/i21Pz0agD7QFSM/+HEE+PDqhVSac2quBwBA314ZQaeseQa
3e6Pad/FJy4jeD9nbACnJSC7cdhHdIneGyRr7tVSRlcHqDhXd1rc+s2MWoWcR7Yr
yS3gxwIJ0EHREo9bsSOjXBWOTDC4URgtChxk0NnmllInjeTnV8D7+K+03XI8eqZE
KUT0BapPmpjwtzIcL/q72BxToglhbqNIBkGRO8dzgBngeTLEeFx+O4ilKwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKQssmNE4yAP4bbgk/zEQX+wy+vaMB8GA1UdIwQY
MBaAFInDySpOHU/ohXK/poyYXDHjNoyCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWNQSktrNGRULWlGY3ItbWpKaGNNZU0yaklJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9jMzM5MDUtZWNjNS00NGI3LTgxNDYt
ZTkxZmY1ZmU2YzI2LzEvcEN5eVkwVGpJQV9odHVDVF9NUkJmN0RMNjlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS9jMzM5MDUtZWNjNS00NGI3LTgxNDYtZTkxZmY1ZmU2YzI2
LzEvaWNQSktrNGRULWlGY3ItbWpKaGNNZU0yaklJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBUM
MA0GCSqGSIb3DQEBCwUAA4IBAQAZxifrvkXas9pktSYyZZvwlmG6e2d6libYfTh7
vhXE7OTC1yt1FbZKcUSAQYELFygo1mRc5YvvtVCmiyxm0Fgbf3Z2+hS+U8ZOJyC7
092se9SKhRnFyKVPJSOC4t1NoLtiBqdaukLZx5NAfrE1qwODJeoMOZGyTZlFukDy
IvPsGkMytRuN6QN5We/vjK3CcomLZlNerks39Ivul7aJyHhlta1Z57hH/pF5iIFH
DltWNjEvLodaigfoCmOJDH7rtU7shp6ZpRtnrcvqxkFhRmlf9iYrxuLULpe95+B4
UoNfvhEr+XCnIL4cNyGFgJhNFD6V8eefGplxa/c9NpGSKooU
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:48 2023 by rpki-client on console-ams.rpki-client.org