Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/iNrufcKb2kL1eg7gRV3h5HZI-eo.roa
File: iNrufcKb2kL1eg7gRV3h5HZI-eo.roa (raw, json)
Hash identifier: pjvo7fZh1zEQi+cDWX9sB7qTblOAfTbqDvP75B8JkqE=
Subject key identifier: 88:DA:EE:7D:C2:9B:DA:42:F5:7A:0E:E0:45:5D:E1:E4:76:48:F9:EA
Certificate issuer: /CN=d301991fc343f358c0f2eebae55cf2da34521c7a
Certificate serial: 01837B10264571B6191CB6C1269C89BEB791
Authority key identifier: D3:01:99:1F:C3:43:F3:58:C0:F2:EE:BA:E5:5C:F2:DA:34:52:1C:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0wGZH8ND81jA8u665Vzy2jRSHHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/iNrufcKb2kL1eg7gRV3h5HZI-eo.roa
Signing time: Mon 26 Sep 2022 18:29:59 +0000
ROA not before: Mon 26 Sep 2022 18:29:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15703
IP address blocks: 2a00:a7c0:1026::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7b:10:26:45:71:b6:19:1c:b6:c1:26:9c:89:be:b7:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d301991fc343f358c0f2eebae55cf2da34521c7a
Validity
Not Before: Sep 26 18:29:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88daee7dc29bda42f57a0ee0455de1e47648f9ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:22:51:29:33:c5:54:26:f4:85:d2:76:64:3b:
69:f6:68:38:2d:7b:22:1f:15:21:9a:89:b9:62:89:
80:04:a3:7c:79:36:66:47:98:ae:4e:c7:ce:fb:54:
53:c1:36:53:8a:67:88:ed:49:86:ff:11:69:27:fd:
fe:51:b7:ef:2e:0c:7d:15:f2:51:8f:5a:15:d8:96:
68:3a:f2:1e:c6:85:c5:41:49:54:33:e3:34:6f:7b:
34:6c:85:b9:11:cd:a5:f9:6a:df:05:74:c0:b1:dd:
cc:ea:3d:0f:25:55:90:7d:87:74:3e:36:eb:f5:68:
82:24:c5:ac:da:30:5e:12:4d:e5:97:29:fa:de:67:
c2:ee:43:44:ee:0a:a1:cd:69:5b:34:1e:41:23:54:
26:e8:f5:1b:03:52:e0:f9:ea:7d:a1:a4:33:58:a7:
40:c5:65:a7:f5:bf:ad:68:7b:e9:d0:ce:f1:12:3e:
06:6f:85:79:df:1f:30:05:ac:19:ce:70:bd:4b:3c:
34:7c:56:82:3c:83:08:49:4d:26:5c:97:47:d3:5b:
55:4d:67:93:cc:8d:87:f0:50:78:15:dc:d0:d4:b1:
5d:a2:8d:03:ec:cf:66:ac:1a:26:b6:3a:14:29:1f:
3d:ac:44:55:bb:2b:5d:bd:20:b5:8a:28:98:4b:f7:
10:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:DA:EE:7D:C2:9B:DA:42:F5:7A:0E:E0:45:5D:E1:E4:76:48:F9:EA
X509v3 Authority Key Identifier:
keyid:D3:01:99:1F:C3:43:F3:58:C0:F2:EE:BA:E5:5C:F2:DA:34:52:1C:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0wGZH8ND81jA8u665Vzy2jRSHHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/iNrufcKb2kL1eg7gRV3h5HZI-eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/0wGZH8ND81jA8u665Vzy2jRSHHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:a7c0:1026::/48
Signature Algorithm: sha256WithRSAEncryption
87:c5:25:79:ca:8e:91:b7:e1:f8:f4:23:ac:82:bb:83:21:21:
7b:0c:47:58:6b:de:fe:31:14:26:37:25:f3:c8:51:ad:e5:60:
b1:3d:72:fe:a2:86:a3:0a:d3:d8:ad:5f:a6:72:66:d1:fe:a0:
eb:69:98:6b:2d:3c:76:9d:f4:cb:1a:91:ed:10:85:ad:73:94:
b2:54:96:31:13:53:56:f7:02:05:b3:75:80:1b:00:36:71:04:
db:3c:0f:d6:2e:60:6d:92:c5:c6:e7:54:30:40:80:f1:2f:19:
e7:5b:3a:62:f7:25:50:4c:50:15:3d:16:6b:0a:09:ac:11:6b:
72:ed:f2:f0:b7:1b:b1:22:85:81:5e:fa:18:a9:b7:a9:73:d2:
f3:8f:53:68:a2:99:ca:b2:85:aa:6b:c0:7b:86:6c:0e:13:e2:
85:70:f2:3f:f5:3c:b8:ba:c7:37:04:21:aa:86:7e:b7:bd:d1:
0a:e0:35:a9:64:a9:d2:65:85:67:e9:8f:0b:38:5d:ef:86:c9:
be:8c:9a:3b:01:46:d0:d4:20:f4:d1:20:a8:d7:7e:b5:2c:22:
33:77:b6:5b:17:bb:7b:26:aa:d5:74:59:5d:3a:bf:f6:c3:68:
1f:81:7f:b7:0a:fd:57:1e:c7:2f:c1:d2:eb:c5:07:ee:d5:cd:
11:c0:dd:96
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYN7ECZFcbYZHLbBJpyJvreRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzMDE5OTFmYzM0M2YzNThjMGYyZWViYWU1NWNmMmRhMzQ1
MjFjN2EwHhcNMjIwOTI2MTgyOTU5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OGRhZWU3ZGMyOWJkYTQyZjU3YTBlZTA0NTVkZTFlNDc2NDhmOWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoiJRKTPFVCb0hdJ2ZDtp9mg4LXsi
HxUhmom5YomABKN8eTZmR5iuTsfO+1RTwTZTimeI7UmG/xFpJ/3+UbfvLgx9FfJR
j1oV2JZoOvIexoXFQUlUM+M0b3s0bIW5Ec2l+WrfBXTAsd3M6j0PJVWQfYd0Pjbr
9WiCJMWs2jBeEk3llyn63mfC7kNE7gqhzWlbNB5BI1Qm6PUbA1Lg+ep9oaQzWKdA
xWWn9b+taHvp0M7xEj4Gb4V53x8wBawZznC9Szw0fFaCPIMISU0mXJdH01tVTWeT
zI2H8FB4FdzQ1LFdoo0D7M9mrBomtjoUKR89rERVuytdvSC1iiiYS/cQ7QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFIja7n3Cm9pC9XoO4EVd4eR2SPnqMB8GA1UdIwQY
MBaAFNMBmR/DQ/NYwPLuuuVc8to0Uhx6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHdHWkg4TkQ4MWpBOHU2NjVWenkyalJTSEhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9jMzZmODMtOGIzNS00ZDA1LWEzMzQt
Zjk4YzQ4MzAxNWQ3LzEvaU5ydWZjS2Iya0wxZWc3Z1JWM2g1SFpJLWVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi9jMzZmODMtOGIzNS00ZDA1LWEzMzQtZjk4YzQ4MzAxNWQ3
LzEvMHdHWkg4TkQ4MWpBOHU2NjVWenkyalJTSEhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgCnwBAm
MA0GCSqGSIb3DQEBCwUAA4IBAQCHxSV5yo6Rt+H49COsgruDISF7DEdYa97+MRQm
NyXzyFGt5WCxPXL+ooajCtPYrV+mcmbR/qDraZhrLTx2nfTLGpHtEIWtc5SyVJYx
E1NW9wIFs3WAGwA2cQTbPA/WLmBtksXG51QwQIDxLxnnWzpi9yVQTFAVPRZrCgms
EWty7fLwtxuxIoWBXvoYqbepc9Lzj1NoopnKsoWqa8B7hmwOE+KFcPI/9Ty4usc3
BCGqhn63vdEK4DWpZKnSZYVn6Y8LOF3vhsm+jJo7AUbQ1CD00SCo1361LCIzd7Zb
F7t7JqrVdFldOr/2w2gfgX+3Cv1XHscvwdLrxQfu1c0RwN2W
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:34 2023 by rpki-client on console-fra.rpki-client.org