Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/gyeMdvYdMyH1q7FXImvMgJNPt9s.roa
File: gyeMdvYdMyH1q7FXImvMgJNPt9s.roa (raw, json)
Hash identifier: rfLhxy61ECGuKmGXC1AXQsxIRJlE8bw+mCizwBhdaWQ=
Subject key identifier: 83:27:8C:76:F6:1D:33:21:F5:AB:B1:57:22:6B:CC:80:93:4F:B7:DB
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 090BF844
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/gyeMdvYdMyH1q7FXImvMgJNPt9s.roa
Signing time: Sat 01 Jan 2022 16:00:31 +0000
ROA not before: Sat 01 Jan 2022 16:00:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51992
IP address blocks: 2a0b:b86:3b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151779396 (0x90bf844)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83278c76f61d3321f5abb157226bcc80934fb7db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:58:12:6c:c1:16:83:74:1e:9a:35:45:3e:62:
ef:0a:bc:c3:86:e4:89:c9:59:c6:fd:91:39:ad:26:
7b:5e:ba:9f:73:7a:56:5c:bc:28:f9:bd:0e:82:65:
87:bd:c8:4a:2f:f9:3e:73:9c:49:a0:74:e3:c8:6f:
27:06:85:a8:cd:f5:32:e3:2b:fa:a6:ca:a1:45:46:
5a:b5:a7:b2:0d:c7:79:17:15:f7:3d:55:8d:f9:e4:
91:6d:68:a5:b8:f2:f8:cf:7a:9d:8b:54:7a:76:59:
35:69:fe:12:d4:c2:11:d3:70:41:25:c2:a9:2c:b7:
cb:ed:0d:48:26:f4:09:9d:b1:37:b9:c6:28:b5:b1:
fb:8f:c0:fa:d7:29:82:6d:a4:55:77:65:68:b2:83:
71:02:96:16:1f:81:2a:27:59:32:2f:f4:7a:44:10:
01:ab:05:00:7a:94:c0:5b:01:45:7a:cb:31:c0:61:
e2:34:9d:96:99:2e:5a:42:65:a2:68:e4:47:f1:16:
6d:a1:58:7a:ea:65:43:20:e2:55:c3:c7:aa:2c:c3:
e4:a0:19:6f:78:6a:b8:f1:3e:3a:df:dd:b9:72:a1:
57:a5:e5:c9:4a:e9:b1:37:74:6e:f1:28:a4:76:12:
2b:a9:53:3d:67:77:59:47:9f:aa:88:fd:79:a6:0d:
ea:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:27:8C:76:F6:1D:33:21:F5:AB:B1:57:22:6B:CC:80:93:4F:B7:DB
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/gyeMdvYdMyH1q7FXImvMgJNPt9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b86:3b::/48
Signature Algorithm: sha256WithRSAEncryption
59:f9:6d:c7:90:2d:ae:9e:08:b0:12:a2:78:9c:0a:9e:ec:6b:
c4:76:c4:ac:56:65:07:d7:de:a6:85:c5:c5:ff:08:ea:40:6a:
b5:31:71:17:dc:9b:b8:32:5b:c0:77:99:31:3c:b1:6c:85:ec:
7b:a1:54:03:99:b0:07:9e:53:d4:f3:24:e2:27:dd:a9:76:a3:
8a:6e:1c:77:25:fe:a8:9b:2d:11:69:a6:38:01:40:ca:b0:da:
14:47:85:80:f2:e9:98:90:57:52:f9:94:ab:45:0d:31:eb:85:
58:58:2b:d1:fe:74:e7:23:07:8f:23:bc:9b:1d:0e:1a:2b:82:
85:40:73:e7:1e:66:2c:ce:cc:99:bf:dc:20:00:00:a7:c3:3a:
0b:0e:12:91:9a:39:bc:9f:09:c1:4f:e6:20:50:18:d1:2b:8b:
03:75:0c:22:a7:d3:0e:31:80:b4:ee:ed:38:c8:c5:0c:bb:57:
bf:b6:63:ab:8f:35:fe:09:bf:72:c8:01:39:00:e0:7a:d0:01:
87:54:5f:18:09:54:ea:c0:9e:56:61:c1:29:8d:4a:69:da:ec:
b4:23:3b:b7:eb:f2:07:9b:c4:46:25:eb:44:bf:73:29:be:21:
06:91:e1:e4:3a:e1:75:c1:00:6a:39:ae:4b:b6:74:26:31:ee:
19:ce:eb:00
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECQv4RDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MWE3YjBkOGRlODI1MWQzNmQ3YzgzZmFmNmJjN2VmZWM3M2I1MDM0MB4XDTIyMDEw
MTE2MDAzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODMyNzhjNzZmNjFk
MzMyMWY1YWJiMTU3MjI2YmNjODA5MzRmYjdkYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM5YEmzBFoN0Hpo1RT5i7wq8w4bkiclZxv2ROa0me166n3N6
Vly8KPm9DoJlh73ISi/5PnOcSaB048hvJwaFqM31MuMr+qbKoUVGWrWnsg3HeRcV
9z1VjfnkkW1opbjy+M96nYtUenZZNWn+EtTCEdNwQSXCqSy3y+0NSCb0CZ2xN7nG
KLWx+4/A+tcpgm2kVXdlaLKDcQKWFh+BKidZMi/0ekQQAasFAHqUwFsBRXrLMcBh
4jSdlpkuWkJlomjkR/EWbaFYeuplQyDiVcPHqizD5KAZb3hquPE+Ot/duXKhV6Xl
yUrpsTd0bvEopHYSK6lTPWd3WUefqoj9eaYN6j8CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSDJ4x29h0zIfWrsVcia8yAk0+32zAfBgNVHSMEGDAWgBSxp7DY3oJR0218
g/r2vH7+xztQNDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NhZXcyTjZDVWROdGZJUDY5cngtX3NjN1VEUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTcvZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8x
L2d5ZU1kdllkTXlIMXE3RlhJbXZNZ0pOUHQ5cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcv
ZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8xL3NhZXcyTjZDVWRO
dGZJUDY5cngtX3NjN1VEUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoLC4YAOzANBgkqhkiG9w0BAQsF
AAOCAQEAWfltx5Atrp4IsBKieJwKnuxrxHbErFZlB9fepoXFxf8I6kBqtTFxF9yb
uDJbwHeZMTyxbIXse6FUA5mwB55T1PMk4ifdqXajim4cdyX+qJstEWmmOAFAyrDa
FEeFgPLpmJBXUvmUq0UNMeuFWFgr0f505yMHjyO8mx0OGiuChUBz5x5mLM7Mmb/c
IAAAp8M6Cw4SkZo5vJ8JwU/mIFAY0SuLA3UMIqfTDjGAtO7tOMjFDLtXv7Zjq481
/gm/csgBOQDgetABh1RfGAlU6sCeVmHBKY1KadrstCM7t+vyB5vERiXrRL9zKb4h
BpHh5DrhdcEAajmuS7Z0JjHuGc7rAA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:40 2024 by rpki-client on console-ams.rpki-client.org