Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/fhCWD_W9M0zdJVobFCQQ9kgsDA4.roa
File: fhCWD_W9M0zdJVobFCQQ9kgsDA4.roa (raw, json)
Hash identifier: lP7a4Gr6iX7QDIMnZRils+Fr410T7gJvftjt7JpXsok=
Subject key identifier: 7E:10:96:0F:F5:BD:33:4C:DD:25:5A:1B:14:24:10:F6:48:2C:0C:0E
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 01855D3F108D73241082CC13995CB0C71B72
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/fhCWD_W9M0zdJVobFCQQ9kgsDA4.roa
Signing time: Thu 29 Dec 2022 09:38:12 +0000
ROA not before: Thu 29 Dec 2022 09:38:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201480
IP address blocks: 2a10:4646:250::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5d:3f:10:8d:73:24:10:82:cc:13:99:5c:b0:c7:1b:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Dec 29 09:38:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e10960ff5bd334cdd255a1b142410f6482c0c0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:39:ca:03:7e:85:81:52:e0:29:be:05:16:4b:
78:e8:67:c1:dd:3d:bd:eb:f2:d6:66:49:e2:e7:8f:
a7:bf:ee:c4:23:17:21:ad:8b:d2:01:00:b8:a7:0a:
66:04:eb:9b:b4:b8:b1:9a:ad:47:81:d4:2a:c0:1c:
3d:24:8f:04:77:fe:62:d6:dc:66:48:23:81:14:5c:
f2:74:17:63:45:27:25:68:47:2f:ef:9e:2e:1b:f9:
5e:35:d1:36:a9:12:a0:c9:e7:e8:2a:d4:42:ef:49:
78:52:8a:b7:8f:f3:4e:7f:53:2b:35:d0:76:70:b4:
7f:b7:c8:70:5e:d1:d2:05:e7:85:f4:df:25:50:5c:
04:2f:fc:56:d7:c5:3a:4e:86:b1:a6:28:90:8e:b6:
ce:b3:7c:e6:77:49:af:a6:31:05:41:55:18:ca:88:
aa:72:0e:60:45:cb:94:e8:88:7f:9f:cc:90:c2:b2:
57:0a:32:84:a4:99:b8:13:03:ab:e1:26:b3:60:c3:
e8:bd:62:b8:86:57:3e:42:8b:2f:c6:e3:48:2d:66:
7a:41:fc:7a:9e:bc:32:96:c5:e9:bb:f1:6f:21:d9:
01:37:18:f6:fd:e1:46:d8:c7:1f:23:c0:f7:2d:b2:
ed:49:b3:5d:5f:4b:1c:b7:4c:da:7c:72:76:bd:97:
c2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:10:96:0F:F5:BD:33:4C:DD:25:5A:1B:14:24:10:F6:48:2C:0C:0E
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/fhCWD_W9M0zdJVobFCQQ9kgsDA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:250::/44
Signature Algorithm: sha256WithRSAEncryption
b9:05:30:a4:61:51:3d:4f:26:31:dd:d8:54:cd:39:7a:d2:e8:
2f:2d:b9:fd:f7:02:e0:98:39:6c:5d:11:57:d7:6a:a2:0d:64:
9c:11:8f:73:c0:ec:51:bf:4f:5a:04:ea:45:32:0a:a9:59:f4:
ec:dd:08:2d:21:5d:6f:4c:9c:16:a2:d1:3a:bc:03:79:6b:6f:
2f:29:e0:8c:e5:27:95:46:47:65:92:c7:ef:88:32:97:7a:4d:
90:a9:c4:e0:fe:6f:64:55:02:d7:02:04:86:84:70:fa:74:44:
f9:22:48:76:94:0e:a2:8a:8b:f1:3b:4b:a9:08:9a:84:91:9e:
4f:49:82:f9:40:40:45:9c:6b:2a:5f:b4:23:41:e9:df:87:d1:
09:97:81:cb:b9:19:82:1f:6e:06:a3:bb:e8:b3:6e:1e:fb:fb:
9d:7a:68:b2:ec:28:2a:43:71:71:cf:ce:a4:35:10:ca:cd:8b:
e4:5b:9f:4a:36:4c:2e:91:61:b2:3c:d7:04:06:e7:9a:7f:54:
13:79:59:ee:84:fc:51:0b:ad:d2:bc:ca:ef:6d:87:c2:14:75:
00:e7:82:b6:64:90:c8:3e:38:2a:b3:c5:2e:35:48:e3:0d:aa:
47:56:f3:40:90:85:e6:3d:d8:cb:df:55:70:98:de:2c:6c:45:
fb:45:6d:b2
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVdPxCNcyQQgswTmVywxxtyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNmQyODE3NDkxZGQyY2QwNjc4MDY4ZTM1YTllZmM2ODY2
N2RmMDIwHhcNMjIxMjI5MDkzODEyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTEwOTYwZmY1YmQzMzRjZGQyNTVhMWIxNDI0MTBmNjQ4MmMwYzBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0jnKA36FgVLgKb4FFkt46GfB3T29
6/LWZkni54+nv+7EIxchrYvSAQC4pwpmBOubtLixmq1HgdQqwBw9JI8Ed/5i1txm
SCOBFFzydBdjRSclaEcv754uG/leNdE2qRKgyefoKtRC70l4Uoq3j/NOf1MrNdB2
cLR/t8hwXtHSBeeF9N8lUFwEL/xW18U6ToaxpiiQjrbOs3zmd0mvpjEFQVUYyoiq
cg5gRcuU6Ih/n8yQwrJXCjKEpJm4EwOr4SazYMPovWK4hlc+QosvxuNILWZ6Qfx6
nrwylsXpu/FvIdkBNxj2/eFG2McfI8D3LbLtSbNdX0sct0zafHJ2vZfCXQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFH4Qlg/1vTNM3SVaGxQkEPZILAwOMB8GA1UdIwQY
MBaAFEptKBdJHdLNBngGjjWp78aGZ98CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMt
YWU5MjgzZTc5NjRlLzEvZmhDV0RfVzlNMHpkSlZvYkZDUVE5a2dzREE0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMtYWU5MjgzZTc5NjRl
LzEvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhBGRgJQ
MA0GCSqGSIb3DQEBCwUAA4IBAQC5BTCkYVE9TyYx3dhUzTl60ugvLbn99wLgmDls
XRFX12qiDWScEY9zwOxRv09aBOpFMgqpWfTs3QgtIV1vTJwWotE6vAN5a28vKeCM
5SeVRkdlksfviDKXek2QqcTg/m9kVQLXAgSGhHD6dET5Ikh2lA6iiovxO0upCJqE
kZ5PSYL5QEBFnGsqX7QjQenfh9EJl4HLuRmCH24Go7vos24e+/udemiy7CgqQ3Fx
z86kNRDKzYvkW59KNkwukWGyPNcEBueaf1QTeVnuhPxRC63SvMrvbYfCFHUA54K2
ZJDIPjgqs8UuNUjjDapHVvNAkIXmPdjL31VwmN4sbEX7RW2y
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:43 2024 by rpki-client on console-ams.rpki-client.org