Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/vsMUzKS6Z7pM0k_Q8_L2e4HPMwU.roa
File: vsMUzKS6Z7pM0k_Q8_L2e4HPMwU.roa (raw, json)
Hash identifier: 1qSlFzKni00bDt7wd8OWrbahARigc8go6C34GFeu6pg=
Subject key identifier: BE:C3:14:CC:A4:BA:67:BA:4C:D2:4F:D0:F3:F2:F6:7B:81:CF:33:05
Certificate issuer: /CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Certificate serial: 0CEFC0A3
Authority key identifier: EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/vsMUzKS6Z7pM0k_Q8_L2e4HPMwU.roa
Signing time: Sat 01 Jan 2022 12:57:58 +0000
ROA not before: Sat 01 Jan 2022 12:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39753
IP address blocks: 2a0d:2406:400::/39 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 217039011 (0xcefc0a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Validity
Not Before: Jan 1 12:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bec314cca4ba67ba4cd24fd0f3f2f67b81cf3305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:8e:f9:7f:66:32:85:3d:1a:35:f7:0f:d5:00:
6a:79:59:6a:62:93:27:c7:23:a2:fe:82:57:8b:06:
3e:31:09:5d:93:6f:fb:a9:a7:a4:90:76:98:58:a3:
03:85:5a:f2:4c:c8:1c:3f:92:9a:03:1e:86:39:ce:
3b:af:b1:9c:5b:2c:ba:4a:06:a3:f3:b3:2d:9c:39:
55:3a:81:1a:0e:cf:6b:b5:4f:b1:50:7f:26:da:f4:
f2:80:61:87:37:e0:e5:ec:2b:60:58:15:78:17:20:
72:aa:58:67:cc:b4:15:13:73:e8:1c:1b:cd:19:8a:
d7:f9:d9:a4:da:f7:5b:e0:c3:0f:a2:56:e2:9f:59:
02:16:6c:30:32:c4:28:18:34:8f:cb:06:e7:4c:8a:
75:75:8a:a4:88:41:f2:cd:b9:6b:47:4a:8c:ef:48:
b7:c0:2b:25:ea:82:ac:9c:8b:7e:ce:58:04:f3:e4:
20:e0:73:fe:8f:ea:7a:8d:18:8b:fd:19:89:2e:12:
bf:fa:43:f5:28:bc:d4:d7:6f:41:27:b6:0b:ec:86:
6f:76:ed:29:fe:16:51:f3:25:12:c6:80:33:23:b7:
29:3b:36:b4:7c:aa:d6:95:84:7d:ca:a0:fa:6b:01:
17:d7:55:09:65:8b:59:7e:f3:99:80:7f:62:40:f0:
f2:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C3:14:CC:A4:BA:67:BA:4C:D2:4F:D0:F3:F2:F6:7B:81:CF:33:05
X509v3 Authority Key Identifier:
keyid:EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/vsMUzKS6Z7pM0k_Q8_L2e4HPMwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/7E-wYalCbk-yiF2CKGdXKhtYpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2406:400::/39
Signature Algorithm: sha256WithRSAEncryption
9e:d5:08:44:e5:1d:1e:75:3b:2a:cf:88:7c:bd:66:f7:11:1e:
09:59:4d:af:33:86:84:96:1f:69:e8:56:06:2d:3d:8d:a8:bc:
b3:58:fe:02:6b:ce:c2:47:94:ee:0f:1e:c7:d0:e9:21:e2:d9:
7f:1c:dc:dc:c6:d2:64:00:a0:42:9b:82:35:bf:65:d0:6c:b6:
5d:91:d3:a9:e3:c2:27:fa:b3:18:66:dc:3c:de:02:eb:b8:e1:
ae:5b:79:16:b8:2a:3d:84:92:26:be:58:67:a5:cc:8e:db:6e:
9b:c7:4e:ea:ca:92:23:b6:33:8b:e8:74:31:e5:24:ef:b9:fc:
31:cd:8a:af:83:81:63:70:9a:f3:fd:b4:ed:b0:f5:90:98:32:
26:bd:cc:f0:53:e2:e7:5c:be:18:8c:7c:65:fb:9f:25:bb:ee:
e6:f2:d8:86:dc:0b:9a:26:7e:a0:d2:c0:3e:48:b1:61:0f:a0:
04:4d:b6:4b:ea:c4:ac:f7:e8:6a:de:ec:19:18:50:79:c7:95:
34:96:e2:33:2a:2f:ad:3b:bd:cd:71:db:0f:b4:cc:2a:8d:b2:
02:53:49:fe:2d:fb:d5:dc:6d:ff:70:e1:d7:d5:f3:67:91:e6:
35:4e:9c:6b:c7:5e:fb:2a:39:f2:49:11:87:3c:2f:a2:af:bd:
72:b1:fc:02
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEDO/AozANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YzRmYjA2MWE5NDI2ZTRmYjI4ODVkODIyODY3NTcyYTFiNThhNGMwMB4XDTIyMDEw
MTEyNTc1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmVjMzE0Y2NhNGJh
NjdiYTRjZDI0ZmQwZjNmMmY2N2I4MWNmMzMwNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO2O+X9mMoU9GjX3D9UAanlZamKTJ8cjov6CV4sGPjEJXZNv
+6mnpJB2mFijA4Va8kzIHD+SmgMehjnOO6+xnFssukoGo/OzLZw5VTqBGg7Pa7VP
sVB/Jtr08oBhhzfg5ewrYFgVeBcgcqpYZ8y0FRNz6BwbzRmK1/nZpNr3W+DDD6JW
4p9ZAhZsMDLEKBg0j8sG50yKdXWKpIhB8s25a0dKjO9It8ArJeqCrJyLfs5YBPPk
IOBz/o/qeo0Yi/0ZiS4Sv/pD9Si81NdvQSe2C+yGb3btKf4WUfMlEsaAMyO3KTs2
tHyq1pWEfcqg+msBF9dVCWWLWX7zmYB/YkDw8gsCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBS+wxTMpLpnukzST9Dz8vZ7gc8zBTAfBgNVHSMEGDAWgBTsT7BhqUJuT7KI
XYIoZ1cqG1ikwDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzdFLXdZYWxDYmsteWlGMkNLR2RYS2h0WXBNQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjIvN2JjM2FiLWQ5YjYtNGFlNC1iY2QxLWNlNTcxNTA2OTVhOS8x
L3ZzTVV6S1M2WjdwTTBrX1E4X0wyZTRIUE13VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjIv
N2JjM2FiLWQ5YjYtNGFlNC1iY2QxLWNlNTcxNTA2OTVhOS8xLzdFLXdZYWxDYmst
eWlGMkNLR2RYS2h0WXBNQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGASoNJAYEMA0GCSqGSIb3DQEBCwUA
A4IBAQCe1QhE5R0edTsqz4h8vWb3ER4JWU2vM4aElh9p6FYGLT2NqLyzWP4Ca87C
R5TuDx7H0Okh4tl/HNzcxtJkAKBCm4I1v2XQbLZdkdOp48In+rMYZtw83gLruOGu
W3kWuCo9hJImvlhnpcyO226bx07qypIjtjOL6HQx5STvufwxzYqvg4FjcJrz/bTt
sPWQmDImvczwU+LnXL4YjHxl+58lu+7m8tiG3AuaJn6g0sA+SLFhD6AETbZL6sSs
9+hq3uwZGFB5x5U0luIzKi+tO73NcdsPtMwqjbICU0n+LfvV3G3/cOHX1fNnkeY1
Tpxrx177KjnySRGHPC+ir71ysfwC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:18 2024 by rpki-client on console-fra.rpki-client.org