Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/85b673-f1ad-43e2-bfe7-0cd7236b29b6/1/l233sg1f2UvslllAOCnonvDtd14.roa
File: l233sg1f2UvslllAOCnonvDtd14.roa (raw, json)
Hash identifier: UAqpky5QtsRM9m37wQ4mcOua520MeeyHlDbCCVNADVU=
Subject key identifier: 97:6D:F7:B2:0D:5F:D9:4B:EC:96:59:40:38:29:E8:9E:F0:ED:77:5E
Certificate issuer: /CN=1da97cae7de6b29e56f0259af53c95926034a502
Certificate serial: 087FBF2F
Authority key identifier: 1D:A9:7C:AE:7D:E6:B2:9E:56:F0:25:9A:F5:3C:95:92:60:34:A5:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hal8rn3msp5W8CWa9TyVkmA0pQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/85b673-f1ad-43e2-bfe7-0cd7236b29b6/1/l233sg1f2UvslllAOCnonvDtd14.roa
Signing time: Wed 30 Mar 2022 06:51:49 +0000
ROA not before: Wed 30 Mar 2022 06:51:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44394
IP address blocks: 2a03:8600:6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142589743 (0x87fbf2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1da97cae7de6b29e56f0259af53c95926034a502
Validity
Not Before: Mar 30 06:51:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=976df7b20d5fd94bec9659403829e89ef0ed775e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b5:2a:7e:16:d6:80:40:0c:5d:20:db:f4:c3:
70:ad:6b:d4:ca:1a:37:bb:d3:6f:a2:54:87:53:10:
17:ab:88:2c:ea:8d:f2:77:8c:39:67:cf:cf:2f:c1:
c7:cf:3d:01:42:ac:4d:a1:79:b5:ed:43:e7:ea:b7:
e4:c5:74:88:5d:5a:3c:e3:c2:dd:95:db:93:12:ff:
e7:6f:cf:ab:11:57:5a:5b:ce:ae:ed:fe:95:da:d2:
32:0a:9c:d1:70:a3:d4:29:0d:20:75:90:8e:c0:07:
a7:4b:4f:eb:e0:7f:0a:84:4a:c4:d1:1c:fe:12:37:
12:62:23:f0:36:8f:e6:d7:32:e9:da:a6:d0:df:01:
c4:49:cb:1a:d3:df:df:ae:2d:48:14:85:89:41:fe:
06:cc:9c:ad:ce:f1:77:04:08:67:63:71:93:93:c0:
51:a4:6b:2a:54:85:c7:2b:75:31:0f:f3:fd:4b:3c:
4e:d0:c9:ba:39:ce:ce:c5:0c:36:12:17:9d:05:c1:
55:e9:5e:91:a3:8e:77:44:0f:6a:07:a7:7c:8d:4a:
48:b4:18:e1:85:f8:e4:39:99:9c:ab:fd:b3:3c:9a:
3f:20:c0:1e:e6:e6:d3:0d:22:df:26:d8:d6:12:26:
39:49:d6:e5:5d:53:2e:b9:94:6c:cf:c5:cc:52:af:
63:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:6D:F7:B2:0D:5F:D9:4B:EC:96:59:40:38:29:E8:9E:F0:ED:77:5E
X509v3 Authority Key Identifier:
keyid:1D:A9:7C:AE:7D:E6:B2:9E:56:F0:25:9A:F5:3C:95:92:60:34:A5:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hal8rn3msp5W8CWa9TyVkmA0pQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/85b673-f1ad-43e2-bfe7-0cd7236b29b6/1/l233sg1f2UvslllAOCnonvDtd14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/85b673-f1ad-43e2-bfe7-0cd7236b29b6/1/Hal8rn3msp5W8CWa9TyVkmA0pQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:8600:6::/48
Signature Algorithm: sha256WithRSAEncryption
1e:4f:67:43:0d:4e:c0:71:d8:b7:22:78:98:90:61:2b:17:1d:
ca:36:2f:48:bd:aa:c4:82:46:fa:f9:bd:ac:c2:e4:2e:69:6c:
4b:bb:92:76:f0:13:1f:c9:7a:05:c1:92:34:d2:3f:bd:3b:6a:
ab:4c:24:19:08:66:02:fe:90:4b:07:97:03:dc:2f:e8:82:1c:
a1:79:e1:bb:df:26:a8:d6:ec:6f:2d:dd:2a:43:3e:67:87:ff:
18:22:8c:4a:f1:12:96:42:fb:ed:37:8d:a6:2a:e6:d6:5a:40:
f6:6c:90:76:e5:bc:93:b6:82:e0:3c:c8:e7:ab:13:ee:e4:d0:
6d:3d:de:86:82:4b:d6:98:eb:37:44:9d:db:97:28:ce:f8:ac:
7a:8c:5b:bd:2e:d0:fb:f8:6f:12:86:04:d5:3e:41:8c:f3:68:
80:88:50:21:9b:22:09:96:a4:d9:7d:61:af:bf:ed:7e:05:8f:
cf:8d:75:8d:f9:f1:92:fc:a5:c4:cc:f5:ed:f1:97:4b:09:d6:
35:7c:80:86:16:9c:4b:6b:76:30:10:1a:3d:e4:1d:00:4f:45:
23:b4:83:91:9d:dc:da:20:08:bf:5e:24:f3:77:73:7f:32:9e:
94:59:57:26:a6:b7:0c:bf:a1:df:b8:9b:ef:7f:6b:ec:18:da:
9d:82:ee:1e
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECH+/LzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZGE5N2NhZTdkZTZiMjllNTZmMDI1OWFmNTNjOTU5MjYwMzRhNTAyMB4XDTIyMDMz
MDA2NTE0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTc2ZGY3YjIwZDVm
ZDk0YmVjOTY1OTQwMzgyOWU4OWVmMGVkNzc1ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANO1Kn4W1oBADF0g2/TDcK1r1MoaN7vTb6JUh1MQF6uILOqN
8neMOWfPzy/Bx889AUKsTaF5te1D5+q35MV0iF1aPOPC3ZXbkxL/52/PqxFXWlvO
ru3+ldrSMgqc0XCj1CkNIHWQjsAHp0tP6+B/CoRKxNEc/hI3EmIj8DaP5tcy6dqm
0N8BxEnLGtPf364tSBSFiUH+Bsycrc7xdwQIZ2Nxk5PAUaRrKlSFxyt1MQ/z/Us8
TtDJujnOzsUMNhIXnQXBVelekaOOd0QPagenfI1KSLQY4YX45DmZnKv9szyaPyDA
Hubm0w0i3ybY1hImOUnW5V1TLrmUbM/FzFKvY6UCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSXbfeyDV/ZS+yWWUA4Keie8O13XjAfBgNVHSMEGDAWgBQdqXyufeaynlbw
JZr1PJWSYDSlAjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hhbDhybjNtc3A1VzhDV2E5VHlWa21BMHBRSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvODViNjczLWYxYWQtNDNlMi1iZmU3LTBjZDcyMzZiMjliNi8x
L2wyMzNzZzFmMlV2c2xsbEFPQ25vbnZEdGQxNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
ODViNjczLWYxYWQtNDNlMi1iZmU3LTBjZDcyMzZiMjliNi8xL0hhbDhybjNtc3A1
VzhDV2E5VHlWa21BMHBRSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoDhgAABjANBgkqhkiG9w0BAQsF
AAOCAQEAHk9nQw1OwHHYtyJ4mJBhKxcdyjYvSL2qxIJG+vm9rMLkLmlsS7uSdvAT
H8l6BcGSNNI/vTtqq0wkGQhmAv6QSweXA9wv6IIcoXnhu98mqNbsby3dKkM+Z4f/
GCKMSvESlkL77TeNpirm1lpA9myQduW8k7aC4DzI56sT7uTQbT3ehoJL1pjrN0Sd
25cozviseoxbvS7Q+/hvEoYE1T5BjPNogIhQIZsiCZak2X1hr7/tfgWPz411jfnx
kvylxMz17fGXSwnWNXyAhhacS2t2MBAaPeQdAE9FI7SDkZ3c2iAIv14k83dzfzKe
lFlXJqa3DL+h37ib739r7BjanYLuHg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:21 2023 by rpki-client on console-fra.rpki-client.org