Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/3zfy4JNnYLFfP9-XVchrORiWT7M.roa
File: 3zfy4JNnYLFfP9-XVchrORiWT7M.roa (raw, json)
Hash identifier: ntbldJPRMdU0cwnzlE8sUYowyFAnjfCgRCxy1M8qbYc=
Subject key identifier: DF:37:F2:E0:93:67:60:B1:5F:3F:DF:97:55:C8:6B:39:18:96:4F:B3
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 01835B70D4C5869DDEC2A07406D7CE53C1F2
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/3zfy4JNnYLFfP9-XVchrORiWT7M.roa
Signing time: Tue 20 Sep 2022 15:07:44 +0000
ROA not before: Tue 20 Sep 2022 15:07:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210819
IP address blocks: 2a0e:4006::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5b:70:d4:c5:86:9d:de:c2:a0:74:06:d7:ce:53:c1:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Sep 20 15:07:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df37f2e0936760b15f3fdf9755c86b3918964fb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:48:eb:ce:a6:bc:01:42:37:fc:58:ef:db:96:
f9:e4:01:41:1d:9e:87:7a:fb:f2:63:10:05:54:3c:
27:0e:47:e6:2c:60:e8:1d:5d:db:e8:96:4c:12:be:
8b:fc:3d:cc:ae:0c:c0:6f:6f:1f:60:cd:be:7a:3f:
66:e5:87:d9:8f:ee:91:3a:d7:53:93:66:b1:07:b9:
05:2a:b3:6f:04:3f:65:8a:35:ab:00:6f:42:1d:6a:
7b:0b:bc:06:16:ed:b4:46:37:39:3f:e1:10:7b:7d:
ba:30:59:04:72:e6:7f:98:df:3d:75:08:05:cd:33:
e3:bd:8a:6d:85:81:b3:91:19:6e:ab:01:91:ad:22:
25:30:f4:ab:6f:95:24:29:45:54:7a:28:18:f3:f0:
ff:16:c8:fd:1e:21:4b:9c:41:24:22:2e:07:2d:89:
d8:24:66:6e:7a:a8:be:67:e3:f5:8d:61:c3:29:a0:
2a:2e:b5:2a:c4:f1:74:ea:4c:b7:1a:f3:c0:4f:1a:
d8:a3:42:7d:9a:04:5e:4a:1a:6b:91:7d:22:9e:13:
0a:0b:8f:54:7e:83:8d:cf:e9:1a:51:b2:82:38:64:
ae:75:13:f4:fe:3a:de:0e:c2:a9:e7:46:80:58:6c:
1d:1b:95:c1:eb:f2:49:9a:30:da:a4:bd:cb:ba:f3:
e8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:37:F2:E0:93:67:60:B1:5F:3F:DF:97:55:C8:6B:39:18:96:4F:B3
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/3zfy4JNnYLFfP9-XVchrORiWT7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:4006::/32
Signature Algorithm: sha256WithRSAEncryption
49:4f:d4:30:68:34:c8:43:10:77:15:d0:46:78:32:2b:35:b1:
fa:b5:9a:cb:c9:9b:00:84:8c:e4:a3:24:b6:3d:e8:60:cc:9d:
14:ac:ee:d5:10:df:46:8e:ed:ae:0e:ff:57:1a:2d:61:70:5b:
97:03:0f:e6:f2:ab:b7:12:13:09:b0:f6:a7:3b:99:f6:ea:f1:
cf:d9:a2:ac:e9:e7:ae:08:9e:7f:f4:ae:23:8d:62:70:14:6c:
ad:f3:e1:b5:d6:6f:25:96:6e:80:4e:fc:ed:b3:f2:c8:07:db:
4a:42:19:2d:7e:56:0a:41:30:10:9e:07:40:90:3b:1e:b7:e1:
36:0f:69:92:52:25:6b:94:96:e9:91:80:c1:fa:1a:2d:d5:84:
ac:06:1e:9b:1c:75:15:46:c5:f8:4f:f7:19:de:d4:18:29:b7:
7a:83:f2:12:43:30:f7:5f:cf:f6:10:db:24:09:8f:01:0e:11:
47:97:ba:cb:6a:91:e4:c6:14:c5:6b:df:28:a0:67:32:0a:45:
af:ff:48:18:45:05:a0:61:23:f3:b9:f5:da:73:34:e6:93:95:
7f:de:6c:82:d8:a2:47:a4:b9:37:2a:9b:ce:4c:76:b0:75:f6:
0c:cd:8f:b0:56:6c:8c:b4:d3:fb:ea:cc:a4:f5:d6:9c:b9:b9:
0e:26:6f:28
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYNbcNTFhp3ewqB0BtfOU8HyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmODQxMTM1NDVkOTAwMDc2MGY2NjA2MmE0MjIxOTMzYTJl
OTU5ZDgwHhcNMjIwOTIwMTUwNzQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjM3ZjJlMDkzNjc2MGIxNWYzZmRmOTc1NWM4NmIzOTE4OTY0ZmIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi0jrzqa8AUI3/Fjv25b55AFBHZ6H
evvyYxAFVDwnDkfmLGDoHV3b6JZMEr6L/D3MrgzAb28fYM2+ej9m5YfZj+6ROtdT
k2axB7kFKrNvBD9lijWrAG9CHWp7C7wGFu20Rjc5P+EQe326MFkEcuZ/mN89dQgF
zTPjvYpthYGzkRluqwGRrSIlMPSrb5UkKUVUeigY8/D/Fsj9HiFLnEEkIi4HLYnY
JGZueqi+Z+P1jWHDKaAqLrUqxPF06ky3GvPATxrYo0J9mgReShprkX0inhMKC49U
foONz+kaUbKCOGSudRP0/jreDsKp50aAWGwdG5XB6/JJmjDapL3LuvPofQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFN838uCTZ2CxXz/fl1XIazkYlk+zMB8GA1UdIwQY
MBaAFL+EETVF2QAHYPZgYqQiGTOi6VnYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEt
NGJkNjNhZGM3MzU0LzEvM3pmeTRKTm5ZTEZmUDktWFZjaHJPUmlXVDdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEtNGJkNjNhZGM3MzU0
LzEvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg5ABjAN
BgkqhkiG9w0BAQsFAAOCAQEASU/UMGg0yEMQdxXQRngyKzWx+rWay8mbAISM5KMk
tj3oYMydFKzu1RDfRo7trg7/VxotYXBblwMP5vKrtxITCbD2pzuZ9urxz9mirOnn
rgief/SuI41icBRsrfPhtdZvJZZugE787bPyyAfbSkIZLX5WCkEwEJ4HQJA7Hrfh
Ng9pklIla5SW6ZGAwfoaLdWErAYemxx1FUbF+E/3Gd7UGCm3eoPyEkMw91/P9hDb
JAmPAQ4RR5e6y2qR5MYUxWvfKKBnMgpFr/9IGEUFoGEj87n12nM05pOVf95sgtii
R6S5Nyqbzkx2sHX2DM2PsFZsjLTT++rMpPXWnLm5DiZvKA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:23 2023 by rpki-client on console-fra.rpki-client.org