Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/7jyFFhVYv4lfKHykspcz1qpUTdU.roa
File: 7jyFFhVYv4lfKHykspcz1qpUTdU.roa (raw, json)
Hash identifier: p1fXoqJ8VRAt1qEKsApA0x7IYMKYmU6UgJ1B+gtufng=
Subject key identifier: EE:3C:85:16:15:58:BF:89:5F:28:7C:A4:B2:97:33:D6:AA:54:4D:D5
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 018354E97A0423BDD85CA87CD6FA05A0B70A
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/7jyFFhVYv4lfKHykspcz1qpUTdU.roa
Signing time: Mon 19 Sep 2022 08:42:10 +0000
ROA not before: Mon 19 Sep 2022 08:42:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202939
IP address blocks: 2a0e:8f02:f04e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:54:e9:7a:04:23:bd:d8:5c:a8:7c:d6:fa:05:a0:b7:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Sep 19 08:42:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee3c85161558bf895f287ca4b29733d6aa544dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:69:68:81:dd:b6:4b:ee:f5:af:09:20:00:91:
52:c4:0c:78:3f:c7:5e:32:2b:f1:21:73:86:83:60:
11:40:eb:c1:78:08:90:9c:bd:e4:92:15:80:42:8a:
54:3c:52:26:bc:a8:1b:a7:bd:da:d1:4c:f7:ef:f0:
e5:cf:04:0e:c2:e8:59:18:0a:b3:a8:a4:d6:de:a6:
20:07:73:e1:54:14:f2:08:0e:8b:2e:c7:d8:a2:cb:
7d:15:03:6f:eb:06:0c:8c:a9:d4:05:0a:19:c5:62:
d1:67:b3:df:ba:3f:cb:09:82:8f:81:91:58:15:a5:
c1:bb:44:e3:e3:9b:4e:80:b2:21:6e:d5:36:a3:a1:
b8:03:04:ac:d1:54:af:64:6e:18:a5:96:44:a2:af:
97:a5:88:4e:dd:48:41:5e:79:9d:82:70:ba:53:cf:
04:c1:2a:f2:18:4a:30:07:b6:09:a9:de:e3:79:26:
da:35:56:52:79:ec:48:9f:d6:4c:8e:b2:97:8b:0a:
05:27:0a:2f:f0:89:09:a3:12:1b:dc:ce:7c:91:bd:
0f:1e:a9:85:93:19:34:78:90:8b:d0:4c:39:b2:d3:
31:5d:17:9b:3f:5f:bc:09:83:fb:35:06:80:15:b5:
66:74:55:4b:70:60:4f:26:51:92:e5:90:b7:ce:b4:
ab:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:3C:85:16:15:58:BF:89:5F:28:7C:A4:B2:97:33:D6:AA:54:4D:D5
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/7jyFFhVYv4lfKHykspcz1qpUTdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f04e::/48
Signature Algorithm: sha256WithRSAEncryption
04:3d:96:07:d6:3c:30:ad:24:ee:ef:a5:7a:65:5c:11:43:0f:
bb:62:89:95:63:81:68:fe:95:a2:7f:e0:e9:a7:11:27:6c:80:
87:93:3e:a1:ca:1d:f8:9d:10:9b:33:30:41:44:03:87:4e:7f:
42:8b:d4:da:29:a2:42:bd:20:9c:4f:31:f3:b6:ce:43:79:7d:
26:88:ae:d6:a9:4f:88:9b:9e:fc:58:6d:ee:f1:58:35:1a:f0:
8e:2b:71:6a:69:fe:79:da:9d:6b:f4:ed:72:da:58:84:44:4b:
cc:92:79:09:a1:97:38:6f:e4:0a:02:1a:0f:2f:3f:ec:73:47:
da:66:0f:75:9c:19:5d:45:3c:ad:57:09:fa:a6:d7:40:71:f8:
43:a9:82:6a:ea:2f:2b:3b:e4:38:dc:fe:f0:a1:c9:e7:b7:3e:
f6:ab:74:e6:5c:b0:3d:3e:89:b1:a2:4c:d5:4f:4c:a8:fa:7a:
bd:cd:6c:56:3e:47:83:41:c0:4b:94:ec:05:1d:fd:a2:17:95:
e4:10:8a:64:65:84:82:d1:a8:1b:66:9a:e9:bb:c3:e7:d5:31:
ed:26:d9:79:f6:a4:96:a7:b7:03:7f:e9:c2:6b:b4:65:ed:0b:
c5:66:a2:07:7b:9c:9c:2a:10:bb:7e:d3:7f:f4:3c:e3:44:ad:
f5:48:d3:15
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYNU6XoEI73YXKh81voFoLcKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NmVmNDhlZDYxNTVkZDc4NDNlZWQzNjMyNDY5YWJhYTMx
MDBiZjMwHhcNMjIwOTE5MDg0MjEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZTNjODUxNjE1NThiZjg5NWYyODdjYTRiMjk3MzNkNmFhNTQ0ZGQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2logd22S+71rwkgAJFSxAx4P8de
MivxIXOGg2ARQOvBeAiQnL3kkhWAQopUPFImvKgbp73a0Uz37/DlzwQOwuhZGAqz
qKTW3qYgB3PhVBTyCA6LLsfYost9FQNv6wYMjKnUBQoZxWLRZ7Pfuj/LCYKPgZFY
FaXBu0Tj45tOgLIhbtU2o6G4AwSs0VSvZG4YpZZEoq+XpYhO3UhBXnmdgnC6U88E
wSryGEowB7YJqd7jeSbaNVZSeexIn9ZMjrKXiwoFJwov8IkJoxIb3M58kb0PHqmF
kxk0eJCL0Ew5stMxXRebP1+8CYP7NQaAFbVmdFVLcGBPJlGS5ZC3zrSrnwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFO48hRYVWL+JXyh8pLKXM9aqVE3VMB8GA1UdIwQY
MBaAFNVu9I7WFV3XhD7tNjJGmrqjEAvzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgt
ZDJkN2YyYmI2NGRmLzEvN2p5RkZoVll2NGxmS0h5a3NwY3oxcXBVVGRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgtZDJkN2YyYmI2NGRm
LzEvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6PAvBO
MA0GCSqGSIb3DQEBCwUAA4IBAQAEPZYH1jwwrSTu76V6ZVwRQw+7YomVY4Fo/pWi
f+DppxEnbICHkz6hyh34nRCbMzBBRAOHTn9Ci9TaKaJCvSCcTzHzts5DeX0miK7W
qU+Im578WG3u8Vg1GvCOK3Fqaf552p1r9O1y2liEREvMknkJoZc4b+QKAhoPLz/s
c0faZg91nBldRTytVwn6ptdAcfhDqYJq6i8rO+Q43P7wocnntz72q3TmXLA9Pomx
okzVT0yo+nq9zWxWPkeDQcBLlOwFHf2iF5XkEIpkZYSC0agbZprpu8Pn1THtJtl5
9qSWp7cDf+nCa7Rl7QvFZqIHe5ycKhC7ftN/9DzjRK31SNMV
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org