Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/D4cBixjSnV2d1hd6oK96Lv-pevs.roa
File: D4cBixjSnV2d1hd6oK96Lv-pevs.roa (raw, json)
Hash identifier: lTo9djF6vQKCXqeRR3QOhz2T5HR01iOeP9z1ShyzsUo=
Subject key identifier: 0F:87:01:8B:18:D2:9D:5D:9D:D6:17:7A:A0:AF:7A:2E:FF:A9:7A:FB
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08B3DF6B
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/D4cBixjSnV2d1hd6oK96Lv-pevs.roa
Signing time: Sat 01 Jan 2022 14:01:49 +0000
ROA not before: Sat 01 Jan 2022 14:01:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211479
IP address blocks: 2a0e:8f02:f022::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146005867 (0x8b3df6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:01:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f87018b18d29d5d9dd6177aa0af7a2effa97afb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:65:86:1b:55:f3:50:2f:45:09:24:b9:7e:2d:
f1:68:8d:d6:1e:d4:c3:f4:09:21:1d:9b:76:37:f6:
9d:18:e5:a9:3a:b3:29:8c:f1:63:17:64:e7:06:e4:
4c:46:66:21:4b:df:39:89:82:e2:4a:4d:0b:e4:90:
6e:ff:e7:45:92:6d:9e:f5:02:c7:62:60:71:71:28:
03:7b:72:9c:aa:a0:3c:c7:9f:9c:21:92:59:4a:2b:
2a:9b:24:7b:02:3b:1e:9b:7a:0b:a7:56:ae:da:92:
07:13:0d:8d:c4:75:c2:10:91:90:08:98:19:83:14:
03:75:e3:45:56:da:e7:38:59:3b:11:13:94:a5:8c:
b4:1c:2f:fe:49:1e:bf:8f:f1:28:77:86:71:9d:4b:
73:71:59:1a:86:e0:1c:67:51:cf:86:59:2f:02:aa:
f8:02:9a:7e:21:ec:4e:0a:6f:48:44:e1:c5:be:0d:
69:43:3d:ab:36:6d:dd:df:7e:22:28:b9:a4:f7:5b:
58:fb:e4:88:9a:9b:d9:6d:b5:6f:be:5b:66:3d:5d:
1b:e2:20:22:21:7e:a8:0b:02:54:e6:8e:62:a2:7f:
33:89:d8:22:e4:33:10:2f:fe:21:1c:1d:0e:0e:cf:
71:d2:ca:88:22:bb:30:0f:c9:07:0a:7e:6e:67:11:
0d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:87:01:8B:18:D2:9D:5D:9D:D6:17:7A:A0:AF:7A:2E:FF:A9:7A:FB
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/D4cBixjSnV2d1hd6oK96Lv-pevs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f022::/48
Signature Algorithm: sha256WithRSAEncryption
a9:ec:65:b7:b7:e2:de:67:43:6e:08:06:e9:c0:9c:5c:55:19:
ee:4d:2a:65:9c:db:60:29:b2:6d:29:1d:9b:f4:d4:39:f9:ef:
93:56:09:f0:bd:0a:d4:c0:d8:44:8f:48:04:6a:05:36:ef:7c:
d7:9e:2a:95:57:a6:fc:40:67:ec:82:f0:a7:60:87:2d:17:14:
ad:c8:36:18:f4:ff:ba:27:2b:08:d9:e2:3f:0a:0a:e8:be:b9:
01:a8:37:c2:c2:2b:cb:77:bf:af:43:09:8f:db:a2:2d:a1:fb:
65:f2:5d:d5:3f:24:a4:1e:c2:74:0a:ef:18:51:82:75:29:79:
34:96:e1:ec:64:5e:95:70:ac:b9:26:cb:6a:c6:f7:b1:65:56:
64:b3:4c:f8:58:7c:33:12:ad:9b:ee:1e:5d:72:2c:9e:17:df:
d6:5d:e7:f1:83:ac:50:81:0c:cb:76:b7:c0:1e:77:6b:e8:bd:
bd:23:01:27:9b:61:0b:4c:0f:39:88:fc:0d:5e:a5:ae:2e:e8:
91:49:05:40:e2:72:d4:4c:65:93:50:07:58:9e:77:c5:f1:6a:
ae:c5:a9:a3:5d:67:18:5a:96:c8:87:bf:78:10:3a:20:1c:0f:
b9:ca:1e:39:ef:9d:45:27:8b:63:49:e3:de:de:52:c4:19:5e:
5d:37:4c:37
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECLPfazANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NTZlZjQ4ZWQ2MTU1ZGQ3ODQzZWVkMzYzMjQ2OWFiYWEzMTAwYmYzMB4XDTIyMDEw
MTE0MDE0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGY4NzAxOGIxOGQy
OWQ1ZDlkZDYxNzdhYTBhZjdhMmVmZmE5N2FmYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK1lhhtV81AvRQkkuX4t8WiN1h7Uw/QJIR2bdjf2nRjlqTqz
KYzxYxdk5wbkTEZmIUvfOYmC4kpNC+SQbv/nRZJtnvUCx2JgcXEoA3tynKqgPMef
nCGSWUorKpskewI7Hpt6C6dWrtqSBxMNjcR1whCRkAiYGYMUA3XjRVba5zhZOxET
lKWMtBwv/kkev4/xKHeGcZ1Lc3FZGobgHGdRz4ZZLwKq+AKafiHsTgpvSEThxb4N
aUM9qzZt3d9+Iii5pPdbWPvkiJqb2W21b75bZj1dG+IgIiF+qAsCVOaOYqJ/M4nY
IuQzEC/+IRwdDg7PcdLKiCK7MA/JBwp+bmcRDc0CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQPhwGLGNKdXZ3WF3qgr3ou/6l6+zAfBgNVHSMEGDAWgBTVbvSO1hVd14Q+
7TYyRpq6oxAL8zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFXNzBqdFlWWGRlRVB1MDJNa2FhdXFNUUNfTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjUvNThmZjU0LTM0MTAtNGU0Mi1hYWI4LWQyZDdmMmJiNjRkZi8x
L0Q0Y0JpeGpTblYyZDFoZDZvSzk2THYtcGV2cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjUv
NThmZjU0LTM0MTAtNGU0Mi1hYWI4LWQyZDdmMmJiNjRkZi8xLzFXNzBqdFlWWGRl
RVB1MDJNa2FhdXFNUUNfTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOjwLwIjANBgkqhkiG9w0BAQsF
AAOCAQEAqexlt7fi3mdDbggG6cCcXFUZ7k0qZZzbYCmybSkdm/TUOfnvk1YJ8L0K
1MDYRI9IBGoFNu98154qlVem/EBn7ILwp2CHLRcUrcg2GPT/uicrCNniPwoK6L65
Aag3wsIry3e/r0MJj9uiLaH7ZfJd1T8kpB7CdArvGFGCdSl5NJbh7GRelXCsuSbL
asb3sWVWZLNM+Fh8MxKtm+4eXXIsnhff1l3n8YOsUIEMy3a3wB53a+i9vSMBJ5th
C0wPOYj8DV6lri7okUkFQOJy1Exlk1AHWJ53xfFqrsWpo11nGFqWyIe/eBA6IBwP
ucoeOe+dRSeLY0nj3t5SxBleXTdMNw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org