Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/eB7yZPQNamuFFDWsy_ZLVXJhj4o.roa
File: eB7yZPQNamuFFDWsy_ZLVXJhj4o.roa (raw, json)
Hash identifier: hK9g3MB1FF5KiwocIA/0pt1UL4+JXvcUzHkxz/S4n/Q=
Subject key identifier: 78:1E:F2:64:F4:0D:6A:6B:85:14:35:AC:CB:F6:4B:55:72:61:8F:8A
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 09CF915D
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/eB7yZPQNamuFFDWsy_ZLVXJhj4o.roa
Signing time: Sun 17 Apr 2022 15:51:22 +0000
ROA not before: Sun 17 Apr 2022 15:51:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211521
IP address blocks: 2a0e:8f02:f024::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164598109 (0x9cf915d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Apr 17 15:51:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=781ef264f40d6a6b851435accbf64b5572618f8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ca:5a:8f:c8:dd:54:9a:a4:70:b8:dc:da:f4:
86:32:1f:86:f6:9a:a0:2d:1e:61:16:ed:6c:c4:c8:
bd:58:49:a9:9b:0a:30:40:5e:3c:7a:90:28:3c:46:
98:23:fc:88:30:d4:fc:9d:62:ec:ad:35:91:bf:19:
bc:e4:0a:00:29:49:04:28:d0:98:0d:89:e4:bb:7f:
b7:5e:32:b8:69:7f:ee:da:d7:c1:a1:a2:ce:cf:d8:
c0:59:d5:05:e7:53:34:b1:cd:c3:44:c4:a7:a0:f5:
78:0c:a0:1d:ba:59:77:00:7a:f4:56:4e:76:6a:db:
ff:b0:c3:6a:10:ac:c1:d6:21:a0:07:71:17:6f:9a:
c5:e1:a1:3e:72:79:70:47:4c:b5:c6:94:79:e2:54:
c6:fd:bf:de:9c:b7:ef:15:3f:18:31:ff:26:9b:83:
aa:b9:69:59:33:55:3f:8d:36:52:11:95:5d:be:ad:
02:08:28:a2:ba:f3:e1:81:a7:87:a4:12:7d:65:bf:
6e:93:ea:54:ff:09:2e:1d:af:0d:f9:0c:69:46:75:
bf:12:51:87:51:dd:48:d9:d0:a6:ca:09:f9:74:31:
2e:01:92:1a:c1:af:14:d5:fc:70:3b:22:62:29:3e:
7d:be:5b:3e:e1:4f:df:3c:26:ee:81:e9:69:65:77:
38:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:1E:F2:64:F4:0D:6A:6B:85:14:35:AC:CB:F6:4B:55:72:61:8F:8A
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/eB7yZPQNamuFFDWsy_ZLVXJhj4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f024::/48
Signature Algorithm: sha256WithRSAEncryption
14:a3:ea:6c:20:8f:1b:a4:98:25:9c:66:a2:86:e7:c5:12:7a:
03:6d:01:51:84:a6:ee:75:bb:7e:b0:5b:89:97:87:ca:bc:1b:
c7:87:75:03:96:37:0c:12:39:92:ce:ab:95:72:ad:34:ee:1e:
b3:b0:04:65:b8:2a:9a:55:ee:f8:e9:ec:8f:e1:b5:f2:6d:11:
9d:73:e9:95:52:6a:2f:97:ac:c6:50:0f:53:99:d8:ef:44:e0:
54:99:f3:4e:f9:db:b8:33:ff:df:e2:61:a6:87:0b:cd:3e:c9:
7a:01:83:a6:f8:6c:71:77:98:88:bd:c9:42:ab:a8:81:f0:c8:
67:85:b2:3f:e5:69:18:79:26:48:9a:a9:ba:be:ea:06:0c:3c:
c8:d3:78:af:90:68:f1:99:21:42:6f:9f:42:b1:f6:0c:45:b2:
1a:db:f6:e3:be:68:87:9c:c7:77:36:69:31:2f:06:5e:c2:9c:
8d:30:8d:24:36:06:e3:a5:1c:b6:44:cd:8a:27:ba:20:6b:7d:
bf:1e:31:d8:bf:b3:35:ab:77:61:d6:ca:48:bd:f3:15:12:da:
a1:83:2a:c5:9e:02:5c:b1:35:f5:2b:af:4b:2d:2c:e8:34:12:
5c:c3:26:28:b8:33:99:3d:66:9f:80:6a:c6:08:59:55:15:50:
6b:e6:08:4c
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECc+RXTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NTZlZjQ4ZWQ2MTU1ZGQ3ODQzZWVkMzYzMjQ2OWFiYWEzMTAwYmYzMB4XDTIyMDQx
NzE1NTEyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzgxZWYyNjRmNDBk
NmE2Yjg1MTQzNWFjY2JmNjRiNTU3MjYxOGY4YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKTKWo/I3VSapHC43Nr0hjIfhvaaoC0eYRbtbMTIvVhJqZsK
MEBePHqQKDxGmCP8iDDU/J1i7K01kb8ZvOQKAClJBCjQmA2J5Lt/t14yuGl/7trX
waGizs/YwFnVBedTNLHNw0TEp6D1eAygHbpZdwB69FZOdmrb/7DDahCswdYhoAdx
F2+axeGhPnJ5cEdMtcaUeeJUxv2/3py37xU/GDH/JpuDqrlpWTNVP402UhGVXb6t
Aggoorrz4YGnh6QSfWW/bpPqVP8JLh2vDfkMaUZ1vxJRh1HdSNnQpsoJ+XQxLgGS
GsGvFNX8cDsiYik+fb5bPuFP3zwm7oHpaWV3OHUCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBR4HvJk9A1qa4UUNazL9ktVcmGPijAfBgNVHSMEGDAWgBTVbvSO1hVd14Q+
7TYyRpq6oxAL8zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFXNzBqdFlWWGRlRVB1MDJNa2FhdXFNUUNfTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjUvNThmZjU0LTM0MTAtNGU0Mi1hYWI4LWQyZDdmMmJiNjRkZi8x
L2VCN3laUFFOYW11RkZEV3N5X1pMVlhKaGo0by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjUv
NThmZjU0LTM0MTAtNGU0Mi1hYWI4LWQyZDdmMmJiNjRkZi8xLzFXNzBqdFlWWGRl
RVB1MDJNa2FhdXFNUUNfTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOjwLwJDANBgkqhkiG9w0BAQsF
AAOCAQEAFKPqbCCPG6SYJZxmoobnxRJ6A20BUYSm7nW7frBbiZeHyrwbx4d1A5Y3
DBI5ks6rlXKtNO4es7AEZbgqmlXu+Onsj+G18m0RnXPplVJqL5esxlAPU5nY70Tg
VJnzTvnbuDP/3+JhpocLzT7JegGDpvhscXeYiL3JQquogfDIZ4WyP+VpGHkmSJqp
ur7qBgw8yNN4r5Bo8ZkhQm+fQrH2DEWyGtv2475oh5zHdzZpMS8GXsKcjTCNJDYG
46UctkTNiie6IGt9vx4x2L+zNat3YdbKSL3zFRLaoYMqxZ4CXLE19SuvSy0s6DQS
XMMmKLgzmT1mn4BqxghZVRVQa+YITA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-fra.rpki-client.org