Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/gF9thobXoAdR3GGmzGlARsYZQds.roa
File: gF9thobXoAdR3GGmzGlARsYZQds.roa (raw, json)
Hash identifier: 19oy3RfdxkKb3z0/pQu2uZMZQfGoJ4C3rJU4l3uD6hE=
Subject key identifier: 80:5F:6D:86:86:D7:A0:07:51:DC:61:A6:CC:69:40:46:C6:19:41:DB
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08CD0CCC
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/gF9thobXoAdR3GGmzGlARsYZQds.roa
Signing time: Sat 01 Jan 2022 14:02:06 +0000
ROA not before: Sat 01 Jan 2022 14:02:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213124
IP address blocks: 2a0e:8f02:f002::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147655884 (0x8cd0ccc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:02:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=805f6d8686d7a00751dc61a6cc694046c61941db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c6:c0:77:c2:77:a2:22:d8:53:03:f9:56:ab:
a9:e5:48:17:45:14:d0:71:f3:6a:fb:af:93:4c:92:
7b:0d:e2:26:22:7a:a5:38:86:91:dd:4e:49:c8:33:
00:63:82:a1:d0:0b:dc:2d:2c:f1:57:11:98:14:74:
0e:fa:04:eb:e2:27:2a:dd:99:41:94:d4:dc:51:d7:
26:eb:a4:28:2d:de:87:cf:cd:43:df:04:07:15:87:
8d:a8:c2:b9:8d:07:04:c8:73:b2:c0:74:5c:c7:42:
e2:20:89:eb:4f:0d:37:62:0b:9f:bb:62:3b:ae:40:
a2:71:ba:31:72:b5:74:b4:1f:52:0c:f9:3a:41:2b:
03:da:5c:e7:7e:a3:ec:12:c8:71:32:53:95:81:c9:
41:54:0c:ae:03:74:f2:ba:6b:c5:04:f7:84:26:87:
dd:b9:63:b8:a6:24:f7:dd:94:a5:c4:9d:66:61:7b:
84:d6:4c:09:4c:5a:65:ca:bf:0f:62:0a:2f:5b:84:
c8:91:ff:56:ee:43:c1:bb:bf:7e:2d:51:09:e5:c7:
08:4a:71:25:02:7b:31:15:95:95:f0:b9:71:60:7d:
bf:9e:b2:15:bc:cc:6f:f4:00:e6:76:2a:6c:7b:92:
26:5f:0d:0d:40:06:d8:c5:0c:6e:e2:43:18:a3:a0:
5a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:5F:6D:86:86:D7:A0:07:51:DC:61:A6:CC:69:40:46:C6:19:41:DB
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/gF9thobXoAdR3GGmzGlARsYZQds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f002::/48
Signature Algorithm: sha256WithRSAEncryption
37:ee:3a:3a:f9:06:0b:45:89:6b:f2:52:0e:fa:9a:94:41:7c:
ce:43:b0:19:5d:e1:7f:a3:e4:13:92:ca:27:d6:e9:96:fb:3e:
5c:2a:49:32:0f:c5:19:3f:a3:68:22:28:cd:5a:55:49:0c:cb:
03:e1:ac:ae:42:d0:b8:c3:d1:9f:e9:ee:78:58:7c:a5:c6:c7:
7c:bd:75:9d:2e:37:1f:4c:e2:3c:f7:45:93:ef:90:f9:d7:e2:
35:a9:06:3d:d2:01:97:8d:95:8d:51:0b:e4:93:96:1e:95:eb:
94:3f:f5:99:84:77:28:6a:3c:d9:dc:02:1c:9c:62:e5:5f:81:
b6:24:8e:e8:68:7b:51:10:b8:bd:b6:e6:c8:d3:a8:a9:45:12:
31:f5:2b:69:3f:a7:88:19:61:73:aa:05:c8:cc:9b:76:fd:2e:
bf:1b:54:72:86:dc:49:49:19:42:f9:01:af:74:24:6d:b8:d6:
0b:80:84:92:3b:7e:5d:c5:ae:0f:72:bd:0e:f6:44:37:12:4d:
54:0c:f8:ba:a1:95:81:de:59:b6:30:1c:04:20:4e:be:9e:57:
ef:c0:f0:7b:19:f1:0d:34:cd:f1:33:a2:d8:9d:3c:76:b1:03:
87:a2:5e:13:91:3e:93:b8:43:79:80:bc:e3:fd:ba:46:2d:f9:
05:16:fa:19
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECM0MzDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NTZlZjQ4ZWQ2MTU1ZGQ3ODQzZWVkMzYzMjQ2OWFiYWEzMTAwYmYzMB4XDTIyMDEw
MTE0MDIwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODA1ZjZkODY4NmQ3
YTAwNzUxZGM2MWE2Y2M2OTQwNDZjNjE5NDFkYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMPGwHfCd6Ii2FMD+VarqeVIF0UU0HHzavuvk0ySew3iJiJ6
pTiGkd1OScgzAGOCodAL3C0s8VcRmBR0DvoE6+InKt2ZQZTU3FHXJuukKC3eh8/N
Q98EBxWHjajCuY0HBMhzssB0XMdC4iCJ608NN2ILn7tiO65AonG6MXK1dLQfUgz5
OkErA9pc536j7BLIcTJTlYHJQVQMrgN08rprxQT3hCaH3bljuKYk992UpcSdZmF7
hNZMCUxaZcq/D2IKL1uEyJH/Vu5Dwbu/fi1RCeXHCEpxJQJ7MRWVlfC5cWB9v56y
FbzMb/QA5nYqbHuSJl8NDUAG2MUMbuJDGKOgWj8CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSAX22GhtegB1HcYabMaUBGxhlB2zAfBgNVHSMEGDAWgBTVbvSO1hVd14Q+
7TYyRpq6oxAL8zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFXNzBqdFlWWGRlRVB1MDJNa2FhdXFNUUNfTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjUvNThmZjU0LTM0MTAtNGU0Mi1hYWI4LWQyZDdmMmJiNjRkZi8x
L2dGOXRob2JYb0FkUjNHR216R2xBUnNZWlFkcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjUv
NThmZjU0LTM0MTAtNGU0Mi1hYWI4LWQyZDdmMmJiNjRkZi8xLzFXNzBqdFlWWGRl
RVB1MDJNa2FhdXFNUUNfTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOjwLwAjANBgkqhkiG9w0BAQsF
AAOCAQEAN+46OvkGC0WJa/JSDvqalEF8zkOwGV3hf6PkE5LKJ9bplvs+XCpJMg/F
GT+jaCIozVpVSQzLA+GsrkLQuMPRn+nueFh8pcbHfL11nS43H0ziPPdFk++Q+dfi
NakGPdIBl42VjVEL5JOWHpXrlD/1mYR3KGo82dwCHJxi5V+BtiSO6Gh7URC4vbbm
yNOoqUUSMfUraT+niBlhc6oFyMybdv0uvxtUcobcSUkZQvkBr3QkbbjWC4CEkjt+
XcWuD3K9DvZENxJNVAz4uqGVgd5ZtjAcBCBOvp5X78DwexnxDTTN8TOi2J08drED
h6JeE5E+k7hDeYC84/26Ri35BRb6GQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-fra.rpki-client.org