Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/7gBimo5EpdOrsgQ0PBrytd7e7vU.roa
File: 7gBimo5EpdOrsgQ0PBrytd7e7vU.roa (raw, json)
Hash identifier: m88MrDfPLXoxb0UK2tD5wUfnd8FmDaRB99gblVIwjq8=
Subject key identifier: EE:00:62:9A:8E:44:A5:D3:AB:B2:04:34:3C:1A:F2:B5:DE:DE:EE:F5
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 03F12001
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/7gBimo5EpdOrsgQ0PBrytd7e7vU.roa
Signing time: Sat 01 Jan 2022 06:00:46 +0000
ROA not before: Sat 01 Jan 2022 06:00:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207649
IP address blocks: 2a07:22c1:c002::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66134017 (0x3f12001)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Jan 1 06:00:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee00629a8e44a5d3abb204343c1af2b5dedeeef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5e:e1:81:5b:b8:ce:a3:d4:5b:a2:67:c2:da:
da:85:44:5b:b2:d9:0d:9d:1a:56:a4:f0:e3:8f:e8:
16:8b:5e:e3:4b:bd:bb:51:81:53:18:89:fb:5e:e1:
aa:ed:fc:57:cc:04:12:30:e6:5b:8e:c1:a3:f2:95:
86:5f:ea:61:05:4f:72:2c:1d:00:b1:99:26:11:2b:
c5:8f:4a:c8:2f:ec:98:48:ee:fc:ee:68:99:78:90:
13:9c:2a:ab:a4:9e:04:e7:15:7e:38:14:e3:8b:4f:
a6:de:f8:68:c8:02:d8:6b:d1:61:b5:b6:d4:91:8e:
1f:c1:4b:cc:c7:71:ea:12:16:55:74:dc:ce:b0:cc:
25:a9:c9:25:cb:8d:de:b5:75:a2:36:47:9e:b9:ee:
4f:b7:7f:7d:c1:51:57:16:2e:b0:ab:6c:9e:b0:cc:
eb:fa:4c:32:78:f7:77:8e:ae:76:13:b4:eb:d2:ef:
01:46:3b:85:3f:cf:b6:15:0e:4a:2e:a7:64:a2:fb:
9b:7e:ce:f7:3e:05:f8:82:b4:1f:38:cc:a6:fc:b5:
c1:39:5d:5c:f6:f7:28:54:49:1b:3f:18:d7:e3:0e:
a2:a7:50:91:fa:b7:59:f0:ee:9c:af:64:71:73:c2:
86:01:4a:7e:f8:bb:ef:9c:f8:c9:ff:78:7e:e2:fd:
8d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:00:62:9A:8E:44:A5:D3:AB:B2:04:34:3C:1A:F2:B5:DE:DE:EE:F5
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/7gBimo5EpdOrsgQ0PBrytd7e7vU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:22c1:c002::/48
Signature Algorithm: sha256WithRSAEncryption
7b:1c:58:c6:81:37:7e:c7:d4:52:93:7a:55:da:32:ba:26:e1:
5e:d4:a3:ab:76:c6:6f:e5:c5:c0:17:3f:4f:36:be:6c:f1:0f:
ac:c4:5b:b1:80:2c:f7:f6:86:83:00:19:ff:43:c3:ab:53:13:
3c:f0:a0:a7:11:1e:88:a6:cc:39:55:9a:b3:75:4d:6f:e6:2c:
1d:fd:b2:31:5b:b8:a7:4d:d1:f2:c5:2f:71:4c:19:4f:7a:dc:
12:b5:ea:09:a3:42:c1:9e:73:7d:6b:09:40:e5:59:a6:e8:91:
db:23:45:f4:26:3b:73:1c:d4:bb:be:f0:59:f8:4e:bc:b7:d2:
ae:49:cf:c4:d3:ec:d5:b3:da:0e:ca:58:31:85:3b:84:e6:f1:
aa:e2:4a:67:da:0a:73:6b:66:c9:b7:e9:f5:de:40:d4:4b:50:
14:61:3b:bd:1d:62:27:d3:68:b8:f6:70:bc:91:de:22:42:d4:
55:59:f3:b9:ec:71:f6:82:6a:a6:55:27:dc:93:10:4b:99:e6:
e0:ea:83:58:e1:a1:8b:55:f9:c0:b1:b5:1d:8e:7d:dd:1b:1d:
58:bb:d3:88:bb:c1:30:9e:16:48:37:1b:2b:9f:79:2e:f7:21:
12:76:49:62:f4:ae:7f:92:b7:c8:81:5d:19:16:91:ac:bc:2c:
00:39:f7:c3
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEA/EgATANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YmFiNmMxMWQ0MTE2MmRiMDMwNjg1OGY4M2U1ZTY1MTIxMTMyYTZiMB4XDTIyMDEw
MTA2MDA0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWUwMDYyOWE4ZTQ0
YTVkM2FiYjIwNDM0M2MxYWYyYjVkZWRlZWVmNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALVe4YFbuM6j1FuiZ8La2oVEW7LZDZ0aVqTw44/oFote40u9
u1GBUxiJ+17hqu38V8wEEjDmW47Bo/KVhl/qYQVPciwdALGZJhErxY9KyC/smEju
/O5omXiQE5wqq6SeBOcVfjgU44tPpt74aMgC2GvRYbW21JGOH8FLzMdx6hIWVXTc
zrDMJanJJcuN3rV1ojZHnrnuT7d/fcFRVxYusKtsnrDM6/pMMnj3d46udhO069Lv
AUY7hT/PthUOSi6nZKL7m37O9z4F+IK0HzjMpvy1wTldXPb3KFRJGz8Y1+MOoqdQ
kfq3WfDunK9kcXPChgFKfvi775z4yf94fuL9jVUCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTuAGKajkSl06uyBDQ8GvK13t7u9TAfBgNVHSMEGDAWgBR7q2wR1BFi2wMG
hY+D5eZRIRMqazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2U2dHNFZFFSWXRzREJvV1BnLVhtVVNFVEttcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzkvZDMzNGFkLTUyNDAtNGRhYS1hMDUwLTlmNWJmNzM2NzIwZS8x
LzdnQmltbzVFcGRPcnNnUTBQQnJ5dGQ3ZTd2VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzkv
ZDMzNGFkLTUyNDAtNGRhYS1hMDUwLTlmNWJmNzM2NzIwZS8xL2U2dHNFZFFSWXRz
REJvV1BnLVhtVVNFVEttcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoHIsHAAjANBgkqhkiG9w0BAQsF
AAOCAQEAexxYxoE3fsfUUpN6VdoyuibhXtSjq3bGb+XFwBc/Tza+bPEPrMRbsYAs
9/aGgwAZ/0PDq1MTPPCgpxEeiKbMOVWas3VNb+YsHf2yMVu4p03R8sUvcUwZT3rc
ErXqCaNCwZ5zfWsJQOVZpuiR2yNF9CY7cxzUu77wWfhOvLfSrknPxNPs1bPaDspY
MYU7hObxquJKZ9oKc2tmybfp9d5A1EtQFGE7vR1iJ9NouPZwvJHeIkLUVVnzuexx
9oJqplUn3JMQS5nm4OqDWOGhi1X5wLG1HY593RsdWLvTiLvBMJ4WSDcbK595Lvch
EnZJYvSuf5K3yIFdGRaRrLwsADn3ww==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:35 2024 by rpki-client on console-ams.rpki-client.org