Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac9481-6fca-4240-9ed1-c277d3716bd9/1/f113RCJI_hUJ_HwmSEwrd4-kvRg.roa
File: f113RCJI_hUJ_HwmSEwrd4-kvRg.roa (raw, json)
Hash identifier: 1ii8Be2RT5Ls2sL1fVef1JmYR5A1hrWcUcEPpWOjNXc=
Subject key identifier: 7F:5D:77:44:22:48:FE:15:09:FC:7C:26:48:4C:2B:77:8F:A4:BD:18
Certificate issuer: /CN=70675f6a57797c5ca96c3fb45e531bd32783016c
Certificate serial: 0DAD3E88
Authority key identifier: 70:67:5F:6A:57:79:7C:5C:A9:6C:3F:B4:5E:53:1B:D3:27:83:01:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cGdfald5fFypbD-0XlMb0yeDAWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac9481-6fca-4240-9ed1-c277d3716bd9/1/f113RCJI_hUJ_HwmSEwrd4-kvRg.roa
Signing time: Sat 01 Jan 2022 02:52:24 +0000
ROA not before: Sat 01 Jan 2022 02:52:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198903
IP address blocks: 2001:67c:65c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229457544 (0xdad3e88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70675f6a57797c5ca96c3fb45e531bd32783016c
Validity
Not Before: Jan 1 02:52:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f5d77442248fe1509fc7c26484c2b778fa4bd18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1c:5a:9b:eb:05:c5:19:54:bf:ae:d9:ec:9c:
a6:08:db:21:d9:25:de:41:cf:88:6f:0b:16:4d:71:
cb:6b:71:2a:75:7a:93:75:ba:8c:47:9b:33:01:44:
79:a7:6b:7b:f7:1a:be:9b:28:99:20:65:18:64:50:
20:0e:03:53:3e:19:ce:04:0c:a6:c5:b3:5d:7c:59:
68:62:e1:49:9a:2c:52:88:75:88:21:c1:2a:98:60:
cb:8e:90:48:ff:47:1d:aa:7e:88:b3:a4:42:b7:de:
bd:00:86:86:48:23:08:c7:f6:b7:ad:7b:82:4c:8d:
53:a6:26:95:8a:55:d4:60:04:e3:89:3a:6e:2b:af:
a1:21:e2:0d:92:ec:3d:1c:2c:67:ae:2d:ef:1f:29:
5e:68:ba:ab:c5:8e:08:ab:d0:dd:8f:5d:cd:ad:7d:
98:11:48:f8:5f:d4:67:42:b4:53:06:ea:08:d3:00:
1e:e0:1e:5c:a6:8f:8b:13:21:c8:52:fc:5c:fa:57:
7d:49:4e:3a:0b:ff:40:b6:4d:1d:0c:06:be:57:a4:
56:5d:c3:f3:4b:42:21:cb:fb:6b:f3:3b:95:61:94:
83:e6:c3:0a:f1:4f:ec:9d:06:a4:70:26:ab:d1:c0:
f3:2e:e3:15:4e:4b:dc:8a:0c:2b:60:d1:a7:9d:b1:
04:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:5D:77:44:22:48:FE:15:09:FC:7C:26:48:4C:2B:77:8F:A4:BD:18
X509v3 Authority Key Identifier:
keyid:70:67:5F:6A:57:79:7C:5C:A9:6C:3F:B4:5E:53:1B:D3:27:83:01:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cGdfald5fFypbD-0XlMb0yeDAWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac9481-6fca-4240-9ed1-c277d3716bd9/1/f113RCJI_hUJ_HwmSEwrd4-kvRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac9481-6fca-4240-9ed1-c277d3716bd9/1/cGdfald5fFypbD-0XlMb0yeDAWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:65c::/48
Signature Algorithm: sha256WithRSAEncryption
0c:b8:b2:dc:8c:38:84:fc:ce:f6:04:23:6e:ac:9f:e8:82:da:
41:58:ad:66:12:06:73:75:cf:6a:a2:76:bf:04:65:5a:44:47:
5b:6a:8d:01:b2:cc:8d:1c:c6:dd:58:5a:cb:b0:72:92:fd:6f:
01:a1:19:f8:db:66:38:c6:cd:a8:71:12:04:2c:25:fc:d5:31:
ff:27:40:f2:93:f3:ed:ae:04:53:e3:dd:bc:84:2f:b2:e4:6a:
ee:f1:90:0d:33:ce:7f:77:af:4a:70:60:32:2d:e4:69:af:92:
7f:a2:ca:0b:c9:b0:c8:f0:00:70:39:3a:30:48:6f:9d:ef:55:
30:a4:c0:89:12:1d:e5:c5:a3:47:be:c5:3c:8b:3f:c9:54:d8:
a2:10:1b:27:ad:27:84:2e:3d:18:38:d3:49:2e:17:a5:f0:90:
10:28:10:78:af:5a:3e:94:12:3e:56:b3:c4:f7:6b:26:42:6a:
da:24:6a:76:7a:4e:d3:a0:42:e2:81:5b:65:94:81:1c:e9:5f:
13:9f:f5:73:12:0e:f1:9c:0f:28:bc:32:28:64:ab:64:ac:18:
0f:93:e6:e1:c1:f7:1b:85:a3:62:d3:f0:e9:d5:87:e1:63:75:
30:40:c2:58:d7:b9:3a:40:8d:69:c6:be:2c:a1:a7:41:bc:da:
a0:9d:2f:6a
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEDa0+iDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MDY3NWY2YTU3Nzk3YzVjYTk2YzNmYjQ1ZTUzMWJkMzI3ODMwMTZjMB4XDTIyMDEw
MTAyNTIyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2Y1ZDc3NDQyMjQ4
ZmUxNTA5ZmM3YzI2NDg0YzJiNzc4ZmE0YmQxODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKQcWpvrBcUZVL+u2eycpgjbIdkl3kHPiG8LFk1xy2txKnV6
k3W6jEebMwFEeadre/cavpsomSBlGGRQIA4DUz4ZzgQMpsWzXXxZaGLhSZosUoh1
iCHBKphgy46QSP9HHap+iLOkQrfevQCGhkgjCMf2t617gkyNU6YmlYpV1GAE44k6
biuvoSHiDZLsPRwsZ64t7x8pXmi6q8WOCKvQ3Y9dza19mBFI+F/UZ0K0UwbqCNMA
HuAeXKaPixMhyFL8XPpXfUlOOgv/QLZNHQwGvlekVl3D80tCIcv7a/M7lWGUg+bD
CvFP7J0GpHAmq9HA8y7jFU5L3IoMK2DRp52xBMcCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBR/XXdEIkj+FQn8fCZITCt3j6S9GDAfBgNVHSMEGDAWgBRwZ19qV3l8XKls
P7ReUxvTJ4MBbDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NHZGZhbGQ1ZkZ5cGJELTBYbE1iMHllREFXdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDQvYWM5NDgxLTZmY2EtNDI0MC05ZWQxLWMyNzdkMzcxNmJkOS8x
L2YxMTNSQ0pJX2hVSl9Id21TRXdyZDQta3ZSZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDQv
YWM5NDgxLTZmY2EtNDI0MC05ZWQxLWMyNzdkMzcxNmJkOS8xL2NHZGZhbGQ1ZkZ5
cGJELTBYbE1iMHllREFXdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBnwGXDANBgkqhkiG9w0BAQsF
AAOCAQEADLiy3Iw4hPzO9gQjbqyf6ILaQVitZhIGc3XPaqJ2vwRlWkRHW2qNAbLM
jRzG3Vhay7Bykv1vAaEZ+NtmOMbNqHESBCwl/NUx/ydA8pPz7a4EU+PdvIQvsuRq
7vGQDTPOf3evSnBgMi3kaa+Sf6LKC8mwyPAAcDk6MEhvne9VMKTAiRId5cWjR77F
PIs/yVTYohAbJ60nhC49GDjTSS4XpfCQECgQeK9aPpQSPlazxPdrJkJq2iRqdnpO
06BC4oFbZZSBHOlfE5/1cxIO8ZwPKLwyKGSrZKwYD5Pm4cH3G4WjYtPw6dWH4WN1
MEDCWNe5OkCNaca+LKGnQbzaoJ0vag==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:15 2023 by rpki-client on console-fra.rpki-client.org