Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/0sRaN9Lq7PHpcfemjUoMVT8u0q0.roa
File: 0sRaN9Lq7PHpcfemjUoMVT8u0q0.roa (raw, json)
Hash identifier: 2ifTumQScbcGafIhPEOqJt91s2K1oCuHF5Es3oYsvUc=
Subject key identifier: D2:C4:5A:37:D2:EA:EC:F1:E9:71:F7:A6:8D:4A:0C:55:3F:2E:D2:AD
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183136DC635DB5F61C3FAA21B465657744F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/0sRaN9Lq7PHpcfemjUoMVT8u0q0.roa
Signing time: Tue 06 Sep 2022 15:31:44 +0000
ROA not before: Tue 06 Sep 2022 15:31:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211405
IP address blocks: 2a0e:b107:1c10::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:13:6d:c6:35:db:5f:61:c3:fa:a2:1b:46:56:57:74:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Sep 6 15:31:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2c45a37d2eaecf1e971f7a68d4a0c553f2ed2ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:01:8f:56:4f:85:10:d2:fc:e2:ef:77:e0:2d:
1d:21:c1:f7:ca:fc:c8:f9:4e:43:40:c0:b5:c8:64:
cf:df:d8:2f:a2:28:a9:c3:3e:f4:28:eb:be:14:ff:
7b:92:9b:2d:25:76:02:f7:cc:b9:2b:34:2d:78:19:
50:3f:ac:c5:0e:d5:2d:e5:5e:78:1b:cb:ca:21:0d:
93:0a:00:86:a4:7c:6e:89:a0:f0:77:af:76:60:63:
c2:15:11:2e:7f:81:2f:aa:e7:3b:9d:3d:81:41:69:
c2:08:66:c5:2c:6a:9d:fb:7f:2a:92:e5:f6:ba:9b:
fb:cb:ec:b0:d2:83:46:81:6b:2e:ec:0c:b5:50:90:
03:01:7f:06:a2:38:bf:f6:d6:80:87:bc:b3:b6:fc:
be:dc:ee:f6:e9:93:5d:b5:5f:19:c5:7c:95:7d:38:
23:68:72:ac:7d:d5:63:a0:fb:e6:05:e7:59:4c:5f:
49:03:75:fa:4f:e5:26:2c:c0:df:d5:79:d9:3c:75:
bd:7f:44:ab:94:50:68:b8:2a:7c:61:fb:3f:f7:63:
fc:ad:65:1f:56:30:d0:e2:c8:6d:86:94:ea:08:7e:
ac:d1:5f:0f:ca:cb:1c:65:75:f7:6b:e2:7b:41:f1:
8c:e0:a7:f5:ae:5a:a6:a6:88:51:35:b1:ab:25:43:
72:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:C4:5A:37:D2:EA:EC:F1:E9:71:F7:A6:8D:4A:0C:55:3F:2E:D2:AD
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/0sRaN9Lq7PHpcfemjUoMVT8u0q0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1c10::/44
Signature Algorithm: sha256WithRSAEncryption
c6:d1:85:35:fa:e9:ed:d9:30:b2:78:b5:25:8d:47:94:fb:06:
26:c7:23:8d:86:80:24:61:13:b3:6d:a5:3d:64:27:4a:63:52:
b4:a3:ec:ca:24:7c:02:12:42:79:b9:b4:e8:de:10:73:40:5c:
00:49:52:9d:84:07:b0:ec:98:2e:e2:10:a5:56:2f:8e:97:8e:
e2:4a:8d:5f:47:b4:dc:84:59:8b:85:5c:47:19:23:61:e6:47:
c1:20:c4:96:74:10:4e:e4:1d:32:f5:13:1a:f3:6e:a5:db:b1:
62:c2:38:48:2c:e9:cd:8b:6d:a2:96:5f:3a:3a:b5:08:89:72:
8a:b1:25:c7:9a:71:fd:19:a2:5d:03:37:75:2e:34:d4:4f:bc:
f4:4f:85:06:9b:32:51:a7:e6:b5:ff:1e:62:d2:fc:c5:6c:06:
f7:e0:3d:45:dd:fa:dc:1e:1a:fd:6f:09:7d:cd:e4:45:c7:6d:
c4:4b:99:a3:94:18:82:e4:d6:29:53:7a:3d:7f:10:6d:b4:6c:
41:04:56:40:83:f2:9b:0f:a9:01:b2:0a:4a:49:47:44:1b:d3:
45:65:48:8b:20:72:91:ec:51:b0:4b:03:77:e6:97:39:77:c7:
43:4f:4e:21:08:1e:2a:73:e0:99:5c:f2:99:cd:0f:ed:c4:d2:
15:9f:0d:65
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYMTbcY1219hw/qiG0ZWV3RPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIwOTA2MTUzMTQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMmM0NWEzN2QyZWFlY2YxZTk3MWY3YTY4ZDRhMGM1NTNmMmVkMmFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlwGPVk+FENL84u934C0dIcH3yvzI
+U5DQMC1yGTP39gvoiipwz70KOu+FP97kpstJXYC98y5KzQteBlQP6zFDtUt5V54
G8vKIQ2TCgCGpHxuiaDwd692YGPCFREuf4Evquc7nT2BQWnCCGbFLGqd+38qkuX2
upv7y+yw0oNGgWsu7Ay1UJADAX8Goji/9taAh7yztvy+3O726ZNdtV8ZxXyVfTgj
aHKsfdVjoPvmBedZTF9JA3X6T+UmLMDf1XnZPHW9f0SrlFBouCp8Yfs/92P8rWUf
VjDQ4shthpTqCH6s0V8PysscZXX3a+J7QfGM4Kf1rlqmpohRNbGrJUNyiwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFNLEWjfS6uzx6XH3po1KDFU/LtKtMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvMHNSYU45THE3UEhwY2ZlbWpVb01WVDh1MHEwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6xBxwQ
MA0GCSqGSIb3DQEBCwUAA4IBAQDG0YU1+unt2TCyeLUljUeU+wYmxyONhoAkYROz
baU9ZCdKY1K0o+zKJHwCEkJ5ubTo3hBzQFwASVKdhAew7Jgu4hClVi+Ol47iSo1f
R7TchFmLhVxHGSNh5kfBIMSWdBBO5B0y9RMa826l27FiwjhILOnNi22ill86OrUI
iXKKsSXHmnH9GaJdAzd1LjTUT7z0T4UGmzJRp+a1/x5i0vzFbAb34D1F3frcHhr9
bwl9zeRFx23ES5mjlBiC5NYpU3o9fxBttGxBBFZAg/KbD6kBsgpKSUdEG9NFZUiL
IHKR7FGwSwN35pc5d8dDT04hCB4qc+CZXPKZzQ/txNIVnw1l
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:12 2023 by rpki-client on console-fra.rpki-client.org