Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1-bubYlEfv9soPpv8i_ofRYz-2cY.roa
File: 1-bubYlEfv9soPpv8i_ofRYz-2cY.roa (raw, json)
Hash identifier: lEBWcIjujDEzTdNxbdcWxnCDlzQJ8pXxDNaAM604IbI=
Subject key identifier: F9:BB:9B:62:51:1F:BF:DB:28:3E:9B:FC:8B:FA:1F:45:8C:FE:D9:C6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10B739B6
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1-bubYlEfv9soPpv8i_ofRYz-2cY.roa
Signing time: Sat 01 Jan 2022 09:05:21 +0000
ROA not before: Sat 01 Jan 2022 09:05:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210925
IP address blocks: 2a0e:b107:1182::/48 maxlen: 48
2a0e:b107:1183::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 280443318 (0x10b739b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9bb9b62511fbfdb283e9bfc8bfa1f458cfed9c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:70:54:75:fd:36:54:e9:15:8d:39:24:1b:5b:
ab:b4:e9:72:76:40:52:50:ca:60:f7:2c:58:ad:e7:
16:73:f2:50:b0:7d:2b:11:60:dd:27:94:9e:db:fe:
bd:5e:d2:bc:a2:c7:4d:12:d4:37:9d:22:bb:5b:ec:
f6:38:d1:97:7e:0c:8c:84:e7:62:98:f0:84:4b:92:
f7:27:4d:be:d6:89:58:df:ac:85:d3:cf:3a:ea:ac:
5d:41:f5:7f:f2:db:8d:29:e4:ab:31:88:0b:45:34:
b7:50:88:a5:b7:ed:3d:dd:88:ed:24:8a:b9:c5:52:
31:16:e7:b0:25:bc:4f:f1:f0:f9:b3:8c:8f:07:55:
39:0f:ac:02:6b:49:ab:28:b8:7c:96:4a:90:62:37:
01:24:67:ec:63:0e:b6:88:f3:15:87:92:fe:2c:b0:
95:b9:78:6e:d3:a7:79:78:8d:f6:22:60:4e:15:76:
80:89:b7:73:74:ee:2f:31:fb:a2:a6:01:52:64:b3:
16:b9:a3:a5:e8:6b:4f:db:89:bb:5d:30:17:fa:49:
72:ee:0e:dd:43:47:8d:24:a4:f2:3a:d0:27:10:8e:
ee:94:4c:21:38:e3:a9:c0:f2:35:ee:65:29:78:bc:
e2:06:4b:07:d0:0f:82:68:d6:37:5a:e7:a0:1e:6d:
61:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:BB:9B:62:51:1F:BF:DB:28:3E:9B:FC:8B:FA:1F:45:8C:FE:D9:C6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1-bubYlEfv9soPpv8i_ofRYz-2cY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1182::/47
Signature Algorithm: sha256WithRSAEncryption
78:7b:c2:21:1f:36:13:d1:65:67:a8:35:5b:ca:cd:a9:04:94:
12:2c:cb:d4:c7:f9:8b:31:78:a3:74:4e:ea:9e:d7:dc:9b:7e:
9e:d0:0d:bf:39:f4:e7:a8:38:7a:52:33:99:04:cd:1f:d4:7e:
48:ca:d6:c8:21:04:1f:f1:97:e8:4e:40:a1:18:e8:d6:46:0f:
af:5f:4e:05:ba:49:73:60:e6:93:08:eb:ff:a3:f2:f0:ad:f2:
90:50:39:a4:fe:2e:06:66:19:3f:81:32:8b:44:0e:f5:86:87:
b2:8e:c6:36:a6:1f:d4:4d:d8:c9:c8:10:6d:a3:96:77:e4:a3:
99:33:8b:75:a8:1a:af:c3:1c:c5:22:34:50:f7:87:f2:80:28:
59:e7:da:e9:f0:1f:20:71:3e:86:7f:13:50:64:b4:75:73:36:
95:c6:d6:b8:19:e2:9b:25:d8:34:10:db:c0:77:bf:8f:9b:bb:
af:63:ef:d3:86:ac:28:d7:cc:22:6b:c6:8d:7c:f7:b5:d1:b8:
cf:4e:20:3e:da:97:8a:41:c2:e4:ca:3b:14:e7:ce:c3:a8:db:
a2:79:ae:3e:3b:fc:b4:ef:da:bb:28:57:6b:ea:e4:21:8f:53:
e6:6d:1f:be:b5:7a:15:51:d6:ce:89:79:96:3e:ce:01:a2:5c:
c4:df:4b:a5
-----BEGIN CERTIFICATE-----
MIIE8zCCA9ugAwIBAgIEELc5tjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDEw
MTA5MDUyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjliYjliNjI1MTFm
YmZkYjI4M2U5YmZjOGJmYTFmNDU4Y2ZlZDljNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALJwVHX9NlTpFY05JBtbq7TpcnZAUlDKYPcsWK3nFnPyULB9
KxFg3SeUntv+vV7SvKLHTRLUN50iu1vs9jjRl34MjITnYpjwhEuS9ydNvtaJWN+s
hdPPOuqsXUH1f/LbjSnkqzGIC0U0t1CIpbftPd2I7SSKucVSMRbnsCW8T/Hw+bOM
jwdVOQ+sAmtJqyi4fJZKkGI3ASRn7GMOtojzFYeS/iywlbl4btOneXiN9iJgThV2
gIm3c3TuLzH7oqYBUmSzFrmjpehrT9uJu10wF/pJcu4O3UNHjSSk8jrQJxCO7pRM
ITjjqcDyNe5lKXi84gZLB9APgmjWN1rnoB5tYX0CAwEAAaOCAg0wggIJMB0GA1Ud
DgQWBBT5u5tiUR+/2yg+m/yL+h9FjP7ZxjAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
LzEtYnViWWxFZnY5c29QcHY4aV9vZlJZei0yY1kucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUx
LzQ5NTdhNC1jZTU5LTQzMTUtOTk3Ni1kYzVlYzc0OGY2YTUvMS9ZLWtXY1hxeEhN
enhIdkg3WEJMdVFaVVByWnMuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwEqDrEHEYIwDQYJKoZIhvcNAQEL
BQADggEBAHh7wiEfNhPRZWeoNVvKzakElBIsy9TH+YsxeKN0Tuqe19ybfp7QDb85
9OeoOHpSM5kEzR/UfkjK1sghBB/xl+hOQKEY6NZGD69fTgW6SXNg5pMI6/+j8vCt
8pBQOaT+LgZmGT+BMotEDvWGh7KOxjamH9RN2MnIEG2jlnfko5kzi3WoGq/DHMUi
NFD3h/KAKFnn2unwHyBxPoZ/E1BktHVzNpXG1rgZ4psl2DQQ28B3v4+bu69j79OG
rCjXzCJrxo1897XRuM9OID7al4pBwuTKOxTnzsOo26J5rj47/LTv2rsoV2vq5CGP
U+ZtH761ehVR1s6JeZY+zgGiXMTfS6U=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:54 2023 by rpki-client on console-ams.rpki-client.org