Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1-qRWb-S904RnUBEW89p40R11cUU.roa
File: 1-qRWb-S904RnUBEW89p40R11cUU.roa (raw, json)
Hash identifier: IF22s9+NWM5e5LD4oA4bE/EBTVHeEsXl/bbgHrsrSD8=
Subject key identifier: FA:A4:56:6F:E4:BD:D3:84:67:50:11:16:F3:DA:78:D1:1D:75:71:45
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0184276A0CCEAE0498E85CE667A3280DF0AE
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1-qRWb-S904RnUBEW89p40R11cUU.roa
Signing time: Sun 30 Oct 2022 05:42:52 +0000
ROA not before: Sun 30 Oct 2022 05:42:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35661
IP address blocks: 2a0e:97c7:800::/37 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:27:6a:0c:ce:ae:04:98:e8:5c:e6:67:a3:28:0d:f0:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 30 05:42:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=faa4566fe4bdd38467501116f3da78d11d757145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:08:20:c0:18:9c:fd:8e:ee:39:d0:df:dc:50:
66:ad:f9:c0:4d:b7:cc:74:a5:1d:44:3b:09:e5:2d:
12:51:7d:c4:31:2e:59:6a:1a:25:81:9c:c0:74:ef:
59:18:ad:1a:35:c2:df:2e:e3:17:ed:e8:e7:2a:0d:
36:1b:c8:0d:b1:b5:f8:6f:f8:d7:83:d7:9d:1f:34:
7e:1b:e9:47:b7:dd:01:5a:cb:aa:bc:ee:c5:84:75:
d6:16:a6:0a:4e:45:b5:52:5f:f6:21:dc:6f:91:b1:
ef:f7:7e:5a:22:2f:f3:21:f3:d4:62:3f:10:40:cf:
1f:c5:e3:84:9a:e6:ae:da:bf:b2:e7:8c:d6:ec:5a:
ec:44:77:4d:b2:18:ff:7d:4b:96:24:48:62:d9:46:
4b:a0:1e:cc:bc:c8:de:36:32:25:14:49:3d:a6:fc:
6c:92:01:17:38:33:bd:d3:b8:bc:78:e6:0e:a7:2b:
b4:a9:f2:20:52:c6:f1:46:47:6b:f4:1f:52:9b:35:
7d:aa:9b:6c:b1:8c:30:0c:19:3b:6b:43:38:e2:79:
c0:4c:b6:98:07:b5:4f:2d:cb:ef:28:32:ba:b7:b7:
41:a0:72:f2:13:18:12:25:8b:0b:62:2a:fe:98:dc:
f7:f8:93:3c:e0:fd:0a:e9:42:6e:1f:bc:d3:75:c1:
da:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A4:56:6F:E4:BD:D3:84:67:50:11:16:F3:DA:78:D1:1D:75:71:45
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1-qRWb-S904RnUBEW89p40R11cUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c7:800::/37
Signature Algorithm: sha256WithRSAEncryption
ab:9b:8b:ac:d9:2f:00:10:f5:33:8a:ee:1b:d8:ba:50:5c:88:
d4:70:34:18:e7:d0:1e:66:b6:03:65:d4:f7:43:5a:49:eb:45:
10:94:39:59:0a:23:08:17:65:d7:57:d0:7e:1b:09:3a:a2:c1:
cc:08:c2:f1:25:1a:8f:be:c9:54:9e:8c:84:5e:ad:00:97:9b:
b3:4e:0e:73:e4:ec:51:df:16:dc:66:17:3b:b1:f3:2d:ba:5d:
aa:4c:03:b9:e5:69:49:84:ad:74:b2:75:ae:51:e9:b5:9c:b7:
78:03:93:ab:33:04:11:8b:17:69:2e:a7:b8:42:a9:46:e7:f4:
9d:9e:3b:56:51:4a:f4:24:7b:50:90:0c:12:88:0a:14:c3:d9:
1e:29:f0:81:b4:7a:75:c8:2e:4c:29:20:eb:21:9c:cd:8d:db:
44:43:9e:9a:34:98:2e:42:10:10:33:1a:99:7f:6b:ac:1c:fc:
bd:01:d6:db:fc:0d:74:24:f6:bc:43:6a:bb:c9:fa:8e:66:45:
35:e6:50:ff:a7:a8:e6:fb:92:b3:23:81:dd:83:42:5c:ae:0e:
03:dc:e0:5c:b7:d0:60:ab:cc:aa:91:5f:eb:2f:5d:4b:3b:b8:
50:4f:b8:e4:1a:31:ed:b2:32:0a:ad:07:2e:d4:0d:f8:4c:8e:
49:8a:ad:3f
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYQnagzOrgSY6FzmZ6MoDfCuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIxMDMwMDU0MjUyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYWE0NTY2ZmU0YmRkMzg0Njc1MDExMTZmM2RhNzhkMTFkNzU3MTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlQggwBic/Y7uOdDf3FBmrfnATbfM
dKUdRDsJ5S0SUX3EMS5ZaholgZzAdO9ZGK0aNcLfLuMX7ejnKg02G8gNsbX4b/jX
g9edHzR+G+lHt90BWsuqvO7FhHXWFqYKTkW1Ul/2IdxvkbHv935aIi/zIfPUYj8Q
QM8fxeOEmuau2r+y54zW7FrsRHdNshj/fUuWJEhi2UZLoB7MvMjeNjIlFEk9pvxs
kgEXODO907i8eOYOpyu0qfIgUsbxRkdr9B9SmzV9qptssYwwDBk7a0M44nnATLaY
B7VPLcvvKDK6t7dBoHLyExgSJYsLYir+mNz3+JM84P0K6UJuH7zTdcHacQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFPqkVm/kvdOEZ1ARFvPaeNEddXFFMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvMS1xUldiLVM5MDRSblVCRVc4OXA0MFIxMWNVVS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZh
NS8xL1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAyoOl8cI
MA0GCSqGSIb3DQEBCwUAA4IBAQCrm4us2S8AEPUziu4b2LpQXIjUcDQY59AeZrYD
ZdT3Q1pJ60UQlDlZCiMIF2XXV9B+Gwk6osHMCMLxJRqPvslUnoyEXq0Al5uzTg5z
5OxR3xbcZhc7sfMtul2qTAO55WlJhK10snWuUem1nLd4A5OrMwQRixdpLqe4QqlG
5/SdnjtWUUr0JHtQkAwSiAoUw9keKfCBtHp1yC5MKSDrIZzNjdtEQ56aNJguQhAQ
MxqZf2usHPy9Adbb/A10JPa8Q2q7yfqOZkU15lD/p6jm+5KzI4Hdg0Jcrg4D3OBc
t9Bgq8yqkV/rL11LO7hQT7jkGjHtsjIKrQcu1A34TI5Jiq0/
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:12 2023 by rpki-client on console-fra.rpki-client.org