Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6Pv4wrWf7fbHoGpwnzndwNhaS5c.roa
File: 6Pv4wrWf7fbHoGpwnzndwNhaS5c.roa (raw, json)
Hash identifier: 0cPE3BnYJ/QSOMDcUa84IWJ5iClAl//vyluH+e+szek=
Subject key identifier: E8:FB:F8:C2:B5:9F:ED:F6:C7:A0:6A:70:9F:39:DD:C0:D8:5A:4B:97
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0182EE408AC550AB6137EF0EE9E29016A5FF
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6Pv4wrWf7fbHoGpwnzndwNhaS5c.roa
Signing time: Tue 30 Aug 2022 10:16:23 +0000
ROA not before: Tue 30 Aug 2022 10:16:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8882
IP address blocks: 2a10:cc40:140::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:40:8a:c5:50:ab:61:37:ef:0e:e9:e2:90:16:a5:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Aug 30 10:16:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8fbf8c2b59fedf6c7a06a709f39ddc0d85a4b97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e1:96:42:1f:4b:d7:ae:51:e7:45:5b:8b:47:
47:94:2a:ee:47:4b:e7:7e:24:93:28:2b:af:32:75:
a2:06:ea:4a:ff:a6:49:23:f0:8e:08:8c:f7:b0:7f:
4e:14:7d:62:98:16:22:b8:9b:a2:35:76:dd:37:fa:
bd:8d:ac:1e:fa:ba:ec:4d:bf:0a:5f:48:0a:d4:c8:
2a:2b:7f:73:db:77:47:5e:53:fe:da:ff:20:42:09:
55:b0:41:fa:74:12:05:70:93:0a:ea:e9:e7:27:7f:
71:ce:25:ba:ff:a1:a9:59:17:94:63:16:02:24:ff:
bf:66:5a:a9:52:43:ce:c0:6a:d2:eb:f1:46:46:e3:
c0:8a:45:c6:d1:77:8c:4d:ff:4b:66:a5:76:d2:d1:
8d:56:47:74:96:c1:3f:c2:e0:8b:7f:84:ac:24:b1:
77:86:05:23:3c:58:b9:08:33:94:7b:a6:46:35:7a:
01:3b:99:3c:17:b3:50:01:cf:65:3f:b1:50:0f:e4:
20:70:85:a8:81:02:e4:fb:a3:e8:8d:f9:67:59:a2:
12:0e:1d:01:7a:42:1c:1a:7c:a9:69:cb:3a:c5:00:
d5:4e:30:0c:e8:7d:e8:d1:bf:0b:f5:f5:20:ca:88:
4f:29:44:3d:5b:68:8a:d2:25:59:60:a5:d1:a4:9a:
99:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:FB:F8:C2:B5:9F:ED:F6:C7:A0:6A:70:9F:39:DD:C0:D8:5A:4B:97
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6Pv4wrWf7fbHoGpwnzndwNhaS5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc40:140::/44
Signature Algorithm: sha256WithRSAEncryption
95:96:8d:54:ed:f5:be:ca:12:34:9d:a1:6b:5f:cd:ce:84:89:
18:43:e4:ef:d7:cf:67:bb:0f:b7:1e:bc:f8:17:a8:16:6e:d0:
1a:4c:bc:3c:b5:bd:db:80:cc:4f:92:ba:6b:b3:ad:1a:46:50:
8b:d4:64:1c:c4:1e:51:de:75:64:61:ac:ad:04:70:f6:a6:eb:
f3:92:96:11:00:22:49:3e:e4:72:d5:11:35:e1:32:02:0e:af:
86:02:c4:ec:53:ba:a0:b0:81:4d:37:1b:ce:5c:fa:a6:25:4a:
3a:6d:70:d8:38:bc:1d:7d:a4:df:32:92:5e:f9:9e:f1:8a:13:
dd:d6:52:9d:85:8b:ae:b1:cc:27:f1:65:5a:73:18:58:fb:c9:
6a:8a:5e:6d:ae:46:c5:39:de:85:df:b9:d8:09:59:04:b0:9a:
ce:a5:ab:1c:59:d0:02:88:5f:36:e9:c7:59:c3:40:4a:a3:f7:
3d:35:a4:31:6c:69:83:a8:97:8f:95:45:f2:db:c5:22:92:c9:
34:5c:ad:af:01:29:1f:27:6e:f8:1a:43:cc:e3:5d:d9:9b:ce:
f1:8a:7a:e1:8d:53:06:70:75:87:02:cf:fc:b7:e6:3b:24:fc:
92:4e:e6:fc:f1:a4:f3:3b:48:41:f3:ce:8f:39:c9:f1:f9:66:
f5:f0:8e:ee
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYLuQIrFUKthN+8O6eKQFqX/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIwODMwMTAxNjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOGZiZjhjMmI1OWZlZGY2YzdhMDZhNzA5ZjM5ZGRjMGQ4NWE0Yjk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3uGWQh9L165R50Vbi0dHlCruR0vn
fiSTKCuvMnWiBupK/6ZJI/COCIz3sH9OFH1imBYiuJuiNXbdN/q9jawe+rrsTb8K
X0gK1MgqK39z23dHXlP+2v8gQglVsEH6dBIFcJMK6unnJ39xziW6/6GpWReUYxYC
JP+/ZlqpUkPOwGrS6/FGRuPAikXG0XeMTf9LZqV20tGNVkd0lsE/wuCLf4SsJLF3
hgUjPFi5CDOUe6ZGNXoBO5k8F7NQAc9lP7FQD+QgcIWogQLk+6PojflnWaISDh0B
ekIcGnypacs6xQDVTjAM6H3o0b8L9fUgyohPKUQ9W2iK0iVZYKXRpJqZ/wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOj7+MK1n+32x6BqcJ853cDYWkuXMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvNlB2NHdyV2Y3ZmJIb0dwd256bmR3TmhhUzVjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhDMQAFA
MA0GCSqGSIb3DQEBCwUAA4IBAQCVlo1U7fW+yhI0naFrX83OhIkYQ+Tv189nuw+3
Hrz4F6gWbtAaTLw8tb3bgMxPkrprs60aRlCL1GQcxB5R3nVkYaytBHD2puvzkpYR
ACJJPuRy1RE14TICDq+GAsTsU7qgsIFNNxvOXPqmJUo6bXDYOLwdfaTfMpJe+Z7x
ihPd1lKdhYuuscwn8WVacxhY+8lqil5trkbFOd6F37nYCVkEsJrOpascWdACiF82
6cdZw0BKo/c9NaQxbGmDqJePlUXy28Uiksk0XK2vASkfJ274GkPM413Zm87xinrh
jVMGcHWHAs/8t+Y7JPySTub88aTzO0hB886POcnx+Wb18I7u
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:55 2023 by rpki-client on console-ams.rpki-client.org