Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/9F7qNhP-XJgXLyqJ8bMwh2xO52c.roa
File: 9F7qNhP-XJgXLyqJ8bMwh2xO52c.roa (raw, json)
Hash identifier: gcb/uV4qi6cwWfhy70H3MGS9pBoshdinqlp+3XxlkYA=
Subject key identifier: F4:5E:EA:36:13:FE:5C:98:17:2F:2A:89:F1:B3:30:87:6C:4E:E7:67
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0184670FDE2CDBCA5460F5EE632453AF478C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/9F7qNhP-XJgXLyqJ8bMwh2xO52c.roa
Signing time: Fri 11 Nov 2022 14:20:03 +0000
ROA not before: Fri 11 Nov 2022 14:20:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204611
IP address blocks: 2a0e:b107:19cd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:67:0f:de:2c:db:ca:54:60:f5:ee:63:24:53:af:47:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 11 14:20:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f45eea3613fe5c98172f2a89f1b330876c4ee767
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b4:8a:be:50:47:b4:c2:a1:02:ec:8c:b2:9e:
b2:8c:f0:a3:53:bb:94:c2:5f:34:e1:01:e7:bd:9c:
b6:7c:a5:74:4f:e8:9c:43:2d:c3:7b:c6:f4:a6:bc:
56:8e:b7:a2:5d:fc:11:0b:80:f7:2b:fe:41:c3:4f:
6f:68:e1:8a:d8:05:20:aa:d1:3f:a8:6e:c6:19:96:
d3:d2:0c:08:35:cb:38:11:37:50:5b:9d:19:3c:87:
03:47:3f:7d:56:33:00:a8:c8:47:94:73:c9:c8:9c:
dc:fb:01:16:fe:19:7d:61:17:a4:3c:42:94:35:d8:
51:59:b7:04:a2:75:77:85:9e:bb:2e:6f:b0:56:f2:
38:40:7a:94:76:c1:4b:25:bb:61:08:3b:f5:c0:f4:
0a:8c:62:b4:52:d3:3f:73:b3:a1:76:00:e3:10:d9:
2e:0c:5e:60:b4:0f:b8:de:b6:86:67:d9:c8:96:fb:
cd:3b:f8:87:a7:1f:49:c3:f9:50:c3:d4:a5:ef:94:
ae:a3:8b:07:40:5e:ae:4d:e0:06:c6:ee:9b:a1:71:
7a:0e:20:54:81:1f:7d:2f:91:37:17:a2:3b:21:ad:
0f:93:7c:f5:43:52:4e:96:a8:dd:8e:2a:45:12:18:
99:db:3d:a1:70:0d:31:75:dc:ef:e8:48:31:f6:6a:
e7:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5E:EA:36:13:FE:5C:98:17:2F:2A:89:F1:B3:30:87:6C:4E:E7:67
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/9F7qNhP-XJgXLyqJ8bMwh2xO52c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:19cd::/48
Signature Algorithm: sha256WithRSAEncryption
b8:b1:f5:33:22:5d:fe:14:9d:91:38:bb:8a:6c:04:5d:a8:fa:
ff:ee:fc:f0:cc:99:cb:45:78:a6:db:3c:fc:ef:6a:77:cd:e4:
b3:61:76:ee:76:55:f4:d4:30:62:2f:77:a5:ec:6c:a0:2c:ae:
93:42:bd:db:e3:dc:ef:df:ab:04:ab:69:6b:03:fd:b8:48:03:
5c:99:86:4d:e1:36:d1:a1:51:27:ed:f4:53:2f:5b:54:2a:97:
dc:85:2e:d2:e1:5a:41:64:60:10:92:cd:34:6c:05:6a:29:6f:
87:a2:6d:90:99:7c:8c:08:01:18:88:7c:7d:a2:8a:74:6b:05:
b0:01:57:77:23:e9:44:98:cd:9f:8f:77:5e:62:2f:75:b5:46:
6a:0b:61:16:d7:14:6a:fe:e9:7a:45:f9:cb:b0:d2:92:ae:3e:
cc:c8:95:9c:12:58:43:30:19:5a:c8:c1:a9:76:e1:78:1c:84:
5a:eb:2a:f2:82:24:63:38:e1:38:51:60:18:3a:2c:9c:9b:f0:
74:14:d6:a0:98:8f:d5:a0:0e:7e:57:02:ec:87:6e:da:a2:14:
4f:9b:d1:94:45:5a:89:58:ae:69:81:94:df:39:87:13:af:6a:
73:07:fc:77:8a:d2:f3:bd:43:6c:fd:69:95:c0:fb:b6:d7:32:
94:db:e8:d2
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYRnD94s28pUYPXuYyRTr0eMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIxMTExMTQyMDAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNDVlZWEzNjEzZmU1Yzk4MTcyZjJhODlmMWIzMzA4NzZjNGVlNzY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiLSKvlBHtMKhAuyMsp6yjPCjU7uU
wl804QHnvZy2fKV0T+icQy3De8b0prxWjreiXfwRC4D3K/5Bw09vaOGK2AUgqtE/
qG7GGZbT0gwINcs4ETdQW50ZPIcDRz99VjMAqMhHlHPJyJzc+wEW/hl9YRekPEKU
NdhRWbcEonV3hZ67Lm+wVvI4QHqUdsFLJbthCDv1wPQKjGK0UtM/c7OhdgDjENku
DF5gtA+43raGZ9nIlvvNO/iHpx9Jw/lQw9Sl75Suo4sHQF6uTeAGxu6boXF6DiBU
gR99L5E3F6I7Ia0Pk3z1Q1JOlqjdjipFEhiZ2z2hcA0xddzv6Egx9mrnWQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFPRe6jYT/lyYFy8qifGzMIdsTudnMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvOUY3cU5oUC1YSmdYTHlxSjhiTXdoMnhPNTJjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6xBxnN
MA0GCSqGSIb3DQEBCwUAA4IBAQC4sfUzIl3+FJ2ROLuKbARdqPr/7vzwzJnLRXim
2zz872p3zeSzYXbudlX01DBiL3el7GygLK6TQr3b49zv36sEq2lrA/24SANcmYZN
4TbRoVEn7fRTL1tUKpfchS7S4VpBZGAQks00bAVqKW+Hom2QmXyMCAEYiHx9oop0
awWwAVd3I+lEmM2fj3deYi91tUZqC2EW1xRq/ul6RfnLsNKSrj7MyJWcElhDMBla
yMGpduF4HIRa6yrygiRjOOE4UWAYOiycm/B0FNagmI/VoA5+VwLsh27aohRPm9GU
RVqJWK5pgZTfOYcTr2pzB/x3itLzvUNs/WmVwPu21zKU2+jS
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-fra.rpki-client.org