Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/B1GTdknyKDUODzcQD2Mq-uRtC5Y.roa
File: B1GTdknyKDUODzcQD2Mq-uRtC5Y.roa (raw, json)
Hash identifier: RBdZ/g0EGgbaBzK1QvIBWyne6vgIWM/UznZwO1KHqAc=
Subject key identifier: 07:51:93:76:49:F2:28:35:0E:0F:37:10:0F:63:2A:FA:E4:6D:0B:96
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 157F7CD3
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/B1GTdknyKDUODzcQD2Mq-uRtC5Y.roa
Signing time: Mon 04 Jul 2022 14:28:25 +0000
ROA not before: Mon 04 Jul 2022 14:28:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204160
IP address blocks: 2a0e:97c0:b70::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360676563 (0x157f7cd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 4 14:28:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0751937649f228350e0f37100f632afae46d0b96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:72:39:73:13:34:f6:6e:07:11:0f:30:10:fd:
66:f6:62:5e:6a:8b:bf:d3:3a:28:86:7a:f4:a4:85:
1b:a6:d2:85:b7:cf:fd:ce:b8:1e:67:06:54:77:15:
a6:9f:16:b4:51:8d:fe:22:db:49:43:fe:49:13:af:
4f:0a:72:fd:46:bd:82:59:02:fb:a4:a7:d8:2d:6e:
23:2d:9c:35:7f:47:4d:70:39:8e:7e:e4:44:06:ba:
db:46:07:30:bf:78:8e:4d:a9:f1:73:44:1b:b4:ca:
1e:7f:71:9c:97:1c:b4:1c:dc:af:50:4c:72:e0:5b:
91:88:7d:6d:d1:df:25:75:35:d0:3d:6e:72:f2:f3:
6f:8a:86:9e:a2:07:5a:93:3c:f4:d4:66:98:34:41:
04:b9:07:0f:2b:dd:1d:e9:fa:5b:06:07:25:63:ca:
ef:f1:5a:0d:6b:ed:ab:f4:69:a8:c8:39:ff:1c:e2:
5d:59:d9:fb:8d:b5:04:ad:fb:8b:b9:b6:fc:35:ed:
15:50:2d:59:23:d1:8b:d8:6e:68:fa:20:ed:90:0d:
b5:45:37:12:ca:2c:35:49:4c:20:ff:9a:59:5f:c8:
ad:67:c6:52:4f:fe:95:c8:2a:7c:c2:af:f9:84:d9:
69:7e:d3:ae:8c:30:50:eb:de:76:85:5e:bb:71:f4:
24:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:51:93:76:49:F2:28:35:0E:0F:37:10:0F:63:2A:FA:E4:6D:0B:96
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/B1GTdknyKDUODzcQD2Mq-uRtC5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:b70::/44
Signature Algorithm: sha256WithRSAEncryption
58:fb:10:df:97:ab:6b:da:58:95:8f:62:35:11:fd:69:6b:fa:
01:34:27:1f:13:f7:d2:89:e2:4d:88:09:2e:95:67:75:45:4e:
28:20:98:58:61:24:01:3b:62:10:ed:6b:d0:12:f2:5e:9e:38:
ce:36:56:fa:9b:91:0c:87:0e:8a:6e:37:2e:3a:c4:1a:23:58:
92:73:c3:8c:72:c7:6a:b8:9e:73:6d:1e:95:32:bb:a3:17:d2:
ea:4c:35:55:8e:10:11:45:2f:b0:be:3e:1d:df:37:c6:e3:1f:
cc:c7:c6:ea:4f:4b:ba:af:4a:45:4d:c7:f9:f8:13:35:8d:8a:
96:95:d5:a2:a5:97:6b:18:ad:4f:5d:c3:47:b4:1d:1a:13:9e:
52:69:fe:2b:b6:18:de:e8:c9:18:8d:ae:65:b4:22:da:a0:76:
39:c8:50:7c:3e:7d:8a:58:56:ab:8d:91:cc:aa:04:2f:81:89:
0d:5a:ed:9f:89:0b:52:26:cf:da:e2:37:47:f4:b1:c9:b8:b6:
14:db:f3:9f:14:9d:3e:d3:ec:38:51:3f:19:0a:66:a5:d7:c9:
86:53:dd:cd:3e:6c:9f:a8:37:ae:f0:23:b8:0f:0c:10:6c:49:
d4:68:39:ed:6e:d5:9d:08:d1:64:fc:1d:89:fb:b9:dd:26:c3:
fc:1d:c8:3b
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEFX980zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDcw
NDE0MjgyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDc1MTkzNzY0OWYy
MjgzNTBlMGYzNzEwMGY2MzJhZmFlNDZkMGI5NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALxyOXMTNPZuBxEPMBD9ZvZiXmqLv9M6KIZ69KSFG6bShbfP
/c64HmcGVHcVpp8WtFGN/iLbSUP+SROvTwpy/Ua9glkC+6Sn2C1uIy2cNX9HTXA5
jn7kRAa620YHML94jk2p8XNEG7TKHn9xnJcctBzcr1BMcuBbkYh9bdHfJXU10D1u
cvLzb4qGnqIHWpM89NRmmDRBBLkHDyvdHen6WwYHJWPK7/FaDWvtq/RpqMg5/xzi
XVnZ+421BK37i7m2/DXtFVAtWSPRi9huaPog7ZANtUU3EsosNUlMIP+aWV/IrWfG
Uk/+lcgqfMKv+YTZaX7TrowwUOvedoVeu3H0JG8CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQHUZN2SfIoNQ4PNxAPYyr65G0LljAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L0IxR1Rka255S0RVT0R6Y1FEMk1xLXVSdEM1WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoOl8ALcDANBgkqhkiG9w0BAQsF
AAOCAQEAWPsQ35era9pYlY9iNRH9aWv6ATQnHxP30oniTYgJLpVndUVOKCCYWGEk
ATtiEO1r0BLyXp44zjZW+puRDIcOim43LjrEGiNYknPDjHLHariec20elTK7oxfS
6kw1VY4QEUUvsL4+Hd83xuMfzMfG6k9Luq9KRU3H+fgTNY2KlpXVoqWXaxitT13D
R7QdGhOeUmn+K7YY3ujJGI2uZbQi2qB2OchQfD59ilhWq42RzKoEL4GJDVrtn4kL
UibP2uI3R/Sxybi2FNvznxSdPtPsOFE/GQpmpdfJhlPdzT5sn6g3rvAjuA8MEGxJ
1Gg57W7VnQjRZPwdifu53SbD/B3IOw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-fra.rpki-client.org