Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/F0KjEqxjdaVwrgodDaJKBL1LQjQ.roa
File: F0KjEqxjdaVwrgodDaJKBL1LQjQ.roa (raw, json)
Hash identifier: sdTXELouPKc0gWWbJR9FVW9Jc1U1Xs4nIwrpGOoxAi8=
Subject key identifier: 17:42:A3:12:AC:63:75:A5:70:AE:0A:1D:0D:A2:4A:04:BD:4B:42:34
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183BD1B8A9A797A79CA29D4C57436D03AB0
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/F0KjEqxjdaVwrgodDaJKBL1LQjQ.roa
Signing time: Sun 09 Oct 2022 14:17:22 +0000
ROA not before: Sun 09 Oct 2022 14:17:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202941
IP address blocks: 2a0e:b107:1a20::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:bd:1b:8a:9a:79:7a:79:ca:29:d4:c5:74:36:d0:3a:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 9 14:17:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1742a312ac6375a570ae0a1d0da24a04bd4b4234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:0c:00:32:5f:5d:b6:03:e6:32:1d:46:e4:ed:
e1:bc:54:96:9e:c4:9c:cc:5f:0e:30:95:d2:1f:59:
f2:7a:3b:c2:97:12:49:27:a6:af:b4:d4:e5:9c:17:
8f:4f:e3:83:42:2f:8c:6c:35:2c:ae:ef:f8:aa:d9:
fb:80:c3:22:fa:5b:1c:f1:a0:82:a7:3e:6e:4c:14:
0b:e4:20:e4:db:e2:33:0f:3a:91:f6:ef:26:6c:29:
df:98:4b:f0:02:76:de:3c:9c:00:90:e4:3a:70:dc:
0d:42:c7:67:8e:49:eb:0d:d1:a6:f2:75:8f:30:19:
b9:63:d2:53:3c:22:b5:d8:d8:68:c0:3e:29:58:c3:
c3:d6:8d:6d:a8:68:d2:7d:03:59:4b:09:18:cb:ee:
ec:1a:9e:28:cf:e1:d9:ef:aa:00:d4:d9:ee:0d:96:
f0:07:a3:f6:bd:dd:8c:bd:3f:2b:74:b7:7c:a5:e9:
e2:cb:65:95:77:2b:fe:bb:e3:50:9f:14:6a:cc:ea:
e0:e4:e4:fc:2a:d0:01:56:9d:92:38:0f:f3:a0:c7:
48:ef:25:97:71:2a:01:57:fd:d4:2a:b4:9b:3a:32:
71:9a:31:15:f7:bf:1a:8d:cb:64:a7:a8:5a:ef:97:
a5:29:fd:ed:7c:d6:9f:d6:c3:d0:1c:1c:f3:1d:ac:
10:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:42:A3:12:AC:63:75:A5:70:AE:0A:1D:0D:A2:4A:04:BD:4B:42:34
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/F0KjEqxjdaVwrgodDaJKBL1LQjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1a20::/48
Signature Algorithm: sha256WithRSAEncryption
aa:15:19:2e:7c:7f:d1:92:9d:a7:bd:f4:55:35:42:3a:8e:65:
b3:a1:ba:99:87:24:02:5d:1e:ea:fc:7b:8d:25:4a:e1:57:20:
87:e1:ec:fa:32:45:11:a4:b0:a8:40:0a:ab:2e:ff:81:7b:2b:
a4:af:53:2b:76:7e:57:45:86:8a:ad:3b:3c:64:ac:d5:0b:29:
c2:1e:bc:cd:1f:ff:49:b5:e6:cc:fa:13:d4:97:d8:65:38:35:
48:ea:21:9e:b8:41:28:48:f9:9c:bf:5a:2d:e3:7f:91:f4:db:
82:10:53:ea:6e:bd:5c:26:55:84:f2:d4:8b:04:4d:53:9d:36:
12:a2:a8:a4:7e:2e:a3:33:83:1d:ed:4c:64:9a:7a:9f:c3:8e:
01:38:c2:b9:01:ff:0c:ba:22:fa:16:a7:59:6b:8c:55:08:96:
4c:3a:2a:37:6f:54:9e:64:c0:b0:d6:e8:54:17:d6:78:2c:dc:
29:31:5a:10:2d:2b:4a:55:f2:7c:30:cf:04:85:0d:cb:11:9c:
77:5f:1d:24:3f:5a:b3:f8:98:ce:13:80:c3:38:1c:3a:92:a7:
c3:4d:85:0e:14:07:6e:59:1c:e2:db:0c:d2:55:ca:5f:56:0f:
bc:d3:4c:88:76:84:cf:6f:d3:9d:b5:00:9f:68:ea:d2:cc:2f:
83:77:7c:f9
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYO9G4qaeXp5yinUxXQ20DqwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIxMDA5MTQxNzIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzQyYTMxMmFjNjM3NWE1NzBhZTBhMWQwZGEyNGEwNGJkNGI0MjM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgwwAMl9dtgPmMh1G5O3hvFSWnsSc
zF8OMJXSH1nyejvClxJJJ6avtNTlnBePT+ODQi+MbDUsru/4qtn7gMMi+lsc8aCC
pz5uTBQL5CDk2+IzDzqR9u8mbCnfmEvwAnbePJwAkOQ6cNwNQsdnjknrDdGm8nWP
MBm5Y9JTPCK12NhowD4pWMPD1o1tqGjSfQNZSwkYy+7sGp4oz+HZ76oA1NnuDZbw
B6P2vd2MvT8rdLd8peniy2WVdyv+u+NQnxRqzOrg5OT8KtABVp2SOA/zoMdI7yWX
cSoBV/3UKrSbOjJxmjEV978ajctkp6ha75elKf3tfNaf1sPQHBzzHawQVQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFBdCoxKsY3WlcK4KHQ2iSgS9S0I0MB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvRjBLakVxeGpkYVZ3cmdvZERhSktCTDFMUWpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6xBxog
MA0GCSqGSIb3DQEBCwUAA4IBAQCqFRkufH/Rkp2nvfRVNUI6jmWzobqZhyQCXR7q
/HuNJUrhVyCH4ez6MkURpLCoQAqrLv+Beyukr1Mrdn5XRYaKrTs8ZKzVCynCHrzN
H/9JtebM+hPUl9hlODVI6iGeuEEoSPmcv1ot43+R9NuCEFPqbr1cJlWE8tSLBE1T
nTYSoqikfi6jM4Md7Uxkmnqfw44BOMK5Af8MuiL6FqdZa4xVCJZMOio3b1SeZMCw
1uhUF9Z4LNwpMVoQLStKVfJ8MM8EhQ3LEZx3Xx0kP1qz+JjOE4DDOBw6kqfDTYUO
FAduWRzi2wzSVcpfVg+800yIdoTPb9OdtQCfaOrSzC+Dd3z5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:28 2024 by rpki-client on console-fra.rpki-client.org