Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Ggm_U9OZTzamSFj_AEKvc0R_zWM.roa
File: Ggm_U9OZTzamSFj_AEKvc0R_zWM.roa (raw, json)
Hash identifier: vHPHVjbv/BTp0ZHAWrkQVTILhlZS8RMvycr2EgkkyHU=
Subject key identifier: 1A:09:BF:53:D3:99:4F:36:A6:48:58:FF:00:42:AF:73:44:7F:CD:63
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 107ABD25
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Ggm_U9OZTzamSFj_AEKvc0R_zWM.roa
Signing time: Sat 01 Jan 2022 09:04:45 +0000
ROA not before: Sat 01 Jan 2022 09:04:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56758
IP address blocks: 2a0e:97c0:660::/44 maxlen: 48
2a0e:b107:17a0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276479269 (0x107abd25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:04:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a09bf53d3994f36a64858ff0042af73447fcd63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:48:ea:8e:c9:47:c2:fa:fc:d4:86:8d:fc:04:
3d:21:0f:4a:1e:3d:0a:99:69:d0:4b:ec:ea:44:28:
6f:ba:4b:82:91:7a:00:95:61:cf:f8:d3:96:b1:30:
c2:b8:85:0b:1e:61:a0:ce:7f:57:fd:b4:fa:1f:ad:
62:fa:72:7d:8f:da:e0:0b:43:96:00:e2:80:29:32:
23:d2:48:a5:28:78:d9:ae:42:02:0f:76:84:5e:d7:
9a:bd:d3:d7:12:2e:7a:2f:4c:fd:ad:4e:95:87:0f:
57:9e:f7:e9:2b:6b:d9:9a:6c:6b:2c:cd:3b:05:b3:
d4:40:a3:89:20:dc:a9:c1:79:73:0c:d3:3b:30:2f:
e1:f3:f7:fc:8e:f6:66:df:67:f2:ef:53:47:b4:f3:
f2:d6:f5:a9:0a:63:63:c6:8a:ed:0a:9a:e3:7e:d9:
e2:b7:f2:45:c5:fa:db:1b:1a:45:78:45:75:e6:39:
b0:bf:81:16:ca:47:12:b8:2f:33:f8:a8:4d:69:30:
76:57:bf:4e:42:33:f7:08:ba:4a:47:55:ea:49:e0:
5a:d6:7c:77:42:21:9e:de:5f:f0:42:9a:27:09:b2:
04:bd:5f:29:f0:0d:e7:a9:3c:37:9d:9c:f4:fb:9b:
14:ef:b2:51:3d:33:c1:de:ae:7d:2a:e0:c3:df:94:
bc:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:09:BF:53:D3:99:4F:36:A6:48:58:FF:00:42:AF:73:44:7F:CD:63
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Ggm_U9OZTzamSFj_AEKvc0R_zWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:660::/44
2a0e:b107:17a0::/44
Signature Algorithm: sha256WithRSAEncryption
5b:37:b7:bd:7f:1b:cf:38:7a:83:14:de:7e:b5:0f:dd:f3:00:
8a:ef:f6:74:32:42:c5:2f:f3:8f:35:3a:c5:70:4e:45:24:eb:
cb:6e:bd:5b:6b:09:59:6e:38:33:ca:28:df:e6:30:7f:01:2d:
b6:9a:83:ee:55:96:a0:e7:8c:bd:ec:16:7d:c8:98:0b:6b:8b:
56:84:9d:94:af:ac:77:21:3a:06:d6:63:44:26:e4:60:53:67:
fe:b4:9c:56:fb:5f:6e:36:4f:ef:26:0c:67:73:a2:53:4c:42:
40:7e:2f:1b:a6:36:88:b5:0d:31:3b:23:4b:b1:53:16:37:23:
ae:4f:09:b1:e7:31:04:24:19:53:f6:3d:05:aa:09:b2:0b:7c:
9e:b6:32:93:6b:c8:5c:f7:3f:51:04:dc:ee:7d:23:0d:e4:0f:
5a:80:7a:d8:c0:22:02:6d:b4:3e:3a:12:f8:e6:2f:4f:38:61:
63:d0:24:54:66:d9:76:c7:c3:bb:fa:0e:b6:67:47:8f:8f:7d:
31:50:95:12:44:db:37:47:ab:83:46:2c:d9:e0:4d:e3:e1:e8:
b2:c7:ea:8b:0c:58:36:27:18:cc:fe:65:b5:01:30:bf:bf:6c:
d8:39:58:c8:51:0e:d4:1c:94:4e:23:08:d5:a1:de:a3:66:ed:
87:13:90:0e
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEEHq9JTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDEw
MTA5MDQ0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWEwOWJmNTNkMzk5
NGYzNmE2NDg1OGZmMDA0MmFmNzM0NDdmY2Q2MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANdI6o7JR8L6/NSGjfwEPSEPSh49Cplp0Evs6kQob7pLgpF6
AJVhz/jTlrEwwriFCx5hoM5/V/20+h+tYvpyfY/a4AtDlgDigCkyI9JIpSh42a5C
Ag92hF7Xmr3T1xIuei9M/a1OlYcPV5736Str2ZpsayzNOwWz1ECjiSDcqcF5cwzT
OzAv4fP3/I72Zt9n8u9TR7Tz8tb1qQpjY8aK7Qqa437Z4rfyRcX62xsaRXhFdeY5
sL+BFspHErgvM/ioTWkwdle/TkIz9wi6SkdV6kngWtZ8d0Ihnt5f8EKaJwmyBL1f
KfAN56k8N52c9PubFO+yUT0zwd6ufSrgw9+UvM0CAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBQaCb9T05lPNqZIWP8AQq9zRH/NYzAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L0dnbV9VOU9aVHphbVNGal9BRUt2YzBSX3pXTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAIwEgMHBCoOl8AGYAMHBCoOsQcXoDANBgkq
hkiG9w0BAQsFAAOCAQEAWze3vX8bzzh6gxTefrUP3fMAiu/2dDJCxS/zjzU6xXBO
RSTry269W2sJWW44M8oo3+YwfwEttpqD7lWWoOeMvewWfciYC2uLVoSdlK+sdyE6
BtZjRCbkYFNn/rScVvtfbjZP7yYMZ3OiU0xCQH4vG6Y2iLUNMTsjS7FTFjcjrk8J
secxBCQZU/Y9BaoJsgt8nrYyk2vIXPc/UQTc7n0jDeQPWoB62MAiAm20PjoS+OYv
TzhhY9AkVGbZdsfDu/oOtmdHj499MVCVEkTbN0erg0Ys2eBN4+HossfqiwxYNicY
zP5ltQEwv79s2DlYyFEO1ByUTiMI1aHeo2bthxOQDg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:58 2024 by rpki-client on console-ams.rpki-client.org