Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Gzd-peJZIy1JHc8oEIuySWJmNGY.roa
File: Gzd-peJZIy1JHc8oEIuySWJmNGY.roa (raw, json)
Hash identifier: vy+dkPekKM7GBn7Q4xBgqbPZR+SBNwPzPOf/dlc9Pd0=
Subject key identifier: 1B:37:7E:A5:E2:59:23:2D:49:1D:CF:28:10:8B:B2:49:62:66:34:66
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 13C6A12D
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Gzd-peJZIy1JHc8oEIuySWJmNGY.roa
Signing time: Tue 19 Apr 2022 01:55:08 +0000
ROA not before: Tue 19 Apr 2022 01:55:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134478
IP address blocks: 2a0e:b107:ea2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 331784493 (0x13c6a12d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 19 01:55:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b377ea5e259232d491dcf28108bb24962663466
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:22:48:9f:e9:8a:d4:26:8b:47:87:63:88:a1:
50:f9:da:c0:17:40:06:e7:17:b7:d4:11:c6:88:7c:
5b:4a:7e:36:78:9a:38:af:3f:ba:b2:99:67:c2:c4:
55:0b:b8:d4:31:ed:02:91:41:03:b3:e3:27:f4:3c:
3b:2a:66:cc:bb:69:ae:f8:40:c9:38:7b:23:94:0a:
1f:53:a0:7d:98:2f:b4:4a:a4:42:da:f1:ae:7a:93:
49:eb:9d:f4:14:a8:66:73:a4:ac:e7:58:ad:7a:c7:
3f:30:34:ca:54:11:13:ec:bb:29:db:fb:b4:2e:61:
80:64:9f:53:fc:ae:7b:f4:8b:cf:e1:1d:17:ce:72:
20:cb:6f:54:00:0e:e4:12:28:98:62:62:69:8c:a4:
26:d3:1b:a9:2e:ae:69:c6:12:dd:28:2d:af:c0:82:
b0:5f:7b:1d:b6:0d:a1:ae:ee:40:e1:d4:09:85:1f:
ca:c6:31:7f:69:93:86:2b:cc:b9:ac:3c:69:61:47:
f8:97:75:5e:36:ee:ca:68:89:bf:a9:ef:33:0a:97:
4b:df:84:37:fb:09:cb:3c:d8:78:f7:77:e7:46:d5:
d7:b3:09:4e:5f:bb:3b:6c:42:e9:46:48:09:e7:e0:
9a:61:30:41:07:af:8d:8d:b2:a3:ca:96:5c:7a:cf:
b8:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:37:7E:A5:E2:59:23:2D:49:1D:CF:28:10:8B:B2:49:62:66:34:66
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Gzd-peJZIy1JHc8oEIuySWJmNGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:ea2::/48
Signature Algorithm: sha256WithRSAEncryption
b8:e3:0b:36:10:fb:94:2b:d9:3a:96:e7:73:b3:4c:e2:08:97:
81:9f:01:3a:d6:51:c7:21:a0:38:83:0d:08:af:d3:13:94:c0:
37:db:f8:85:4c:78:c0:1a:b1:d3:89:e5:50:f3:fe:fb:d8:48:
38:32:14:db:75:83:78:db:5f:49:b9:d3:b8:21:ee:87:0f:bb:
a1:25:f9:66:b2:08:76:36:75:e6:10:a0:b7:61:4b:91:09:cf:
d6:c7:9d:f3:4e:17:86:2e:64:a6:46:f1:40:db:e9:6a:fb:0a:
2d:db:75:ae:bb:f2:62:94:5e:64:7a:7d:38:da:4a:eb:1b:d7:
dc:95:b0:73:35:c3:8f:d1:87:04:0c:29:65:93:61:bc:91:1d:
65:8d:c2:70:9e:a8:ca:27:7a:c0:3e:83:ba:b6:e0:d8:10:7f:
f1:06:f1:ba:05:14:67:1d:f1:c3:27:44:43:3f:95:65:54:60:
47:d6:34:33:0f:5c:71:73:be:d1:fb:43:1b:12:b7:0b:3e:0f:
5c:75:76:00:e4:03:33:ec:f4:5e:99:a5:4e:c6:35:78:7b:b1:
e3:7f:c7:38:66:90:eb:2b:09:1a:81:84:ee:1d:e4:3d:35:b0:
49:83:fa:7c:8b:e0:d4:bc:d5:28:07:a4:da:7a:00:42:f4:45:
4c:37:44:cb
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEE8ahLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDQx
OTAxNTUwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWIzNzdlYTVlMjU5
MjMyZDQ5MWRjZjI4MTA4YmIyNDk2MjY2MzQ2NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANciSJ/pitQmi0eHY4ihUPnawBdABucXt9QRxoh8W0p+Nnia
OK8/urKZZ8LEVQu41DHtApFBA7PjJ/Q8OypmzLtprvhAyTh7I5QKH1OgfZgvtEqk
QtrxrnqTSeud9BSoZnOkrOdYrXrHPzA0ylQRE+y7Kdv7tC5hgGSfU/yue/SLz+Ed
F85yIMtvVAAO5BIomGJiaYykJtMbqS6uacYS3Sgtr8CCsF97HbYNoa7uQOHUCYUf
ysYxf2mThivMuaw8aWFH+Jd1XjbuymiJv6nvMwqXS9+EN/sJyzzYePd350bV17MJ
Tl+7O2xC6UZICefgmmEwQQevjY2yo8qWXHrPuPcCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQbN36l4lkjLUkdzygQi7JJYmY0ZjAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L0d6ZC1wZUpaSXkxSkhjOG9FSXV5U1dKbU5HWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOsQcOojANBgkqhkiG9w0BAQsF
AAOCAQEAuOMLNhD7lCvZOpbnc7NM4giXgZ8BOtZRxyGgOIMNCK/TE5TAN9v4hUx4
wBqx04nlUPP++9hIODIU23WDeNtfSbnTuCHuhw+7oSX5ZrIIdjZ15hCgt2FLkQnP
1sed804Xhi5kpkbxQNvpavsKLdt1rrvyYpReZHp9ONpK6xvX3JWwczXDj9GHBAwp
ZZNhvJEdZY3CcJ6oyid6wD6Durbg2BB/8QbxugUUZx3xwydEQz+VZVRgR9Y0Mw9c
cXO+0ftDGxK3Cz4PXHV2AOQDM+z0XpmlTsY1eHux43/HOGaQ6ysJGoGE7h3kPTWw
SYP6fIvg1LzVKAek2noAQvRFTDdEyw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-fra.rpki-client.org