Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/H48n8zNtbn9JoJBujVmj1h3KzBw.roa
File: H48n8zNtbn9JoJBujVmj1h3KzBw.roa (raw, json)
Hash identifier: 63vVpsZvN4qvzgq9bNwnmySI+2IWbb1MGtMNVuAhyV4=
Subject key identifier: 1F:8F:27:F3:33:6D:6E:7F:49:A0:90:6E:8D:59:A3:D6:1D:CA:CC:1C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018249A93CF46DAE590D4DD0EAB498C9F9DA
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/H48n8zNtbn9JoJBujVmj1h3KzBw.roa
Signing time: Fri 29 Jul 2022 11:13:24 +0000
ROA not before: Fri 29 Jul 2022 11:13:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203655
IP address blocks: 2a0e:b107:1b60::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:49:a9:3c:f4:6d:ae:59:0d:4d:d0:ea:b4:98:c9:f9:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 29 11:13:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f8f27f3336d6e7f49a0906e8d59a3d61dcacc1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:6d:75:39:8d:94:7f:62:d7:39:a2:c6:62:83:
88:fe:d8:3b:0c:1b:da:e4:59:9c:d2:75:c9:ba:cf:
ad:50:9b:ee:0a:f9:60:0f:14:b5:2e:f8:fd:c7:6e:
0e:94:a6:b1:62:40:b5:ef:2c:a3:34:dc:d1:d0:7e:
8a:26:f7:83:b9:dc:60:4a:d9:fc:fd:c0:c5:05:87:
d5:1c:80:f3:cf:04:70:8d:ea:a5:5c:d8:28:d8:5d:
45:08:0b:e2:82:7f:9a:e7:41:b1:7b:2a:4d:96:1a:
28:5b:bc:5e:dd:71:f6:54:ea:e8:79:cd:d2:f2:79:
e8:1a:ba:46:f0:85:2b:8e:18:da:41:d6:09:1e:43:
81:e0:46:47:90:fe:99:15:ef:46:d0:35:64:cf:72:
5f:1b:db:f3:16:01:96:c6:de:d4:c6:00:4f:1d:60:
0d:c4:51:98:06:03:6f:78:94:79:d1:af:17:18:ae:
a4:e2:07:89:6b:26:56:d1:80:69:1f:2d:92:28:34:
68:c2:fb:68:d1:0f:39:a9:7a:57:6e:d4:86:c3:3e:
d1:ba:a9:8e:92:dd:e7:c8:d1:84:80:83:06:c6:78:
7f:df:f9:78:26:e8:fb:e1:a4:76:34:92:51:63:d3:
48:b1:5d:85:85:25:e0:11:36:66:22:a0:0d:c8:9d:
e8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:8F:27:F3:33:6D:6E:7F:49:A0:90:6E:8D:59:A3:D6:1D:CA:CC:1C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/H48n8zNtbn9JoJBujVmj1h3KzBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1b60::/44
Signature Algorithm: sha256WithRSAEncryption
95:4c:41:6a:10:80:fc:33:d6:fe:8a:16:f5:36:d7:58:50:85:
46:f0:31:38:e2:d2:d9:db:db:75:b1:00:0e:6b:e7:85:df:5a:
5a:09:16:8d:c9:95:c9:55:7f:63:3c:43:65:6c:99:94:a6:aa:
47:f7:c0:72:f2:10:56:f2:e1:aa:41:bb:73:a4:55:19:d3:1f:
fc:a9:12:52:21:fc:d6:a3:65:02:91:ff:70:7e:12:ea:74:ba:
da:85:9d:ee:1b:42:b7:58:18:f4:70:6b:d6:48:c3:10:af:c7:
61:8f:97:a0:5b:04:72:4a:ef:e7:13:a8:56:56:ad:d5:9c:d3:
2a:f4:8c:c4:f9:03:2c:c5:87:7c:49:e8:a3:e2:20:5c:4b:b5:
8a:1c:7e:14:79:89:e1:ef:4c:2d:70:9d:3c:f0:5f:41:99:3f:
d3:a5:2d:34:4d:5c:93:f7:7b:98:56:34:be:3f:7f:56:f9:8b:
75:10:91:01:1d:c8:43:2f:0e:a0:0b:f1:cc:b2:84:07:c1:1f:
91:41:e0:ba:f4:96:e3:a5:43:28:9f:b7:47:d9:c4:e9:aa:46:
4a:c6:f7:a9:da:93:23:5c:85:d4:bd:e8:f8:e0:2e:77:dd:71:
61:26:90:61:a5:4e:b7:14:9a:d6:eb:bd:9e:88:47:b1:15:e3:
17:d8:7d:05
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYJJqTz0ba5ZDU3Q6rSYyfnaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIwNzI5MTExMzI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZjhmMjdmMzMzNmQ2ZTdmNDlhMDkwNmU4ZDU5YTNkNjFkY2FjYzFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkW11OY2Uf2LXOaLGYoOI/tg7DBva
5Fmc0nXJus+tUJvuCvlgDxS1Lvj9x24OlKaxYkC17yyjNNzR0H6KJveDudxgStn8
/cDFBYfVHIDzzwRwjeqlXNgo2F1FCAvign+a50GxeypNlhooW7xe3XH2VOroec3S
8nnoGrpG8IUrjhjaQdYJHkOB4EZHkP6ZFe9G0DVkz3JfG9vzFgGWxt7UxgBPHWAN
xFGYBgNveJR50a8XGK6k4geJayZW0YBpHy2SKDRowvto0Q85qXpXbtSGwz7RuqmO
kt3nyNGEgIMGxnh/3/l4Juj74aR2NJJRY9NIsV2FhSXgETZmIqANyJ3o2QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFB+PJ/MzbW5/SaCQbo1Zo9YdyswcMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvSDQ4bjh6TnRibjlKb0pCdWpWbWoxaDNLekJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6xBxtg
MA0GCSqGSIb3DQEBCwUAA4IBAQCVTEFqEID8M9b+ihb1NtdYUIVG8DE44tLZ29t1
sQAOa+eF31paCRaNyZXJVX9jPENlbJmUpqpH98By8hBW8uGqQbtzpFUZ0x/8qRJS
IfzWo2UCkf9wfhLqdLrahZ3uG0K3WBj0cGvWSMMQr8dhj5egWwRySu/nE6hWVq3V
nNMq9IzE+QMsxYd8Seij4iBcS7WKHH4UeYnh70wtcJ088F9BmT/TpS00TVyT93uY
VjS+P39W+Yt1EJEBHchDLw6gC/HMsoQHwR+RQeC69JbjpUMon7dH2cTpqkZKxvep
2pMjXIXUvej44C533XFhJpBhpU63FJrW672eiEexFeMX2H0F
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-fra.rpki-client.org