Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KCweZ5jYe1POMj7QaH6kQPnj9Fw.roa
File: KCweZ5jYe1POMj7QaH6kQPnj9Fw.roa (raw, json)
Hash identifier: fs8CU5LnaVUtOyZWe3QPge3FD28S5JcUN12wJjfHZ5g=
Subject key identifier: 28:2C:1E:67:98:D8:7B:53:CE:32:3E:D0:68:7E:A4:40:F9:E3:F4:5C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10D3F937
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KCweZ5jYe1POMj7QaH6kQPnj9Fw.roa
Signing time: Sat 01 Jan 2022 09:05:40 +0000
ROA not before: Sat 01 Jan 2022 09:05:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211972
IP address blocks: 2a0e:97c0:130::/44 maxlen: 48
2a0e:b107:100::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 282327351 (0x10d3f937)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=282c1e6798d87b53ce323ed0687ea440f9e3f45c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e9:c7:7c:03:b9:01:93:5d:6f:9b:c8:37:7a:
fc:19:43:bf:2f:bb:9f:dd:de:c1:26:fe:12:2a:ad:
55:7b:24:fb:ca:0c:e3:ea:db:e9:8e:16:da:d5:88:
a4:4b:eb:22:cf:dd:9b:52:ee:27:d9:d2:cd:0a:2f:
39:ee:92:23:a0:72:c8:87:4f:94:52:41:85:ce:45:
4a:a1:7f:fb:de:ec:28:df:5c:a7:42:d9:f8:e6:31:
7b:05:26:b9:4b:e2:c3:3d:e1:e7:61:31:28:0a:7d:
ae:4c:8b:47:f2:0f:9b:b6:19:ad:97:91:4c:c7:b7:
c3:2f:94:9c:59:d3:64:15:62:4b:84:4b:c6:97:01:
0f:d2:bd:f4:d5:d3:eb:aa:59:91:9d:3f:ee:36:66:
fb:47:8f:3e:f2:f0:fc:f4:86:12:36:00:89:a9:f4:
00:31:c8:f0:e1:00:7b:5b:90:1e:28:3f:91:50:d9:
1d:ed:cb:a1:df:2d:98:3c:21:90:be:6d:fc:66:25:
ec:1e:ce:f2:3a:9a:ed:d7:a6:62:a5:38:fc:e8:ab:
65:c4:f6:d1:56:19:ef:50:8c:a0:8a:a6:b5:cf:78:
a9:a5:da:95:b6:fd:b9:78:91:ef:44:2e:bd:f8:d3:
0b:cb:c2:fb:72:9b:43:41:8a:c8:54:4c:81:0b:7c:
ec:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:2C:1E:67:98:D8:7B:53:CE:32:3E:D0:68:7E:A4:40:F9:E3:F4:5C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KCweZ5jYe1POMj7QaH6kQPnj9Fw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:130::/44
2a0e:b107:100::/44
Signature Algorithm: sha256WithRSAEncryption
71:68:27:5d:42:9a:25:4d:37:e3:55:6f:44:ef:2f:ee:ad:4b:
87:71:af:55:9a:c5:47:ac:2d:5a:01:68:18:f7:03:95:44:ce:
a0:f0:cf:6a:f5:76:19:06:c3:74:de:33:43:b0:cf:7b:e6:73:
f3:3b:d5:0e:dd:81:69:7a:ee:50:e1:8a:6e:5d:b4:f6:c7:30:
bf:4a:65:dc:39:9d:b3:d0:df:af:62:38:77:6b:e3:86:95:fa:
81:bc:46:1b:65:f1:49:2a:ea:3e:b4:85:b4:4c:dc:f0:45:a4:
8c:a1:cc:f0:aa:24:b9:85:3c:75:d0:54:ac:b0:17:64:d5:98:
22:5d:1e:b4:34:87:c0:f8:b1:51:e8:a0:42:f8:0c:93:d7:47:
d8:84:99:6d:1c:03:4f:b3:96:bb:d3:27:fa:59:0a:7f:3b:b3:
0b:31:11:fb:93:85:42:f9:33:a9:04:10:09:f5:9a:8f:2f:a8:
30:5e:cc:23:86:13:a3:1d:9b:41:df:9c:0c:e0:78:15:f3:a4:
7d:31:03:0f:34:87:20:5f:d0:4c:ef:0f:d9:9d:e0:a3:2e:b3:
2d:9a:91:e9:7e:91:08:34:90:7d:34:52:15:db:7f:07:f5:3d:
99:f6:d2:dd:d4:19:3b:2e:ee:c3:44:e8:d9:15:ce:24:98:aa:
7d:3c:9f:4b
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEENP5NzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDEw
MTA5MDU0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjgyYzFlNjc5OGQ4
N2I1M2NlMzIzZWQwNjg3ZWE0NDBmOWUzZjQ1YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL7px3wDuQGTXW+byDd6/BlDvy+7n93ewSb+EiqtVXsk+8oM
4+rb6Y4W2tWIpEvrIs/dm1LuJ9nSzQovOe6SI6ByyIdPlFJBhc5FSqF/+97sKN9c
p0LZ+OYxewUmuUviwz3h52ExKAp9rkyLR/IPm7YZrZeRTMe3wy+UnFnTZBViS4RL
xpcBD9K99NXT66pZkZ0/7jZm+0ePPvLw/PSGEjYAian0ADHI8OEAe1uQHig/kVDZ
He3Lod8tmDwhkL5t/GYl7B7O8jqa7demYqU4/OirZcT20VYZ71CMoIqmtc94qaXa
lbb9uXiR70QuvfjTC8vC+3KbQ0GKyFRMgQt87JECAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBQoLB5nmNh7U84yPtBofqRA+eP0XDAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L0tDd2VaNWpZZTFQT01qN1FhSDZrUVBuajlGdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAIwEgMHBCoOl8ABMAMHBCoOsQcBADANBgkq
hkiG9w0BAQsFAAOCAQEAcWgnXUKaJU0341VvRO8v7q1Lh3GvVZrFR6wtWgFoGPcD
lUTOoPDPavV2GQbDdN4zQ7DPe+Zz8zvVDt2BaXruUOGKbl209scwv0pl3Dmds9Df
r2I4d2vjhpX6gbxGG2XxSSrqPrSFtEzc8EWkjKHM8KokuYU8ddBUrLAXZNWYIl0e
tDSHwPixUeigQvgMk9dH2ISZbRwDT7OWu9Mn+lkKfzuzCzER+5OFQvkzqQQQCfWa
jy+oMF7MI4YTox2bQd+cDOB4FfOkfTEDDzSHIF/QTO8P2Z3goy6zLZqR6X6RCDSQ
fTRSFdt/B/U9mfbS3dQZOy7uw0To2RXOJJiqfTyfSw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:58 2023 by rpki-client on console-ams.rpki-client.org