Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KI1moYGiz0jyrUwhIcC4BkokBJA.roa
File: KI1moYGiz0jyrUwhIcC4BkokBJA.roa (raw, json)
Hash identifier: X4JHgbfe6gmGBFu0EAUKQnNZgNmHOBwpT4JkhT9kS1Q=
Subject key identifier: 28:8D:66:A1:81:A2:CF:48:F2:AD:4C:21:21:C0:B8:06:4A:24:04:90
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0181E769DE9BFB48C4E1FAC497C17A4C4F42
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KI1moYGiz0jyrUwhIcC4BkokBJA.roa
Signing time: Sun 10 Jul 2022 09:21:24 +0000
ROA not before: Sun 10 Jul 2022 09:21:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204676
IP address blocks: 2a10:cc40:1a0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:e7:69:de:9b:fb:48:c4:e1:fa:c4:97:c1:7a:4c:4f:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 10 09:21:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=288d66a181a2cf48f2ad4c2121c0b8064a240490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:51:a5:14:81:9c:81:a0:c2:38:ad:92:ae:bf:
5f:c4:66:56:bd:13:e2:b8:65:17:db:3c:50:9d:b8:
49:77:26:35:f8:26:5e:02:2e:51:2c:18:48:8b:10:
66:67:fc:07:8a:21:26:7c:7d:73:b4:0c:8c:f6:fc:
d0:08:3f:24:17:ae:a5:fc:87:17:fd:8b:d5:cb:de:
e5:6d:fe:6f:f9:9d:ae:cc:8a:1c:b2:0c:c1:5c:19:
8b:ef:de:81:34:79:fd:a6:2d:2e:ec:09:ca:39:ae:
64:5d:e9:20:f9:02:9c:bd:f5:1b:18:08:f3:29:54:
78:88:fb:a4:0f:f1:a3:ae:a0:1f:23:be:64:c2:72:
51:78:b1:51:ef:5e:64:d2:6a:a8:c4:09:e5:2f:ec:
d6:97:9d:d0:fe:35:33:e4:d3:76:e0:e3:cc:71:00:
58:67:6f:22:ac:18:26:a4:cc:ce:7d:9e:6e:86:07:
5d:b8:f9:60:99:4e:a1:15:fd:9a:f2:46:2c:c2:66:
f4:a5:74:47:c2:f9:ca:51:ae:aa:1f:f9:92:25:5a:
9e:8c:ce:59:97:de:e7:f0:24:47:97:90:fd:80:ba:
b1:32:b7:f0:91:05:c6:8c:6d:67:76:4e:8c:00:26:
fe:0b:4a:82:ff:b5:20:ba:2f:7d:a0:2c:96:17:ea:
94:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:8D:66:A1:81:A2:CF:48:F2:AD:4C:21:21:C0:B8:06:4A:24:04:90
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KI1moYGiz0jyrUwhIcC4BkokBJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc40:1a0::/44
Signature Algorithm: sha256WithRSAEncryption
04:b5:1b:39:7f:33:38:4b:53:7d:9f:2c:e9:5b:ef:7b:cf:28:
0f:94:28:ea:c7:d0:fd:a9:49:45:3e:fc:9b:bb:01:ff:ee:0f:
bf:ae:fc:97:5d:7c:af:3a:9c:2a:b6:b3:68:5f:da:e1:a3:20:
72:b1:43:f3:b1:0d:62:81:11:a3:0f:88:c7:d1:c9:e5:ec:1f:
73:25:f9:2a:a6:da:28:29:1b:57:1b:d3:df:a9:39:31:1c:9c:
01:b4:10:35:9c:69:1a:ae:f0:f2:28:29:6c:e3:d4:73:be:5a:
78:25:80:c1:be:41:92:b5:04:34:1d:49:53:a6:2b:d9:3f:3e:
9e:2e:56:50:84:05:24:9e:16:58:9a:57:0b:d5:0c:eb:03:8e:
bd:4f:20:3a:fe:94:75:14:0b:fd:1a:e8:97:5f:7f:92:d1:70:
76:3f:67:07:7f:d7:cc:f7:d8:20:f6:4c:50:60:be:10:fc:3b:
d1:3a:a2:a3:30:1b:8a:14:0c:2e:6f:6f:2c:3a:54:14:39:d0:
24:8d:e1:3b:62:03:b0:c9:56:48:bf:0a:72:a8:ac:79:56:b4:
f6:24:c6:3d:c4:0e:eb:ed:95:3f:de:08:86:af:c9:37:20:30:
63:f3:1e:3a:ef:9e:e1:77:02:05:49:dc:0b:ac:32:d4:34:65:
d3:43:fe:58
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYHnad6b+0jE4frEl8F6TE9CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIwNzEwMDkyMTI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyODhkNjZhMTgxYTJjZjQ4ZjJhZDRjMjEyMWMwYjgwNjRhMjQwNDkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVGlFIGcgaDCOK2Srr9fxGZWvRPi
uGUX2zxQnbhJdyY1+CZeAi5RLBhIixBmZ/wHiiEmfH1ztAyM9vzQCD8kF66l/IcX
/YvVy97lbf5v+Z2uzIocsgzBXBmL796BNHn9pi0u7AnKOa5kXekg+QKcvfUbGAjz
KVR4iPukD/GjrqAfI75kwnJReLFR715k0mqoxAnlL+zWl53Q/jUz5NN24OPMcQBY
Z28irBgmpMzOfZ5uhgdduPlgmU6hFf2a8kYswmb0pXRHwvnKUa6qH/mSJVqejM5Z
l97n8CRHl5D9gLqxMrfwkQXGjG1ndk6MACb+C0qC/7Ugui99oCyWF+qUJQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFCiNZqGBos9I8q1MISHAuAZKJASQMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvS0kxbW9ZR2l6MGp5clV3aEljQzRCa29rQkpBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhDMQAGg
MA0GCSqGSIb3DQEBCwUAA4IBAQAEtRs5fzM4S1N9nyzpW+97zygPlCjqx9D9qUlF
PvybuwH/7g+/rvyXXXyvOpwqtrNoX9rhoyBysUPzsQ1igRGjD4jH0cnl7B9zJfkq
ptooKRtXG9PfqTkxHJwBtBA1nGkarvDyKCls49Rzvlp4JYDBvkGStQQ0HUlTpivZ
Pz6eLlZQhAUknhZYmlcL1QzrA469TyA6/pR1FAv9GuiXX3+S0XB2P2cHf9fM99gg
9kxQYL4Q/DvROqKjMBuKFAwub28sOlQUOdAkjeE7YgOwyVZIvwpyqKx5VrT2JMY9
xA7r7ZU/3giGr8k3IDBj8x46757hdwIFSdwLrDLUNGXTQ/5Y
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:58 2023 by rpki-client on console-ams.rpki-client.org