Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Rq0z0UwG2lryjavh9NDIOmqJv10.roa
File: Rq0z0UwG2lryjavh9NDIOmqJv10.roa (raw, json)
Hash identifier: knhIUdRrouMvRC453wyKZ5st+Nac4pzGBr/RfGIF/HA=
Subject key identifier: 46:AD:33:D1:4C:06:DA:5A:F2:8D:AB:E1:F4:D0:C8:3A:6A:89:BF:5D
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10C6DFF0
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Rq0z0UwG2lryjavh9NDIOmqJv10.roa
Signing time: Sat 01 Jan 2022 09:05:30 +0000
ROA not before: Sat 01 Jan 2022 09:05:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211481
IP address blocks: 2a0e:97c0:330::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281468912 (0x10c6dff0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46ad33d14c06da5af28dabe1f4d0c83a6a89bf5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:34:c4:d4:00:ba:62:52:c7:2a:a0:e9:ac:90:
ad:3f:a9:b9:af:82:b8:6e:bb:75:31:f3:ac:81:1e:
85:ac:40:bd:be:71:27:c4:38:86:3c:79:f2:a7:e9:
78:f2:c7:c1:c4:d5:9d:1f:b0:7d:53:86:e8:00:9a:
d7:3a:f3:96:3e:2c:a3:1c:3a:0e:89:ba:e3:a5:9f:
ed:e6:9c:bb:10:f0:40:99:f4:03:41:e9:bc:9d:e6:
6f:d2:d3:75:f9:13:c8:11:6c:c2:d9:31:07:20:d7:
2a:e3:8f:c0:5c:b0:f8:56:8e:ea:b1:a7:6e:36:65:
fd:aa:36:22:d6:9f:da:5a:f8:41:7a:14:0f:41:57:
51:90:69:d8:95:26:cd:31:aa:3d:0a:f5:2f:20:a7:
e1:85:f5:fb:c7:3a:0a:b7:4b:21:03:24:25:fe:2c:
ed:0f:87:e5:d0:ba:7b:ad:52:5c:73:57:4d:eb:be:
f1:5e:03:b8:b0:eb:56:fb:22:37:5a:6e:4c:f3:3a:
2c:f8:5f:10:d5:b3:b5:f9:0a:74:ab:fe:68:6a:fb:
94:44:62:6e:2c:eb:6e:a0:24:1e:90:6e:72:ea:73:
41:7c:2a:cc:20:b6:8c:d6:3b:1f:57:79:a6:ba:ab:
a3:88:19:a3:61:69:82:db:23:e9:83:2a:d4:43:34:
0f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:AD:33:D1:4C:06:DA:5A:F2:8D:AB:E1:F4:D0:C8:3A:6A:89:BF:5D
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Rq0z0UwG2lryjavh9NDIOmqJv10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:330::/44
Signature Algorithm: sha256WithRSAEncryption
4d:9f:92:59:53:31:1b:5e:43:f8:83:0f:e1:29:6d:36:3e:93:
68:22:a5:af:c7:d4:64:16:f7:63:0c:4c:9b:14:61:c0:91:41:
fd:c8:51:d6:17:91:9c:c2:aa:25:ef:d6:c4:98:a2:cf:c3:53:
20:c1:2a:e8:f0:35:ed:6e:7a:b2:5d:fa:76:63:03:60:e3:62:
a7:de:35:f4:94:2d:94:94:6f:b8:3f:fb:63:05:df:cc:78:42:
15:f5:9c:e4:73:da:b1:92:38:7c:0c:4a:f5:74:d8:51:9f:68:
76:00:e9:3c:70:b4:77:04:a2:76:57:86:dc:ba:cb:fd:7a:b7:
a2:63:43:a3:bd:d3:7b:cc:1e:bd:cf:c8:c3:86:16:69:0e:ce:
47:1e:8e:8c:33:44:6d:89:a3:f7:13:49:26:f2:31:d8:fb:96:
f4:14:ef:f4:ec:fd:67:48:c0:35:b7:c2:15:4a:49:10:a5:70:
4e:f8:e6:12:e8:a1:5c:33:79:10:83:d9:8d:bf:45:7b:38:3c:
37:47:b3:d1:ee:1c:1b:52:42:b2:a4:94:97:01:f0:9e:b8:de:
60:84:16:fd:2e:3e:eb:1d:7f:6c:04:84:dd:60:16:7f:45:76:
d8:2c:c9:78:79:44:ce:41:e3:d4:d2:c4:cf:4d:fd:dd:ce:4f:
3b:2a:c4:80
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEEMbf8DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDEw
MTA5MDUzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDZhZDMzZDE0YzA2
ZGE1YWYyOGRhYmUxZjRkMGM4M2E2YTg5YmY1ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALU0xNQAumJSxyqg6ayQrT+pua+CuG67dTHzrIEehaxAvb5x
J8Q4hjx58qfpePLHwcTVnR+wfVOG6ACa1zrzlj4soxw6Dom646Wf7eacuxDwQJn0
A0HpvJ3mb9LTdfkTyBFswtkxByDXKuOPwFyw+FaO6rGnbjZl/ao2Itaf2lr4QXoU
D0FXUZBp2JUmzTGqPQr1LyCn4YX1+8c6CrdLIQMkJf4s7Q+H5dC6e61SXHNXTeu+
8V4DuLDrVvsiN1puTPM6LPhfENWztfkKdKv+aGr7lERibizrbqAkHpBucupzQXwq
zCC2jNY7H1d5prqro4gZo2Fpgtsj6YMq1EM0D6UCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRGrTPRTAbaWvKNq+H00Mg6aom/XTAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L1JxMHowVXdHMmxyeWphdmg5TkRJT21xSnYxMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoOl8ADMDANBgkqhkiG9w0BAQsF
AAOCAQEATZ+SWVMxG15D+IMP4SltNj6TaCKlr8fUZBb3YwxMmxRhwJFB/chR1heR
nMKqJe/WxJiiz8NTIMEq6PA17W56sl36dmMDYONip9419JQtlJRvuD/7YwXfzHhC
FfWc5HPasZI4fAxK9XTYUZ9odgDpPHC0dwSidleG3LrL/Xq3omNDo73Te8wevc/I
w4YWaQ7ORx6OjDNEbYmj9xNJJvIx2PuW9BTv9Oz9Z0jANbfCFUpJEKVwTvjmEuih
XDN5EIPZjb9Fezg8N0ez0e4cG1JCsqSUlwHwnrjeYIQW/S4+6x1/bASE3WAWf0V2
2CzJeHlEzkHj1NLEz0393c5POyrEgA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-fra.rpki-client.org