Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/To5ha2O_KTFE1mrOZcfWjvbNR2A.roa
File: To5ha2O_KTFE1mrOZcfWjvbNR2A.roa (raw, json)
Hash identifier: cxk7gl63/IbeyR4nqBJiIHYjDqJzJ7C6jkUR/kqhou8=
Subject key identifier: 4E:8E:61:6B:63:BF:29:31:44:D6:6A:CE:65:C7:D6:8E:F6:CD:47:60
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01833871961E80AC553829A23513F2152546
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/To5ha2O_KTFE1mrOZcfWjvbNR2A.roa
Signing time: Tue 13 Sep 2022 20:01:51 +0000
ROA not before: Tue 13 Sep 2022 20:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204840
IP address blocks: 2a0e:97c0:3c0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:38:71:96:1e:80:ac:55:38:29:a2:35:13:f2:15:25:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Sep 13 20:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e8e616b63bf293144d66ace65c7d68ef6cd4760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:0a:06:ae:a3:9d:8d:4f:e7:25:76:59:99:f6:
a4:de:47:7b:46:e6:25:9b:13:9d:22:82:cb:bd:30:
8b:a7:cb:a7:98:dd:da:1a:02:76:7d:dc:96:b7:44:
53:bb:b3:30:3f:ce:b7:9a:3d:cf:6a:9d:ba:1f:c6:
97:cd:fd:48:b5:ce:bd:ba:62:1d:c5:9b:8e:41:bc:
e8:b6:9c:cf:c7:37:7f:01:a2:7e:1f:4b:e6:75:da:
f5:d6:b0:20:d8:e1:ea:1a:68:d4:46:c7:92:a4:bb:
15:69:40:9d:87:d8:65:6c:47:c8:d7:6a:4f:11:a7:
74:c6:c4:77:f2:f0:83:b4:23:95:9d:b2:42:d6:25:
6c:4c:e6:67:32:f7:54:b5:13:8c:85:4f:ed:d0:3f:
93:20:62:18:52:da:aa:ff:9f:53:73:b3:cd:fe:e8:
d3:1c:45:36:6e:b4:2d:91:92:3e:f7:05:f9:32:aa:
23:33:e5:5c:fb:51:7d:cf:d4:97:bb:83:0a:a9:b1:
51:a5:29:ed:a5:99:32:58:1e:df:cf:d5:9c:bd:cd:
30:be:b1:c4:5f:53:3a:a2:35:f1:25:c8:82:03:0b:
ac:9a:e7:aa:1e:7b:b9:b9:24:19:db:cc:d7:17:0f:
02:8b:ce:3c:d9:b9:92:47:4e:e9:3a:2b:a4:92:94:
6f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:8E:61:6B:63:BF:29:31:44:D6:6A:CE:65:C7:D6:8E:F6:CD:47:60
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/To5ha2O_KTFE1mrOZcfWjvbNR2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:3c0::/44
Signature Algorithm: sha256WithRSAEncryption
1d:a0:a6:5c:ce:08:1d:e7:3a:e3:cf:56:14:3e:ed:64:ff:74:
4f:70:c8:a4:42:11:db:a0:59:e3:10:3a:0b:14:09:43:bf:8a:
fd:05:c1:fa:8f:18:b4:6f:a4:90:69:9e:1f:af:bb:27:b5:f8:
54:e0:85:14:e7:23:74:f7:22:1f:43:e3:0d:73:03:e0:0d:e6:
42:47:31:01:a4:5a:ee:8a:1e:8e:da:f5:8b:d9:ff:8e:73:78:
c1:d2:f3:b5:b5:70:c9:d8:e0:2a:ca:9f:ef:2a:3e:52:e8:11:
7b:d1:4b:30:b3:ab:b2:16:e7:f8:11:11:7f:88:6c:31:15:b0:
f6:de:d2:80:3d:d7:50:1b:0b:d0:84:92:f6:37:85:12:24:70:
26:0d:b8:f7:eb:6f:e7:ef:a1:6c:e4:f7:72:fa:5f:96:ba:05:
cd:f5:9e:fa:e9:41:9e:e0:93:70:32:9f:0b:57:3a:77:9f:d2:
38:70:93:5e:f7:f9:4d:88:7f:14:45:81:5d:48:9b:0f:13:d5:
7e:c7:8c:3a:5a:89:1c:d0:14:0e:39:5f:c6:e6:36:90:05:d9:
96:fa:b7:3c:1b:6b:48:d0:68:c7:a4:10:76:86:60:5d:13:25:
77:a1:23:1d:f5:92:63:0f:aa:95:09:21:94:99:f6:2a:5d:7f:
ee:36:f0:ca
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYM4cZYegKxVOCmiNRPyFSVGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIwOTEzMjAwMTUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZThlNjE2YjYzYmYyOTMxNDRkNjZhY2U2NWM3ZDY4ZWY2Y2Q0NzYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4QoGrqOdjU/nJXZZmfak3kd7RuYl
mxOdIoLLvTCLp8unmN3aGgJ2fdyWt0RTu7MwP863mj3Pap26H8aXzf1Itc69umId
xZuOQbzotpzPxzd/AaJ+H0vmddr11rAg2OHqGmjURseSpLsVaUCdh9hlbEfI12pP
Ead0xsR38vCDtCOVnbJC1iVsTOZnMvdUtROMhU/t0D+TIGIYUtqq/59Tc7PN/ujT
HEU2brQtkZI+9wX5MqojM+Vc+1F9z9SXu4MKqbFRpSntpZkyWB7fz9Wcvc0wvrHE
X1M6ojXxJciCAwusmueqHnu5uSQZ28zXFw8Ci8482bmSR07pOiukkpRvFQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFE6OYWtjvykxRNZqzmXH1o72zUdgMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvVG81aGEyT19LVEZFMW1yT1pjZldqdmJOUjJBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6XwAPA
MA0GCSqGSIb3DQEBCwUAA4IBAQAdoKZczggd5zrjz1YUPu1k/3RPcMikQhHboFnj
EDoLFAlDv4r9BcH6jxi0b6SQaZ4fr7sntfhU4IUU5yN09yIfQ+MNcwPgDeZCRzEB
pFruih6O2vWL2f+Oc3jB0vO1tXDJ2OAqyp/vKj5S6BF70Usws6uyFuf4ERF/iGwx
FbD23tKAPddQGwvQhJL2N4USJHAmDbj362/n76Fs5Pdy+l+WugXN9Z766UGe4JNw
Mp8LVzp3n9I4cJNe9/lNiH8URYFdSJsPE9V+x4w6Wokc0BQOOV/G5jaQBdmW+rc8
G2tI0GjHpBB2hmBdEyV3oSMd9ZJjD6qVCSGUmfYqXX/uNvDK
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-fra.rpki-client.org