Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TzYM6gqu-8Vlu8p_0rBLhNZ6FBo.roa
File: TzYM6gqu-8Vlu8p_0rBLhNZ6FBo.roa (raw, json)
Hash identifier: 1owRn02t9NyZcKAT1h8tZPTsEZokP74zmOgV2/Z8cyA=
Subject key identifier: 4F:36:0C:EA:0A:AE:FB:C5:65:BB:CA:7F:D2:B0:4B:84:D6:7A:14:1A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10842B33
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TzYM6gqu-8Vlu8p_0rBLhNZ6FBo.roa
Signing time: Sat 01 Jan 2022 09:04:52 +0000
ROA not before: Sat 01 Jan 2022 09:04:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140098
IP address blocks: 2a0e:b107:700::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277097267 (0x10842b33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:04:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f360cea0aaefbc565bbca7fd2b04b84d67a141a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4d:71:8c:fa:3d:2e:0f:97:c7:e4:bc:6f:32:
fe:19:04:47:a6:0d:f5:9d:52:f3:27:06:fa:c9:64:
e8:b1:18:e7:1b:6a:d0:61:83:26:91:46:d2:f4:d8:
88:d5:24:2c:96:10:41:3c:b9:ac:34:1a:0d:63:d8:
e5:0c:eb:5c:a9:0f:7b:92:b9:13:9b:69:c8:8b:44:
76:3b:59:ca:4f:5c:71:7d:56:3c:28:ad:f2:20:1e:
cc:26:f5:6d:b3:2f:a3:96:ee:9f:41:29:5f:a9:85:
43:3c:ca:60:91:15:fe:e0:ac:bb:69:e9:7b:95:ae:
d8:ae:9f:de:95:93:73:2e:6d:84:e3:78:93:fc:33:
5b:b4:82:39:c8:48:09:07:55:94:1d:05:69:f8:69:
be:c5:16:c7:e7:3e:ea:9b:14:1a:01:9f:4f:b9:22:
66:4f:b8:f5:4d:35:1b:aa:3d:72:bc:de:68:b6:4d:
9b:c0:4a:c8:3c:e1:d6:9a:72:84:c2:d3:f5:9e:04:
86:91:cb:f2:b6:9c:ca:c1:ba:7e:04:69:d4:44:ab:
54:51:14:4d:c0:e9:7a:bb:53:8f:f0:e1:56:c4:c6:
4c:be:47:4d:be:f6:d3:65:b0:3c:e5:be:79:66:9f:
38:42:7a:ca:a7:6b:3c:7b:b3:fa:38:f1:53:c0:4f:
14:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:36:0C:EA:0A:AE:FB:C5:65:BB:CA:7F:D2:B0:4B:84:D6:7A:14:1A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/TzYM6gqu-8Vlu8p_0rBLhNZ6FBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:700::/48
Signature Algorithm: sha256WithRSAEncryption
bc:61:3d:86:dc:0b:3b:60:e2:11:1f:bd:7a:57:95:29:5f:58:
f6:9a:d9:eb:dc:0b:ec:be:05:54:2e:ce:5c:25:4d:49:e7:32:
86:69:0c:c7:a7:37:04:bd:68:60:f4:9e:1d:52:6b:fe:c2:16:
c4:59:91:05:05:36:67:c9:1d:aa:7d:3b:86:40:ff:ac:0f:10:
3f:7d:40:fb:b8:38:d8:c5:1a:6c:37:57:c1:c1:24:be:78:31:
ec:10:dd:5b:7e:7f:2e:87:02:24:c3:7e:af:b7:e4:49:64:1f:
2b:15:9e:29:0c:1e:10:b1:c5:85:0b:cb:57:bb:4c:82:98:72:
b3:7d:75:f2:5d:bc:af:2b:02:bb:b7:4b:d1:03:3b:1a:d4:0a:
26:31:fc:68:19:c6:6f:48:a7:9d:36:75:83:cd:88:7f:08:5e:
61:f6:73:a9:ef:e3:88:9d:86:4d:1a:4e:80:52:e7:3a:92:8e:
b8:0d:37:3e:06:49:8b:0e:5d:54:e2:02:df:6b:01:e7:df:b8:
68:72:15:d7:60:af:d4:84:ab:b7:55:31:86:93:4f:86:3f:ce:
25:d3:0e:bd:43:f1:57:f4:be:75:46:66:e4:73:94:a8:34:93:
d7:f6:6a:44:63:bc:52:9f:fe:aa:57:b6:75:93:b2:96:dd:12:
dc:fe:d8:25
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEEIQrMzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDEw
MTA5MDQ1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGYzNjBjZWEwYWFl
ZmJjNTY1YmJjYTdmZDJiMDRiODRkNjdhMTQxYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMFNcYz6PS4Pl8fkvG8y/hkER6YN9Z1S8ycG+slk6LEY5xtq
0GGDJpFG0vTYiNUkLJYQQTy5rDQaDWPY5QzrXKkPe5K5E5tpyItEdjtZyk9ccX1W
PCit8iAezCb1bbMvo5bun0EpX6mFQzzKYJEV/uCsu2npe5Wu2K6f3pWTcy5thON4
k/wzW7SCOchICQdVlB0FafhpvsUWx+c+6psUGgGfT7kiZk+49U01G6o9crzeaLZN
m8BKyDzh1ppyhMLT9Z4EhpHL8racysG6fgRp1ESrVFEUTcDpertTj/DhVsTGTL5H
Tb7202WwPOW+eWafOEJ6yqdrPHuz+jjxU8BPFAcCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRPNgzqCq77xWW7yn/SsEuE1noUGjAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L1R6WU02Z3F1LThWbHU4cF8wckJMaE5aNkZCby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOsQcHADANBgkqhkiG9w0BAQsF
AAOCAQEAvGE9htwLO2DiER+9eleVKV9Y9prZ69wL7L4FVC7OXCVNSecyhmkMx6c3
BL1oYPSeHVJr/sIWxFmRBQU2Z8kdqn07hkD/rA8QP31A+7g42MUabDdXwcEkvngx
7BDdW35/LocCJMN+r7fkSWQfKxWeKQweELHFhQvLV7tMgphys3118l28rysCu7dL
0QM7GtQKJjH8aBnGb0innTZ1g82IfwheYfZzqe/jiJ2GTRpOgFLnOpKOuA03PgZJ
iw5dVOIC32sB59+4aHIV12Cv1ISrt1UxhpNPhj/OJdMOvUPxV/S+dUZm5HOUqDST
1/ZqRGO8Up/+qle2dZOylt0S3P7YJQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:59 2023 by rpki-client on console-ams.rpki-client.org