Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Vg1C4aMeFqUM5p4SK2EANRweQVM.roa
File: Vg1C4aMeFqUM5p4SK2EANRweQVM.roa (raw, json)
Hash identifier: nGixRN6tgcGAaCVtm/N2P0h17S9GJRDQz7Efd7roSlM=
Subject key identifier: 56:0D:42:E1:A3:1E:16:A5:0C:E6:9E:12:2B:61:00:35:1C:1E:41:53
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 12C32F0F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Vg1C4aMeFqUM5p4SK2EANRweQVM.roa
Signing time: Mon 07 Mar 2022 16:36:01 +0000
ROA not before: Mon 07 Mar 2022 16:36:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207111
IP address blocks: 2a0e:b107:1900::/48 maxlen: 48
2a0e:b107:1901::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 314781455 (0x12c32f0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 7 16:36:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=560d42e1a31e16a50ce69e122b6100351c1e4153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:e1:af:7c:15:09:64:4c:86:33:e9:fc:37:98:
5f:19:85:1b:78:6a:94:5b:b4:0b:66:40:5a:76:b0:
c2:0d:55:06:1a:90:ba:5c:3c:34:b7:79:9d:20:a6:
46:f4:aa:61:ac:98:10:1a:fe:04:01:85:19:50:a4:
d7:ce:c6:e3:c5:64:98:a7:9b:a0:19:f9:b1:71:f0:
26:3b:bc:94:14:e0:c2:38:05:95:83:12:01:7a:74:
9a:ca:c7:71:62:89:bd:60:c0:de:1f:fc:0c:1a:23:
6a:b0:a2:3e:41:43:95:1f:11:14:44:1e:be:03:4b:
a2:e0:a0:5e:ae:96:ec:25:02:33:de:31:4c:1c:76:
6b:47:c5:28:a0:68:e8:73:ae:6c:7c:d0:bd:06:4c:
9b:8b:b0:e6:14:0c:c8:43:0b:9f:0f:81:59:a1:89:
3d:42:82:76:4e:6e:f8:ac:05:d3:cd:67:02:64:aa:
0a:0c:3c:9a:8a:de:fa:19:56:71:b3:31:8f:53:b8:
e8:88:04:b3:0b:fc:c5:36:9c:f6:82:13:ac:eb:06:
56:5f:69:07:8b:a4:51:6f:a7:2e:a2:d7:5c:62:57:
1b:2b:b3:7f:ea:07:bc:a9:68:5c:37:a9:fe:3c:6b:
f7:02:c8:22:66:62:51:d2:4a:bf:0b:f0:26:9b:33:
91:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:0D:42:E1:A3:1E:16:A5:0C:E6:9E:12:2B:61:00:35:1C:1E:41:53
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Vg1C4aMeFqUM5p4SK2EANRweQVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1900::/47
Signature Algorithm: sha256WithRSAEncryption
2f:f9:0c:da:19:12:f0:a5:59:8d:06:8c:3e:a9:f9:5d:bb:a8:
dd:6d:ee:8e:39:08:b5:2d:45:cd:db:f4:ae:6e:50:49:8d:e8:
da:b3:69:8d:bf:73:a4:74:2a:5e:84:ca:f4:b5:0b:25:f8:b3:
17:22:66:96:21:d2:af:a5:25:69:d5:d6:9e:d7:46:dc:ba:83:
f1:7a:7e:10:15:00:cd:1d:28:e9:6f:e6:09:5d:d1:de:27:80:
93:1d:3b:98:b7:34:33:02:a2:50:1f:ed:3b:40:1e:b0:9b:8b:
aa:3d:41:4a:03:57:75:63:31:20:19:49:a7:77:54:4e:15:76:
82:aa:45:c6:2a:40:57:45:30:be:60:98:dd:fe:5f:ea:91:62:
d4:bd:57:4e:86:67:09:8a:ef:5e:8a:34:22:d0:16:a3:29:1e:
a1:00:5b:64:3f:9a:3c:99:e0:96:e7:f4:39:33:2a:da:9b:99:
5e:c4:28:8a:e9:99:f5:1f:f8:3c:00:71:a4:67:3d:33:c7:59:
3c:42:3d:65:46:e5:91:a4:e8:41:1f:3e:a0:04:68:76:d3:4d:
dd:da:55:64:7b:5a:57:85:ec:46:6e:67:0d:a4:91:81:e5:7c:
18:6a:a2:7b:ed:f9:bb:eb:84:53:2f:69:3a:29:6c:66:c5:07:
d4:51:f9:de
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEEsMvDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDMw
NzE2MzYwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTYwZDQyZTFhMzFl
MTZhNTBjZTY5ZTEyMmI2MTAwMzUxYzFlNDE1MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPbhr3wVCWRMhjPp/DeYXxmFG3hqlFu0C2ZAWnawwg1VBhqQ
ulw8NLd5nSCmRvSqYayYEBr+BAGFGVCk187G48VkmKeboBn5sXHwJju8lBTgwjgF
lYMSAXp0msrHcWKJvWDA3h/8DBojarCiPkFDlR8RFEQevgNLouCgXq6W7CUCM94x
TBx2a0fFKKBo6HOubHzQvQZMm4uw5hQMyEMLnw+BWaGJPUKCdk5u+KwF081nAmSq
Cgw8more+hlWcbMxj1O46IgEswv8xTac9oITrOsGVl9pB4ukUW+nLqLXXGJXGyuz
f+oHvKloXDep/jxr9wLIImZiUdJKvwvwJpszkccCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRWDULhox4WpQzmnhIrYQA1HB5BUzAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L1ZnMUM0YU1lRnFVTTVwNFNLMkVBTlJ3ZVFWTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHASoOsQcZADANBgkqhkiG9w0BAQsF
AAOCAQEAL/kM2hkS8KVZjQaMPqn5Xbuo3W3ujjkItS1Fzdv0rm5QSY3o2rNpjb9z
pHQqXoTK9LULJfizFyJmliHSr6UladXWntdG3LqD8Xp+EBUAzR0o6W/mCV3R3ieA
kx07mLc0MwKiUB/tO0AesJuLqj1BSgNXdWMxIBlJp3dUThV2gqpFxipAV0UwvmCY
3f5f6pFi1L1XToZnCYrvXoo0ItAWoykeoQBbZD+aPJngluf0OTMq2puZXsQoiumZ
9R/4PABxpGc9M8dZPEI9ZUblkaToQR8+oARodtNN3dpVZHtaV4XsRm5nDaSRgeV8
GGqie+35u+uEUy9pOilsZsUH1FH53g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:00 2023 by rpki-client on console-ams.rpki-client.org