Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/bPfGJxemn6LeKC3oTIa6CbySrXY.roa
File: bPfGJxemn6LeKC3oTIa6CbySrXY.roa (raw, json)
Hash identifier: UIbM4K+qtmX65rq8MNkyF+hc6efPw6m9MuruLAHd0+s=
Subject key identifier: 6C:F7:C6:27:17:A6:9F:A2:DE:28:2D:E8:4C:86:BA:09:BC:92:AD:76
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1422ABF3
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/bPfGJxemn6LeKC3oTIa6CbySrXY.roa
Signing time: Sun 01 May 2022 10:19:58 +0000
ROA not before: Sun 01 May 2022 10:19:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210320
IP address blocks: 2a0e:b107:18c2::/48 maxlen: 48
2a0e:b107:18c1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337816563 (0x1422abf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 1 10:19:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cf7c62717a69fa2de282de84c86ba09bc92ad76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:22:c8:57:cb:f4:32:f0:30:e8:51:e5:a8:62:
c3:9e:dc:26:40:72:e3:b0:b3:ce:b5:8f:fd:2e:09:
9a:f5:c3:7d:58:a1:f4:d2:f9:5f:85:08:02:1d:3f:
49:4c:0c:94:33:94:82:cc:50:7b:ce:f5:0b:62:f3:
30:cf:f0:1c:f2:d6:cc:f5:71:07:44:71:4a:98:ec:
5b:a8:46:a3:8f:0f:16:4c:a6:25:d0:26:af:67:ff:
fa:d1:d2:63:66:90:73:13:e7:28:cb:4f:bf:85:22:
39:78:2e:b7:ed:03:8c:1c:a9:a9:8d:6f:c6:83:32:
7a:cf:8c:05:63:3c:8a:12:2f:06:72:a4:2c:6f:b7:
5d:d2:bb:72:98:35:c9:24:8e:72:88:c9:e5:c5:cb:
0d:76:e6:2e:1b:8a:5e:5a:49:46:ff:c4:57:1c:0f:
5f:1a:0d:41:18:dd:a2:a4:22:e5:d6:72:1d:83:a9:
5b:0d:15:35:d5:19:30:e9:94:02:00:f0:f1:b2:b0:
0a:72:91:4b:c6:7d:8e:53:c0:ac:4c:0f:44:ba:b0:
42:74:55:a8:97:ba:8e:dc:8d:44:87:90:75:9f:70:
1b:89:9f:ef:aa:87:bc:64:5a:dc:9f:51:33:c7:96:
ee:a8:03:77:05:3e:d3:2d:e3:60:fe:38:04:6b:52:
be:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:F7:C6:27:17:A6:9F:A2:DE:28:2D:E8:4C:86:BA:09:BC:92:AD:76
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/bPfGJxemn6LeKC3oTIa6CbySrXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:18c1::-2a0e:b107:18c2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
ad:95:5a:43:d4:0e:50:16:18:dc:8f:aa:45:65:6c:7e:13:df:
ef:b1:60:45:4a:2a:0d:f9:74:95:2b:4f:41:58:6f:ff:71:d4:
9c:12:03:ae:42:29:19:d1:93:89:e5:67:8a:48:c0:15:26:23:
8c:3c:cd:71:26:15:e4:57:c8:8b:d8:10:07:04:6a:76:39:67:
2b:06:03:51:34:6f:b5:ba:a1:15:c8:6f:ef:52:20:63:28:1b:
f1:36:d6:33:ea:42:23:8a:e8:9a:0d:07:58:2b:3b:30:dc:6d:
c8:10:b7:c8:af:1f:4c:dd:6f:47:0d:10:1d:af:ba:d7:ac:53:
ea:45:00:f9:b9:5e:02:10:6b:45:d3:ad:c7:ac:57:5f:8c:4f:
d1:5a:68:90:b9:52:1f:c6:ac:38:e5:4a:5d:90:b6:16:ee:81:
01:b4:18:89:7a:3d:c3:e2:eb:5b:56:55:12:d6:a8:c1:2c:b5:
a0:02:ed:6c:c9:91:86:59:af:a8:8f:2e:17:f5:f8:79:38:3d:
55:59:3a:17:9e:6d:f4:99:a9:ba:08:f0:b8:0d:be:7f:a1:bc:
28:22:0f:8e:a4:30:3b:4b:19:2d:e1:6f:96:f9:ed:a7:47:0d:
f4:b1:65:ef:ab:32:21:a0:99:b8:d9:1e:b1:28:e6:50:2f:23:
b3:75:6e:e6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIEFCKr8zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDUw
MTEwMTk1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmNmN2M2MjcxN2E2
OWZhMmRlMjgyZGU4NGM4NmJhMDliYzkyYWQ3NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMUiyFfL9DLwMOhR5ahiw57cJkBy47CzzrWP/S4JmvXDfVih
9NL5X4UIAh0/SUwMlDOUgsxQe871C2LzMM/wHPLWzPVxB0RxSpjsW6hGo48PFkym
JdAmr2f/+tHSY2aQcxPnKMtPv4UiOXgut+0DjBypqY1vxoMyes+MBWM8ihIvBnKk
LG+3XdK7cpg1ySSOcojJ5cXLDXbmLhuKXlpJRv/EVxwPXxoNQRjdoqQi5dZyHYOp
Ww0VNdUZMOmUAgDw8bKwCnKRS8Z9jlPArEwPRLqwQnRVqJe6jtyNRIeQdZ9wG4mf
76qHvGRa3J9RM8eW7qgDdwU+0y3jYP44BGtSvp0CAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBRs98YnF6afot4oLehMhroJvJKtdjAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L2JQZkdKeGVtbjZMZUtDM29USWE2Q2J5U3JYWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAt
BggrBgEFBQcBBwEB/wQeMBwwGgQCAAIwFDASAwcAKg6xBxjBAwcAKg6xBxjCMA0G
CSqGSIb3DQEBCwUAA4IBAQCtlVpD1A5QFhjcj6pFZWx+E9/vsWBFSioN+XSVK09B
WG//cdScEgOuQikZ0ZOJ5WeKSMAVJiOMPM1xJhXkV8iL2BAHBGp2OWcrBgNRNG+1
uqEVyG/vUiBjKBvxNtYz6kIjiuiaDQdYKzsw3G3IELfIrx9M3W9HDRAdr7rXrFPq
RQD5uV4CEGtF063HrFdfjE/RWmiQuVIfxqw45UpdkLYW7oEBtBiJej3D4utbVlUS
1qjBLLWgAu1syZGGWa+ojy4X9fh5OD1VWToXnm30mam6CPC4Db5/obwoIg+OpDA7
Sxkt4W+W+e2nRw30sWXvqzIhoJm42R6xKOZQLyOzdW7m
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org