Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/bqd73jiz2CNhJYZGISSb4hhjmuw.roa
File: bqd73jiz2CNhJYZGISSb4hhjmuw.roa (raw, json)
Hash identifier: L+FnBd5/dhxv7TeJXR2AqT4ut4OVsO6CIX36NRCfuis=
Subject key identifier: 6E:A7:7B:DE:38:B3:D8:23:61:25:86:46:21:24:9B:E2:18:63:9A:EC
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 12CD1C6A
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/bqd73jiz2CNhJYZGISSb4hhjmuw.roa
Signing time: Wed 09 Mar 2022 16:48:38 +0000
ROA not before: Wed 09 Mar 2022 16:48:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207662
IP address blocks: 2a0e:97c0:760::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 315432042 (0x12cd1c6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 9 16:48:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ea77bde38b3d8236125864621249be218639aec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2b:69:a9:8a:5b:e0:e4:e2:52:4f:02:2c:5c:
a7:c4:4d:76:63:39:d2:21:94:2c:d4:4b:c9:b9:ca:
a0:c2:ac:a4:9a:12:90:1e:78:2e:21:6a:8d:3c:9d:
04:a5:fa:cb:6f:0b:dd:29:8d:ea:79:3b:6b:28:5a:
46:17:ed:b1:14:f7:24:10:e9:33:53:57:25:44:5f:
14:c8:3b:50:8b:9a:54:c6:b4:92:88:7e:52:0f:96:
fb:d4:c7:ad:ac:9b:01:69:6f:bb:97:28:2e:15:b4:
15:c9:1a:76:d8:e4:a1:95:0b:bd:41:03:5f:98:aa:
27:02:df:d4:a1:1c:64:ea:c8:f6:0e:1a:34:58:92:
90:2a:0e:64:c7:d9:c3:49:b6:35:a1:41:d8:6a:48:
f5:de:af:98:fa:a2:4b:90:6c:3c:c5:46:ab:dd:5f:
42:9e:bf:92:c3:65:cd:63:59:3b:f1:e0:29:15:81:
48:40:e9:e2:14:98:03:4a:27:d4:86:80:b3:41:f1:
50:18:9c:95:87:6e:c0:fd:02:a8:43:db:6f:76:10:
fb:e9:7f:73:a2:fe:86:df:7f:13:f5:92:0b:32:75:
27:cd:5c:70:00:d0:26:aa:4e:c1:ad:b7:90:fa:f7:
b3:f5:8d:f3:a2:ba:3f:3b:7c:6d:2b:08:70:55:d4:
ca:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:A7:7B:DE:38:B3:D8:23:61:25:86:46:21:24:9B:E2:18:63:9A:EC
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/bqd73jiz2CNhJYZGISSb4hhjmuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:760::/44
Signature Algorithm: sha256WithRSAEncryption
43:88:e0:80:32:f8:37:e2:56:c9:bc:f8:ec:58:05:28:8f:cc:
a1:1e:96:32:a0:41:02:7a:99:64:ec:e2:92:80:51:61:40:6e:
d6:b5:e1:a9:80:ae:90:df:54:6b:52:78:c9:32:ff:90:5e:75:
90:ed:64:b1:a9:f5:14:fb:77:1e:89:b9:b1:6a:fe:d0:03:2f:
ed:5d:78:99:7f:e1:da:ab:0f:48:15:ef:18:a5:f7:b1:ec:e2:
9a:98:d5:7a:4e:4e:c0:5b:1c:00:c0:c0:6d:e8:78:c8:d5:7b:
d7:8d:f9:b9:88:e7:ea:d4:62:98:c7:c4:0b:e9:d1:e0:69:4b:
40:7a:e3:f7:5f:d0:40:bb:91:70:77:33:9d:3a:3d:be:29:8e:
7d:85:69:58:dc:59:7a:19:d1:81:ec:8f:0b:49:23:2c:62:2a:
23:77:77:d5:87:33:e0:58:09:34:ed:01:fc:21:66:95:ef:17:
52:b8:ea:78:7f:d9:c1:7a:ca:4e:4a:2d:0f:e6:26:4a:67:9f:
c6:f6:80:20:1a:55:1b:e3:51:7e:d1:bb:37:79:87:3f:80:13:
0f:bd:1d:ec:2f:cd:c6:bd:8d:1a:fb:c4:37:bf:af:6c:26:9c:
69:fb:5d:03:75:0f:02:a7:90:ac:2d:36:60:13:fb:1e:f3:71:
f5:bc:41:fc
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEEs0cajANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDMw
OTE2NDgzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmVhNzdiZGUzOGIz
ZDgyMzYxMjU4NjQ2MjEyNDliZTIxODYzOWFlYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK0raamKW+Dk4lJPAixcp8RNdmM50iGULNRLybnKoMKspJoS
kB54LiFqjTydBKX6y28L3SmN6nk7ayhaRhftsRT3JBDpM1NXJURfFMg7UIuaVMa0
koh+Ug+W+9THraybAWlvu5coLhW0FckadtjkoZULvUEDX5iqJwLf1KEcZOrI9g4a
NFiSkCoOZMfZw0m2NaFB2GpI9d6vmPqiS5BsPMVGq91fQp6/ksNlzWNZO/HgKRWB
SEDp4hSYA0on1IaAs0HxUBiclYduwP0CqEPbb3YQ++l/c6L+ht9/E/WSCzJ1J81c
cADQJqpOwa23kPr3s/WN86K6Pzt8bSsIcFXUykcCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRup3veOLPYI2ElhkYhJJviGGOa7DAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L2JxZDczaml6MkNOaEpZWkdJU1NiNGhoam11dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoOl8AHYDANBgkqhkiG9w0BAQsF
AAOCAQEAQ4jggDL4N+JWybz47FgFKI/MoR6WMqBBAnqZZOzikoBRYUBu1rXhqYCu
kN9Ua1J4yTL/kF51kO1ksan1FPt3Hom5sWr+0AMv7V14mX/h2qsPSBXvGKX3sezi
mpjVek5OwFscAMDAbeh4yNV71435uYjn6tRimMfEC+nR4GlLQHrj91/QQLuRcHcz
nTo9vimOfYVpWNxZehnRgeyPC0kjLGIqI3d31Ycz4FgJNO0B/CFmle8XUrjqeH/Z
wXrKTkotD+YmSmefxvaAIBpVG+NRftG7N3mHP4ATD70d7C/Nxr2NGvvEN7+vbCac
aftdA3UPAqeQrC02YBP7HvNx9bxB/A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org