Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ckB4LO6zgeL9Y1yKm3gxKKvSi2Y.roa
File: ckB4LO6zgeL9Y1yKm3gxKKvSi2Y.roa (raw, json)
Hash identifier: YlxBGbevKd4oqxPprcfY4lMy5Boq8s/VQGYUMI9ZBrU=
Subject key identifier: 72:40:78:2C:EE:B3:81:E2:FD:63:5C:8A:9B:78:31:28:AB:D2:8B:66
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 147983AD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ckB4LO6zgeL9Y1yKm3gxKKvSi2Y.roa
Signing time: Sat 07 May 2022 20:06:23 +0000
ROA not before: Sat 07 May 2022 20:06:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206981
IP address blocks: 2a0e:97c0:6a0::/48 maxlen: 48
2a0e:97c0:6a1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 343507885 (0x147983ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 7 20:06:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7240782ceeb381e2fd635c8a9b783128abd28b66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3a:22:52:01:31:cd:64:7b:d5:3f:b7:17:6d:
64:08:1c:ad:d0:07:17:58:70:3c:2f:14:d0:d3:a0:
70:1f:ca:85:4a:dd:61:33:3b:6a:08:a8:25:20:2c:
fb:a5:f9:10:12:25:e1:9f:e2:9f:1d:f3:c4:57:e9:
c9:b3:8a:6d:11:05:57:cc:66:a9:1d:28:0d:d1:ef:
52:d1:9d:82:55:be:35:4f:73:c9:cf:7b:99:df:d4:
c8:e3:f2:de:92:50:3f:70:8b:d5:16:34:49:eb:f8:
4a:42:eb:09:c4:35:79:f3:db:6b:af:9c:e5:37:8c:
c5:52:d9:10:b9:f0:b3:da:62:33:91:e3:0c:25:d5:
62:2d:48:13:2f:e1:a8:16:e7:fb:b6:6c:af:1d:e7:
e6:50:89:39:08:c2:b0:ad:35:57:3c:06:e4:0b:64:
66:d4:c3:3f:31:e7:8c:fd:c6:14:5e:ce:b4:57:0a:
3d:91:13:31:ee:38:ea:6a:a4:46:ee:ed:af:c6:a0:
e2:36:aa:60:b5:e4:90:79:ff:5f:b9:88:98:03:4e:
85:c2:a3:65:a2:30:cc:03:b7:98:32:03:8b:8e:ed:
ad:bf:e1:5b:7d:0e:c2:5c:78:06:44:ad:99:00:2a:
a1:98:33:24:d6:98:b4:23:cd:5d:c8:24:dd:60:db:
2c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:40:78:2C:EE:B3:81:E2:FD:63:5C:8A:9B:78:31:28:AB:D2:8B:66
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ckB4LO6zgeL9Y1yKm3gxKKvSi2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:6a0::/47
Signature Algorithm: sha256WithRSAEncryption
54:67:2f:1e:94:36:84:5e:dc:6a:5d:fd:21:5e:bb:4b:fe:b7:
80:d9:8b:0d:66:e3:e2:b7:ef:b3:6e:c6:d4:17:83:96:db:31:
eb:1f:6e:7d:38:37:58:7d:4c:ff:a7:ac:79:4a:c3:f9:1d:ca:
2a:80:03:f5:3b:16:09:b3:49:c4:95:b7:29:b7:9f:2b:50:6a:
85:c5:3d:91:90:f1:72:81:3e:7f:b0:d2:47:18:34:3b:e0:df:
56:06:27:cd:e9:a2:b5:60:e8:5c:8f:a0:b5:ac:6e:ca:d9:6f:
2f:8f:c1:48:f8:fc:e2:b6:78:83:a3:f5:c0:93:ef:00:2d:09:
cb:e0:8b:54:74:fe:f8:57:02:48:fc:77:60:1c:4a:6a:72:45:
7f:d3:fc:bf:d1:54:9e:dd:f8:24:f3:0f:6c:bf:29:5b:4e:50:
d1:83:5f:d6:b5:fd:c0:cf:f5:45:cd:b2:0c:98:d3:cf:f7:8a:
87:b5:89:8b:00:a0:92:14:4b:41:1b:71:24:c5:a9:14:b8:31:
23:53:25:dd:aa:a0:c1:34:04:ff:27:cb:f1:99:88:20:ed:6a:
b6:19:31:a1:ee:9b:b5:2d:c5:67:dd:aa:59:86:4b:6f:e1:74:
a6:55:12:ff:3d:9e:f9:57:1f:14:d9:bd:16:45:cc:59:d1:e8:
16:63:d2:2f
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEFHmDrTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDUw
NzIwMDYyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzI0MDc4MmNlZWIz
ODFlMmZkNjM1YzhhOWI3ODMxMjhhYmQyOGI2NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKw6IlIBMc1ke9U/txdtZAgcrdAHF1hwPC8U0NOgcB/KhUrd
YTM7agioJSAs+6X5EBIl4Z/inx3zxFfpybOKbREFV8xmqR0oDdHvUtGdglW+NU9z
yc97md/UyOPy3pJQP3CL1RY0Sev4SkLrCcQ1efPba6+c5TeMxVLZELnws9piM5Hj
DCXVYi1IEy/hqBbn+7Zsrx3n5lCJOQjCsK01VzwG5AtkZtTDPzHnjP3GFF7OtFcK
PZETMe446mqkRu7tr8ag4jaqYLXkkHn/X7mImANOhcKjZaIwzAO3mDIDi47trb/h
W30Owlx4BkStmQAqoZgzJNaYtCPNXcgk3WDbLIcCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRyQHgs7rOB4v1jXIqbeDEoq9KLZjAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L2NrQjRMTzZ6Z2VMOVkxeUttM2d4S0t2U2kyWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHASoOl8AGoDANBgkqhkiG9w0BAQsF
AAOCAQEAVGcvHpQ2hF7cal39IV67S/63gNmLDWbj4rfvs27G1BeDltsx6x9ufTg3
WH1M/6eseUrD+R3KKoAD9TsWCbNJxJW3KbefK1BqhcU9kZDxcoE+f7DSRxg0O+Df
VgYnzemitWDoXI+gtaxuytlvL4/BSPj84rZ4g6P1wJPvAC0Jy+CLVHT++FcCSPx3
YBxKanJFf9P8v9FUnt34JPMPbL8pW05Q0YNf1rX9wM/1Rc2yDJjTz/eKh7WJiwCg
khRLQRtxJMWpFLgxI1Ml3aqgwTQE/yfL8ZmIIO1qthkxoe6btS3FZ92qWYZLb+F0
plUS/z2e+VcfFNm9FkXMWdHoFmPSLw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org