Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/cl3u7-q06VDcVyEHBgo_-WYxwyo.roa
File: cl3u7-q06VDcVyEHBgo_-WYxwyo.roa (raw, json)
Hash identifier: Vr/X2BneNq0+mTJuOazcxFKDgKTdOJqfuvmhRzPnEnU=
Subject key identifier: 72:5D:EE:EF:EA:B4:E9:50:DC:57:21:07:06:0A:3F:F9:66:31:C3:2A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018317C9D0F5414BEF343A7EF2BFF092B6CA
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/cl3u7-q06VDcVyEHBgo_-WYxwyo.roa
Signing time: Wed 07 Sep 2022 11:50:45 +0000
ROA not before: Wed 07 Sep 2022 11:50:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212746
IP address blocks: 2a0e:b107:d00::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:17:c9:d0:f5:41:4b:ef:34:3a:7e:f2:bf:f0:92:b6:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Sep 7 11:50:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=725deeefeab4e950dc572107060a3ff96631c32a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:53:66:b3:83:ed:f7:45:05:22:dd:11:df:36:
44:a6:ae:18:c9:c7:bc:ef:a6:29:55:aa:70:09:32:
5e:8a:3d:ac:f4:e1:27:77:54:16:4f:73:4a:ff:8d:
a6:90:e3:37:ed:e0:7c:73:c6:ce:24:7b:22:97:43:
c6:7b:e2:c9:6a:25:53:ae:4a:70:68:d1:5f:d6:f3:
63:98:c6:9d:df:33:27:7c:2c:c0:f6:62:02:f4:6d:
de:0b:40:14:55:e0:dd:08:c6:c4:19:a4:33:85:1e:
a7:a0:2e:1e:3f:5b:68:85:31:46:bc:c4:35:cb:5c:
49:35:0d:02:27:c4:e3:ca:56:9b:47:30:39:86:4b:
5c:86:e5:92:a0:db:4b:8e:e2:2e:76:2e:53:34:e4:
cd:23:46:d0:47:21:71:80:13:f0:ac:5c:c9:bc:e3:
63:8c:e7:4e:2a:2f:de:05:58:50:9f:5c:44:10:5b:
5a:44:9f:a6:72:1e:aa:ac:87:b4:55:04:92:ab:c2:
30:c7:51:7d:8f:e6:e5:4b:5e:1e:9b:60:bb:86:58:
db:0b:4b:46:6f:2d:7a:d3:8b:12:d9:91:b3:e5:44:
4b:ad:74:f6:8d:66:31:1f:50:5c:be:c9:e3:1c:12:
49:0d:e4:93:83:11:fd:41:2e:7a:52:5e:16:95:02:
26:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:5D:EE:EF:EA:B4:E9:50:DC:57:21:07:06:0A:3F:F9:66:31:C3:2A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/cl3u7-q06VDcVyEHBgo_-WYxwyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:d00::/44
Signature Algorithm: sha256WithRSAEncryption
15:f7:0f:a2:1e:2b:d0:de:85:e1:dc:13:f1:4d:7c:d8:06:61:
e8:1b:b7:26:63:bd:53:b9:68:bf:30:27:17:b5:9b:ea:c0:0a:
4b:fe:dc:23:05:11:df:67:9d:8b:2d:87:7b:20:b4:c2:b2:69:
5a:22:3f:ac:1b:0a:8f:9f:32:03:f1:94:02:6a:8c:9c:cd:88:
ae:bf:a8:3f:38:d7:94:46:90:40:5f:7e:43:14:23:15:15:14:
bf:d5:0d:f2:2f:41:f0:20:e7:78:91:00:42:9e:db:fa:76:4e:
08:78:96:80:35:59:de:92:1b:08:22:ac:51:bd:54:88:0b:75:
44:00:7c:b2:ce:aa:4b:98:fb:55:34:01:0b:2e:1d:f8:d9:6f:
12:6e:54:59:44:be:4a:3e:00:6e:01:3a:fc:cd:bf:2a:51:98:
65:b8:12:e8:e7:f1:fa:7e:71:c4:70:fc:4e:f8:96:ca:87:e8:
c1:2f:a6:4a:61:6f:3c:19:8c:16:6e:2b:13:f1:55:de:1f:0e:
c9:1a:8b:0a:88:e2:a3:9f:ad:79:64:65:63:59:ed:8f:a2:b9:
da:02:4c:80:23:d4:9c:67:24:02:a5:2c:5b:93:da:ca:18:91:
da:b0:17:f9:8f:3e:8d:b2:4f:fe:74:4d:62:65:20:3a:f7:c1:
29:7e:5b:86
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYMXydD1QUvvNDp+8r/wkrbKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIwOTA3MTE1MDQ1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MjVkZWVlZmVhYjRlOTUwZGM1NzIxMDcwNjBhM2ZmOTY2MzFjMzJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi1Nms4Pt90UFIt0R3zZEpq4Yyce8
76YpVapwCTJeij2s9OEnd1QWT3NK/42mkOM37eB8c8bOJHsil0PGe+LJaiVTrkpw
aNFf1vNjmMad3zMnfCzA9mIC9G3eC0AUVeDdCMbEGaQzhR6noC4eP1tohTFGvMQ1
y1xJNQ0CJ8TjylabRzA5hktchuWSoNtLjuIudi5TNOTNI0bQRyFxgBPwrFzJvONj
jOdOKi/eBVhQn1xEEFtaRJ+mch6qrIe0VQSSq8Iwx1F9j+blS14em2C7hljbC0tG
by1604sS2ZGz5URLrXT2jWYxH1BcvsnjHBJJDeSTgxH9QS56Ul4WlQImAwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFHJd7u/qtOlQ3FchBwYKP/lmMcMqMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvY2wzdTctcTA2VkRjVnlFSEJnb18tV1l4d3lvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6xBw0A
MA0GCSqGSIb3DQEBCwUAA4IBAQAV9w+iHivQ3oXh3BPxTXzYBmHoG7cmY71TuWi/
MCcXtZvqwApL/twjBRHfZ52LLYd7ILTCsmlaIj+sGwqPnzID8ZQCaoyczYiuv6g/
ONeURpBAX35DFCMVFRS/1Q3yL0HwIOd4kQBCntv6dk4IeJaANVnekhsIIqxRvVSI
C3VEAHyyzqpLmPtVNAELLh342W8SblRZRL5KPgBuATr8zb8qUZhluBLo5/H6fnHE
cPxO+JbKh+jBL6ZKYW88GYwWbisT8VXeHw7JGosKiOKjn615ZGVjWe2PornaAkyA
I9ScZyQCpSxbk9rKGJHasBf5jz6Nsk/+dE1iZSA698EpfluG
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:01 2023 by rpki-client on console-ams.rpki-client.org