Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/iAXp_BE9-CCfn0tVFITLX1lWhHU.roa
File: iAXp_BE9-CCfn0tVFITLX1lWhHU.roa (raw, json)
Hash identifier: 8lYIOmpYK9VlUbxvGluoxzbh8HJMedoEIAvpU7sC8HU=
Subject key identifier: 88:05:E9:FC:11:3D:F8:20:9F:9F:4B:55:14:84:CB:5F:59:56:84:75
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10D0EC65
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/iAXp_BE9-CCfn0tVFITLX1lWhHU.roa
Signing time: Sat 01 Jan 2022 09:05:38 +0000
ROA not before: Sat 01 Jan 2022 09:05:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211704
IP address blocks: 2a0e:97c0:230::/44 maxlen: 48
2a0e:b107:fb3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 282127461 (0x10d0ec65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8805e9fc113df8209f9f4b551484cb5f59568475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6b:6f:60:12:63:66:4e:31:93:85:50:11:08:
bd:ad:bb:3d:ce:a5:91:e7:ff:09:fc:4e:42:33:fc:
b5:e3:ef:0a:53:7e:cb:45:fe:ca:b4:29:b2:b3:8f:
68:e8:b1:7b:f0:e4:8b:1c:71:07:c7:97:ef:32:7d:
30:02:ad:6f:7b:ea:62:c1:9c:84:eb:b3:f4:9e:c0:
83:99:4f:85:44:35:d5:1a:e3:d7:2b:85:8a:9e:f4:
23:52:09:11:7c:55:d2:85:34:c3:27:b3:2f:3a:0c:
78:e2:5b:cd:4b:18:a9:fd:1e:38:43:f6:57:a7:95:
eb:4e:a4:2c:f8:d1:9b:f7:06:7d:72:25:da:31:b3:
a9:76:fd:af:6d:7b:c4:55:ac:19:ef:ed:50:a4:48:
9b:b3:7e:a7:23:c9:a8:b6:7c:d7:9b:22:67:cd:d3:
44:b2:0d:33:be:97:29:2b:42:a2:3f:3e:47:d2:9b:
b4:a3:7b:40:f4:14:d4:a1:ac:7d:56:5f:5b:55:ab:
62:1a:9c:44:b9:08:fb:4e:02:22:41:ad:98:7b:5c:
b1:a3:c1:6d:47:18:54:6c:ab:e1:4d:85:96:29:fc:
ae:14:3e:85:ea:9f:0b:6e:43:53:07:34:71:f0:2e:
fe:4a:fa:90:cf:cc:01:ad:df:c3:71:73:83:28:48:
e2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:05:E9:FC:11:3D:F8:20:9F:9F:4B:55:14:84:CB:5F:59:56:84:75
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/iAXp_BE9-CCfn0tVFITLX1lWhHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:230::/44
2a0e:b107:fb3::/48
Signature Algorithm: sha256WithRSAEncryption
01:fb:cf:5f:8c:1c:1a:d2:31:ac:95:eb:aa:72:b2:8c:e8:87:
5c:b3:ed:09:9e:cc:da:14:ac:49:28:23:9a:3a:94:87:7e:26:
e1:15:91:de:ee:91:d3:18:f1:ad:52:24:ee:f8:9a:80:ea:70:
4f:b1:44:65:e6:01:30:89:c1:cf:c7:dc:01:19:d2:ea:f6:be:
fd:1a:85:47:10:46:50:c1:17:47:8e:ee:22:2c:c7:88:b4:97:
14:9e:76:ff:59:2d:f3:6d:21:de:f9:3b:ad:02:66:57:66:6b:
56:be:ac:7e:21:52:d9:74:52:e1:2d:14:46:20:a9:95:ef:4e:
2e:fa:22:8a:61:52:5b:18:c9:96:64:8f:cf:af:49:28:c5:20:
ac:5e:66:7c:cb:ac:e0:45:07:1c:de:44:94:6d:97:98:e7:ef:
d1:35:1b:5c:0b:fb:62:c2:00:61:60:fc:99:ec:ea:ab:53:3b:
37:19:75:ac:43:20:04:99:1e:d2:a0:03:d5:62:79:a4:0f:49:
44:c6:57:3f:a9:74:22:92:b8:12:ca:9e:b2:ba:11:50:98:0d:
58:ed:fa:32:a0:d9:5e:91:da:7e:d9:f2:7a:cc:6e:e5:24:b1:
fd:35:40:e1:1f:18:69:19:5b:7b:c4:58:9b:25:05:a3:28:4f:
3a:b6:a6:be
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEENDsZTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDEw
MTA5MDUzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODgwNWU5ZmMxMTNk
ZjgyMDlmOWY0YjU1MTQ4NGNiNWY1OTU2ODQ3NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJlrb2ASY2ZOMZOFUBEIva27Pc6lkef/CfxOQjP8tePvClN+
y0X+yrQpsrOPaOixe/DkixxxB8eX7zJ9MAKtb3vqYsGchOuz9J7Ag5lPhUQ11Rrj
1yuFip70I1IJEXxV0oU0wyezLzoMeOJbzUsYqf0eOEP2V6eV606kLPjRm/cGfXIl
2jGzqXb9r217xFWsGe/tUKRIm7N+pyPJqLZ815siZ83TRLINM76XKStCoj8+R9Kb
tKN7QPQU1KGsfVZfW1WrYhqcRLkI+04CIkGtmHtcsaPBbUcYVGyr4U2Flin8rhQ+
heqfC25DUwc0cfAu/kr6kM/MAa3fw3FzgyhI4rsCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBSIBen8ET34IJ+fS1UUhMtfWVaEdTAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L2lBWHBfQkU5LUNDZm4wdFZGSVRMWDFsV2hIVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAIwEgMHBCoOl8ACMAMHACoOsQcPszANBgkq
hkiG9w0BAQsFAAOCAQEAAfvPX4wcGtIxrJXrqnKyjOiHXLPtCZ7M2hSsSSgjmjqU
h34m4RWR3u6R0xjxrVIk7viagOpwT7FEZeYBMInBz8fcARnS6va+/RqFRxBGUMEX
R47uIizHiLSXFJ52/1kt820h3vk7rQJmV2ZrVr6sfiFS2XRS4S0URiCple9OLvoi
imFSWxjJlmSPz69JKMUgrF5mfMus4EUHHN5ElG2XmOfv0TUbXAv7YsIAYWD8mezq
q1M7Nxl1rEMgBJke0qAD1WJ5pA9JRMZXP6l0IpK4EsqesroRUJgNWO36MqDZXpHa
ftnyesxu5SSx/TVA4R8YaRlbe8RYmyUFoyhPOramvg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-fra.rpki-client.org