Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mu3luIppG-XpwKc1CoRLcs_byXo.roa
File: mu3luIppG-XpwKc1CoRLcs_byXo.roa (raw, json)
Hash identifier: nYga9Kh3R3Y3iNErbd1h+5cPb5NnFoQaeK81omulctw=
Subject key identifier: 9A:ED:E5:B8:8A:69:1B:E5:E9:C0:A7:35:0A:84:4B:72:CF:DB:C9:7A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 10CB3923
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mu3luIppG-XpwKc1CoRLcs_byXo.roa
Signing time: Sat 01 Jan 2022 09:05:33 +0000
ROA not before: Sat 01 Jan 2022 09:05:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211553
IP address blocks: 2a0e:97c0:2b0::/48 maxlen: 48
2a0e:97c0:2bf::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281753891 (0x10cb3923)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 1 09:05:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9aede5b88a691be5e9c0a7350a844b72cfdbc97a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6f:90:64:8f:46:c1:72:2a:5a:03:01:10:1e:
39:22:18:61:c7:cf:6a:60:c0:75:f3:30:90:6a:da:
fc:7c:88:d3:10:2d:20:59:cf:a2:8f:cf:b8:17:ea:
3a:fc:7b:e1:de:99:f2:9d:cf:a3:3b:5e:51:b8:14:
79:34:bc:33:40:b9:e4:85:74:85:eb:f6:9b:b5:ba:
f9:6e:65:79:e4:3e:a5:12:cc:7c:a1:8f:3b:1b:4d:
59:c6:a6:52:63:48:43:9d:cb:d0:8f:88:6b:74:ec:
88:3d:2e:d3:91:82:a2:19:25:23:4a:6a:c6:31:03:
a7:1f:2e:f0:70:d2:1b:10:d5:bd:2d:75:8b:c9:69:
c6:d2:3e:f9:1a:f9:0f:ba:a6:99:5e:83:5b:b9:86:
0a:0b:4e:d7:89:95:cd:23:ff:6f:7f:98:7c:90:ce:
4e:79:27:65:78:86:45:94:fe:56:b4:a5:73:d0:b7:
7a:16:37:8c:5e:6e:1c:a0:64:57:b0:a2:a5:af:55:
fe:f3:4f:1c:93:ee:30:61:ff:d1:94:2a:3e:f7:ca:
3c:1c:3a:23:7f:5d:38:73:20:dd:ee:21:4f:e2:7e:
c8:1c:cf:ae:55:96:c7:6c:8a:ad:b1:af:37:6f:8c:
46:7b:c4:42:46:ef:3e:dc:1f:5b:53:30:8d:d5:d5:
ca:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:ED:E5:B8:8A:69:1B:E5:E9:C0:A7:35:0A:84:4B:72:CF:DB:C9:7A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/mu3luIppG-XpwKc1CoRLcs_byXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:2b0::/48
2a0e:97c0:2bf::/48
Signature Algorithm: sha256WithRSAEncryption
99:34:8e:06:bb:cd:e3:89:54:8d:7a:b1:11:36:d4:09:4d:95:
4e:1a:21:20:6e:5e:60:00:fd:67:6e:d9:67:82:af:2e:7c:d6:
71:26:70:e7:99:40:fe:ac:02:44:5f:e6:8e:a5:05:76:7f:d8:
bf:cf:23:77:5f:de:19:61:7f:34:26:0c:ce:7c:4e:02:f3:8f:
bd:14:8f:a1:a3:7d:d1:76:33:6f:4a:af:aa:35:f6:bd:a1:75:
fc:9f:f7:0f:7b:8a:ad:b3:df:fa:78:e0:ff:0a:f8:ba:9a:6b:
20:a2:88:60:52:10:9e:99:8c:20:14:f9:57:3d:a4:28:c3:7d:
a6:88:45:e2:e4:82:98:34:7c:83:02:4b:ce:0b:f6:2b:b7:a2:
46:c8:87:29:13:7c:dd:4d:26:0b:b9:58:51:76:09:64:6a:27:
ce:b0:f0:be:2f:0f:e8:c5:f8:1d:3f:c5:51:8f:2d:1e:5d:03:
65:99:fa:56:bb:00:65:99:15:b5:91:dd:a5:84:69:7d:c6:f8:
4c:5f:45:3b:bb:7d:b3:17:1e:eb:e4:ec:1d:20:58:fa:ad:95:
b5:4a:74:20:59:5b:c5:d9:9e:18:a3:3e:54:1c:c5:88:d2:00:
5a:92:0b:66:3f:1f:1c:61:bb:0b:89:91:b8:39:75:0c:09:ec:
1e:74:bd:48
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEEMs5IzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDEw
MTA5MDUzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWFlZGU1Yjg4YTY5
MWJlNWU5YzBhNzM1MGE4NDRiNzJjZmRiYzk3YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM1vkGSPRsFyKloDARAeOSIYYcfPamDAdfMwkGra/HyI0xAt
IFnPoo/PuBfqOvx74d6Z8p3PozteUbgUeTS8M0C55IV0hev2m7W6+W5leeQ+pRLM
fKGPOxtNWcamUmNIQ53L0I+Ia3TsiD0u05GCohklI0pqxjEDpx8u8HDSGxDVvS11
i8lpxtI++Rr5D7qmmV6DW7mGCgtO14mVzSP/b3+YfJDOTnknZXiGRZT+VrSlc9C3
ehY3jF5uHKBkV7Cipa9V/vNPHJPuMGH/0ZQqPvfKPBw6I39dOHMg3e4hT+J+yBzP
rlWWx2yKrbGvN2+MRnvEQkbvPtwfW1MwjdXVynUCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBSa7eW4imkb5enApzUKhEtyz9vJejAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L211M2x1SXBwRy1YcHdLYzFDb1JMY3NfYnlYby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAIwEgMHACoOl8ACsAMHACoOl8ACvzANBgkq
hkiG9w0BAQsFAAOCAQEAmTSOBrvN44lUjXqxETbUCU2VThohIG5eYAD9Z27ZZ4Kv
LnzWcSZw55lA/qwCRF/mjqUFdn/Yv88jd1/eGWF/NCYMznxOAvOPvRSPoaN90XYz
b0qvqjX2vaF1/J/3D3uKrbPf+njg/wr4upprIKKIYFIQnpmMIBT5Vz2kKMN9pohF
4uSCmDR8gwJLzgv2K7eiRsiHKRN83U0mC7lYUXYJZGonzrDwvi8P6MX4HT/FUY8t
Hl0DZZn6VrsAZZkVtZHdpYRpfcb4TF9FO7t9sxce6+TsHSBY+q2VtUp0IFlbxdme
GKM+VBzFiNIAWpILZj8fHGG7C4mRuDl1DAnsHnS9SA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-fra.rpki-client.org