Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/n1-sYYAXZhItSiQoml96hGxIUbY.roa
File: n1-sYYAXZhItSiQoml96hGxIUbY.roa (raw, json)
Hash identifier: pWxOq7TFzkBfU7JNU+rotvA5j4g+SmWvDjPtv6NGx0U=
Subject key identifier: 9F:5F:AC:61:80:17:66:12:2D:4A:24:28:9A:5F:7A:84:6C:48:51:B6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0184EC40CF9FF59B79AA97D5A3EB5139D7BF
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/n1-sYYAXZhItSiQoml96hGxIUbY.roa
Signing time: Wed 07 Dec 2022 11:03:01 +0000
ROA not before: Wed 07 Dec 2022 11:03:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200879
IP address blocks: 2a0e:b107:1d03::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ec:40:cf:9f:f5:9b:79:aa:97:d5:a3:eb:51:39:d7:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 7 11:03:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f5fac61801766122d4a24289a5f7a846c4851b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a9:c3:fb:4c:3d:98:c4:d5:77:90:db:dc:8a:
0e:a5:8b:b6:ea:b6:b1:49:2f:b4:55:2a:53:56:9d:
3f:07:2b:80:3d:3f:2a:bb:4a:13:d4:b3:e5:46:c5:
08:4d:4f:29:18:55:83:98:b6:f0:7d:fa:cb:3d:e9:
35:36:8c:20:b6:e2:55:b0:0e:65:f5:21:63:a3:7d:
d8:23:05:91:74:84:9d:83:5b:b0:af:ea:a6:6e:5d:
e4:4b:b8:ff:36:43:dc:ab:88:1d:5f:20:c2:4e:56:
2a:30:b2:1b:d2:2d:39:e2:1c:ab:c5:81:44:85:99:
c6:3c:93:14:b9:70:bd:84:b7:42:1c:80:a0:09:16:
aa:12:cc:26:44:d9:46:aa:76:ac:97:4f:c6:30:9f:
58:6d:68:c1:84:e1:94:cf:50:87:51:fa:7d:b8:e4:
76:f7:65:53:31:9c:79:a0:ba:94:7d:36:15:49:df:
18:6e:57:c8:36:f8:95:db:2d:13:32:07:be:39:e1:
c2:30:28:e7:3f:cb:5f:cf:32:9f:e0:7f:80:dc:9f:
1f:eb:00:83:45:5e:44:54:0b:91:12:5c:01:dc:77:
e9:31:8d:b3:93:3d:af:90:af:11:cc:42:85:8a:54:
22:ff:64:6b:7f:c3:11:46:b3:d7:e1:06:4c:ba:89:
a2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:5F:AC:61:80:17:66:12:2D:4A:24:28:9A:5F:7A:84:6C:48:51:B6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/n1-sYYAXZhItSiQoml96hGxIUbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1d03::/48
Signature Algorithm: sha256WithRSAEncryption
8b:dd:42:2d:81:82:03:63:64:fe:ec:33:47:e7:af:6d:79:ea:
e3:69:98:87:3e:06:33:33:e2:34:23:12:a5:cf:c5:07:62:a2:
fe:07:7e:b0:f6:8e:ad:77:2d:e9:d9:d0:3e:d9:f8:b0:7c:e7:
57:95:08:0e:78:cb:51:1c:8a:20:c1:ef:39:b2:60:f1:ab:91:
76:7e:ff:c6:da:3d:00:cd:c0:c0:cd:f6:47:61:a6:e8:89:4b:
7d:ee:2b:f2:82:61:a7:a2:92:73:7e:3c:97:0f:86:dc:44:01:
82:53:9c:fb:19:f0:22:cd:13:f3:3d:e8:85:ad:bb:5b:b5:a7:
a8:ed:db:1a:fe:be:1f:b2:c1:5a:cb:9e:d3:f2:c4:d0:98:d9:
db:cc:47:dc:43:b5:62:c2:d8:f1:75:4f:0c:ad:7f:15:4f:e0:
93:43:c9:82:99:c8:47:d8:21:91:a1:29:41:1e:c7:a6:eb:65:
ac:16:e7:e9:62:83:7b:5c:6a:3f:db:0a:5a:a9:f5:f1:41:53:
71:03:2a:d8:31:a3:87:2e:11:20:09:b5:5a:d8:7e:a1:ae:60:
62:69:45:15:4d:2b:cf:f8:27:cc:f0:ea:ae:6e:00:b4:1a:d2:
36:bf:5d:8c:e3:68:9f:9f:83:82:b2:0a:fe:11:2e:86:4a:25:
01:72:bb:15
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYTsQM+f9Zt5qpfVo+tROde/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIxMjA3MTEwMzAxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZjVmYWM2MTgwMTc2NjEyMmQ0YTI0Mjg5YTVmN2E4NDZjNDg1MWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh6nD+0w9mMTVd5Db3IoOpYu26rax
SS+0VSpTVp0/ByuAPT8qu0oT1LPlRsUITU8pGFWDmLbwffrLPek1NowgtuJVsA5l
9SFjo33YIwWRdISdg1uwr+qmbl3kS7j/NkPcq4gdXyDCTlYqMLIb0i054hyrxYFE
hZnGPJMUuXC9hLdCHICgCRaqEswmRNlGqnasl0/GMJ9YbWjBhOGUz1CHUfp9uOR2
92VTMZx5oLqUfTYVSd8YblfINviV2y0TMge+OeHCMCjnP8tfzzKf4H+A3J8f6wCD
RV5EVAuRElwB3HfpMY2zkz2vkK8RzEKFilQi/2Rrf8MRRrPX4QZMuomiTwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJ9frGGAF2YSLUokKJpfeoRsSFG2MB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvbjEtc1lZQVhaaEl0U2lRb21sOTZoR3hJVWJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6xBx0D
MA0GCSqGSIb3DQEBCwUAA4IBAQCL3UItgYIDY2T+7DNH569teerjaZiHPgYzM+I0
IxKlz8UHYqL+B36w9o6tdy3p2dA+2fiwfOdXlQgOeMtRHIogwe85smDxq5F2fv/G
2j0AzcDAzfZHYaboiUt97ivygmGnopJzfjyXD4bcRAGCU5z7GfAizRPzPeiFrbtb
taeo7dsa/r4fssFay57T8sTQmNnbzEfcQ7ViwtjxdU8MrX8VT+CTQ8mCmchH2CGR
oSlBHsem62WsFufpYoN7XGo/2wpaqfXxQVNxAyrYMaOHLhEgCbVa2H6hrmBiaUUV
TSvP+CfM8OqubgC0GtI2v12M42ifn4OCsgr+ES6GSiUBcrsV
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:11 2024 by rpki-client on console-ams.rpki-client.org