Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/r73tT4ZUmH851ulIUnaCuXziQ4k.roa
File: r73tT4ZUmH851ulIUnaCuXziQ4k.roa (raw, json)
Hash identifier: ZgFUHt9yUvV/XwhFcX3OKrCCikjHpZN5oDFo0FXuHic=
Subject key identifier: AF:BD:ED:4F:86:54:98:7F:39:D6:E9:48:52:76:82:B9:7C:E2:43:89
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 122FDC68
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/r73tT4ZUmH851ulIUnaCuXziQ4k.roa
Signing time: Sat 19 Feb 2022 10:49:51 +0000
ROA not before: Sat 19 Feb 2022 10:49:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:ba4::/48 maxlen: 48
2a0e:b107:ba9::/48 maxlen: 48
2a0e:b107:bae::/48 maxlen: 48
2a10:cc42:1000::/36 maxlen: 48
2a0e:b107:5e0::/44 maxlen: 48
2a0e:b107:900::/44 maxlen: 48
2a0e:b107:ba2::/48 maxlen: 48
2a0e:b107:ba7::/48 maxlen: 48
2a0e:b107:bac::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:73f::/48 maxlen: 48
2a0e:b107:ba0::/48 maxlen: 48
2a0e:b107:ba5::/48 maxlen: 48
2a0e:b107:baa::/48 maxlen: 48
2a0e:b107:baf::/48 maxlen: 48
2a0e:b107:ba3::/48 maxlen: 48
2a0e:b107:ba8::/48 maxlen: 48
2a0e:b107:bad::/48 maxlen: 48
2a0e:b107:5d0::/44 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:97c0:736::/48 maxlen: 48
2a0e:b107:ba1::/48 maxlen: 48
2a0e:b107:ba6::/48 maxlen: 48
2a0e:b107:bab::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 305126504 (0x122fdc68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 19 10:49:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=afbded4f8654987f39d6e948527682b97ce24389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:32:74:2c:30:b2:71:c8:68:4f:8a:a4:aa:be:
ca:af:44:75:23:4e:d3:1e:cd:d5:88:f1:8d:ae:5c:
5b:37:c2:97:78:ae:6a:0b:4e:d7:18:bf:da:96:1d:
53:ec:56:f0:0f:3b:70:42:11:df:7d:76:b9:60:a7:
6c:39:35:00:30:5f:e4:fc:8d:6f:ee:22:e7:37:73:
cc:1d:2f:3e:78:5e:e8:21:9a:99:e1:97:db:97:3c:
44:4f:bd:99:0c:39:74:5a:a8:6f:8c:a5:a5:c9:be:
17:e4:38:22:41:9b:7a:04:35:55:44:b9:b9:40:35:
49:6f:8b:86:35:72:55:25:f2:ba:6e:db:0d:b3:83:
87:bf:6b:49:83:04:fa:80:9b:22:8a:30:95:ff:36:
fa:d8:d4:95:0b:37:71:0a:e1:89:7f:f8:b5:91:4c:
24:64:42:25:44:64:6e:e7:dc:e7:a9:75:16:d6:ae:
b1:48:6f:60:0e:90:7a:6b:0b:66:a6:78:20:74:68:
44:19:cf:de:f9:26:21:c0:0e:83:64:af:f4:a2:48:
c0:39:9d:45:fe:cb:7f:af:7a:32:a5:2c:ca:87:fa:
ea:79:f3:94:d9:fe:41:21:61:84:42:a9:eb:17:8b:
a2:2a:a3:de:6a:cf:72:ae:43:74:83:4b:ca:99:63:
48:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:BD:ED:4F:86:54:98:7F:39:D6:E9:48:52:76:82:B9:7C:E2:43:89
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/r73tT4ZUmH851ulIUnaCuXziQ4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:736::/48
2a0e:97c0:73f::/48
2a0e:b107:5d0::-2a0e:b107:5ef:ffff:ffff:ffff:ffff:ffff
2a0e:b107:900::/44
2a0e:b107:9f6::/48
2a0e:b107:ba0::/44
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a10:cc42:1000::/36
Signature Algorithm: sha256WithRSAEncryption
52:93:35:54:e6:96:0d:2a:22:11:a8:12:98:46:3d:ea:a3:45:
c2:2f:df:ea:8f:0f:d2:22:8f:18:dd:c9:1a:c2:18:ce:49:d1:
36:60:03:76:51:6b:39:7c:60:e9:e4:74:aa:e0:d5:be:29:31:
d9:76:fc:50:52:d6:17:a5:4e:89:14:2d:93:ed:a8:c1:ba:32:
ae:15:5a:bd:2c:e2:9b:ed:c2:9b:5d:d8:99:6a:a6:77:05:74:
8a:b1:53:1b:6e:eb:28:41:54:6e:e4:d6:a6:95:6e:69:2a:74:
9f:57:b3:09:bf:39:e0:45:11:17:f1:87:50:1b:de:03:1c:0d:
13:78:13:e6:b3:22:10:5a:4c:a7:f0:d8:e6:62:fe:74:f3:d0:
08:28:c3:6b:cd:b8:a1:a4:81:1d:00:6c:aa:ac:88:fd:26:1e:
0a:e3:87:dc:30:ca:5e:1d:a6:42:e4:e1:83:a2:20:1f:60:b7:
ff:1c:e8:8e:58:ba:db:5c:7d:6f:f1:40:c4:cf:b5:76:22:16:
d2:29:5f:66:0f:35:69:c2:ef:f2:56:a5:cd:b9:77:48:af:25:
e0:86:7f:53:e0:b5:a4:fa:cf:d4:c6:aa:54:c5:4f:81:b2:07:
6a:84:8b:01:a0:84:06:1d:83:b8:2b:db:b7:9a:2d:6b:52:74:
ac:c7:17:a4
-----BEGIN CERTIFICATE-----
MIIFRDCCBCygAwIBAgIEEi/caDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDIx
OTEwNDk1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWZiZGVkNGY4NjU0
OTg3ZjM5ZDZlOTQ4NTI3NjgyYjk3Y2UyNDM4OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMIydCwwsnHIaE+KpKq+yq9EdSNO0x7N1Yjxja5cWzfCl3iu
agtO1xi/2pYdU+xW8A87cEIR3312uWCnbDk1ADBf5PyNb+4i5zdzzB0vPnhe6CGa
meGX25c8RE+9mQw5dFqob4ylpcm+F+Q4IkGbegQ1VUS5uUA1SW+LhjVyVSXyum7b
DbODh79rSYME+oCbIoowlf82+tjUlQs3cQrhiX/4tZFMJGRCJURkbufc56l1Ftau
sUhvYA6QemsLZqZ4IHRoRBnP3vkmIcAOg2Sv9KJIwDmdRf7Lf696MqUsyof66nnz
lNn+QSFhhEKp6xeLoiqj3mrPcq5DdINLypljSPsCAwEAAaOCAl4wggJaMB0GA1Ud
DgQWBBSvve1PhlSYfznW6UhSdoK5fOJDiTAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L3I3M3RUNFpVbUg4NTF1bElVbmFDdVh6aVE0ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjB0
BggrBgEFBQcBBwEB/wRlMGMwYQQCAAIwWwMHACoOl8AHNgMHACoOl8AHPzASAwcE
Kg6xBwXQAwcEKg6xBwXgAwcEKg6xBwkAAwcAKg6xBwn2AwcEKg6xBwugAwcAKg6x
Bw3yAwcAKg6xBxhwAwYEKhDMQhAwDQYJKoZIhvcNAQELBQADggEBAFKTNVTmlg0q
IhGoEphGPeqjRcIv3+qPD9IijxjdyRrCGM5J0TZgA3ZRazl8YOnkdKrg1b4pMdl2
/FBS1helTokULZPtqMG6Mq4VWr0s4pvtwptd2JlqpncFdIqxUxtu6yhBVG7k1qaV
bmkqdJ9Xswm/OeBFERfxh1Ab3gMcDRN4E+azIhBaTKfw2OZi/nTz0Agow2vNuKGk
gR0AbKqsiP0mHgrjh9wwyl4dpkLk4YOiIB9gt/8c6I5YuttcfW/xQMTPtXYiFtIp
X2YPNWnC7/JWpc25d0ivJeCGf1PgtaT6z9TGqlTFT4GyB2qEiwGghAYdg7gr27ea
LWtSdKzHF6Q=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:03 2023 by rpki-client on console-ams.rpki-client.org