Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/xfsvWXUQQn1G2e3sB7Fuw5YYuhA.roa
File: xfsvWXUQQn1G2e3sB7Fuw5YYuhA.roa (raw, json)
Hash identifier: 5IMJIhbdbTpgFxPqLyuxAlbnKw+3oW20G7lMnc8yslQ=
Subject key identifier: C5:FB:2F:59:75:10:42:7D:46:D9:ED:EC:07:B1:6E:C3:96:18:BA:10
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 14BE02C6
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/xfsvWXUQQn1G2e3sB7Fuw5YYuhA.roa
Signing time: Fri 20 May 2022 10:51:03 +0000
ROA not before: Fri 20 May 2022 10:51:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57797
IP address blocks: 2a0e:97c0:690::/44 maxlen: 48
2a0e:97c0:690::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 347996870 (0x14be02c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 20 10:51:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5fb2f597510427d46d9edec07b16ec39618ba10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:94:31:db:64:32:ab:a7:5b:88:c7:b3:d4:85:
09:e0:b5:1a:54:5c:a4:c6:62:ea:2d:cd:ec:1b:53:
90:d3:ec:d4:40:ec:02:92:29:4a:5a:6f:da:74:ec:
d6:e7:71:76:1f:90:cb:fe:b7:3e:55:3c:0f:81:4a:
6b:41:54:d0:97:0f:a8:51:ae:31:e6:fa:d3:7e:bf:
a0:e3:35:2a:b8:41:bc:93:23:13:b3:3a:54:37:5d:
fc:d6:fe:60:4c:1e:92:8d:25:42:75:e0:d9:93:8f:
c4:ec:bf:ce:fd:86:48:68:52:7a:d2:20:d1:92:bb:
40:23:9c:af:d4:80:30:00:36:e0:bc:1c:84:1d:8e:
95:13:12:0b:4b:1b:49:ac:37:78:dc:70:8f:b4:e9:
57:5e:24:b1:35:60:66:1d:5a:0e:d5:ee:d8:91:00:
9b:3a:9f:b8:4c:72:61:73:83:bc:72:9e:c6:3f:3a:
84:22:3e:00:1b:25:ba:5a:5f:6f:5c:d5:2c:87:ae:
25:a2:7b:62:4e:ad:a4:ad:be:07:3c:89:c0:5a:6e:
84:64:69:68:ae:b3:af:9f:e0:00:aa:cc:43:f2:8c:
89:db:14:73:5b:2b:68:07:c0:85:40:8d:57:53:4a:
33:5a:06:6a:f2:8d:33:cd:00:19:b3:b5:f6:e9:92:
c2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:FB:2F:59:75:10:42:7D:46:D9:ED:EC:07:B1:6E:C3:96:18:BA:10
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/xfsvWXUQQn1G2e3sB7Fuw5YYuhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:690::/44
Signature Algorithm: sha256WithRSAEncryption
9d:fb:1e:c9:5f:a3:83:41:49:a4:2d:56:6d:e3:dc:80:4e:5f:
d1:5b:43:e6:2c:5e:6e:eb:6a:c5:ed:80:12:3a:4f:09:dc:1f:
57:44:cd:e5:e8:fb:69:5f:3a:fd:5b:51:32:ad:e8:d4:c0:cc:
40:4e:db:a0:c9:72:ee:3b:3e:3d:d7:a2:e0:da:fc:5c:c9:51:
2b:54:ad:d9:b0:e1:a0:82:65:b0:7a:68:11:6c:1c:9d:1b:7e:
9d:a3:c1:2f:6b:18:27:35:e1:e2:08:98:e1:08:1d:b0:f8:4a:
7f:da:13:d7:02:c7:e0:0d:55:73:b1:e1:de:57:5d:c4:04:f3:
d6:c3:82:c0:73:ec:2b:87:b6:b9:a6:20:41:df:38:21:2b:3c:
57:99:7f:93:99:9b:00:ea:54:37:3d:d6:4b:20:36:cd:68:2a:
82:43:39:04:90:39:ed:61:97:8d:99:89:c5:aa:e1:05:0a:da:
0f:fb:f1:8f:9b:80:ad:eb:f9:75:7e:b5:48:39:24:01:93:44:
0e:a7:b4:d3:ab:7f:a0:2c:dd:31:d4:9b:6d:2c:0b:9d:58:a3:
52:ff:e9:c7:56:cf:22:a8:62:36:e3:18:86:92:58:fb:2d:fd:
db:cf:87:e2:1c:04:f0:8e:1c:7a:9c:63:af:5a:10:3b:01:58:
da:8d:4f:ea
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEFL4CxjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDUy
MDEwNTEwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzVmYjJmNTk3NTEw
NDI3ZDQ2ZDllZGVjMDdiMTZlYzM5NjE4YmExMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALKUMdtkMqunW4jHs9SFCeC1GlRcpMZi6i3N7BtTkNPs1EDs
ApIpSlpv2nTs1udxdh+Qy/63PlU8D4FKa0FU0JcPqFGuMeb6036/oOM1KrhBvJMj
E7M6VDdd/Nb+YEweko0lQnXg2ZOPxOy/zv2GSGhSetIg0ZK7QCOcr9SAMAA24Lwc
hB2OlRMSC0sbSaw3eNxwj7TpV14ksTVgZh1aDtXu2JEAmzqfuExyYXODvHKexj86
hCI+ABslulpfb1zVLIeuJaJ7Yk6tpK2+BzyJwFpuhGRpaK6zr5/gAKrMQ/KMidsU
c1sraAfAhUCNV1NKM1oGavKNM80AGbO19umSwmUCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTF+y9ZdRBCfUbZ7ewHsW7Dlhi6EDAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L3hmc3ZXWFVRUW4xRzJlM3NCN0Z1dzVZWXVoQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoOl8AGkDANBgkqhkiG9w0BAQsF
AAOCAQEAnfseyV+jg0FJpC1WbePcgE5f0VtD5ixebutqxe2AEjpPCdwfV0TN5ej7
aV86/VtRMq3o1MDMQE7boMly7js+Pdei4Nr8XMlRK1St2bDhoIJlsHpoEWwcnRt+
naPBL2sYJzXh4giY4QgdsPhKf9oT1wLH4A1Vc7Hh3lddxATz1sOCwHPsK4e2uaYg
Qd84ISs8V5l/k5mbAOpUNz3WSyA2zWgqgkM5BJA57WGXjZmJxarhBQraD/vxj5uA
rev5dX61SDkkAZNEDqe006t/oCzdMdSbbSwLnVijUv/px1bPIqhiNuMYhpJY+y39
28+H4hwE8I4cepxjr1oQOwFY2o1P6g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:21 2023 by rpki-client on console-fra.rpki-client.org