Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/a6d660-b1b8-425e-bb82-91651d9b856a/1/PBiuk88y7eJtaYeN0YtRvCa72UI.roa
File: PBiuk88y7eJtaYeN0YtRvCa72UI.roa (raw, json)
Hash identifier: zrKFrJxYBP349DhdriIjauOROGqaDRJIlk8XrMPg7ko=
Subject key identifier: 3C:18:AE:93:CF:32:ED:E2:6D:69:87:8D:D1:8B:51:BC:26:BB:D9:42
Certificate issuer: /CN=7ec666772d79bd7bb21199a2abdafe2202511c70
Certificate serial: 0287D2
Authority key identifier: 7E:C6:66:77:2D:79:BD:7B:B2:11:99:A2:AB:DA:FE:22:02:51:1C:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fsZmdy15vXuyEZmiq9r-IgJRHHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/a6d660-b1b8-425e-bb82-91651d9b856a/1/PBiuk88y7eJtaYeN0YtRvCa72UI.roa
Signing time: Mon 11 Apr 2022 18:20:20 +0000
ROA not before: Mon 11 Apr 2022 18:20:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206072
IP address blocks: 2001:67c:9bc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165842 (0x287d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ec666772d79bd7bb21199a2abdafe2202511c70
Validity
Not Before: Apr 11 18:20:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c18ae93cf32ede26d69878dd18b51bc26bbd942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5e:98:ec:72:5a:00:4a:2f:dd:1e:7f:f0:43:
bc:2c:c7:3e:85:32:ff:4c:b5:3a:9b:00:2e:1f:31:
02:d1:15:31:31:77:c2:7b:8c:76:13:00:84:e4:d5:
7f:3a:a7:11:d6:ec:9c:95:90:5f:a4:09:16:fd:12:
2d:75:8a:fe:89:f4:04:7d:9b:38:46:33:b1:db:51:
20:88:ac:23:c4:13:b5:25:f3:1b:f8:b9:69:2b:34:
38:2c:bf:a2:c8:e4:f0:c9:b1:4b:83:98:81:b3:a0:
31:a0:c4:37:93:23:53:6e:43:f6:74:01:ad:12:3e:
ae:76:c4:3a:61:14:b2:d2:bb:dc:18:74:c6:05:79:
f0:08:e2:94:86:aa:1b:45:35:33:07:d8:72:1c:e5:
52:7b:56:a1:da:fb:83:f4:f1:f2:f8:57:35:71:d5:
17:18:1f:02:10:4e:a1:09:72:e2:e2:d0:93:fd:52:
ca:21:60:47:ef:aa:1b:d6:f0:49:a2:56:dc:57:16:
3b:0f:7f:1f:a0:e8:c7:f8:29:a5:e5:ef:2e:75:5a:
1d:71:5f:54:1e:a3:53:23:71:33:39:c4:22:cd:92:
13:c8:9b:6f:8d:fe:47:5f:ef:fe:33:f9:1d:05:ff:
7c:71:f5:2f:68:be:c9:c9:58:35:b9:ac:ba:86:f9:
d1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:18:AE:93:CF:32:ED:E2:6D:69:87:8D:D1:8B:51:BC:26:BB:D9:42
X509v3 Authority Key Identifier:
keyid:7E:C6:66:77:2D:79:BD:7B:B2:11:99:A2:AB:DA:FE:22:02:51:1C:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fsZmdy15vXuyEZmiq9r-IgJRHHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/a6d660-b1b8-425e-bb82-91651d9b856a/1/PBiuk88y7eJtaYeN0YtRvCa72UI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/a6d660-b1b8-425e-bb82-91651d9b856a/1/fsZmdy15vXuyEZmiq9r-IgJRHHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:9bc::/48
Signature Algorithm: sha256WithRSAEncryption
64:b0:43:c0:5d:65:86:f5:5e:af:32:88:7b:a9:ee:36:5a:95:
ba:eb:a6:0f:09:23:4c:cc:8d:44:46:30:ef:68:77:f8:98:ba:
ea:3c:fe:f4:06:31:c2:c1:28:1c:e1:56:9f:2a:67:48:21:4b:
4d:b5:2e:65:8d:10:2b:45:2c:70:5b:ab:c4:3f:6f:99:89:4d:
4e:a6:59:c2:38:d9:7e:75:c7:18:28:0e:e6:02:04:c9:af:42:
ab:d6:eb:cb:15:1c:d2:bd:3d:07:45:31:15:62:13:cd:00:c3:
6c:67:ce:93:63:26:7d:8c:7e:44:a1:05:dc:1a:59:72:75:43:
f1:6b:2c:07:25:97:14:78:ea:13:8f:50:b2:86:33:7f:65:7a:
7d:18:5c:11:a8:7a:2c:b5:7d:9c:5f:7d:a1:16:58:fd:da:3c:
5a:a9:ea:00:d6:ea:0e:67:34:f1:80:8f:e5:fa:79:7d:25:b6:
58:3c:11:c6:8b:9d:ab:01:31:af:86:03:e7:5e:7d:f1:18:67:
3f:fb:74:c8:7a:7c:86:ab:55:ce:6c:0c:7c:e5:ec:09:cc:14:
24:9f:23:4a:f9:04:e7:82:2f:98:3d:b4:35:6c:9a:9f:74:d8:
f3:b6:33:6d:d9:ce:b6:7a:05:8b:35:10:94:20:df:bb:01:a9:
88:04:2b:36
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIDAofSMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDdl
YzY2Njc3MmQ3OWJkN2JiMjExOTlhMmFiZGFmZTIyMDI1MTFjNzAwHhcNMjIwNDEx
MTgyMDIwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygzYzE4YWU5M2NmMzJl
ZGUyNmQ2OTg3OGRkMThiNTFiYzI2YmJkOTQyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEApF6Y7HJaAEov3R5/8EO8LMc+hTL/TLU6mwAuHzEC0RUxMXfC
e4x2EwCE5NV/OqcR1uyclZBfpAkW/RItdYr+ifQEfZs4RjOx21EgiKwjxBO1JfMb
+LlpKzQ4LL+iyOTwybFLg5iBs6AxoMQ3kyNTbkP2dAGtEj6udsQ6YRSy0rvcGHTG
BXnwCOKUhqobRTUzB9hyHOVSe1ah2vuD9PHy+Fc1cdUXGB8CEE6hCXLi4tCT/VLK
IWBH76ob1vBJolbcVxY7D38foOjH+Cml5e8udVodcV9UHqNTI3EzOcQizZITyJtv
jf5HX+/+M/kdBf98cfUvaL7JyVg1uay6hvnRvQIDAQABo4ICDDCCAggwHQYDVR0O
BBYEFDwYrpPPMu3ibWmHjdGLUbwmu9lCMB8GA1UdIwQYMBaAFH7GZncteb17shGZ
oqva/iICURxwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
ZnNabWR5MTV2WHV5RVptaXE5ci1JZ0pSSEhBLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC81OC9hNmQ2NjAtYjFiOC00MjVlLWJiODItOTE2NTFkOWI4NTZhLzEv
UEJpdWs4OHk3ZUp0YVllTjBZdFJ2Q2E3MlVJLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9h
NmQ2NjAtYjFiOC00MjVlLWJiODItOTE2NTFkOWI4NTZhLzEvZnNabWR5MTV2WHV5
RVptaXE5ci1JZ0pSSEhBLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIG
CCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAm8MA0GCSqGSIb3DQEBCwUA
A4IBAQBksEPAXWWG9V6vMoh7qe42WpW666YPCSNMzI1ERjDvaHf4mLrqPP70BjHC
wSgc4VafKmdIIUtNtS5ljRArRSxwW6vEP2+ZiU1OplnCONl+dccYKA7mAgTJr0Kr
1uvLFRzSvT0HRTEVYhPNAMNsZ86TYyZ9jH5EoQXcGllydUPxaywHJZcUeOoTj1Cy
hjN/ZXp9GFwRqHostX2cX32hFlj92jxaqeoA1uoOZzTxgI/l+nl9JbZYPBHGi52r
ATGvhgPnXn3xGGc/+3TIenyGq1XObAx85ewJzBQknyNK+QTngi+YPbQ1bJqfdNjz
tjNt2c62egWLNRCUIN+7AamIBCs2
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:44 2023 by rpki-client on console-fra.rpki-client.org