Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/022606-4faa-4e99-be29-963480e9be79/1/_B2R3QpNKfhbsSXWnB5wboepIdI.roa
File: _B2R3QpNKfhbsSXWnB5wboepIdI.roa (raw, json)
Hash identifier: nIhzq2bkIk+5uipZ3nicgJDA3U6ljHXwW8jtXLYlJ2I=
Subject key identifier: FC:1D:91:DD:0A:4D:29:F8:5B:B1:25:D6:9C:1E:70:6E:87:A9:21:D2
Certificate issuer: /CN=57504a4efd51dc95847c156f4a36dbfe5583c2b0
Certificate serial: 098D13CB
Authority key identifier: 57:50:4A:4E:FD:51:DC:95:84:7C:15:6F:4A:36:DB:FE:55:83:C2:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V1BKTv1R3JWEfBVvSjbb_lWDwrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/022606-4faa-4e99-be29-963480e9be79/1/_B2R3QpNKfhbsSXWnB5wboepIdI.roa
Signing time: Sat 01 Jan 2022 05:52:49 +0000
ROA not before: Sat 01 Jan 2022 05:52:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2119
IP address blocks: 2001:67c:17e4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160240587 (0x98d13cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57504a4efd51dc95847c156f4a36dbfe5583c2b0
Validity
Not Before: Jan 1 05:52:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc1d91dd0a4d29f85bb125d69c1e706e87a921d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:05:9f:c0:90:8a:87:c3:89:c2:7a:14:af:ee:
76:80:b6:a9:73:6c:e0:7a:a7:e7:b5:47:89:95:a5:
f9:cf:d9:cd:0b:f9:12:65:6c:ee:19:e7:ca:06:58:
b6:c1:29:c4:50:f6:9f:da:c5:6e:c9:3e:2c:ff:9f:
b7:2a:e6:b9:c1:f8:77:ad:2a:55:02:c8:c8:22:34:
52:f9:27:14:3b:91:92:e4:ac:88:ca:a3:27:dd:3a:
81:fd:6a:35:60:e9:3e:bd:57:57:50:0c:98:0a:04:
b4:8e:fd:8a:8f:e6:5a:a7:76:b9:03:3a:33:f3:c7:
ff:c1:a4:be:88:b6:bb:df:44:7d:59:bb:0d:2d:91:
92:77:a0:98:52:14:32:b7:3f:ff:c4:4c:14:8c:60:
37:78:29:de:cb:61:ec:96:01:5c:cf:41:12:b1:97:
a6:d6:6f:62:87:aa:7b:51:a2:cf:45:bd:8d:ea:92:
11:6c:95:61:c0:69:13:93:6e:89:9d:9f:df:ee:8e:
8c:eb:87:e7:64:a3:fb:1d:6a:5d:cc:db:70:d4:07:
af:69:ac:c3:4a:4a:11:aa:df:38:0f:5f:61:b2:64:
17:44:97:3f:8f:60:95:79:d9:43:57:6f:bc:a9:35:
01:78:b2:e7:4b:4d:41:6f:5b:89:a6:1f:53:d7:51:
63:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:1D:91:DD:0A:4D:29:F8:5B:B1:25:D6:9C:1E:70:6E:87:A9:21:D2
X509v3 Authority Key Identifier:
keyid:57:50:4A:4E:FD:51:DC:95:84:7C:15:6F:4A:36:DB:FE:55:83:C2:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V1BKTv1R3JWEfBVvSjbb_lWDwrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/022606-4faa-4e99-be29-963480e9be79/1/_B2R3QpNKfhbsSXWnB5wboepIdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/022606-4faa-4e99-be29-963480e9be79/1/V1BKTv1R3JWEfBVvSjbb_lWDwrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:17e4::/48
Signature Algorithm: sha256WithRSAEncryption
bc:1a:0c:34:60:57:c3:91:1c:03:b7:2f:e3:69:3a:43:78:23:
88:39:73:75:22:8c:03:9a:4c:ad:72:ff:63:af:5e:39:be:01:
fa:8c:99:db:f8:75:27:af:04:1d:ea:eb:c1:1a:6a:4d:10:3f:
75:ea:ca:8e:c0:f0:3a:e9:f7:76:78:30:4c:7c:3f:3c:00:cb:
21:d7:dc:b2:a4:e2:68:62:78:be:de:b5:ba:07:7b:f0:83:a3:
60:10:de:9d:db:fa:57:8f:6f:b5:ad:70:37:ba:52:42:7d:2d:
16:3d:05:e4:ec:2b:69:c9:1d:94:bb:78:fd:92:5c:88:d5:70:
d6:04:b9:84:b7:d6:32:93:23:48:bf:98:07:d5:c3:41:1d:ec:
e4:ea:b6:5d:d2:73:44:c0:ea:7c:96:c7:e6:6f:87:d1:35:c0:
25:f2:8b:36:58:c4:ee:2c:24:b4:77:20:ab:3d:d0:ec:b0:c1:
f7:3c:ca:80:61:a5:2e:3e:63:8f:3c:b1:dc:07:ed:d8:a0:43:
4e:db:c4:f9:fe:5d:6c:3e:ab:c1:36:46:2d:32:27:58:57:2b:
c8:cd:95:1b:53:0c:4e:af:16:a6:c7:92:b8:89:5f:60:81:cb:
c8:66:85:a2:ff:8c:91:62:e5:fd:79:e3:49:d8:22:00:40:db:
4d:c0:e7:b2
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECY0TyzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NzUwNGE0ZWZkNTFkYzk1ODQ3YzE1NmY0YTM2ZGJmZTU1ODNjMmIwMB4XDTIyMDEw
MTA1NTI0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmMxZDkxZGQwYTRk
MjlmODViYjEyNWQ2OWMxZTcwNmU4N2E5MjFkMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOQFn8CQiofDicJ6FK/udoC2qXNs4Hqn57VHiZWl+c/ZzQv5
EmVs7hnnygZYtsEpxFD2n9rFbsk+LP+ftyrmucH4d60qVQLIyCI0UvknFDuRkuSs
iMqjJ906gf1qNWDpPr1XV1AMmAoEtI79io/mWqd2uQM6M/PH/8Gkvoi2u99EfVm7
DS2RknegmFIUMrc//8RMFIxgN3gp3sth7JYBXM9BErGXptZvYoeqe1Giz0W9jeqS
EWyVYcBpE5NuiZ2f3+6OjOuH52Sj+x1qXczbcNQHr2msw0pKEarfOA9fYbJkF0SX
P49glXnZQ1dvvKk1AXiy50tNQW9biaYfU9dRY+kCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBT8HZHdCk0p+FuxJdacHnBuh6kh0jAfBgNVHSMEGDAWgBRXUEpO/VHclYR8
FW9KNtv+VYPCsDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1YxQktUdjFSM0pXRWZCVnZTamJiX2xXRHdyQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzMvMDIyNjA2LTRmYWEtNGU5OS1iZTI5LTk2MzQ4MGU5YmU3OS8x
L19CMlIzUXBOS2ZoYnNTWFduQjV3Ym9lcElkSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzMv
MDIyNjA2LTRmYWEtNGU5OS1iZTI5LTk2MzQ4MGU5YmU3OS8xL1YxQktUdjFSM0pX
RWZCVnZTamJiX2xXRHdyQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBnwX5DANBgkqhkiG9w0BAQsF
AAOCAQEAvBoMNGBXw5EcA7cv42k6Q3gjiDlzdSKMA5pMrXL/Y69eOb4B+oyZ2/h1
J68EHerrwRpqTRA/derKjsDwOun3dngwTHw/PADLIdfcsqTiaGJ4vt61ugd78IOj
YBDendv6V49vta1wN7pSQn0tFj0F5OwrackdlLt4/ZJciNVw1gS5hLfWMpMjSL+Y
B9XDQR3s5Oq2XdJzRMDqfJbH5m+H0TXAJfKLNljE7iwktHcgqz3Q7LDB9zzKgGGl
Lj5jjzyx3Aft2KBDTtvE+f5dbD6rwTZGLTInWFcryM2VG1MMTq8WpseSuIlfYIHL
yGaFov+MkWLl/XnjSdgiAEDbTcDnsg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:56 2024 by rpki-client on console-fra.rpki-client.org