Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/6cc297-105b-425c-b983-956330170670/1/7_5vwSngvAkKiufA3a0TFGUEo74.roa
File: 7_5vwSngvAkKiufA3a0TFGUEo74.roa (raw, json)
Hash identifier: /iGK/1UC8PuXWcjiG/r/o+K7xsKuK+d43+LNSAt5mjs=
Subject key identifier: EF:FE:6F:C1:29:E0:BC:09:0A:8A:E7:C0:DD:AD:13:14:65:04:A3:BE
Certificate issuer: /CN=75579b3dd8b092be90da9f7480ea761e9cd26486
Certificate serial: 01856E5D6A2C1D9B23CB6E3508F13BD8222D
Authority key identifier: 75:57:9B:3D:D8:B0:92:BE:90:DA:9F:74:80:EA:76:1E:9C:D2:64:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dVebPdiwkr6Q2p90gOp2HpzSZIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/6cc297-105b-425c-b983-956330170670/1/7_5vwSngvAkKiufA3a0TFGUEo74.roa
Signing time: Sun 01 Jan 2023 17:24:53 +0000
ROA not before: Sun 01 Jan 2023 17:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208713
IP address blocks: 2001:678:a84::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:5d:6a:2c:1d:9b:23:cb:6e:35:08:f1:3b:d8:22:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75579b3dd8b092be90da9f7480ea761e9cd26486
Validity
Not Before: Jan 1 17:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=effe6fc129e0bc090a8ae7c0ddad13146504a3be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c3:97:c2:61:6c:83:98:1a:bb:3d:13:9f:79:
21:d7:ec:9f:f6:03:aa:10:95:06:dd:fb:e3:8a:ba:
a9:87:62:88:37:fb:82:da:87:e2:51:a9:b6:7c:b7:
02:f8:c4:cc:a7:26:67:ff:56:85:b3:28:80:63:78:
f1:ac:5e:6f:24:47:45:45:b6:67:42:2f:b5:05:59:
94:fa:47:3c:12:b6:61:58:59:88:72:9d:c5:b1:12:
e7:6a:1c:cd:4d:65:65:fd:84:29:4e:02:3b:66:2e:
a2:b2:99:6c:25:b6:48:f9:9c:16:21:68:e8:5e:45:
5c:07:a4:5c:06:75:53:b0:2f:8d:be:94:42:69:2d:
07:ab:e8:d7:a6:64:52:ad:6b:80:e4:bb:ea:2a:4b:
5c:bd:e1:9e:e0:40:b0:09:e5:cb:ff:1e:c9:1d:9f:
5c:12:5e:38:65:70:04:0e:8c:c8:db:d6:69:88:2e:
f6:a8:a7:98:b6:c8:8c:f0:8a:8b:99:bf:e2:90:f1:
e0:ef:49:b2:91:2d:68:91:47:25:3c:1d:be:97:89:
60:4b:eb:85:13:40:dc:a1:53:cb:c2:82:36:6e:52:
9d:7c:64:df:e1:f3:c5:16:66:96:1a:15:b2:16:d9:
aa:f7:4e:49:94:2b:56:28:2d:3e:62:ec:c8:a0:f1:
b8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:FE:6F:C1:29:E0:BC:09:0A:8A:E7:C0:DD:AD:13:14:65:04:A3:BE
X509v3 Authority Key Identifier:
keyid:75:57:9B:3D:D8:B0:92:BE:90:DA:9F:74:80:EA:76:1E:9C:D2:64:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dVebPdiwkr6Q2p90gOp2HpzSZIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6cc297-105b-425c-b983-956330170670/1/7_5vwSngvAkKiufA3a0TFGUEo74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6cc297-105b-425c-b983-956330170670/1/dVebPdiwkr6Q2p90gOp2HpzSZIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:a84::/48
Signature Algorithm: sha256WithRSAEncryption
b3:2e:12:65:db:3f:77:3d:a6:8b:3d:7d:ac:07:79:b6:00:5e:
7e:bb:2e:02:f8:fb:71:c6:40:a6:b7:b2:0a:b8:87:df:93:7b:
be:1a:54:4e:29:33:2d:48:0e:89:59:5b:b1:80:86:48:aa:79:
8d:68:9a:c8:c5:a4:f4:bf:23:3d:96:eb:62:39:5d:74:2f:ac:
01:36:13:b0:05:07:3f:88:f4:fe:28:af:3e:0b:e8:4e:aa:8f:
0d:48:6f:97:68:a4:38:28:1c:9c:fe:3e:d8:d9:31:55:7f:b4:
56:a4:c4:23:df:3b:d7:6f:ef:e5:21:26:b0:93:39:a0:5c:31:
77:25:7f:76:9b:2c:64:89:70:35:66:4a:f6:7d:b6:26:45:33:
cc:30:9a:6a:52:53:d9:44:a0:b2:e3:21:01:d8:0a:7a:bf:1e:
37:8f:ce:77:47:e1:ba:08:01:de:94:6f:da:6e:0b:22:1e:d3:
47:e3:88:80:89:ff:32:f7:1e:22:fa:d4:01:07:28:09:2d:dc:
ad:43:bd:29:38:92:f2:9c:da:a0:d2:32:30:77:23:ef:c3:90:
d9:19:1a:55:3f:4e:cb:f9:36:bf:1d:9e:7e:63:35:ca:4f:f7:
7e:46:09:22:8f:6a:6a:62:0e:4b:f2:40:94:6b:73:1b:5e:77:
ef:ca:02:0c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVuXWosHZsjy241CPE72CItMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1NTc5YjNkZDhiMDkyYmU5MGRhOWY3NDgwZWE3NjFlOWNk
MjY0ODYwHhcNMjMwMTAxMTcyNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZmZlNmZjMTI5ZTBiYzA5MGE4YWU3YzBkZGFkMTMxNDY1MDRhM2JlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj8OXwmFsg5gauz0Tn3kh1+yf9gOq
EJUG3fvjirqph2KIN/uC2ofiUam2fLcC+MTMpyZn/1aFsyiAY3jxrF5vJEdFRbZn
Qi+1BVmU+kc8ErZhWFmIcp3FsRLnahzNTWVl/YQpTgI7Zi6isplsJbZI+ZwWIWjo
XkVcB6RcBnVTsC+NvpRCaS0Hq+jXpmRSrWuA5LvqKktcveGe4ECwCeXL/x7JHZ9c
El44ZXAEDozI29ZpiC72qKeYtsiM8IqLmb/ikPHg70mykS1okUclPB2+l4lgS+uF
E0DcoVPLwoI2blKdfGTf4fPFFmaWGhWyFtmq905JlCtWKC0+YuzIoPG4gQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFO/+b8Ep4LwJCornwN2tExRlBKO+MB8GA1UdIwQY
MBaAFHVXmz3YsJK+kNqfdIDqdh6c0mSGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFZlYlBkaXdrcjZRMnA5MGdPcDJIcHpTWklZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS82Y2MyOTctMTA1Yi00MjVjLWI5ODMt
OTU2MzMwMTcwNjcwLzEvN181dndTbmd2QWtLaXVmQTNhMFRGR1VFbzc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS82Y2MyOTctMTA1Yi00MjVjLWI5ODMtOTU2MzMwMTcwNjcw
LzEvZFZlYlBkaXdrcjZRMnA5MGdPcDJIcHpTWklZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAqE
MA0GCSqGSIb3DQEBCwUAA4IBAQCzLhJl2z93PaaLPX2sB3m2AF5+uy4C+PtxxkCm
t7IKuIffk3u+GlROKTMtSA6JWVuxgIZIqnmNaJrIxaT0vyM9lutiOV10L6wBNhOw
BQc/iPT+KK8+C+hOqo8NSG+XaKQ4KByc/j7Y2TFVf7RWpMQj3zvXb+/lISawkzmg
XDF3JX92myxkiXA1Zkr2fbYmRTPMMJpqUlPZRKCy4yEB2Ap6vx43j853R+G6CAHe
lG/abgsiHtNH44iAif8y9x4i+tQBBygJLdytQ70pOJLynNqg0jIwdyPvw5DZGRpV
P07L+Ta/HZ5+YzXKT/d+Rgkij2pqYg5L8kCUa3MbXnfvygIM
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:27 2025 by rpki-client