Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/7LTv95fzrDyY1ZJI8oWfGRL0du4.roa
File: 7LTv95fzrDyY1ZJI8oWfGRL0du4.roa (raw, json)
Hash identifier: ioAPTC3CpFeMAzyryURwsik24+LEfgZeOdnF/cqk3jQ=
Subject key identifier: EC:B4:EF:F7:97:F3:AC:3C:98:D5:92:48:F2:85:9F:19:12:F4:76:EE
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 01830E12C722C1EB62D6B6475ADA93A62FC5
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/7LTv95fzrDyY1ZJI8oWfGRL0du4.roa
Signing time: Mon 05 Sep 2022 14:34:15 +0000
ROA not before: Mon 05 Sep 2022 14:34:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202983
IP address blocks: 2a03:5840:300::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0e:12:c7:22:c1:eb:62:d6:b6:47:5a:da:93:a6:2f:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Sep 5 14:34:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecb4eff797f3ac3c98d59248f2859f1912f476ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3d:6a:65:1d:7e:8a:be:c7:b0:a6:4d:93:62:
75:e4:a6:71:4f:7f:ca:84:f4:60:7e:29:bc:d4:14:
a6:be:e0:ae:ad:d6:c4:a3:48:32:a9:e9:a4:38:1d:
b1:68:df:30:93:60:09:a2:80:23:50:06:ff:9b:fd:
8b:b8:de:28:66:5f:e6:4c:f4:50:db:6b:93:24:de:
08:44:02:69:45:9b:53:ef:4c:b5:a3:bb:ce:3c:80:
3a:d8:05:e4:cc:d8:5f:c0:d0:98:21:48:36:92:06:
ec:5f:33:d2:9e:13:c1:43:6d:3d:0c:ec:b0:a0:4e:
76:0f:ff:e5:85:99:89:76:cc:77:de:6a:b4:84:90:
cc:03:3b:05:b7:d1:99:ea:77:b6:34:23:1a:94:f5:
10:2b:72:dc:ac:e9:d9:45:50:e5:24:06:59:20:aa:
8a:66:fd:7f:62:a1:2f:a7:cc:da:d4:48:29:66:d8:
42:0f:f0:28:9d:ca:7c:e9:02:57:47:8c:5e:0c:1b:
be:97:47:ec:f3:b3:ac:5a:2f:33:10:3f:c7:c4:3c:
c9:c5:3c:cf:4a:9d:c7:4e:37:41:d4:8d:0c:5f:6e:
2c:1b:d6:f8:4a:65:20:63:6c:b6:09:4e:2f:9f:34:
3d:49:82:46:52:6f:3e:34:07:cf:3d:f8:67:7f:4c:
e1:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:B4:EF:F7:97:F3:AC:3C:98:D5:92:48:F2:85:9F:19:12:F4:76:EE
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/7LTv95fzrDyY1ZJI8oWfGRL0du4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:300::/44
Signature Algorithm: sha256WithRSAEncryption
84:87:a7:f2:2c:e1:64:9c:9a:64:4f:84:01:41:35:3c:15:78:
51:01:13:5b:ef:aa:2a:85:0e:1e:06:54:da:36:ff:c9:8c:6b:
0e:a9:da:8c:5a:72:54:1f:18:0b:3d:ae:64:c3:0b:f9:8c:07:
2c:f8:98:f0:a3:54:9a:89:80:2e:42:72:cb:e9:5b:94:c7:2d:
b7:71:13:93:1f:ca:ea:06:ee:40:4a:6a:5d:15:90:7b:6c:7c:
b1:b0:89:c3:41:70:b9:83:83:e4:43:79:9b:e8:43:83:f8:a8:
c1:0b:71:d6:9a:ec:39:90:dd:00:55:72:ba:5b:0c:40:03:a9:
d0:8f:64:21:75:e5:7a:1f:3d:7e:07:a6:3e:b2:1e:fc:b0:b3:
9f:d5:9d:8d:df:ae:f0:aa:b5:94:63:bc:df:54:f4:e6:c4:37:
a8:6c:17:cd:6a:4e:1e:22:dd:7a:63:39:fd:99:ec:46:35:10:
0e:5b:3e:47:c3:83:22:84:82:34:df:78:e7:fe:27:d1:f1:ef:
6a:78:9d:8c:e6:63:66:9c:b1:42:d6:b5:52:d0:7f:0b:12:de:
9a:6c:f1:70:e0:36:93:54:54:72:e5:4c:93:2c:1b:bb:f8:e3:
18:3d:e6:f4:c7:58:7c:f2:44:0c:45:f0:20:6a:a9:a1:a9:52:
5e:31:19:64
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYMOEsciweti1rZHWtqTpi/FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3NzcwNWU4OWJiNjViNDcyZTRlMDE4NGQ2ZmU5YmZiOGM1
ODYzNWEwHhcNMjIwOTA1MTQzNDE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlY2I0ZWZmNzk3ZjNhYzNjOThkNTkyNDhmMjg1OWYxOTEyZjQ3NmVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxz1qZR1+ir7HsKZNk2J15KZxT3/K
hPRgfim81BSmvuCurdbEo0gyqemkOB2xaN8wk2AJooAjUAb/m/2LuN4oZl/mTPRQ
22uTJN4IRAJpRZtT70y1o7vOPIA62AXkzNhfwNCYIUg2kgbsXzPSnhPBQ209DOyw
oE52D//lhZmJdsx33mq0hJDMAzsFt9GZ6ne2NCMalPUQK3LcrOnZRVDlJAZZIKqK
Zv1/YqEvp8za1EgpZthCD/Aoncp86QJXR4xeDBu+l0fs87OsWi8zED/HxDzJxTzP
Sp3HTjdB1I0MX24sG9b4SmUgY2y2CU4vnzQ9SYJGUm8+NAfPPfhnf0zhSwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOy07/eX86w8mNWSSPKFnxkS9HbuMB8GA1UdIwQY
MBaAFPd3BeibtltHLk4BhNb+m/uMWGNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYt
NmNiODk3OTFkN2ZkLzEvN0xUdjk1ZnpyRHlZMVpKSThvV2ZHUkwwZHU0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYtNmNiODk3OTFkN2Zk
LzEvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgNYQAMA
MA0GCSqGSIb3DQEBCwUAA4IBAQCEh6fyLOFknJpkT4QBQTU8FXhRARNb76oqhQ4e
BlTaNv/JjGsOqdqMWnJUHxgLPa5kwwv5jAcs+Jjwo1SaiYAuQnLL6VuUxy23cROT
H8rqBu5ASmpdFZB7bHyxsInDQXC5g4PkQ3mb6EOD+KjBC3HWmuw5kN0AVXK6WwxA
A6nQj2QhdeV6Hz1+B6Y+sh78sLOf1Z2N367wqrWUY7zfVPTmxDeobBfNak4eIt16
Yzn9mexGNRAOWz5Hw4MihII033jn/ifR8e9qeJ2M5mNmnLFC1rVS0H8LEt6abPFw
4DaTVFRy5UyTLBu7+OMYPeb0x1h88kQMRfAgaqmhqVJeMRlk
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:59 2023 by rpki-client on console-ams.rpki-client.org