Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/1-e1wN9X0vdJNwUkoDucfkvl73kY.roa
File: 1-e1wN9X0vdJNwUkoDucfkvl73kY.roa (raw, json)
Hash identifier: 0sxDN7KhWpopAL9ZmwEJz1n8BBK9L1/Aw5UXwmpgK8w=
Subject key identifier: F9:ED:70:37:D5:F4:BD:D2:4D:C1:49:28:0E:E7:1F:92:F9:7B:DE:46
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0182026D8D610EFDD010AD5FCA499B17D286
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/1-e1wN9X0vdJNwUkoDucfkvl73kY.roa
Signing time: Fri 15 Jul 2022 15:15:10 +0000
ROA not before: Fri 15 Jul 2022 15:15:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203899
IP address blocks: 2a0e:aa07:e042::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:02:6d:8d:61:0e:fd:d0:10:ad:5f:ca:49:9b:17:d2:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jul 15 15:15:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9ed7037d5f4bdd24dc149280ee71f92f97bde46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:0c:71:27:54:51:1b:e9:ad:1b:5f:4b:3d:93:
e8:6e:93:47:5a:d1:42:e2:9d:e7:58:14:59:9e:69:
5c:a8:eb:9c:aa:03:60:17:0c:1a:aa:52:dd:8d:a7:
05:a0:73:1c:d8:56:fe:bb:9b:e8:43:bb:f5:4a:e5:
47:3b:3b:52:58:78:c8:70:f1:df:b2:0d:80:37:6b:
3f:d3:d4:4e:27:af:90:41:b2:ee:c4:28:f7:6d:15:
d4:5e:0e:7e:08:3e:5d:29:60:81:75:d8:f6:42:dc:
48:7e:6f:d6:88:96:83:14:98:18:97:b3:4e:18:6a:
f1:94:29:e6:52:d8:65:e1:0f:eb:de:6b:b7:1b:da:
52:0d:e7:70:15:0d:c6:c6:8b:e4:0d:8e:35:09:ad:
f8:3a:34:d5:66:41:f3:8d:76:12:49:c6:aa:33:fe:
b1:7e:62:b5:ed:22:8e:c8:29:1c:30:ef:6d:96:4d:
7a:e0:e3:83:9b:74:08:99:81:42:9d:c2:04:5f:8f:
08:6e:1a:b1:18:a4:c8:ee:40:b4:6f:c8:c0:30:9e:
2d:9a:c8:b6:d2:62:39:8b:56:3f:ac:c0:05:31:96:
9e:5a:cd:24:82:ea:75:19:ad:aa:5a:73:fd:52:e9:
32:aa:4d:85:0a:bf:6a:64:24:8a:ed:e3:55:25:a7:
58:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:ED:70:37:D5:F4:BD:D2:4D:C1:49:28:0E:E7:1F:92:F9:7B:DE:46
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/1-e1wN9X0vdJNwUkoDucfkvl73kY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e042::/48
Signature Algorithm: sha256WithRSAEncryption
94:38:30:cb:a2:4b:cf:33:fe:df:32:f1:4b:76:4b:6e:2c:9f:
4c:25:0d:7c:e7:4e:e0:6b:7a:58:11:2f:a5:1c:9b:b4:ff:52:
29:fe:bb:ca:18:d3:b8:a2:61:62:7d:ea:b3:0e:db:b9:48:e8:
bf:be:ba:25:44:15:de:a4:19:f4:3e:a1:ae:80:d2:fc:db:7d:
b3:13:83:b3:c8:09:5f:61:32:ff:d9:30:25:3b:22:00:4b:98:
da:23:23:a6:8f:55:2c:10:7f:a4:6f:b5:72:d4:35:e2:b4:c3:
b9:a1:38:e0:30:09:61:dd:d3:7c:03:0c:60:95:89:36:e8:52:
12:3e:e3:b4:66:7f:ad:f4:04:e2:78:c5:5c:23:a7:c4:10:26:
2d:9f:49:02:29:92:1d:c6:59:4f:09:c7:ff:21:70:55:a1:bc:
73:58:92:0c:e9:03:67:d4:27:5f:f3:72:61:73:f4:f9:40:a0:
4f:f3:cb:29:12:ec:54:d8:e6:c0:58:43:de:f8:af:75:5c:5e:
07:70:15:94:b0:fe:93:49:4d:a6:dc:f3:ce:7a:ed:c4:b4:3b:
75:2b:26:56:f8:4d:48:59:c5:c5:18:b9:17:a5:fb:de:9a:cc:
d1:5b:40:13:a9:ba:1b:fc:0c:18:b6:b8:4f:eb:81:23:b3:de:
36:7a:a4:6d
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgISAYICbY1hDv3QEK1fykmbF9KGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0
ZWYzYWEwHhcNMjIwNzE1MTUxNTEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOWVkNzAzN2Q1ZjRiZGQyNGRjMTQ5MjgwZWU3MWY5MmY5N2JkZTQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjgxxJ1RRG+mtG19LPZPobpNHWtFC
4p3nWBRZnmlcqOucqgNgFwwaqlLdjacFoHMc2Fb+u5voQ7v1SuVHOztSWHjIcPHf
sg2AN2s/09ROJ6+QQbLuxCj3bRXUXg5+CD5dKWCBddj2QtxIfm/WiJaDFJgYl7NO
GGrxlCnmUthl4Q/r3mu3G9pSDedwFQ3GxovkDY41Ca34OjTVZkHzjXYSScaqM/6x
fmK17SKOyCkcMO9tlk164OODm3QImYFCncIEX48IbhqxGKTI7kC0b8jAMJ4tmsi2
0mI5i1Y/rMAFMZaeWs0kgup1Ga2qWnP9Uukyqk2FCr9qZCSK7eNVJadYcwIDAQAB
o4ICDTCCAgkwHQYDVR0OBBYEFPntcDfV9L3STcFJKA7nH5L5e95GMB8GA1UdIwQY
MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt
YTU0MWQxYmNlZTE5LzEvMS1lMXdOOVgwdmRKTndVa29EdWNma3ZsNzNrWS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvN2YvNzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUx
OS8xL2syRzF6V2xvSmJkUHpMcDlsOFBRb25KTzg2by5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOqgfg
QjANBgkqhkiG9w0BAQsFAAOCAQEAlDgwy6JLzzP+3zLxS3ZLbiyfTCUNfOdO4Gt6
WBEvpRybtP9SKf67yhjTuKJhYn3qsw7buUjov766JUQV3qQZ9D6hroDS/Nt9sxOD
s8gJX2Ey/9kwJTsiAEuY2iMjpo9VLBB/pG+1ctQ14rTDuaE44DAJYd3TfAMMYJWJ
NuhSEj7jtGZ/rfQE4njFXCOnxBAmLZ9JAimSHcZZTwnH/yFwVaG8c1iSDOkDZ9Qn
X/NyYXP0+UCgT/PLKRLsVNjmwFhD3vivdVxeB3AVlLD+k0lNptzzznrtxLQ7dSsm
VvhNSFnFxRi5F6X73prM0VtAE6m6G/wMGLa4T+uBI7PeNnqkbQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org