Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Qufft1iEVJq-G1oZaWSzXAcgh04.roa
File: Qufft1iEVJq-G1oZaWSzXAcgh04.roa (raw, json)
Hash identifier: Yw03Dur+Q8Gv+QQgO1Eq1Mb2DqBfqjs85EzUOgZpSKs=
Subject key identifier: 42:E7:DF:B7:58:84:54:9A:BE:1B:5A:19:69:64:B3:5C:07:20:87:4E
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 095B7EC7
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Qufft1iEVJq-G1oZaWSzXAcgh04.roa
Signing time: Sat 01 Jan 2022 09:03:49 +0000
ROA not before: Sat 01 Jan 2022 09:03:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48646
IP address blocks: 2a0e:aa01:ab02::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156991175 (0x95b7ec7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:03:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42e7dfb75884549abe1b5a196964b35c0720874e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c5:fb:bf:d2:f0:29:8d:5c:9b:34:5b:fd:b6:
55:60:94:85:03:21:1d:c3:8c:be:a7:fa:0a:91:bd:
7f:bd:6a:69:01:6a:ad:18:f2:c3:5f:59:41:33:b4:
4e:3b:3b:00:d9:65:b8:df:7e:c6:1e:da:6c:a2:08:
fe:22:ac:02:0b:3d:8b:4b:e4:a2:82:5a:5c:d7:5b:
75:2e:d6:1f:7a:39:55:f5:6b:00:89:18:5b:9b:c1:
1f:37:80:cb:1e:ef:0b:38:fa:8e:b0:fd:cb:bd:5e:
cb:0b:27:d6:f8:9b:2c:a2:2b:f1:2d:b4:ff:e9:82:
0d:f3:e9:b1:a0:52:e1:25:1b:f1:b7:b2:e6:53:5b:
33:98:56:55:d9:eb:0e:e5:62:c8:63:21:c8:2f:df:
51:66:2d:75:42:ff:01:e3:79:0e:63:9f:cc:1a:68:
f4:dc:ec:7b:7d:25:39:b3:45:6e:66:04:71:d3:8f:
ca:3c:31:7f:9d:6e:7f:de:b4:13:c5:65:69:d1:8c:
d3:0e:7b:d1:2e:5b:67:ab:0f:e7:cd:73:4f:5d:72:
b7:bb:62:52:b2:fc:e5:91:fa:d2:37:d1:1d:53:28:
59:34:87:58:91:fa:22:97:b2:72:ed:b3:49:2b:f4:
25:e7:2e:d7:5a:58:fb:c8:13:c7:f9:81:83:56:5e:
08:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:E7:DF:B7:58:84:54:9A:BE:1B:5A:19:69:64:B3:5C:07:20:87:4E
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Qufft1iEVJq-G1oZaWSzXAcgh04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa01:ab02::/48
Signature Algorithm: sha256WithRSAEncryption
0d:2d:b5:5e:24:5f:71:61:60:2a:fb:22:48:4b:61:b3:91:8a:
2c:13:f2:60:dd:ce:cb:5d:39:c6:94:d4:20:54:b5:73:08:4d:
8b:fd:16:03:1c:87:89:14:0c:02:89:13:ba:69:a2:c4:bb:68:
b1:14:66:1e:f9:b7:19:92:78:b5:4f:40:9a:59:3b:c7:ad:67:
02:8c:d7:ab:a8:8d:5b:70:64:69:bb:69:bb:00:de:81:fe:65:
b4:8a:7b:54:19:18:ff:f4:1c:ba:d4:fe:86:e5:3d:a3:31:4b:
a0:0c:68:26:83:fb:d0:d4:7c:64:ae:d1:3b:fc:7d:40:6a:49:
e7:76:ba:72:e3:cc:a2:fc:ee:5c:5a:b7:e1:dd:c2:5a:17:0f:
8d:68:49:92:bd:8a:f2:40:bc:8e:4c:d0:41:f8:0d:d2:22:f9:
df:14:b5:2b:d3:71:c3:e9:d6:d5:00:81:49:dc:1d:d2:92:37:
b3:31:12:a3:44:8b:68:66:7f:2c:65:4b:de:5c:d9:2f:27:76:
a0:14:0d:7f:77:91:f2:d3:b2:8a:3b:2d:7f:02:f0:64:44:48:
f0:ac:f7:c0:e4:30:09:a9:3a:6a:ff:5c:02:41:b5:03:f6:79:
91:f6:1e:74:6f:2c:3f:a9:04:69:8e:a8:75:e1:68:77:36:19:
00:a1:0b:ac
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECVt+xzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzYxYjVjZDY5NjgyNWI3NGZjY2JhN2Q5N2MzZDBhMjcyNGVmM2FhMB4XDTIyMDEw
MTA5MDM0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDJlN2RmYjc1ODg0
NTQ5YWJlMWI1YTE5Njk2NGIzNWMwNzIwODc0ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKfF+7/S8CmNXJs0W/22VWCUhQMhHcOMvqf6CpG9f71qaQFq
rRjyw19ZQTO0Tjs7ANlluN9+xh7abKII/iKsAgs9i0vkooJaXNdbdS7WH3o5VfVr
AIkYW5vBHzeAyx7vCzj6jrD9y71eywsn1vibLKIr8S20/+mCDfPpsaBS4SUb8bey
5lNbM5hWVdnrDuViyGMhyC/fUWYtdUL/AeN5DmOfzBpo9Nzse30lObNFbmYEcdOP
yjwxf51uf960E8VladGM0w570S5bZ6sP581zT11yt7tiUrL85ZH60jfRHVMoWTSH
WJH6Ipeycu2zSSv0Jecu11pY+8gTx/mBg1ZeCKMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRC59+3WIRUmr4bWhlpZLNcByCHTjAfBgNVHSMEGDAWgBSTYbXNaWglt0/M
un2Xw9Cick7zqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syRzF6V2xvSmJkUHpMcDlsOFBRb25KTzg2by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2YvNzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8x
L1F1ZmZ0MWlFVkpxLUcxb1phV1N6WEFjZ2gwNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Yv
NzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8xL2syRzF6V2xvSmJk
UHpMcDlsOFBRb25KTzg2by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOqgGrAjANBgkqhkiG9w0BAQsF
AAOCAQEADS21XiRfcWFgKvsiSEths5GKLBPyYN3Oy105xpTUIFS1cwhNi/0WAxyH
iRQMAokTummixLtosRRmHvm3GZJ4tU9Amlk7x61nAozXq6iNW3BkabtpuwDegf5l
tIp7VBkY//QcutT+huU9ozFLoAxoJoP70NR8ZK7RO/x9QGpJ53a6cuPMovzuXFq3
4d3CWhcPjWhJkr2K8kC8jkzQQfgN0iL53xS1K9Nxw+nW1QCBSdwd0pI3szESo0SL
aGZ/LGVL3lzZLyd2oBQNf3eR8tOyijstfwLwZERI8Kz3wOQwCak6av9cAkG1A/Z5
kfYedG8sP6kEaY6odeFodzYZAKELrA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-ams.rpki-client.org