Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/US7zyP7D2Yii1d7kil7hkfHRBxY.roa
File: US7zyP7D2Yii1d7kil7hkfHRBxY.roa (raw, json)
Hash identifier: RewXGKaJrvbKT65qwki3P3NU0TDyQjmGgeHynYwNQeA=
Subject key identifier: 51:2E:F3:C8:FE:C3:D9:88:A2:D5:DE:E4:8A:5E:E1:91:F1:D1:07:16
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 09693E36
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/US7zyP7D2Yii1d7kil7hkfHRBxY.roa
Signing time: Sat 01 Jan 2022 09:03:56 +0000
ROA not before: Sat 01 Jan 2022 09:03:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206843
IP address blocks: 2a0e:aa07:e00e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157892150 (0x9693e36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:03:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=512ef3c8fec3d988a2d5dee48a5ee191f1d10716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ef:84:3c:53:f1:02:48:6c:bf:63:80:16:1d:
50:32:49:89:15:30:e5:d1:06:99:b9:1d:aa:fa:e6:
0d:aa:3c:65:4e:37:42:2a:9e:9a:67:27:9e:b4:2b:
0a:19:b1:1a:0a:a6:0d:8e:0b:6c:62:01:8e:43:04:
de:e8:94:81:d5:8f:86:77:65:cc:30:00:67:19:00:
02:37:48:02:a4:5c:7f:55:44:b8:1d:d6:19:a8:91:
e0:a4:6f:d1:51:48:3d:01:f1:73:3f:84:20:88:7a:
a6:e7:c5:d4:08:3f:4c:af:b9:21:b0:f4:5d:70:b3:
72:f7:b3:d4:96:cb:0a:02:da:ed:a0:95:3d:65:c1:
73:56:95:86:19:6f:a1:f1:75:85:cf:80:66:55:bc:
c2:8c:dd:9e:37:6f:c9:72:56:db:be:a8:ef:0c:7f:
50:ac:96:7f:87:86:4d:60:ff:48:11:d2:07:ba:3a:
3c:cd:72:8c:b4:59:dd:5a:cf:ec:48:ce:2b:74:f4:
6c:96:e2:b5:ce:d4:66:b1:7d:38:ba:c1:8d:32:af:
85:4c:42:50:ae:e5:da:ac:9c:89:27:cf:87:02:e1:
d5:9d:9d:93:26:da:34:f2:6c:0c:12:3c:ce:39:7e:
4b:76:9a:4f:bc:c8:b9:02:e1:d7:84:bf:a9:39:87:
7a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:2E:F3:C8:FE:C3:D9:88:A2:D5:DE:E4:8A:5E:E1:91:F1:D1:07:16
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/US7zyP7D2Yii1d7kil7hkfHRBxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e00e::/48
Signature Algorithm: sha256WithRSAEncryption
07:14:46:a0:cf:e0:f1:79:76:08:09:6e:6b:af:b8:d0:b6:14:
6e:b7:1b:b1:ca:0c:7a:28:21:3c:63:68:64:ab:73:c4:f7:ad:
d7:72:79:f1:e6:2d:97:72:c3:40:04:16:9b:79:0b:e2:f4:97:
c9:a3:0c:7c:1f:12:1c:96:ee:d1:f0:51:1e:e6:a8:ca:60:5d:
05:80:db:bf:fe:84:7e:fe:5d:8f:ab:99:0b:84:1e:0a:5a:02:
7b:b2:c8:50:70:36:1c:32:18:24:8d:8d:67:08:ae:1b:3e:31:
68:f9:e1:cd:0c:a4:a9:6a:53:95:88:e1:74:bb:45:75:76:fd:
3a:10:f2:4e:f1:4f:53:8f:37:b5:a3:c6:bd:a3:64:3f:9b:fc:
72:1e:7b:61:66:63:a0:1f:21:9a:0d:18:81:32:cc:78:26:93:
ac:14:6a:58:29:90:1e:b9:bb:33:46:3f:c9:3b:a6:6c:84:18:
23:66:dd:f9:6b:57:ea:7c:44:66:23:98:a5:e8:00:f5:25:c0:
3d:a5:7f:79:be:32:62:0d:50:93:f5:50:15:f1:6d:7e:56:52:
25:bd:7c:11:49:56:7c:00:6f:6d:22:b3:a0:5e:da:68:49:81:
09:0d:a4:03:69:27:3b:28:f5:92:38:23:f1:26:b9:8c:96:69:
fc:17:9a:60
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECWk+NjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzYxYjVjZDY5NjgyNWI3NGZjY2JhN2Q5N2MzZDBhMjcyNGVmM2FhMB4XDTIyMDEw
MTA5MDM1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTEyZWYzYzhmZWMz
ZDk4OGEyZDVkZWU0OGE1ZWUxOTFmMWQxMDcxNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANPvhDxT8QJIbL9jgBYdUDJJiRUw5dEGmbkdqvrmDao8ZU43
QiqemmcnnrQrChmxGgqmDY4LbGIBjkME3uiUgdWPhndlzDAAZxkAAjdIAqRcf1VE
uB3WGaiR4KRv0VFIPQHxcz+EIIh6pufF1Ag/TK+5IbD0XXCzcvez1JbLCgLa7aCV
PWXBc1aVhhlvofF1hc+AZlW8wozdnjdvyXJW276o7wx/UKyWf4eGTWD/SBHSB7o6
PM1yjLRZ3VrP7EjOK3T0bJbitc7UZrF9OLrBjTKvhUxCUK7l2qyciSfPhwLh1Z2d
kybaNPJsDBI8zjl+S3aaT7zIuQLh14S/qTmHensCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRRLvPI/sPZiKLV3uSKXuGR8dEHFjAfBgNVHSMEGDAWgBSTYbXNaWglt0/M
un2Xw9Cick7zqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syRzF6V2xvSmJkUHpMcDlsOFBRb25KTzg2by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2YvNzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8x
L1VTN3p5UDdEMllpaTFkN2tpbDdoa2ZIUkJ4WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Yv
NzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8xL2syRzF6V2xvSmJk
UHpMcDlsOFBRb25KTzg2by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOqgfgDjANBgkqhkiG9w0BAQsF
AAOCAQEABxRGoM/g8Xl2CAlua6+40LYUbrcbscoMeighPGNoZKtzxPet13J58eYt
l3LDQAQWm3kL4vSXyaMMfB8SHJbu0fBRHuaoymBdBYDbv/6Efv5dj6uZC4QeCloC
e7LIUHA2HDIYJI2NZwiuGz4xaPnhzQykqWpTlYjhdLtFdXb9OhDyTvFPU483taPG
vaNkP5v8ch57YWZjoB8hmg0YgTLMeCaTrBRqWCmQHrm7M0Y/yTumbIQYI2bd+WtX
6nxEZiOYpegA9SXAPaV/eb4yYg1Qk/VQFfFtflZSJb18EUlWfABvbSKzoF7aaEmB
CQ2kA2knOyj1kjgj8Sa5jJZp/BeaYA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org