Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/YaeyvsSvvnTNdvyU9BNzze1uWI8.roa
File: YaeyvsSvvnTNdvyU9BNzze1uWI8.roa (raw, json)
Hash identifier: GUBNPh0/6HQYh82YMBHLpNGtY6LQ1vS+TqvIi0Ku56Y=
Subject key identifier: 61:A7:B2:BE:C4:AF:BE:74:CD:76:FC:94:F4:13:73:CD:ED:6E:58:8F
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0970B254
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/YaeyvsSvvnTNdvyU9BNzze1uWI8.roa
Signing time: Sat 01 Jan 2022 09:04:00 +0000
ROA not before: Sat 01 Jan 2022 09:04:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208698
IP address blocks: 2a0e:aa07:f0d0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158380628 (0x970b254)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:04:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61a7b2bec4afbe74cd76fc94f41373cded6e588f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:55:c8:4c:33:ce:ca:f4:a4:a1:51:84:88:3a:
5d:34:21:f6:e6:f3:bd:fc:3a:e3:1b:f8:0d:51:d7:
b7:4c:db:b3:3d:49:3f:cb:b8:28:61:ef:b2:42:e1:
e0:a4:b7:4c:b0:c3:8a:ba:70:14:e6:20:b5:ad:66:
b1:66:a0:87:2d:65:f3:eb:6e:bd:b7:7b:bd:f1:a4:
84:c2:d6:63:bb:ba:06:30:7f:e7:48:a9:a5:b1:9c:
56:ec:5a:5c:e0:02:f8:aa:ae:80:68:89:a7:fb:eb:
b0:1d:77:a6:55:0d:97:ca:3f:79:3a:1e:d5:67:a5:
2a:ea:74:a8:4e:9d:0e:67:d6:28:ae:5e:4d:bc:cb:
79:2e:b1:be:a6:7b:e2:6a:2f:0f:80:56:65:41:b1:
34:b3:3c:21:0c:81:c0:11:ba:63:87:38:f9:d7:e0:
20:ce:f6:ea:3c:f8:d9:96:aa:5d:76:4e:e3:0a:60:
a1:bc:d1:12:25:d0:32:71:b6:8a:f5:bb:dd:98:28:
0b:39:6f:26:96:9b:99:f8:49:06:68:63:9a:c2:64:
8b:80:06:11:5a:46:45:5d:b3:d4:27:a2:c9:ca:df:
fc:86:d8:45:82:ec:5a:f1:4c:97:88:b8:5e:1d:7a:
80:7d:25:d6:1e:6a:56:98:b9:8d:c2:1f:0e:5f:15:
4a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:A7:B2:BE:C4:AF:BE:74:CD:76:FC:94:F4:13:73:CD:ED:6E:58:8F
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/YaeyvsSvvnTNdvyU9BNzze1uWI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:f0d0::/44
Signature Algorithm: sha256WithRSAEncryption
9c:ef:80:a2:26:e8:cb:5a:54:89:1c:b7:4d:3f:30:a2:c1:b5:
ae:4b:a8:c9:a9:c3:0d:59:e8:f6:0c:76:15:5e:10:34:d7:40:
e3:42:4b:84:30:5d:09:14:b6:67:ca:6c:4d:71:7a:6f:a7:eb:
f3:70:cd:a8:f1:2c:b1:d5:26:f2:1c:d4:6c:2f:75:13:56:23:
93:79:38:ab:62:be:c7:a5:61:5d:8b:f8:7f:3a:e9:7b:2e:fd:
65:91:46:7b:83:a9:c3:1d:e3:fd:24:10:45:65:99:a8:e9:b0:
34:24:65:b7:b1:e4:ce:2e:20:a4:b8:21:1a:d1:1b:11:9c:49:
e9:78:dd:01:47:76:2a:bc:26:29:d2:60:e2:a5:d6:de:38:61:
65:5e:d5:58:8c:63:2e:03:9d:77:ca:5a:88:ec:f5:aa:5d:13:
3f:88:e1:99:59:7b:72:89:16:58:de:59:47:ae:71:26:49:6f:
ca:ba:fa:ec:34:93:5d:aa:a6:57:a3:78:f4:0c:0e:64:42:87:
2e:99:5c:77:b1:45:9c:37:a6:7a:c2:42:e4:6a:cf:4a:81:15:
1b:02:fa:e8:e5:83:c4:84:a6:0c:45:2e:58:15:a3:96:fe:12:
55:47:d0:c8:3a:9d:7d:11:ad:0a:a0:69:52:c3:f8:4c:00:b1:
f5:e4:67:a5
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECXCyVDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzYxYjVjZDY5NjgyNWI3NGZjY2JhN2Q5N2MzZDBhMjcyNGVmM2FhMB4XDTIyMDEw
MTA5MDQwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjFhN2IyYmVjNGFm
YmU3NGNkNzZmYzk0ZjQxMzczY2RlZDZlNTg4ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK5VyEwzzsr0pKFRhIg6XTQh9ubzvfw64xv4DVHXt0zbsz1J
P8u4KGHvskLh4KS3TLDDirpwFOYgta1msWaghy1l8+tuvbd7vfGkhMLWY7u6BjB/
50ippbGcVuxaXOAC+KqugGiJp/vrsB13plUNl8o/eToe1WelKup0qE6dDmfWKK5e
TbzLeS6xvqZ74movD4BWZUGxNLM8IQyBwBG6Y4c4+dfgIM726jz42ZaqXXZO4wpg
obzREiXQMnG2ivW73ZgoCzlvJpabmfhJBmhjmsJki4AGEVpGRV2z1Ceiycrf/IbY
RYLsWvFMl4i4Xh16gH0l1h5qVpi5jcIfDl8VSiUCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRhp7K+xK++dM12/JT0E3PN7W5YjzAfBgNVHSMEGDAWgBSTYbXNaWglt0/M
un2Xw9Cick7zqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syRzF6V2xvSmJkUHpMcDlsOFBRb25KTzg2by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2YvNzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8x
L1lhZXl2c1N2dm5UTmR2eVU5Qk56emUxdVdJOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Yv
NzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8xL2syRzF6V2xvSmJk
UHpMcDlsOFBRb25KTzg2by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoOqgfw0DANBgkqhkiG9w0BAQsF
AAOCAQEAnO+Aoiboy1pUiRy3TT8wosG1rkuoyanDDVno9gx2FV4QNNdA40JLhDBd
CRS2Z8psTXF6b6fr83DNqPEssdUm8hzUbC91E1Yjk3k4q2K+x6VhXYv4fzrpey79
ZZFGe4Opwx3j/SQQRWWZqOmwNCRlt7Hkzi4gpLghGtEbEZxJ6XjdAUd2KrwmKdJg
4qXW3jhhZV7VWIxjLgOdd8paiOz1ql0TP4jhmVl7cokWWN5ZR65xJklvyrr67DST
XaqmV6N49AwOZEKHLplcd7FFnDemesJC5GrPSoEVGwL66OWDxISmDEUuWBWjlv4S
VUfQyDqdfRGtCqBpUsP4TACx9eRnpQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org