Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/fGY0W6LD4rVt-SBut_AhHzJGpnc.roa
File: fGY0W6LD4rVt-SBut_AhHzJGpnc.roa (raw, json)
Hash identifier: entHhr+dsdUCRI3CKregQ5Ac4VtLpmbJgh2KNMfL/XY=
Subject key identifier: 7C:66:34:5B:A2:C3:E2:B5:6D:F9:20:6E:B7:F0:21:1F:32:46:A6:77
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0964D033
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/fGY0W6LD4rVt-SBut_AhHzJGpnc.roa
Signing time: Sat 01 Jan 2022 09:03:54 +0000
ROA not before: Sat 01 Jan 2022 09:03:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140972
IP address blocks: 2a0e:aa07:e015::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157601843 (0x964d033)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:03:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c66345ba2c3e2b56df9206eb7f0211f3246a677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f7:3e:ac:73:24:99:27:8a:46:94:b9:c7:49:
7e:43:26:c2:87:03:82:93:62:b1:8f:c2:f8:30:04:
c8:a4:71:88:c2:36:45:39:d3:1c:19:c9:c4:ed:78:
82:44:fd:07:29:33:fe:f0:a3:79:79:40:09:81:42:
04:7e:95:a2:62:62:19:19:d8:e4:d4:2d:74:36:23:
e4:50:ae:71:d0:41:f5:63:6e:3d:31:3b:d8:2b:72:
d6:3a:0b:cc:78:fb:ba:8e:96:e2:cf:b2:64:f2:f6:
11:3a:38:8e:8c:d8:94:2a:fa:08:88:7e:69:70:da:
1d:bb:2f:17:d7:7d:42:83:10:81:2a:d6:04:80:d3:
91:0a:86:54:96:93:e8:c1:15:18:e3:23:49:bc:f5:
73:bb:ff:11:a4:5a:36:87:3d:26:78:12:52:6f:09:
34:f3:0f:ab:5c:a5:e5:6d:2f:68:56:cc:91:cd:8b:
bd:69:f3:86:fb:42:b9:d0:df:65:52:7f:54:b7:7c:
c9:87:fc:ff:58:6c:78:47:3e:04:fe:59:b0:c0:c7:
4b:fc:57:fa:54:7c:e4:3b:09:e5:33:aa:1a:af:2b:
8d:2c:a5:b6:8a:5a:2a:21:2b:81:6d:8d:78:0f:7b:
8a:50:5e:b3:b3:fa:53:35:bb:71:28:1a:28:ac:fb:
ba:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:66:34:5B:A2:C3:E2:B5:6D:F9:20:6E:B7:F0:21:1F:32:46:A6:77
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/fGY0W6LD4rVt-SBut_AhHzJGpnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e015::/48
Signature Algorithm: sha256WithRSAEncryption
02:28:ce:03:9d:5b:fa:33:ab:e0:d4:52:22:93:45:5b:97:71:
8b:61:9a:48:cb:c7:a2:dd:55:18:b2:d8:7f:94:92:be:5c:68:
d9:71:bd:1a:0c:af:e6:00:1e:90:eb:7a:f9:1a:a6:0f:25:bb:
eb:0a:df:a7:26:28:ce:6e:2c:da:9f:46:df:43:17:91:2b:f7:
ed:57:33:a8:dc:cb:5e:a1:54:1f:62:40:67:9a:1c:20:ce:1e:
2a:a6:e7:4c:b7:76:38:8b:d4:50:e8:8d:71:60:dd:44:8d:00:
b6:49:36:14:8f:62:74:2a:90:5b:f3:05:0c:5d:43:c5:d2:83:
2f:6c:de:1f:d0:2e:25:80:5e:6a:cd:03:70:01:86:fd:67:dd:
91:e7:b0:b9:ec:60:55:bc:8f:cb:d3:76:58:26:4a:16:7f:7b:
27:f4:a1:b9:33:22:38:2f:f9:ea:22:f6:08:32:60:b5:8b:33:
b9:25:bd:87:a8:cc:c1:ac:48:c8:06:bd:42:ce:c3:24:3a:d5:
b7:1f:09:58:f1:67:90:38:cf:c6:f2:26:58:ba:1a:00:44:50:
a4:4f:db:5a:87:78:c0:11:b4:5f:ef:a5:c9:6c:8a:00:8e:a1:
1c:d9:ae:33:71:9b:00:77:8b:d1:9d:61:e2:9a:7d:c0:dd:a6:
65:b2:ca:ea
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECWTQMzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzYxYjVjZDY5NjgyNWI3NGZjY2JhN2Q5N2MzZDBhMjcyNGVmM2FhMB4XDTIyMDEw
MTA5MDM1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2M2NjM0NWJhMmMz
ZTJiNTZkZjkyMDZlYjdmMDIxMWYzMjQ2YTY3NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKz3PqxzJJknikaUucdJfkMmwocDgpNisY/C+DAEyKRxiMI2
RTnTHBnJxO14gkT9Bykz/vCjeXlACYFCBH6VomJiGRnY5NQtdDYj5FCucdBB9WNu
PTE72Cty1joLzHj7uo6W4s+yZPL2ETo4jozYlCr6CIh+aXDaHbsvF9d9QoMQgSrW
BIDTkQqGVJaT6MEVGOMjSbz1c7v/EaRaNoc9JngSUm8JNPMPq1yl5W0vaFbMkc2L
vWnzhvtCudDfZVJ/VLd8yYf8/1hseEc+BP5ZsMDHS/xX+lR85DsJ5TOqGq8rjSyl
topaKiErgW2NeA97ilBes7P6UzW7cSgaKKz7usECAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBR8ZjRbosPitW35IG638CEfMkamdzAfBgNVHSMEGDAWgBSTYbXNaWglt0/M
un2Xw9Cick7zqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syRzF6V2xvSmJkUHpMcDlsOFBRb25KTzg2by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2YvNzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8x
L2ZHWTBXNkxENHJWdC1TQnV0X0FoSHpKR3BuYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Yv
NzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8xL2syRzF6V2xvSmJk
UHpMcDlsOFBRb25KTzg2by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOqgfgFTANBgkqhkiG9w0BAQsF
AAOCAQEAAijOA51b+jOr4NRSIpNFW5dxi2GaSMvHot1VGLLYf5SSvlxo2XG9Ggyv
5gAekOt6+RqmDyW76wrfpyYozm4s2p9G30MXkSv37VczqNzLXqFUH2JAZ5ocIM4e
KqbnTLd2OIvUUOiNcWDdRI0Atkk2FI9idCqQW/MFDF1DxdKDL2zeH9AuJYBeas0D
cAGG/WfdkeewuexgVbyPy9N2WCZKFn97J/ShuTMiOC/56iL2CDJgtYszuSW9h6jM
waxIyAa9Qs7DJDrVtx8JWPFnkDjPxvImWLoaAERQpE/bWod4wBG0X++lyWyKAI6h
HNmuM3GbAHeL0Z1h4pp9wN2mZbLK6g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-ams.rpki-client.org