Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/oGk7LTT292GyaZpHHfwGtSE0jI4.roa
File: oGk7LTT292GyaZpHHfwGtSE0jI4.roa (raw, json)
Hash identifier: RiF1QLFaVzCYYzyQU++B7VsPFPdoysoR3CeIbr527h8=
Subject key identifier: A0:69:3B:2D:34:F6:F7:61:B2:69:9A:47:1D:FC:06:B5:21:34:8C:8E
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0183845249B5DAD3EDC51AF2EAE3532A70B1
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/oGk7LTT292GyaZpHHfwGtSE0jI4.roa
Signing time: Wed 28 Sep 2022 13:38:48 +0000
ROA not before: Wed 28 Sep 2022 13:38:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202662
IP address blocks: 2a0e:aa07:e04d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:84:52:49:b5:da:d3:ed:c5:1a:f2:ea:e3:53:2a:70:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Sep 28 13:38:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0693b2d34f6f761b2699a471dfc06b521348c8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:16:a3:0f:a6:06:3b:fe:3b:fd:80:1a:c8:71:
72:64:3e:e0:64:0b:80:ad:ca:b6:63:2f:f1:a7:7a:
bd:e0:9f:4b:0a:4e:04:59:5c:6d:88:e7:d7:27:8b:
41:b5:c8:3d:26:a6:9c:ef:f0:dd:10:a6:db:aa:2c:
94:82:f4:9e:eb:36:bc:9c:47:94:d8:a4:67:b0:ce:
82:07:e9:c9:86:69:c6:8c:5d:77:57:03:a8:fd:41:
9b:1a:ea:b3:9f:5f:5e:cf:d5:01:ad:98:f5:a7:ee:
5b:4b:51:18:cd:e1:0e:93:0c:fe:e3:e8:dc:f5:3b:
2f:de:c3:e4:95:61:24:53:9e:40:cc:a2:56:8e:fd:
97:f3:d1:6a:e9:1d:c7:ad:0f:37:ad:b2:7c:e9:f2:
8a:d4:45:2b:7d:83:59:61:8d:50:09:cf:fa:5f:ba:
dd:17:28:83:86:79:51:27:07:dc:23:75:74:e4:be:
63:f0:dc:b9:59:66:34:f3:b6:45:cf:10:58:e8:32:
6b:3c:e4:0c:2c:8e:5c:ae:d4:30:40:21:5a:8c:14:
e9:a1:3a:92:0b:d4:8c:30:0c:eb:2a:db:67:4c:ae:
06:c9:92:7a:3a:ca:f5:59:87:54:b5:dc:6c:52:b0:
90:83:37:1e:5c:48:e9:d7:5b:ae:02:3f:89:05:d7:
0e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:69:3B:2D:34:F6:F7:61:B2:69:9A:47:1D:FC:06:B5:21:34:8C:8E
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/oGk7LTT292GyaZpHHfwGtSE0jI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e04d::/48
Signature Algorithm: sha256WithRSAEncryption
18:bd:58:f8:97:a0:4b:6f:ad:be:78:cf:e2:ae:10:93:e6:a2:
b6:46:5d:52:7f:28:52:b5:d1:6c:87:f5:6f:73:08:b6:48:d7:
e7:d2:b7:23:3d:85:8b:8e:28:33:e6:d5:15:4b:d3:4e:11:ad:
48:b8:3a:f9:2a:6c:2a:8a:d0:55:3d:8b:9e:76:33:84:be:19:
0b:b4:31:16:e3:f2:d7:83:60:69:32:7b:b6:ba:81:ab:66:7c:
59:06:73:ca:ba:07:73:ee:6b:4a:b4:6a:8b:1f:ae:de:cc:0a:
af:c3:7d:3b:38:ba:de:f5:59:64:57:d7:33:35:61:76:d9:a0:
1a:57:57:ca:eb:ad:52:08:9b:70:db:7f:35:cd:ce:76:90:ed:
63:80:d7:a2:d3:e9:47:3f:10:f3:82:3f:d2:84:7d:53:28:64:
e6:d1:23:c7:4d:9b:cb:d5:c6:8d:f4:7c:9d:0f:59:6b:a3:91:
da:7a:aa:5b:58:f2:f2:cf:33:42:aa:1b:f7:15:ae:16:d4:d5:
0b:76:de:32:e8:09:bf:ae:ce:82:10:a6:70:79:98:e1:5d:a8:
e3:c8:22:c2:53:dd:b8:b9:6c:f9:c1:66:42:30:2f:2e:a6:5d:
1a:b2:f0:21:a9:2a:31:f5:a4:1d:45:a9:0c:60:75:e9:fc:9f:
fb:0c:aa:59
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYOEUkm12tPtxRry6uNTKnCxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0
ZWYzYWEwHhcNMjIwOTI4MTMzODQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMDY5M2IyZDM0ZjZmNzYxYjI2OTlhNDcxZGZjMDZiNTIxMzQ4YzhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhajD6YGO/47/YAayHFyZD7gZAuA
rcq2Yy/xp3q94J9LCk4EWVxtiOfXJ4tBtcg9Jqac7/DdEKbbqiyUgvSe6za8nEeU
2KRnsM6CB+nJhmnGjF13VwOo/UGbGuqzn19ez9UBrZj1p+5bS1EYzeEOkwz+4+jc
9Tsv3sPklWEkU55AzKJWjv2X89Fq6R3HrQ83rbJ86fKK1EUrfYNZYY1QCc/6X7rd
FyiDhnlRJwfcI3V05L5j8Ny5WWY087ZFzxBY6DJrPOQMLI5crtQwQCFajBTpoTqS
C9SMMAzrKttnTK4GyZJ6Osr1WYdUtdxsUrCQgzceXEjp11uuAj+JBdcOqwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKBpOy009vdhsmmaRx38BrUhNIyOMB8GA1UdIwQY
MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt
YTU0MWQxYmNlZTE5LzEvb0drN0xUVDI5Mkd5YVpwSEhmd0d0U0Uwakk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5
LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6qB+BN
MA0GCSqGSIb3DQEBCwUAA4IBAQAYvVj4l6BLb62+eM/irhCT5qK2Rl1SfyhStdFs
h/Vvcwi2SNfn0rcjPYWLjigz5tUVS9NOEa1IuDr5KmwqitBVPYuedjOEvhkLtDEW
4/LXg2BpMnu2uoGrZnxZBnPKugdz7mtKtGqLH67ezAqvw307OLre9VlkV9czNWF2
2aAaV1fK661SCJtw2381zc52kO1jgNei0+lHPxDzgj/ShH1TKGTm0SPHTZvL1caN
9HydD1lro5HaeqpbWPLyzzNCqhv3Fa4W1NULdt4y6Am/rs6CEKZweZjhXajjyCLC
U924uWz5wWZCMC8upl0asvAhqSox9aQdRakMYHXp/J/7DKpZ
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:31 2023 by rpki-client on console-fra.rpki-client.org