Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/9a18ad-087b-4d12-9f69-8cbf903e91cd/1/53ODyllFulBs6i3a_yHr0iRlnPs.roa
File: 53ODyllFulBs6i3a_yHr0iRlnPs.roa (raw, json)
Hash identifier: jrln+EUqklso8icUgqqn4n+tPzTRjJD+3zkmLly4FYA=
Subject key identifier: E7:73:83:CA:59:45:BA:50:6C:EA:2D:DA:FF:21:EB:D2:24:65:9C:FB
Certificate issuer: /CN=f1f4609d0d053aec0307da44b0e678c388f641a4
Certificate serial: 0183CD8D5AE1D29CF041C1933270C2611A3F
Authority key identifier: F1:F4:60:9D:0D:05:3A:EC:03:07:DA:44:B0:E6:78:C3:88:F6:41:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8fRgnQ0FOuwDB9pEsOZ4w4j2QaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/9a18ad-087b-4d12-9f69-8cbf903e91cd/1/53ODyllFulBs6i3a_yHr0iRlnPs.roa
Signing time: Wed 12 Oct 2022 18:55:36 +0000
ROA not before: Wed 12 Oct 2022 18:55:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2a13:2c0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cd:8d:5a:e1:d2:9c:f0:41:c1:93:32:70:c2:61:1a:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1f4609d0d053aec0307da44b0e678c388f641a4
Validity
Not Before: Oct 12 18:55:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e77383ca5945ba506cea2ddaff21ebd224659cfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:5d:57:3c:97:5b:15:7c:1c:90:41:79:5e:2e:
de:fe:80:c9:73:06:3a:e3:32:3e:71:de:31:61:76:
ad:46:aa:58:69:e7:bc:25:0a:04:95:1b:9c:6d:06:
ed:d1:1f:1d:73:16:e5:e1:b4:b3:cb:0a:cf:7e:ec:
78:44:38:e2:8e:15:af:cb:73:88:58:43:7b:19:b3:
eb:d1:eb:f5:9f:34:b7:c1:65:90:22:ca:70:b1:16:
96:e5:4c:ab:5f:5f:72:d1:5b:93:27:4f:5f:cb:5c:
56:51:4f:b5:38:55:eb:f3:b7:ad:b8:bd:15:b8:2f:
9d:2c:66:cc:ea:43:29:6c:2f:b1:f0:94:32:b6:7d:
d8:1f:4a:fe:62:09:02:ff:f6:ef:60:d6:7e:87:cb:
a8:71:06:ba:63:6f:98:fc:14:23:4a:dc:8b:53:e5:
e3:df:23:00:e7:f4:89:de:70:f5:25:bb:8a:bb:69:
b4:d8:58:2e:fc:ed:20:26:b1:2b:1c:b5:33:ec:09:
d8:36:9f:de:0c:02:74:4a:d4:21:c1:5d:dc:c3:ce:
1e:8a:3c:5a:a5:63:0a:37:a0:86:db:62:cb:98:6e:
e6:e5:9b:04:60:c6:1c:c4:89:7d:0b:b4:56:a8:0b:
c0:d5:13:49:6b:43:1f:6d:ac:98:ac:0a:35:00:7a:
e1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:73:83:CA:59:45:BA:50:6C:EA:2D:DA:FF:21:EB:D2:24:65:9C:FB
X509v3 Authority Key Identifier:
keyid:F1:F4:60:9D:0D:05:3A:EC:03:07:DA:44:B0:E6:78:C3:88:F6:41:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8fRgnQ0FOuwDB9pEsOZ4w4j2QaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/9a18ad-087b-4d12-9f69-8cbf903e91cd/1/53ODyllFulBs6i3a_yHr0iRlnPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/9a18ad-087b-4d12-9f69-8cbf903e91cd/1/8fRgnQ0FOuwDB9pEsOZ4w4j2QaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
8b:33:27:42:48:38:75:27:be:e5:85:e8:9d:7f:62:79:b0:4e:
e1:99:9a:29:a1:c1:8d:73:f2:22:1e:67:43:06:6b:92:64:77:
63:9d:49:74:7f:f9:dc:9f:f9:67:d1:bc:70:f4:d0:10:2c:91:
29:fb:a1:35:aa:3f:be:c4:36:20:a1:14:ca:78:b4:73:7a:b7:
7e:f2:ef:b5:4c:3a:52:cf:79:f6:fa:27:1b:ff:81:2d:e8:2c:
de:3c:bf:57:5c:6c:b9:39:e3:94:9e:9c:05:c7:cb:bf:d8:55:
e0:ae:2e:6b:50:d5:67:aa:bb:d9:8d:4c:35:07:3f:ba:c4:0d:
9f:bd:1b:01:04:ed:c7:86:02:db:93:95:5b:56:eb:89:b9:91:
6b:1a:8a:aa:46:21:ce:3a:bd:a2:21:84:e4:ad:dd:a3:96:9b:
40:c9:74:0c:d1:f9:03:8a:a2:0f:46:07:21:f0:eb:b0:eb:ba:
f3:a6:ce:c2:f6:17:c9:a3:9f:89:76:96:fe:f3:44:3f:d8:e6:
3b:c6:69:5e:d3:9d:e3:50:0c:5e:57:39:17:ab:d1:fc:5d:b5:
4e:4f:18:e7:58:2d:d9:f6:92:08:77:7c:a6:eb:c2:63:da:09:
07:75:63:19:1e:97:f1:85:11:6d:82:65:49:40:99:d1:39:17:
59:a6:bd:d1
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYPNjVrh0pzwQcGTMnDCYRo/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxZjQ2MDlkMGQwNTNhZWMwMzA3ZGE0NGIwZTY3OGMzODhm
NjQxYTQwHhcNMjIxMDEyMTg1NTM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNzczODNjYTU5NDViYTUwNmNlYTJkZGFmZjIxZWJkMjI0NjU5Y2ZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhV1XPJdbFXwckEF5Xi7e/oDJcwY6
4zI+cd4xYXatRqpYaee8JQoElRucbQbt0R8dcxbl4bSzywrPfux4RDjijhWvy3OI
WEN7GbPr0ev1nzS3wWWQIspwsRaW5UyrX19y0VuTJ09fy1xWUU+1OFXr87etuL0V
uC+dLGbM6kMpbC+x8JQytn3YH0r+YgkC//bvYNZ+h8uocQa6Y2+Y/BQjStyLU+Xj
3yMA5/SJ3nD1JbuKu2m02Fgu/O0gJrErHLUz7AnYNp/eDAJ0StQhwV3cw84eijxa
pWMKN6CG22LLmG7m5ZsEYMYcxIl9C7RWqAvA1RNJa0MfbayYrAo1AHrh/wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOdzg8pZRbpQbOot2v8h69IkZZz7MB8GA1UdIwQY
MBaAFPH0YJ0NBTrsAwfaRLDmeMOI9kGkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGZSZ25RMEZPdXdEQjlwRXNPWjR3NGoyUWFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC85YTE4YWQtMDg3Yi00ZDEyLTlmNjkt
OGNiZjkwM2U5MWNkLzEvNTNPRHlsbEZ1bEJzNmkzYV95SHIwaVJsblBzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC85YTE4YWQtMDg3Yi00ZDEyLTlmNjktOGNiZjkwM2U5MWNk
LzEvOGZSZ25RMEZPdXdEQjlwRXNPWjR3NGoyUWFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhMCwAAB
MA0GCSqGSIb3DQEBCwUAA4IBAQCLMydCSDh1J77lheidf2J5sE7hmZopocGNc/Ii
HmdDBmuSZHdjnUl0f/ncn/ln0bxw9NAQLJEp+6E1qj++xDYgoRTKeLRzerd+8u+1
TDpSz3n2+icb/4Et6CzePL9XXGy5OeOUnpwFx8u/2FXgri5rUNVnqrvZjUw1Bz+6
xA2fvRsBBO3HhgLbk5VbVuuJuZFrGoqqRiHOOr2iIYTkrd2jlptAyXQM0fkDiqIP
Rgch8Ouw67rzps7C9hfJo5+Jdpb+80Q/2OY7xmle053jUAxeVzkXq9H8XbVOTxjn
WC3Z9pIId3ym68Jj2gkHdWMZHpfxhRFtgmVJQJnRORdZpr3R
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:50 2023 by rpki-client on console-fra.rpki-client.org