Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/rZtoCPrUtCvOosCLSd_v8akEt10.roa
File: rZtoCPrUtCvOosCLSd_v8akEt10.roa (raw, json)
Hash identifier: dTEeI96nodwZHHMYVBkaZ8iFWt/bOeDWPVE/Z4Dm4GE=
Subject key identifier: AD:9B:68:08:FA:D4:B4:2B:CE:A2:C0:8B:49:DF:EF:F1:A9:04:B7:5D
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 07AFEE4A
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/rZtoCPrUtCvOosCLSd_v8akEt10.roa
Signing time: Sat 01 Jan 2022 08:01:52 +0000
ROA not before: Sat 01 Jan 2022 08:01:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208982
IP address blocks: 2a09:7:2009::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128970314 (0x7afee4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 08:01:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad9b6808fad4b42bcea2c08b49dfeff1a904b75d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7c:d4:30:d8:dc:cb:4c:77:5e:2f:29:e4:a6:
5d:2e:54:42:b9:c0:be:8a:b5:2e:ca:a9:e3:c6:8a:
9b:ba:80:f4:b4:a1:95:8e:1f:b1:08:be:82:18:1c:
ed:c7:2d:7b:e0:fd:df:67:20:62:d6:ba:e2:40:a4:
10:9f:4c:c8:7e:8f:84:6d:70:a7:38:7b:cf:6e:f0:
f2:68:6a:e0:58:3f:5b:de:c2:5b:fc:d4:e6:00:3f:
65:0a:ab:bc:e2:53:13:95:62:cb:6f:97:fb:af:37:
fa:7d:0d:11:a2:c4:3c:af:96:df:11:aa:b5:b3:b0:
7a:3f:c6:5b:ae:1c:88:03:94:0f:8b:16:a6:43:15:
23:56:7e:c1:f0:9a:cd:b4:da:3b:d2:a3:fa:17:30:
ff:d2:5b:f1:d9:54:eb:4c:f8:be:25:11:97:1f:fc:
15:14:fe:f6:3f:7d:c1:a8:4d:93:81:88:98:33:63:
2d:44:92:e5:f2:7a:ef:e5:8e:52:0b:f2:eb:64:21:
86:20:9f:27:b3:4a:7b:af:07:a4:d6:9d:fa:8a:e7:
ea:79:ed:97:fd:55:32:de:27:c1:f4:f7:9b:88:93:
13:3c:86:8c:f8:b5:c4:93:b0:1d:f9:97:3c:16:a9:
e9:10:b6:a4:6c:1b:33:59:43:c5:de:6c:cf:6f:57:
6b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:9B:68:08:FA:D4:B4:2B:CE:A2:C0:8B:49:DF:EF:F1:A9:04:B7:5D
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/rZtoCPrUtCvOosCLSd_v8akEt10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7:2009::/48
Signature Algorithm: sha256WithRSAEncryption
11:20:c1:d7:98:b9:78:3d:c1:4c:67:cb:cf:39:94:71:8f:85:
5f:a3:30:df:6c:1b:7e:57:b2:cb:84:2c:fb:82:23:30:5a:f9:
d3:60:f6:9d:c5:d4:c6:c2:29:15:c6:7d:a6:11:5d:d5:fe:8d:
ab:a6:c3:14:c2:58:ea:3d:32:58:ac:65:58:63:d3:7a:af:68:
1a:79:ec:b8:89:8f:67:ff:4c:81:7a:57:a2:39:3a:ae:1d:07:
b7:66:af:39:3b:41:62:c2:df:5d:bb:71:58:93:82:b7:14:c0:
2a:e4:5b:8c:79:d9:25:7c:0c:02:ec:87:d6:77:67:dd:5f:d7:
81:fb:a0:d5:45:f6:30:80:40:e7:64:79:0b:41:16:73:c5:0b:
5e:11:cf:ad:65:6c:ee:f4:72:7a:82:c5:87:ec:7a:25:da:ef:
12:00:ba:af:d3:da:70:1e:70:9c:7a:37:38:10:f5:1e:88:90:
90:7f:e2:22:4e:55:bc:1f:65:8c:65:28:31:70:5c:88:36:14:
d9:e7:9c:83:f5:93:4d:94:71:bd:05:69:82:06:23:05:22:78:
4f:13:b3:57:de:cd:bb:62:b2:34:22:8f:99:78:7f:5b:66:af:
7f:92:2e:dd:f3:a3:69:ec:e6:13:0f:6c:1c:7a:cc:e4:75:4f:
0d:93:57:08
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEB6/uSjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NTc2ZWIyY2M0NjJlNmU0YmYwZGU2OWI5ZjYzNDg3NWRlYmJhYWUyMB4XDTIyMDEw
MTA4MDE1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWQ5YjY4MDhmYWQ0
YjQyYmNlYTJjMDhiNDlkZmVmZjFhOTA0Yjc1ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALt81DDY3MtMd14vKeSmXS5UQrnAvoq1Lsqp48aKm7qA9LSh
lY4fsQi+ghgc7ccte+D932cgYta64kCkEJ9MyH6PhG1wpzh7z27w8mhq4Fg/W97C
W/zU5gA/ZQqrvOJTE5Viy2+X+683+n0NEaLEPK+W3xGqtbOwej/GW64ciAOUD4sW
pkMVI1Z+wfCazbTaO9Kj+hcw/9Jb8dlU60z4viURlx/8FRT+9j99wahNk4GImDNj
LUSS5fJ67+WOUgvy62QhhiCfJ7NKe68HpNad+orn6nntl/1VMt4nwfT3m4iTEzyG
jPi1xJOwHfmXPBap6RC2pGwbM1lDxd5sz29Xa/cCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBStm2gI+tS0K86iwItJ3+/xqQS3XTAfBgNVHSMEGDAWgBSldussxGLm5L8N
5pufY0h13ruq4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BYYnJMTVJpNXVTX0RlYWJuMk5JZGQ2N3F1SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODcvOTMxOTI3LTlmMzgtNDFiNi04N2ZhLTI1NGFjZDkyYjRlMS8x
L3JadG9DUHJVdEN2T29zQ0xTZF92OGFrRXQxMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcv
OTMxOTI3LTlmMzgtNDFiNi04N2ZhLTI1NGFjZDkyYjRlMS8xL3BYYnJMTVJpNXVT
X0RlYWJuMk5JZGQ2N3F1SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoJAAcgCTANBgkqhkiG9w0BAQsF
AAOCAQEAESDB15i5eD3BTGfLzzmUcY+FX6Mw32wbfleyy4Qs+4IjMFr502D2ncXU
xsIpFcZ9phFd1f6Nq6bDFMJY6j0yWKxlWGPTeq9oGnnsuImPZ/9MgXpXojk6rh0H
t2avOTtBYsLfXbtxWJOCtxTAKuRbjHnZJXwMAuyH1ndn3V/Xgfug1UX2MIBA52R5
C0EWc8ULXhHPrWVs7vRyeoLFh+x6JdrvEgC6r9PacB5wnHo3OBD1HoiQkH/iIk5V
vB9ljGUoMXBciDYU2eecg/WTTZRxvQVpggYjBSJ4TxOzV97Nu2KyNCKPmXh/W2av
f5Iu3fOjaezmEw9sHHrM5HVPDZNXCA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:59 2023 by rpki-client on console-fra.rpki-client.org