Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/wUKz7OAISBOBgY_cOfXBm-loMGQ.roa
File: wUKz7OAISBOBgY_cOfXBm-loMGQ.roa (raw, json)
Hash identifier: hHoaJOK0iw0EofGsKCaC8b6PkSuEOfJq7iwZ35we+yg=
Subject key identifier: C1:42:B3:EC:E0:08:48:13:81:81:8F:DC:39:F5:C1:9B:E9:68:30:64
Certificate issuer: /CN=3eb1788fe220e46434692d1cc437072d792d7888
Certificate serial: 01847B141359F0CA7C057FCB0CE15E209AF3
Authority key identifier: 3E:B1:78:8F:E2:20:E4:64:34:69:2D:1C:C4:37:07:2D:79:2D:78:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/wUKz7OAISBOBgY_cOfXBm-loMGQ.roa
Signing time: Tue 15 Nov 2022 11:37:03 +0000
ROA not before: Tue 15 Nov 2022 11:37:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212674
IP address blocks: 2001:7f8:103::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7b:14:13:59:f0:ca:7c:05:7f:cb:0c:e1:5e:20:9a:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eb1788fe220e46434692d1cc437072d792d7888
Validity
Not Before: Nov 15 11:37:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c142b3ece008481381818fdc39f5c19be9683064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:54:6b:7e:2b:16:38:62:2b:c1:6b:86:fd:4e:
a6:c3:39:f5:64:cc:68:5e:28:b3:a6:79:91:4d:48:
d9:b8:89:0f:ab:de:83:62:18:80:7b:ac:2d:a8:c2:
fd:f6:e2:59:76:7b:bd:30:ef:00:b3:aa:48:88:9d:
c4:1f:b7:74:09:b8:58:95:5b:93:ad:5f:86:7d:ca:
ae:41:53:ab:3d:75:f7:66:0d:2c:26:9c:eb:43:25:
bc:f7:1b:66:4d:c3:13:88:66:39:e8:b5:f0:15:19:
a9:33:17:50:7b:73:8c:a7:fe:d3:60:d1:01:49:1b:
ec:d3:9c:a8:0a:35:10:7d:6b:76:3b:0b:ff:57:58:
e9:33:2f:00:9a:27:5c:00:84:24:dd:d1:24:7b:07:
61:0f:95:01:6a:47:b3:be:da:a0:b0:bf:8f:bc:48:
a2:12:1e:1d:13:8e:ee:8d:2e:83:12:39:c0:f5:8c:
2a:a4:20:af:97:a9:11:bf:12:ca:9a:b4:11:08:ed:
55:cb:c2:0c:e4:8f:af:df:81:64:b9:5c:7a:fd:d8:
67:fd:32:5c:f7:62:53:a1:45:5e:bc:ac:d6:55:17:
f5:ef:09:46:fd:4c:bc:60:56:46:97:98:15:41:cd:
9b:0e:fb:54:bd:9d:f0:6d:e3:f7:e1:ec:ab:1c:e0:
34:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:42:B3:EC:E0:08:48:13:81:81:8F:DC:39:F5:C1:9B:E9:68:30:64
X509v3 Authority Key Identifier:
keyid:3E:B1:78:8F:E2:20:E4:64:34:69:2D:1C:C4:37:07:2D:79:2D:78:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/wUKz7OAISBOBgY_cOfXBm-loMGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:7f8:103::/64
Signature Algorithm: sha256WithRSAEncryption
4d:06:c6:1b:65:56:be:fb:21:37:55:a7:05:82:4b:0f:65:26:
0e:f8:96:88:a9:81:0f:9f:20:97:d0:11:d6:5e:11:61:0c:cc:
2f:78:06:93:09:ee:39:1e:01:71:a6:97:8c:a6:b1:6a:a0:5c:
4f:82:99:63:c9:45:96:6b:85:ed:8d:aa:c5:10:2e:d5:02:26:
25:c6:88:01:7c:77:09:cc:01:96:61:90:35:5a:87:ea:f4:d2:
de:e8:9e:87:08:42:00:0c:39:ef:be:c3:95:d9:86:19:62:70:
85:16:cb:2a:d1:c0:76:c0:92:a6:2c:24:86:79:32:ff:35:99:
f2:c5:1c:af:91:a2:ff:63:6a:a3:0b:bc:74:d7:fe:75:ff:97:
f0:46:a7:b2:27:b6:3a:ba:a2:45:22:1a:f4:ec:94:5e:8f:ec:
3a:63:7f:3e:d8:b6:f4:19:d5:a1:c3:1d:06:62:5f:32:8d:28:
3c:18:73:a9:4a:d0:97:ac:ad:18:a2:42:e5:ba:70:e4:44:42:
31:a3:81:29:92:eb:39:2d:fd:f5:e7:bc:e0:5d:8b:bd:dd:3e:
8d:83:c5:87:90:e9:a8:19:98:60:38:c3:af:d6:b0:81:ad:e2:
bc:c8:f6:df:62:0c:a1:74:68:6d:dd:81:2d:32:ab:f2:f4:7b:
d8:b7:2c:ef
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgISAYR7FBNZ8Mp8BX/LDOFeIJrzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlYjE3ODhmZTIyMGU0NjQzNDY5MmQxY2M0MzcwNzJkNzky
ZDc4ODgwHhcNMjIxMTE1MTEzNzAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMTQyYjNlY2UwMDg0ODEzODE4MThmZGMzOWY1YzE5YmU5NjgzMDY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjlRrfisWOGIrwWuG/U6mwzn1ZMxo
XiizpnmRTUjZuIkPq96DYhiAe6wtqML99uJZdnu9MO8As6pIiJ3EH7d0CbhYlVuT
rV+GfcquQVOrPXX3Zg0sJpzrQyW89xtmTcMTiGY56LXwFRmpMxdQe3OMp/7TYNEB
SRvs05yoCjUQfWt2Owv/V1jpMy8AmidcAIQk3dEkewdhD5UBakezvtqgsL+PvEii
Eh4dE47ujS6DEjnA9YwqpCCvl6kRvxLKmrQRCO1Vy8IM5I+v34FkuVx6/dhn/TJc
92JToUVevKzWVRf17wlG/Uy8YFZGl5gVQc2bDvtUvZ3wbeP34eyrHOA0/QIDAQAB
o4ICDjCCAgowHQYDVR0OBBYEFMFCs+zgCEgTgYGP3Dn1wZvpaDBkMB8GA1UdIwQY
MBaAFD6xeI/iIORkNGktHMQ3By15LXiIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHJGNGotSWc1R1EwYVMwY3hEY0hMWGt0ZUlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8yMmY1NzAtMGIyNi00MDA0LThlZDAt
ZDk1MDk0NzMwNzJjLzEvd1VLejdPQUlTQk9CZ1lfY09mWEJtLWxvTUdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8yMmY1NzAtMGIyNi00MDA0LThlZDAtZDk1MDk0NzMwNzJj
LzEvUHJGNGotSWc1R1EwYVMwY3hEY0hMWGt0ZUlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAIAEH+AED
AAAwDQYJKoZIhvcNAQELBQADggEBAE0GxhtlVr77ITdVpwWCSw9lJg74loipgQ+f
IJfQEdZeEWEMzC94BpMJ7jkeAXGml4ymsWqgXE+CmWPJRZZrhe2NqsUQLtUCJiXG
iAF8dwnMAZZhkDVah+r00t7onocIQgAMOe++w5XZhhlicIUWyyrRwHbAkqYsJIZ5
Mv81mfLFHK+Rov9jaqMLvHTX/nX/l/BGp7Intjq6okUiGvTslF6P7Dpjfz7YtvQZ
1aHDHQZiXzKNKDwYc6lK0JesrRiiQuW6cOREQjGjgSmS6zkt/fXnvOBdi73dPo2D
xYeQ6agZmGA4w6/WsIGt4rzI9t9iDKF0aG3dgS0yq/L0e9i3LO8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:53 2024 by rpki-client on console-fra.rpki-client.org