Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ba66f2-de3e-4de8-bd65-22f23fe29287/1/z2FRKQkVM4mKyDXlRhoFX3S8Xa8.roa
File: z2FRKQkVM4mKyDXlRhoFX3S8Xa8.roa (raw, json)
Hash identifier: Y9DxADRYagrkwWkoPUEvaCpH5VU3nWLg3S8qqnhUj8Q=
Subject key identifier: CF:61:51:29:09:15:33:89:8A:C8:35:E5:46:1A:05:5F:74:BC:5D:AF
Certificate issuer: /CN=480e3cf0d122574c7e7b3bf034d0d3d013eebc15
Certificate serial: 0183BE192283F683F05FD16D1462E02D53E2
Authority key identifier: 48:0E:3C:F0:D1:22:57:4C:7E:7B:3B:F0:34:D0:D3:D0:13:EE:BC:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SA488NEiV0x-ezvwNNDT0BPuvBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ba66f2-de3e-4de8-bd65-22f23fe29287/1/z2FRKQkVM4mKyDXlRhoFX3S8Xa8.roa
Signing time: Sun 09 Oct 2022 18:54:21 +0000
ROA not before: Sun 09 Oct 2022 18:54:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2001:67c:ac0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:be:19:22:83:f6:83:f0:5f:d1:6d:14:62:e0:2d:53:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=480e3cf0d122574c7e7b3bf034d0d3d013eebc15
Validity
Not Before: Oct 9 18:54:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf615129091533898ac835e5461a055f74bc5daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8b:a9:2b:57:e0:a9:5c:18:52:c7:46:36:fc:
1f:5d:80:9c:26:6e:92:c1:2b:12:26:b5:30:91:e8:
17:3c:57:f6:dd:5b:e0:ce:0e:63:25:ed:a8:97:33:
ab:ce:db:31:5b:4d:05:3d:30:24:c2:32:8e:da:e8:
9c:77:09:51:ee:9d:5b:84:f7:e6:3b:6b:80:98:1c:
d5:99:23:2b:04:17:71:f4:64:5e:a0:a2:e3:b2:82:
c7:89:50:ad:90:77:a5:36:96:f4:08:58:fd:18:a4:
b6:84:b3:f9:8a:d0:58:fd:02:bc:02:c2:4e:ca:09:
ea:22:b4:55:81:e6:d5:16:52:da:75:43:92:8f:fb:
bf:b9:42:7a:9c:fb:23:ec:95:90:73:3a:87:88:b0:
a8:4e:bf:58:cf:9e:34:de:2f:5a:fd:d8:41:ef:91:
1c:c0:22:78:97:ed:26:46:d8:04:a5:13:0b:8b:07:
a4:b7:e1:11:0a:3c:91:41:ce:93:45:26:e2:02:5c:
be:c4:85:f2:5d:8f:9d:ea:67:cb:09:76:19:16:1d:
94:9c:a0:08:0f:2f:f8:05:7a:35:7d:6f:24:eb:72:
ab:6b:94:e2:79:92:10:3c:aa:ed:ab:b1:b8:f1:a8:
dd:8f:88:ab:0c:1d:36:6b:b1:09:47:e6:b0:64:90:
93:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:61:51:29:09:15:33:89:8A:C8:35:E5:46:1A:05:5F:74:BC:5D:AF
X509v3 Authority Key Identifier:
keyid:48:0E:3C:F0:D1:22:57:4C:7E:7B:3B:F0:34:D0:D3:D0:13:EE:BC:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SA488NEiV0x-ezvwNNDT0BPuvBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ba66f2-de3e-4de8-bd65-22f23fe29287/1/z2FRKQkVM4mKyDXlRhoFX3S8Xa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ba66f2-de3e-4de8-bd65-22f23fe29287/1/SA488NEiV0x-ezvwNNDT0BPuvBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:ac0::/48
Signature Algorithm: sha256WithRSAEncryption
93:42:4f:a3:c7:b2:b3:9c:af:62:1b:46:a0:25:21:00:58:9d:
55:98:2a:d6:53:bc:17:56:4f:5c:b6:ae:eb:6a:2f:6f:6c:b0:
d2:db:07:90:e3:a0:3e:d7:29:ee:45:0a:cc:80:49:ff:42:cc:
90:84:82:4a:44:7b:f1:c6:28:c1:77:cb:58:8d:10:7f:5f:ae:
11:b5:d7:0d:6f:58:d6:db:48:fe:8d:7a:80:26:e3:a0:16:35:
32:57:c7:84:38:24:6e:58:b0:b4:67:00:19:70:ca:df:f9:83:
73:ce:8e:fd:5d:b7:40:6a:c7:f4:37:8e:e8:cc:c6:ae:80:62:
9d:32:45:f9:5a:af:7a:b9:d9:18:16:69:26:88:40:db:cd:92:
fb:ea:e9:22:38:47:72:46:e6:ad:8c:52:7f:48:a2:10:db:93:
93:ae:fe:b3:d7:bb:c5:e2:8a:ad:0d:b0:9b:91:28:5f:58:0c:
0b:09:66:b1:00:4e:08:81:df:14:83:f7:8f:63:44:62:35:07:
69:fa:8e:4b:95:f5:de:63:20:69:db:fe:ae:31:1b:1a:90:b0:
ca:d4:e1:31:8e:06:34:e5:10:90:fc:46:85:a5:2d:cd:e1:fb:
59:32:85:93:72:b0:bb:e9:25:1b:0a:57:7c:5e:df:7e:e2:3a:
ba:ab:10:13
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYO+GSKD9oPwX9FtFGLgLVPiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MGUzY2YwZDEyMjU3NGM3ZTdiM2JmMDM0ZDBkM2QwMTNl
ZWJjMTUwHhcNMjIxMDA5MTg1NDIxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZjYxNTEyOTA5MTUzMzg5OGFjODM1ZTU0NjFhMDU1Zjc0YmM1ZGFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmIupK1fgqVwYUsdGNvwfXYCcJm6S
wSsSJrUwkegXPFf23Vvgzg5jJe2olzOrztsxW00FPTAkwjKO2uicdwlR7p1bhPfm
O2uAmBzVmSMrBBdx9GReoKLjsoLHiVCtkHelNpb0CFj9GKS2hLP5itBY/QK8AsJO
ygnqIrRVgebVFlLadUOSj/u/uUJ6nPsj7JWQczqHiLCoTr9Yz5403i9a/dhB75Ec
wCJ4l+0mRtgEpRMLiwekt+ERCjyRQc6TRSbiAly+xIXyXY+d6mfLCXYZFh2UnKAI
Dy/4BXo1fW8k63Kra5TieZIQPKrtq7G48ajdj4irDB02a7EJR+awZJCThwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFM9hUSkJFTOJisg15UYaBV90vF2vMB8GA1UdIwQY
MBaAFEgOPPDRIldMfns78DTQ09AT7rwVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0E0ODhORWlWMHgtZXp2d05ORFQwQlB1dkJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9iYTY2ZjItZGUzZS00ZGU4LWJkNjUt
MjJmMjNmZTI5Mjg3LzEvejJGUktRa1ZNNG1LeURYbFJob0ZYM1M4WGE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9iYTY2ZjItZGUzZS00ZGU4LWJkNjUtMjJmMjNmZTI5Mjg3
LzEvU0E0ODhORWlWMHgtZXp2d05ORFQwQlB1dkJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfArA
MA0GCSqGSIb3DQEBCwUAA4IBAQCTQk+jx7KznK9iG0agJSEAWJ1VmCrWU7wXVk9c
tq7rai9vbLDS2weQ46A+1ynuRQrMgEn/QsyQhIJKRHvxxijBd8tYjRB/X64RtdcN
b1jW20j+jXqAJuOgFjUyV8eEOCRuWLC0ZwAZcMrf+YNzzo79XbdAasf0N47ozMau
gGKdMkX5Wq96udkYFmkmiEDbzZL76ukiOEdyRuatjFJ/SKIQ25OTrv6z17vF4oqt
DbCbkShfWAwLCWaxAE4Igd8Ug/ePY0RiNQdp+o5LlfXeYyBp2/6uMRsakLDK1OEx
jgY05RCQ/EaFpS3N4ftZMoWTcrC76SUbCld8Xt9+4jq6qxAT
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:37 2023 by rpki-client on console-ams.rpki-client.org