Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/3K1dWAU2OW2DDdRa_ATSgXRuIgU.roa
File: 3K1dWAU2OW2DDdRa_ATSgXRuIgU.roa (raw, json)
Hash identifier: ywHbbeLvXWkbf743+4nfAkvvQo+/L6t7bKOCdjtV3pY=
Subject key identifier: DC:AD:5D:58:05:36:39:6D:83:0D:D4:5A:FC:04:D2:81:74:6E:22:05
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FEBA6D4
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/3K1dWAU2OW2DDdRa_ATSgXRuIgU.roa
Signing time: Sat 01 Jan 2022 14:59:48 +0000
ROA not before: Sat 01 Jan 2022 14:59:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207754
IP address blocks: 2a06:e881:7104::/46 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267101908 (0xfeba6d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcad5d580536396d830dd45afc04d281746e2205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:13:8c:de:84:44:12:33:6e:16:92:39:1f:75:
79:7e:9f:ab:e4:db:b4:e4:f4:c4:43:6d:05:ad:92:
19:ab:2c:e6:3a:e9:94:5c:a1:5b:94:28:7a:7d:4c:
95:99:10:09:f3:40:55:aa:94:5b:f1:77:2d:96:a3:
d7:34:0e:5c:a2:a2:5f:2d:0b:50:37:eb:72:c9:62:
de:bf:83:14:18:f3:1e:9c:01:be:b3:c5:fd:af:ec:
a3:45:af:f5:c5:03:cc:f8:13:2a:a4:c2:d8:83:ca:
f8:c2:80:d6:c1:be:6e:a1:d2:5b:78:fb:c4:c4:ce:
b1:74:81:cc:0c:f7:ae:fd:61:19:57:d0:e8:ad:5b:
ec:8f:7f:2f:4e:28:70:c9:4d:aa:8e:16:85:3d:06:
46:a3:9d:da:07:b0:35:7a:3d:67:e8:3a:6b:1a:98:
ed:49:74:9f:0a:1c:83:86:67:18:ec:af:5d:7b:9d:
e2:79:b3:e3:8e:6a:aa:18:77:f6:46:70:60:e0:39:
90:48:37:50:78:bc:ec:11:2f:b4:5b:6a:7a:5f:68:
98:65:b2:40:42:58:6d:cd:3d:c1:3d:08:ce:5a:7e:
5a:9c:36:ab:f1:de:f7:2e:12:2e:2b:a1:26:91:44:
73:48:9f:fa:a4:b1:a9:9f:91:b4:60:dd:ae:e1:9c:
af:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:AD:5D:58:05:36:39:6D:83:0D:D4:5A:FC:04:D2:81:74:6E:22:05
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/3K1dWAU2OW2DDdRa_ATSgXRuIgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:7104::/46
Signature Algorithm: sha256WithRSAEncryption
33:43:0c:96:cd:0c:90:54:fe:32:2c:ff:76:a3:a3:b6:60:a3:
0a:78:59:6f:50:00:55:bc:17:b5:f1:c5:76:4d:41:3d:cb:bd:
d6:cb:e2:f1:94:2c:23:b8:f6:93:9f:e3:12:00:c0:2a:71:17:
48:c2:0c:1b:76:ea:2e:aa:f5:2b:a6:87:c8:f6:ea:ee:ab:cd:
fa:31:e2:18:68:c5:44:b6:ba:1c:a6:7f:ff:0c:c4:a1:f1:bf:
c7:3f:31:dc:fb:3c:e1:37:6d:29:20:5b:60:37:4d:5e:07:cb:
56:d2:c5:6b:39:69:a4:30:02:b3:36:b1:49:79:c7:d5:4d:99:
a7:87:af:85:d6:6b:39:00:f3:f7:4e:b5:d8:0a:4d:c5:02:c2:
c6:95:25:0d:9a:ed:3a:9f:18:bc:c5:a9:82:18:23:e8:15:5e:
e6:cf:40:35:c1:7a:09:cc:33:ab:24:73:32:f3:72:d3:20:af:
f7:24:6a:ad:cf:49:1f:de:b2:bb:a5:1f:64:11:62:75:e7:0a:
fb:14:85:00:69:2f:b1:69:da:29:47:7b:4a:51:a4:f2:63:40:
24:17:a4:ba:5d:24:5c:21:d7:4a:e7:0b:3e:4d:bd:aa:84:c5:
7f:b9:7b:0e:f4:82:96:4c:32:6e:b6:fc:8f:d6:d0:ad:e4:db:
7a:01:d9:02
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIED+um1DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ODA3NGI0MTllYWQ0Y2VmZWEyZjJhZDJjMjU5ZDk3OGM1ZWQ3OTU0MB4XDTIyMDEw
MTE0NTk0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGNhZDVkNTgwNTM2
Mzk2ZDgzMGRkNDVhZmMwNGQyODE3NDZlMjIwNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALATjN6ERBIzbhaSOR91eX6fq+TbtOT0xENtBa2SGass5jrp
lFyhW5Qoen1MlZkQCfNAVaqUW/F3LZaj1zQOXKKiXy0LUDfrcsli3r+DFBjzHpwB
vrPF/a/so0Wv9cUDzPgTKqTC2IPK+MKA1sG+bqHSW3j7xMTOsXSBzAz3rv1hGVfQ
6K1b7I9/L04ocMlNqo4WhT0GRqOd2gewNXo9Z+g6axqY7Ul0nwocg4ZnGOyvXXud
4nmz445qqhh39kZwYOA5kEg3UHi87BEvtFtqel9omGWyQEJYbc09wT0Izlp+Wpw2
q/He9y4SLiuhJpFEc0if+qSxqZ+RtGDdruGcr/MCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTcrV1YBTY5bYMN1Fr8BNKBdG4iBTAfBgNVHSMEGDAWgBS4B0tBnq1M7+ov
KtLCWdl4xe15VDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VBZExRWjZ0VE9fcUx5clN3bG5aZU1YdGVWUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWIvMWU0M2U0LWQwNmUtNGE1NS1iZGI2LTNkOTFlZGU1YjJiMS8x
LzNLMWRXQVUyT1cyRERkUmFfQVRTZ1hSdUlnVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIv
MWU0M2U0LWQwNmUtNGE1NS1iZGI2LTNkOTFlZGU1YjJiMS8xL3VBZExRWjZ0VE9f
cUx5clN3bG5aZU1YdGVWUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioG6IFxBDANBgkqhkiG9w0BAQsF
AAOCAQEAM0MMls0MkFT+Miz/dqOjtmCjCnhZb1AAVbwXtfHFdk1BPcu91svi8ZQs
I7j2k5/jEgDAKnEXSMIMG3bqLqr1K6aHyPbq7qvN+jHiGGjFRLa6HKZ//wzEofG/
xz8x3Ps84TdtKSBbYDdNXgfLVtLFazlppDACszaxSXnH1U2Zp4evhdZrOQDz9061
2ApNxQLCxpUlDZrtOp8YvMWpghgj6BVe5s9ANcF6CcwzqyRzMvNy0yCv9yRqrc9J
H96yu6UfZBFidecK+xSFAGkvsWnaKUd7SlGk8mNAJBekul0kXCHXSucLPk29qoTF
f7l7DvSClkwybrb8j9bQreTbegHZAg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:42 2023 by rpki-client on console-ams.rpki-client.org