Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/Wqw1bFABQ9eN23YTFVIYdfVJSfM.roa
File: Wqw1bFABQ9eN23YTFVIYdfVJSfM.roa (raw, json)
Hash identifier: EckRrT8sE4ay4lWPQvY1/aObnhrdMp4yoYauvTmhYuY=
Subject key identifier: 5A:AC:35:6C:50:01:43:D7:8D:DB:76:13:15:52:18:75:F5:49:49:F3
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 018531036CE2803F564369522D0E384AF4B4
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/Wqw1bFABQ9eN23YTFVIYdfVJSfM.roa
Signing time: Tue 20 Dec 2022 19:29:46 +0000
ROA not before: Tue 20 Dec 2022 19:29:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200398
IP address blocks: 2a06:e881:9780::/41 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:31:03:6c:e2:80:3f:56:43:69:52:2d:0e:38:4a:f4:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Dec 20 19:29:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5aac356c500143d78ddb761315521875f54949f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e1:29:55:57:38:9c:47:09:8a:f2:cc:93:49:
41:a9:d3:cf:47:db:22:37:35:8c:25:75:6d:87:43:
d7:b8:1e:ea:af:7d:4b:74:56:a3:bd:ee:3c:1d:03:
b3:f6:c6:85:a2:9e:fb:be:ce:2d:2a:31:40:90:99:
62:e7:a2:05:5a:df:5b:08:53:07:e3:6a:e0:30:7c:
0d:3d:68:b3:fd:67:ea:02:a5:e3:cc:12:0d:15:32:
c7:be:af:cb:87:81:bc:50:25:b5:dc:39:83:92:ac:
00:1c:43:d7:7e:e3:fd:20:ea:6e:b1:d0:eb:8d:8e:
dd:be:f0:24:8c:70:22:03:1e:31:13:bd:0f:79:78:
ba:d9:62:90:3c:35:a8:a6:cd:b3:d2:d7:97:cb:d5:
9f:c0:49:fa:d1:0e:d6:9c:03:41:6b:e3:eb:34:b4:
8d:37:b5:b3:8a:ef:4c:d7:2d:5e:85:21:d1:5d:1b:
3f:1b:4b:cb:19:57:02:14:03:0b:f8:ca:d3:95:05:
c0:c0:f9:47:f0:9a:ed:ba:c8:c4:c6:d7:31:11:7d:
9b:04:05:d1:27:b4:2c:21:10:1d:ff:cd:fb:ae:9f:
ca:2f:6d:1c:e6:d5:04:5e:e4:b1:52:db:aa:e3:10:
21:23:30:70:00:40:26:38:f6:96:eb:a0:39:09:93:
11:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:AC:35:6C:50:01:43:D7:8D:DB:76:13:15:52:18:75:F5:49:49:F3
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/Wqw1bFABQ9eN23YTFVIYdfVJSfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:9780::/41
Signature Algorithm: sha256WithRSAEncryption
a9:37:f3:e0:0f:12:58:65:1e:f6:15:2b:b1:e8:2d:48:e1:a5:
76:ed:bb:b5:48:b3:59:da:0e:1c:25:a0:1c:3b:c4:c4:6e:9b:
87:52:a1:70:31:6c:f8:ca:34:27:8d:8e:15:75:08:a9:96:60:
5d:1b:8b:59:31:3b:42:ed:21:04:c7:5d:cc:37:45:0a:70:00:
a3:37:53:89:73:1f:21:6c:71:69:17:ce:0b:cb:d3:a4:2f:16:
8c:2d:2d:cd:eb:ae:b5:1c:75:ab:fd:91:2c:98:97:0d:4b:84:
74:f6:d0:3d:78:1a:0d:2f:26:d2:f9:51:3f:e8:82:c5:81:d4:
38:ee:d5:5e:8f:3d:c9:39:ca:de:05:84:4e:c6:f8:6f:e8:64:
2e:74:03:1a:94:73:b2:1b:2f:f3:51:33:a1:f4:b9:fa:e5:9b:
11:01:be:3d:f1:65:4e:5a:be:df:d9:02:ea:eb:46:4d:8e:ce:
5e:0e:4e:cc:a0:c7:4d:a2:31:f6:fb:cb:f8:0f:b2:6d:3d:66:
0f:a6:29:6e:fa:c6:4e:7c:12:c7:13:38:d5:f9:1e:76:a4:04:
55:d3:2c:b8:7d:1d:fa:b7:c2:cd:83:a4:02:b3:6d:e0:7f:6d:
ca:bc:70:f7:48:98:7a:ff:70:07:83:c0:c9:35:cf:18:50:d8:
95:49:8d:25
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYUxA2zigD9WQ2lSLQ44SvS0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4MDc0YjQxOWVhZDRjZWZlYTJmMmFkMmMyNTlkOTc4YzVl
ZDc5NTQwHhcNMjIxMjIwMTkyOTQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YWFjMzU2YzUwMDE0M2Q3OGRkYjc2MTMxNTUyMTg3NWY1NDk0OWYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi+EpVVc4nEcJivLMk0lBqdPPR9si
NzWMJXVth0PXuB7qr31LdFajve48HQOz9saFop77vs4tKjFAkJli56IFWt9bCFMH
42rgMHwNPWiz/WfqAqXjzBINFTLHvq/Lh4G8UCW13DmDkqwAHEPXfuP9IOpusdDr
jY7dvvAkjHAiAx4xE70PeXi62WKQPDWops2z0teXy9WfwEn60Q7WnANBa+PrNLSN
N7Wziu9M1y1ehSHRXRs/G0vLGVcCFAML+MrTlQXAwPlH8JrtusjExtcxEX2bBAXR
J7QsIRAd/837rp/KL20c5tUEXuSxUtuq4xAhIzBwAEAmOPaW66A5CZMRUQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFqsNWxQAUPXjdt2ExVSGHX1SUnzMB8GA1UdIwQY
MBaAFLgHS0GerUzv6i8q0sJZ2XjF7XlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUFkTFFaNnRUT19xTHlyU3dsblplTVh0ZVZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8xZTQzZTQtZDA2ZS00YTU1LWJkYjYt
M2Q5MWVkZTViMmIxLzEvV3F3MWJGQUJROWVOMjNZVEZWSVlkZlZKU2ZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi8xZTQzZTQtZDA2ZS00YTU1LWJkYjYtM2Q5MWVkZTViMmIx
LzEvdUFkTFFaNnRUT19xTHlyU3dsblplTVh0ZVZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcHKgbogZeA
MA0GCSqGSIb3DQEBCwUAA4IBAQCpN/PgDxJYZR72FSux6C1I4aV27bu1SLNZ2g4c
JaAcO8TEbpuHUqFwMWz4yjQnjY4VdQiplmBdG4tZMTtC7SEEx13MN0UKcACjN1OJ
cx8hbHFpF84Ly9OkLxaMLS3N6661HHWr/ZEsmJcNS4R09tA9eBoNLybS+VE/6ILF
gdQ47tVejz3JOcreBYROxvhv6GQudAMalHOyGy/zUTOh9Ln65ZsRAb498WVOWr7f
2QLq60ZNjs5eDk7MoMdNojH2+8v4D7JtPWYPpilu+sZOfBLHEzjV+R52pARV0yy4
fR36t8LNg6QCs23gf23KvHD3SJh6/3AHg8DJNc8YUNiVSY0l
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:42 2023 by rpki-client on console-ams.rpki-client.org