Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/iwrKc841g5chpN0QnXQVx2UzkSE.roa
File: iwrKc841g5chpN0QnXQVx2UzkSE.roa (raw, json)
Hash identifier: 7dBQJNHHaMT0RbVZ4foyf7of9oqamm9YalsVYxnbaX0=
Subject key identifier: 8B:0A:CA:73:CE:35:83:97:21:A4:DD:10:9D:74:15:C7:65:33:91:21
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FF60041
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/iwrKc841g5chpN0QnXQVx2UzkSE.roa
Signing time: Sat 01 Jan 2022 14:59:53 +0000
ROA not before: Sat 01 Jan 2022 14:59:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212024
IP address blocks: 2a06:e881:7700::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267780161 (0xff60041)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b0aca73ce35839721a4dd109d7415c765339121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c8:db:24:da:e6:33:92:50:e1:16:b5:c7:c5:
72:a2:b3:45:c5:6b:30:27:5c:ed:54:d6:18:5d:b1:
b2:d6:e7:5b:74:60:f9:9e:4a:12:a1:ce:70:6f:ad:
5b:00:e2:5e:05:b8:ce:6e:70:6d:9c:d6:d4:b7:28:
94:3b:40:88:fb:e2:1b:e9:45:ad:dd:d6:2a:a2:f0:
c8:99:a2:52:5b:ee:b5:fb:15:22:9f:53:f5:0b:cc:
aa:4c:95:20:41:66:4a:1f:b7:f5:86:d2:2a:8d:c5:
0d:e7:cd:3c:72:1e:6b:ee:3a:bd:2d:b2:b7:f5:13:
7a:91:3c:5e:9f:45:3c:f3:52:79:8d:8e:4e:0a:30:
10:ce:15:19:71:5c:4b:83:da:a0:e0:5d:12:50:e0:
08:6c:97:51:1b:53:d5:7a:c4:00:77:95:62:48:1c:
3f:3a:7a:7f:cd:99:91:e6:d6:80:80:ae:2f:e5:b4:
c1:a2:36:7a:2d:a2:d5:e4:38:32:ab:30:ac:65:7c:
74:e0:e3:b8:a8:cb:97:68:01:02:03:64:24:7d:d4:
fe:a3:49:e3:39:91:6c:18:91:7b:f0:93:8d:18:a1:
d2:3f:0a:54:dd:35:e4:45:8d:82:40:b6:c3:5f:1b:
78:a9:b6:bd:d9:d9:82:f0:8d:2a:9f:1f:d4:03:a0:
6d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:0A:CA:73:CE:35:83:97:21:A4:DD:10:9D:74:15:C7:65:33:91:21
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/iwrKc841g5chpN0QnXQVx2UzkSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:7700::/40
Signature Algorithm: sha256WithRSAEncryption
51:4b:b6:dc:67:39:de:c4:28:99:d3:89:4f:8d:67:8d:5c:23:
63:cc:5e:4b:ce:f5:09:29:78:d2:79:ee:eb:7d:93:5f:46:a3:
2e:5c:0d:e9:2d:12:59:85:fb:3f:df:8d:68:b9:c3:b5:b3:70:
0d:96:b8:d7:df:1e:32:43:f2:c7:35:cb:6f:7e:d3:5d:4e:b4:
b5:62:3a:c6:56:5d:c4:09:84:88:c0:5c:92:1f:6f:b7:47:74:
e6:18:23:ac:18:a3:37:62:62:32:29:97:8c:18:58:b9:07:b7:
c6:e8:5b:29:7b:6c:97:2e:a3:4e:ca:df:35:d3:87:41:42:4a:
a4:00:b4:f3:13:0b:4f:03:78:09:b1:20:bc:f9:05:41:8a:da:
99:c0:9b:88:df:d9:87:fd:b5:aa:9a:ea:2a:0b:80:86:24:2d:
69:5f:9c:9b:bb:66:43:63:17:53:91:ec:69:59:ab:95:62:bb:
a3:99:38:66:a1:90:83:57:bf:ca:c7:20:52:67:ca:09:62:19:
29:77:eb:a0:32:e9:e1:f7:95:65:13:1d:6b:30:1e:a5:1d:4c:
e7:42:4f:5b:59:d4:c0:eb:79:bd:bb:23:ff:e0:15:18:5b:a9:
7a:01:ae:bd:b1:dd:f3:c3:bc:51:d4:00:66:d0:71:2a:43:8c:
87:d1:07:00
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIED/YAQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ODA3NGI0MTllYWQ0Y2VmZWEyZjJhZDJjMjU5ZDk3OGM1ZWQ3OTU0MB4XDTIyMDEw
MTE0NTk1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGIwYWNhNzNjZTM1
ODM5NzIxYTRkZDEwOWQ3NDE1Yzc2NTMzOTEyMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKnI2yTa5jOSUOEWtcfFcqKzRcVrMCdc7VTWGF2xstbnW3Rg
+Z5KEqHOcG+tWwDiXgW4zm5wbZzW1LcolDtAiPviG+lFrd3WKqLwyJmiUlvutfsV
Ip9T9QvMqkyVIEFmSh+39YbSKo3FDefNPHIea+46vS2yt/UTepE8Xp9FPPNSeY2O
TgowEM4VGXFcS4PaoOBdElDgCGyXURtT1XrEAHeVYkgcPzp6f82ZkebWgICuL+W0
waI2ei2i1eQ4MqswrGV8dODjuKjLl2gBAgNkJH3U/qNJ4zmRbBiRe/CTjRih0j8K
VN015EWNgkC2w18beKm2vdnZgvCNKp8f1AOgbcUCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBSLCspzzjWDlyGk3RCddBXHZTORITAfBgNVHSMEGDAWgBS4B0tBnq1M7+ov
KtLCWdl4xe15VDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VBZExRWjZ0VE9fcUx5clN3bG5aZU1YdGVWUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWIvMWU0M2U0LWQwNmUtNGE1NS1iZGI2LTNkOTFlZGU1YjJiMS8x
L2l3cktjODQxZzVjaHBOMFFuWFFWeDJVemtTRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIv
MWU0M2U0LWQwNmUtNGE1NS1iZGI2LTNkOTFlZGU1YjJiMS8xL3VBZExRWjZ0VE9f
cUx5clN3bG5aZU1YdGVWUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoG6IF3MA0GCSqGSIb3DQEBCwUA
A4IBAQBRS7bcZznexCiZ04lPjWeNXCNjzF5LzvUJKXjSee7rfZNfRqMuXA3pLRJZ
hfs/341oucO1s3ANlrjX3x4yQ/LHNctvftNdTrS1YjrGVl3ECYSIwFySH2+3R3Tm
GCOsGKM3YmIyKZeMGFi5B7fG6Fspe2yXLqNOyt8104dBQkqkALTzEwtPA3gJsSC8
+QVBitqZwJuI39mH/bWqmuoqC4CGJC1pX5ybu2ZDYxdTkexpWauVYrujmThmoZCD
V7/KxyBSZ8oJYhkpd+ugMunh95VlEx1rMB6lHUznQk9bWdTA63m9uyP/4BUYW6l6
Aa69sd3zw7xR1ABm0HEqQ4yH0QcA
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:55 2023 by rpki-client on console-fra.rpki-client.org