Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/26b286-d967-4ca6-8f10-d8b0756d82a5/1/FAPfqgGIDP9j1gel_VQvY9sPMW0.roa
File: FAPfqgGIDP9j1gel_VQvY9sPMW0.roa (raw, json)
Hash identifier: NsNAbXiFuD9ljVLlAdQW2vcXfvNTchTJ+DTw6FYBUew=
Subject key identifier: 14:03:DF:AA:01:88:0C:FF:63:D6:07:A5:FD:54:2F:63:DB:0F:31:6D
Certificate issuer: /CN=a1eb60b29252ce185a41636a247b4c0273d374ae
Certificate serial: 018B169ACC5DDFC6B80C299704C03657C04F
Authority key identifier: A1:EB:60:B2:92:52:CE:18:5A:41:63:6A:24:7B:4C:02:73:D3:74:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oetgspJSzhhaQWNqJHtMAnPTdK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/26b286-d967-4ca6-8f10-d8b0756d82a5/1/FAPfqgGIDP9j1gel_VQvY9sPMW0.roa
Signing time: Mon 09 Oct 2023 22:42:05 +0000
ROA not before: Mon 09 Oct 2023 22:42:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62028
IP address blocks: 2a13:fcc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:16:9a:cc:5d:df:c6:b8:0c:29:97:04:c0:36:57:c0:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1eb60b29252ce185a41636a247b4c0273d374ae
Validity
Not Before: Oct 9 22:42:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1403dfaa01880cff63d607a5fd542f63db0f316d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1f:ad:5c:77:aa:e2:12:39:45:af:65:e4:4d:
c3:43:93:2a:2d:9c:c1:e9:8d:3f:d3:57:c0:f9:51:
a5:63:de:41:a4:da:eb:e2:1d:ce:0c:f0:c3:3a:2d:
20:c9:75:b2:b7:2f:bf:e8:d7:bb:fa:1c:db:48:ea:
63:6b:5b:3c:ed:df:ed:ca:d0:67:a3:c3:48:7c:9f:
69:4e:30:28:eb:6f:eb:b8:d1:de:80:94:1d:8a:00:
19:5c:54:49:87:30:e0:f4:1e:97:49:d9:f2:5e:6c:
53:49:18:19:c8:8d:ca:95:6e:26:76:e1:83:7c:2d:
00:e2:85:d8:c4:43:41:f1:16:bc:6f:f7:0a:f8:06:
86:a5:19:8c:b7:bf:e2:4e:e6:ce:cd:7a:b7:37:3c:
09:7f:33:0e:48:df:f7:97:17:64:3b:d4:96:ba:56:
f8:c3:20:93:ba:28:d0:41:0a:eb:1c:82:ac:63:a1:
4a:63:99:2d:76:80:a2:30:44:5a:02:b8:57:b1:6e:
11:54:47:88:d9:fe:64:a9:06:98:d1:47:c9:e9:0b:
57:07:c0:e6:76:b3:c1:65:91:ea:72:c6:47:7d:1a:
45:d1:cf:ff:d9:50:d8:b7:8f:7f:94:4c:a0:37:8c:
b3:d9:b1:37:ee:12:2a:f9:07:cb:e5:f0:57:f9:6f:
8d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:03:DF:AA:01:88:0C:FF:63:D6:07:A5:FD:54:2F:63:DB:0F:31:6D
X509v3 Authority Key Identifier:
keyid:A1:EB:60:B2:92:52:CE:18:5A:41:63:6A:24:7B:4C:02:73:D3:74:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oetgspJSzhhaQWNqJHtMAnPTdK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/26b286-d967-4ca6-8f10-d8b0756d82a5/1/FAPfqgGIDP9j1gel_VQvY9sPMW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/26b286-d967-4ca6-8f10-d8b0756d82a5/1/oetgspJSzhhaQWNqJHtMAnPTdK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:fcc0::/29
Signature Algorithm: sha256WithRSAEncryption
49:9a:d9:8d:49:5e:6c:97:63:ae:f7:a3:96:dd:fd:53:37:48:
3e:4f:e1:f6:4f:5f:03:e9:37:7f:0e:ff:7b:7d:c8:15:c8:ad:
03:44:92:e5:2c:97:54:2c:9d:4a:0d:e0:5b:45:8e:01:e5:f2:
2c:ce:58:60:6c:8b:95:84:84:71:02:1b:c1:22:77:89:7c:99:
c8:4c:60:2c:f3:6e:8f:66:42:51:26:0d:92:5c:fa:8a:3d:b9:
00:1d:b4:a0:fa:ca:62:bf:31:1a:ae:28:e8:99:95:64:ba:af:
bc:eb:7e:b8:76:54:e5:fd:4e:7b:84:43:c6:85:42:11:71:d5:
e9:8c:0a:81:28:38:3e:72:f0:aa:11:fe:83:c1:91:7d:6d:db:
cd:41:b8:62:61:be:76:89:2f:a9:49:f9:a0:8a:26:4e:58:38:
0c:26:6f:a8:4e:e7:0c:d5:73:59:a3:a1:62:b5:6f:c3:cc:93:
88:77:71:9d:4a:f0:d7:7c:7d:df:0b:06:c6:cd:e6:7f:7b:b3:
9c:e8:21:07:bf:fb:a7:97:4b:ea:fc:7d:e7:55:62:df:81:4e:
48:02:2e:f5:d9:64:b2:f1:ec:2e:7a:21:4f:08:52:dd:c7:9d:
85:ae:17:13:33:2e:73:4f:42:8b:a8:f2:f7:4b:32:6c:aa:06:
d6:69:c5:97
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYsWmsxd38a4DCmXBMA2V8BPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExZWI2MGIyOTI1MmNlMTg1YTQxNjM2YTI0N2I0YzAyNzNk
Mzc0YWUwHhcNMjMxMDA5MjI0MjA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNDAzZGZhYTAxODgwY2ZmNjNkNjA3YTVmZDU0MmY2M2RiMGYzMTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtR+tXHeq4hI5Ra9l5E3DQ5MqLZzB
6Y0/01fA+VGlY95BpNrr4h3ODPDDOi0gyXWyty+/6Ne7+hzbSOpja1s87d/tytBn
o8NIfJ9pTjAo62/ruNHegJQdigAZXFRJhzDg9B6XSdnyXmxTSRgZyI3KlW4mduGD
fC0A4oXYxENB8Ra8b/cK+AaGpRmMt7/iTubOzXq3NzwJfzMOSN/3lxdkO9SWulb4
wyCTuijQQQrrHIKsY6FKY5ktdoCiMERaArhXsW4RVEeI2f5kqQaY0UfJ6QtXB8Dm
drPBZZHqcsZHfRpF0c//2VDYt49/lEygN4yz2bE37hIq+QfL5fBX+W+NtQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFBQD36oBiAz/Y9YHpf1UL2PbDzFtMB8GA1UdIwQY
MBaAFKHrYLKSUs4YWkFjaiR7TAJz03SuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2V0Z3NwSlN6aGhhUVdOcUpIdE1BblBUZEs0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8yNmIyODYtZDk2Ny00Y2E2LThmMTAt
ZDhiMDc1NmQ4MmE1LzEvRkFQZnFnR0lEUDlqMWdlbF9WUXZZOXNQTVcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8yNmIyODYtZDk2Ny00Y2E2LThmMTAtZDhiMDc1NmQ4MmE1
LzEvb2V0Z3NwSlN6aGhhUVdOcUpIdE1BblBUZEs0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhP8wDAN
BgkqhkiG9w0BAQsFAAOCAQEASZrZjUlebJdjrvejlt39UzdIPk/h9k9fA+k3fw7/
e33IFcitA0SS5SyXVCydSg3gW0WOAeXyLM5YYGyLlYSEcQIbwSJ3iXyZyExgLPNu
j2ZCUSYNklz6ij25AB20oPrKYr8xGq4o6JmVZLqvvOt+uHZU5f1Oe4RDxoVCEXHV
6YwKgSg4PnLwqhH+g8GRfW3bzUG4YmG+dokvqUn5oIomTlg4DCZvqE7nDNVzWaOh
YrVvw8yTiHdxnUrw13x93wsGxs3mf3uznOghB7/7p5dL6vx951Vi34FOSAIu9dlk
svHsLnohTwhS3cedha4XEzMuc09Ci6jy90sybKoG1mnFlw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:55 2025 by rpki-client