Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/49ad97-21f1-4cc9-b776-8cbee5a027c3/1/IBbVPxibQAaFWpsKSmBcvtAzvoI.roa
File: IBbVPxibQAaFWpsKSmBcvtAzvoI.roa (raw, json)
Hash identifier: ezLzO2xog6kZ/0mzS6zxDMldzEKT9PBAo4mX32kawBw=
Subject key identifier: 20:16:D5:3F:18:9B:40:06:85:5A:9B:0A:4A:60:5C:BE:D0:33:BE:82
Certificate issuer: /CN=fa630c3d23c6046c2f1a7e0c8fccbd83e20ed4c7
Certificate serial: 0C70BAC9
Authority key identifier: FA:63:0C:3D:23:C6:04:6C:2F:1A:7E:0C:8F:CC:BD:83:E2:0E:D4:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-mMMPSPGBGwvGn4Mj8y9g-IO1Mc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/49ad97-21f1-4cc9-b776-8cbee5a027c3/1/IBbVPxibQAaFWpsKSmBcvtAzvoI.roa
Signing time: Sat 01 Jan 2022 06:04:19 +0000
ROA not before: Sat 01 Jan 2022 06:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197595
IP address blocks: 2001:678:5d8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 208714441 (0xc70bac9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa630c3d23c6046c2f1a7e0c8fccbd83e20ed4c7
Validity
Not Before: Jan 1 06:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2016d53f189b4006855a9b0a4a605cbed033be82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:54:e3:29:e6:75:9f:84:68:a1:63:32:36:4c:
67:d5:d6:5b:89:f7:2b:0d:9d:df:14:da:d5:97:28:
11:92:b5:e8:cd:0b:f7:68:81:5b:26:79:97:b5:fc:
76:88:e2:7a:75:72:95:50:09:02:af:03:f8:cb:2c:
04:66:53:d3:80:83:15:59:b3:3d:a1:15:4e:2a:df:
f4:55:09:c5:56:20:15:2c:e4:e5:18:ff:2c:0e:ef:
b2:ba:fb:d2:f1:b4:06:ac:b7:64:43:f7:12:cf:61:
4a:87:e9:63:ad:68:15:a8:51:ff:6a:ce:20:75:d9:
cf:bf:96:07:3d:cf:ec:77:ee:b1:50:99:25:35:40:
4c:15:f1:c3:c0:7c:18:d2:e9:4f:b6:6d:c5:7a:4e:
0c:aa:f6:2a:64:6b:11:0b:2c:38:69:63:39:f3:ff:
19:c8:17:49:ab:1f:97:5c:fa:25:ea:b7:86:99:b5:
25:56:b4:e0:f0:16:28:1b:c2:7c:5b:81:82:ba:e7:
fd:19:98:a5:2f:c4:27:fd:a4:e4:60:52:15:0b:e2:
9c:5a:b0:8a:e0:be:4b:d7:a5:53:d2:7e:1c:ab:ff:
3a:93:08:18:d0:da:1d:18:c2:fe:dc:a7:86:14:f4:
de:39:a2:8e:88:e4:2f:7f:ad:13:a8:2a:5e:72:cb:
ed:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:16:D5:3F:18:9B:40:06:85:5A:9B:0A:4A:60:5C:BE:D0:33:BE:82
X509v3 Authority Key Identifier:
keyid:FA:63:0C:3D:23:C6:04:6C:2F:1A:7E:0C:8F:CC:BD:83:E2:0E:D4:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-mMMPSPGBGwvGn4Mj8y9g-IO1Mc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/49ad97-21f1-4cc9-b776-8cbee5a027c3/1/IBbVPxibQAaFWpsKSmBcvtAzvoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/49ad97-21f1-4cc9-b776-8cbee5a027c3/1/1-mMMPSPGBGwvGn4Mj8y9g-IO1Mc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:5d8::/48
Signature Algorithm: sha256WithRSAEncryption
31:f2:73:d0:c5:62:a7:94:bc:08:ed:bb:ab:42:79:b7:ab:45:
1d:f2:ee:10:78:14:28:8c:35:8c:7a:5d:6d:29:fb:a7:aa:e0:
11:d4:10:3d:4d:39:5b:82:c2:45:96:eb:9d:c9:ce:45:63:5e:
34:fa:11:74:12:f0:e9:b8:63:71:68:2f:45:36:b7:1c:e8:2e:
68:d5:c4:7f:88:60:d7:d5:1f:3b:46:ec:2b:b1:38:1d:15:96:
3c:ae:18:6d:4a:70:fa:5d:62:2d:ff:eb:0d:38:a9:d4:44:57:
90:4d:c6:95:f5:0a:c9:d5:cf:38:b4:41:88:55:ec:31:cc:89:
6c:19:8a:4c:06:7c:9f:0f:ca:31:43:34:0e:5c:23:54:b1:b0:
59:cd:42:54:f7:a7:0c:48:26:4e:e4:24:6f:48:42:69:6d:29:
c8:8b:38:ac:f2:64:40:7f:27:01:63:00:70:e9:a1:4a:95:18:
76:a5:50:e4:5c:13:e0:59:07:1d:31:e9:cf:f6:13:18:f0:27:
41:ef:c0:c3:45:8a:de:5f:97:8e:bf:36:61:dc:f2:e9:94:0c:
7c:9d:6c:27:16:50:a4:82:9f:10:04:53:a1:f2:04:3b:d1:a9:
0c:f5:68:c6:d9:06:e2:2c:95:a0:c2:2d:9d:34:01:a6:90:cb:
9c:6d:44:88
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIEDHC6yTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YTYzMGMzZDIzYzYwNDZjMmYxYTdlMGM4ZmNjYmQ4M2UyMGVkNGM3MB4XDTIyMDEw
MTA2MDQxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjAxNmQ1M2YxODli
NDAwNjg1NWE5YjBhNGE2MDVjYmVkMDMzYmU4MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALlU4ynmdZ+EaKFjMjZMZ9XWW4n3Kw2d3xTa1ZcoEZK16M0L
92iBWyZ5l7X8dojienVylVAJAq8D+MssBGZT04CDFVmzPaEVTirf9FUJxVYgFSzk
5Rj/LA7vsrr70vG0Bqy3ZEP3Es9hSofpY61oFahR/2rOIHXZz7+WBz3P7HfusVCZ
JTVATBXxw8B8GNLpT7ZtxXpODKr2KmRrEQssOGljOfP/GcgXSasfl1z6Jeq3hpm1
JVa04PAWKBvCfFuBgrrn/RmYpS/EJ/2k5GBSFQvinFqwiuC+S9elU9J+HKv/OpMI
GNDaHRjC/tynhhT03jmijojkL3+tE6gqXnLL7dkCAwEAAaOCAg4wggIKMB0GA1Ud
DgQWBBQgFtU/GJtABoVamwpKYFy+0DO+gjAfBgNVHSMEGDAWgBT6Yww9I8YEbC8a
fgyPzL2D4g7UxzAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtbU1NUFNQR0JHd3ZHbjRNajh5OWctSU8xTWMuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL2JjLzQ5YWQ5Ny0yMWYxLTRjYzktYjc3Ni04Y2JlZTVhMDI3YzMv
MS9JQmJWUHhpYlFBYUZXcHNLU21CY3Z0QXp2b0kucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Jj
LzQ5YWQ5Ny0yMWYxLTRjYzktYjc3Ni04Y2JlZTVhMDI3YzMvMS8xLW1NTVBTUEdC
R3d2R240TWo4eTlnLUlPMU1jLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAXYMA0GCSqGSIb3DQEB
CwUAA4IBAQAx8nPQxWKnlLwI7burQnm3q0Ud8u4QeBQojDWMel1tKfunquAR1BA9
TTlbgsJFluudyc5FY140+hF0EvDpuGNxaC9FNrcc6C5o1cR/iGDX1R87RuwrsTgd
FZY8rhhtSnD6XWIt/+sNOKnURFeQTcaV9QrJ1c84tEGIVewxzIlsGYpMBnyfD8ox
QzQOXCNUsbBZzUJU96cMSCZO5CRvSEJpbSnIizis8mRAfycBYwBw6aFKlRh2pVDk
XBPgWQcdMenP9hMY8CdB78DDRYreX5eOvzZh3PLplAx8nWwnFlCkgp8QBFOh8gQ7
0akM9WjG2QbiLJWgwi2dNAGmkMucbUSI
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:56 2023 by rpki-client on console-fra.rpki-client.org