Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/bBekuyPqaG8-8-2Z9cj-Q8tz0rM.roa
File: bBekuyPqaG8-8-2Z9cj-Q8tz0rM.roa (raw, json)
Hash identifier: QMG5wRWdA//u57Pv6qryqevh+2Uk4Iig3kMazlD5be4=
Subject key identifier: 6C:17:A4:BB:23:EA:68:6F:3E:F3:ED:99:F5:C8:FE:43:CB:73:D2:B3
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018244150381141B4FB2591DF2FDF92FC814
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/bBekuyPqaG8-8-2Z9cj-Q8tz0rM.roa
Signing time: Thu 28 Jul 2022 09:13:23 +0000
ROA not before: Thu 28 Jul 2022 09:13:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204687
IP address blocks: 2a0b:64c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:44:15:03:81:14:1b:4f:b2:59:1d:f2:fd:f9:2f:c8:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jul 28 09:13:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c17a4bb23ea686f3ef3ed99f5c8fe43cb73d2b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:44:ca:b3:1a:7e:c8:78:c7:f4:6b:4b:d9:27:
6d:98:3c:bd:1e:44:90:68:07:0f:15:f4:d2:0a:1c:
43:dd:89:cc:8c:b8:1d:a2:85:33:34:4f:77:e7:48:
3a:3e:3d:3b:8d:fb:ea:93:98:f4:38:75:3c:53:95:
d4:5f:13:63:17:eb:7c:3e:da:3f:24:bd:58:a1:14:
48:0f:15:36:fa:d2:95:8e:5d:8a:2f:ab:cc:ab:54:
7e:e6:86:4e:2a:35:1e:0e:25:14:34:eb:e4:22:d8:
3b:f8:25:80:81:50:6c:b5:a1:75:dc:eb:9e:2f:3f:
0d:3a:c0:16:ba:d6:af:ab:ac:9d:12:c4:76:f1:b4:
c5:b7:8b:20:70:0b:24:c8:92:f1:e2:e1:27:2e:a0:
a2:76:1f:84:6d:b6:9f:38:55:ad:50:18:2d:04:bd:
10:98:55:85:42:8c:3c:2c:be:1e:66:03:2a:6e:65:
28:97:e0:f9:e4:69:4a:7d:cf:5a:a1:65:64:6a:07:
30:54:27:e6:8a:28:05:80:77:0d:16:0e:6e:f8:c5:
66:4d:5e:72:fb:5f:6f:fb:1a:cb:f1:3e:33:fd:07:
ab:89:79:ea:13:f1:2a:35:5b:55:97:91:f7:b1:9f:
40:22:c9:89:58:b9:66:bf:a3:59:40:56:70:a5:14:
04:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:17:A4:BB:23:EA:68:6F:3E:F3:ED:99:F5:C8:FE:43:CB:73:D2:B3
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/bBekuyPqaG8-8-2Z9cj-Q8tz0rM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:64c0::/32
Signature Algorithm: sha256WithRSAEncryption
34:8e:1e:b5:65:11:39:80:7a:84:5c:ab:8c:80:ed:e7:a2:6c:
bb:e2:9d:4d:a3:65:9d:e0:21:83:15:51:ba:f2:17:68:21:57:
17:7b:ad:ae:38:2b:47:d7:cb:35:98:5a:ea:b5:1d:2e:6f:35:
e0:15:80:14:73:d2:ae:e4:9e:54:e6:eb:19:cf:7a:d4:77:ac:
be:da:58:16:1f:03:e1:2c:39:6a:f7:71:e0:e3:5b:87:77:1f:
52:08:c9:5c:e6:da:f9:b9:7e:76:17:76:8a:81:bc:98:b8:a6:
99:0a:36:0e:0f:47:af:c2:6a:73:13:bf:e1:e2:30:a8:33:66:
9c:c9:15:bd:4a:a8:8a:4a:94:22:cf:4e:95:0b:14:1d:63:f0:
8b:6d:77:75:e1:20:02:e9:5d:47:e8:da:8e:60:47:55:d9:44:
18:c5:5e:7e:48:4a:4b:d9:9d:ac:4c:5f:8c:ce:56:52:e7:37:
2d:71:9b:7d:26:fd:d6:19:06:5f:98:0b:f7:99:85:75:35:69:
78:7d:03:ef:17:8c:ba:8b:f7:af:8c:f8:69:35:b0:b9:6b:99:
ef:71:eb:f1:a4:4d:19:8b:6c:41:d0:fe:a7:65:d8:ec:4b:b6:
f2:67:8d:fe:6b:05:ae:fe:ed:30:6b:98:c1:f0:e4:42:00:e3:
cf:dc:d6:dc
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYJEFQOBFBtPslkd8v35L8gUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjIwNzI4MDkxMzIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YzE3YTRiYjIzZWE2ODZmM2VmM2VkOTlmNWM4ZmU0M2NiNzNkMmIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0TKsxp+yHjH9GtL2SdtmDy9HkSQ
aAcPFfTSChxD3YnMjLgdooUzNE9350g6Pj07jfvqk5j0OHU8U5XUXxNjF+t8Pto/
JL1YoRRIDxU2+tKVjl2KL6vMq1R+5oZOKjUeDiUUNOvkItg7+CWAgVBstaF13Oue
Lz8NOsAWutavq6ydEsR28bTFt4sgcAskyJLx4uEnLqCidh+EbbafOFWtUBgtBL0Q
mFWFQow8LL4eZgMqbmUol+D55GlKfc9aoWVkagcwVCfmiigFgHcNFg5u+MVmTV5y
+19v+xrL8T4z/QeriXnqE/EqNVtVl5H3sZ9AIsmJWLlmv6NZQFZwpRQEOwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFGwXpLsj6mhvPvPtmfXI/kPLc9KzMB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvYkJla3V5UHFhRzgtOC0yWjljai1ROHR6MHJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4
LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgtkwDAN
BgkqhkiG9w0BAQsFAAOCAQEANI4etWUROYB6hFyrjIDt56Jsu+KdTaNlneAhgxVR
uvIXaCFXF3utrjgrR9fLNZha6rUdLm814BWAFHPSruSeVObrGc961HesvtpYFh8D
4Sw5avdx4ONbh3cfUgjJXOba+bl+dhd2ioG8mLimmQo2Dg9Hr8JqcxO/4eIwqDNm
nMkVvUqoikqUIs9OlQsUHWPwi213deEgAuldR+jajmBHVdlEGMVefkhKS9mdrExf
jM5WUuc3LXGbfSb91hkGX5gL95mFdTVpeH0D7xeMuov3r4z4aTWwuWuZ73Hr8aRN
GYtsQdD+p2XY7Eu28meN/msFrv7tMGuYwfDkQgDjz9zW3A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:02 2023 by rpki-client on console-fra.rpki-client.org