Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/661679-ac25-43ee-9cbf-8cf254b48794/1/4FYr2cCYuyuhpcMCzKZnYQmfv4A.roa
File: 4FYr2cCYuyuhpcMCzKZnYQmfv4A.roa (raw, json)
Hash identifier: 7BYvnx7apoQgc50RGmWIGZ1isYVqWr6HHlwqmN6M3bA=
Subject key identifier: E0:56:2B:D9:C0:98:BB:2B:A1:A5:C3:02:CC:A6:67:61:09:9F:BF:80
Certificate issuer: /CN=f7b7c2e8453ed4c0929c7504baf046043159d105
Certificate serial: 06CAFADC
Authority key identifier: F7:B7:C2:E8:45:3E:D4:C0:92:9C:75:04:BA:F0:46:04:31:59:D1:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97fC6EU-1MCSnHUEuvBGBDFZ0QU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/661679-ac25-43ee-9cbf-8cf254b48794/1/4FYr2cCYuyuhpcMCzKZnYQmfv4A.roa
Signing time: Sat 01 Jan 2022 14:56:56 +0000
ROA not before: Sat 01 Jan 2022 14:56:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12360
IP address blocks: 2001:678:78c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113965788 (0x6cafadc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7b7c2e8453ed4c0929c7504baf046043159d105
Validity
Not Before: Jan 1 14:56:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0562bd9c098bb2ba1a5c302cca66761099fbf80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:29:7d:4c:23:ce:3b:53:ba:d3:0e:0d:65:94:
8c:56:14:5f:f5:a7:a3:05:f0:7b:a5:d7:7b:56:6d:
40:bc:d8:af:dd:a5:05:b7:d9:a8:cc:0e:04:2f:b5:
d9:13:4e:35:94:40:c4:34:28:af:99:00:e6:44:21:
20:cd:08:29:10:7f:52:45:77:16:be:4b:da:b4:3b:
6f:5a:79:01:de:e5:54:9d:e8:44:71:9a:3b:e2:18:
67:2c:5c:ac:58:52:81:86:74:20:d5:b7:60:d9:de:
1a:43:45:81:37:2a:06:c3:6c:6e:58:59:cd:38:f7:
65:02:19:6c:ed:c5:10:f9:af:dd:3f:bd:ce:9c:ba:
6a:11:80:2f:a9:23:6e:8f:2c:a7:8d:f7:8c:bb:ec:
d7:c7:4c:0e:68:9d:f1:21:fe:08:42:e9:2d:a9:a5:
0a:8b:45:86:5a:ca:ed:8e:b9:65:01:bb:1d:0a:77:
d9:81:63:ee:e1:09:a0:1e:de:b3:9a:6e:38:de:55:
ad:f8:44:f4:4f:43:5a:a4:49:c6:98:95:0d:08:4d:
bb:f9:db:27:df:f8:08:f2:25:46:2f:74:6b:82:b3:
54:77:4e:50:ec:a3:27:92:28:40:b9:7f:48:06:97:
3d:c4:89:e6:ae:8b:dc:ea:5b:ac:7e:7a:28:fc:60:
ba:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:56:2B:D9:C0:98:BB:2B:A1:A5:C3:02:CC:A6:67:61:09:9F:BF:80
X509v3 Authority Key Identifier:
keyid:F7:B7:C2:E8:45:3E:D4:C0:92:9C:75:04:BA:F0:46:04:31:59:D1:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97fC6EU-1MCSnHUEuvBGBDFZ0QU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/661679-ac25-43ee-9cbf-8cf254b48794/1/4FYr2cCYuyuhpcMCzKZnYQmfv4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/661679-ac25-43ee-9cbf-8cf254b48794/1/97fC6EU-1MCSnHUEuvBGBDFZ0QU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:78c::/48
Signature Algorithm: sha256WithRSAEncryption
29:ed:ec:7f:f6:ad:c9:6b:19:db:bb:79:17:cf:d4:f3:b7:b9:
b1:ab:b4:2a:58:39:90:65:1e:02:ce:5c:a5:91:5b:85:1f:33:
df:2e:b9:17:b9:a3:af:41:c6:b8:de:fa:8e:d3:a5:9a:c3:a5:
c8:44:e7:97:55:4e:06:bd:90:2c:93:c4:2c:fb:81:57:39:a3:
8b:d4:68:7e:de:4d:01:7b:8c:55:b1:57:99:37:fe:17:59:d6:
46:09:3a:c2:69:e5:8e:74:b6:0e:ca:c8:8a:b0:cc:d8:f2:c6:
3a:34:e7:a2:c7:42:bb:c2:7e:97:42:d2:4c:82:fd:a9:44:fb:
95:55:dd:d9:6c:29:1d:ed:a3:ea:7e:77:ad:7e:2b:61:d3:ee:
4d:90:c9:60:e9:38:c4:a4:47:cf:53:7c:64:f1:39:72:67:c7:
73:6d:5d:e4:e3:b6:09:fe:e5:d3:a3:b8:05:b6:d8:91:3d:84:
4c:97:50:8e:a8:f4:4b:da:0c:a4:4d:ef:d8:60:bc:17:40:f4:
16:b7:b2:9b:c2:c3:10:b1:72:e7:02:d8:5a:9f:d6:8a:ad:b1:
c8:f9:ab:df:91:cc:b0:de:2f:a3:40:1f:b9:53:13:37:51:58:
9b:0e:97:a7:4b:b5:5a:82:bf:d1:ea:3d:dc:08:52:5d:db:0c:
aa:74:09:cb
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEBsr63DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
N2I3YzJlODQ1M2VkNGMwOTI5Yzc1MDRiYWYwNDYwNDMxNTlkMTA1MB4XDTIyMDEw
MTE0NTY1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTA1NjJiZDljMDk4
YmIyYmExYTVjMzAyY2NhNjY3NjEwOTlmYmY4MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKEpfUwjzjtTutMODWWUjFYUX/WnowXwe6XXe1ZtQLzYr92l
BbfZqMwOBC+12RNONZRAxDQor5kA5kQhIM0IKRB/UkV3Fr5L2rQ7b1p5Ad7lVJ3o
RHGaO+IYZyxcrFhSgYZ0INW3YNneGkNFgTcqBsNsblhZzTj3ZQIZbO3FEPmv3T+9
zpy6ahGAL6kjbo8sp433jLvs18dMDmid8SH+CELpLamlCotFhlrK7Y65ZQG7HQp3
2YFj7uEJoB7es5puON5VrfhE9E9DWqRJxpiVDQhNu/nbJ9/4CPIlRi90a4KzVHdO
UOyjJ5IoQLl/SAaXPcSJ5q6L3OpbrH56KPxgupkCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTgVivZwJi7K6GlwwLMpmdhCZ+/gDAfBgNVHSMEGDAWgBT3t8LoRT7UwJKc
dQS68EYEMVnRBTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
Lzk3ZkM2RVUtMU1DU25IVUV1dkJHQkRGWjBRVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzQvNjYxNjc5LWFjMjUtNDNlZS05Y2JmLThjZjI1NGI0ODc5NC8x
LzRGWXIyY0NZdXl1aHBjTUN6S1puWVFtZnY0QS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQv
NjYxNjc5LWFjMjUtNDNlZS05Y2JmLThjZjI1NGI0ODc5NC8xLzk3ZkM2RVUtMU1D
U25IVUV1dkJHQkRGWjBRVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBngHjDANBgkqhkiG9w0BAQsF
AAOCAQEAKe3sf/atyWsZ27t5F8/U87e5sau0Klg5kGUeAs5cpZFbhR8z3y65F7mj
r0HGuN76jtOlmsOlyETnl1VOBr2QLJPELPuBVzmji9Roft5NAXuMVbFXmTf+F1nW
Rgk6wmnljnS2DsrIirDM2PLGOjTnosdCu8J+l0LSTIL9qUT7lVXd2WwpHe2j6n53
rX4rYdPuTZDJYOk4xKRHz1N8ZPE5cmfHc21d5OO2Cf7l06O4BbbYkT2ETJdQjqj0
S9oMpE3v2GC8F0D0Freym8LDELFy5wLYWp/Wiq2xyPmr35HMsN4vo0AfuVMTN1FY
mw6Xp0u1WoK/0eo93AhSXdsMqnQJyw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:33 2023 by rpki-client on console-fra.rpki-client.org