Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/72a168-dc1c-46f4-b31c-4e659d2be654/1/r_KmlSXbYubhbl43omWq6sU-MLU.roa
File: r_KmlSXbYubhbl43omWq6sU-MLU.roa (raw, json)
Hash identifier: 0pQ2DtrqaLN1Ar21nm1rt+vfgJPptv7gC+41GbQECps=
Subject key identifier: AF:F2:A6:95:25:DB:62:E6:E1:6E:5E:37:A2:65:AA:EA:C5:3E:30:B5
Certificate issuer: /CN=eb7c85c442ccab75e2ce6de29db5fd00f326749d
Certificate serial: 0222D64B
Authority key identifier: EB:7C:85:C4:42:CC:AB:75:E2:CE:6D:E2:9D:B5:FD:00:F3:26:74:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/63yFxELMq3Xizm3inbX9APMmdJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/72a168-dc1c-46f4-b31c-4e659d2be654/1/r_KmlSXbYubhbl43omWq6sU-MLU.roa
Signing time: Sat 01 Jan 2022 03:53:33 +0000
ROA not before: Sat 01 Jan 2022 03:53:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211383
IP address blocks: 2a10:7640::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35837515 (0x222d64b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb7c85c442ccab75e2ce6de29db5fd00f326749d
Validity
Not Before: Jan 1 03:53:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aff2a69525db62e6e16e5e37a265aaeac53e30b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:28:82:dc:4e:5b:42:9f:f2:01:24:ef:85:8e:
61:ed:ac:d8:00:f5:a8:22:bf:9f:60:79:89:4f:c3:
00:c4:db:e7:09:ce:8c:9a:24:67:d7:49:77:91:07:
f0:fb:c1:ad:4b:c1:00:99:cc:1d:a1:67:77:eb:f8:
3a:07:8b:b0:40:33:02:f8:66:ab:c4:2f:94:9c:92:
f1:b8:e3:3f:24:09:19:2a:6e:ec:67:6d:87:f4:66:
bb:49:e6:d7:4d:97:ab:26:8b:c3:2e:70:a4:ee:a9:
00:69:ce:b9:79:a1:19:64:a8:91:0f:40:1c:3d:6e:
64:e5:85:45:dc:20:38:46:6d:97:1c:17:ac:b7:e1:
50:8c:7c:6d:9f:32:7d:d8:ca:1d:cb:c7:cf:e8:74:
a7:be:99:9f:07:2f:db:f4:d3:9d:55:a6:0c:01:84:
63:db:ed:b6:cd:8d:07:25:4f:7c:93:ff:9b:91:18:
c3:7c:0d:8e:bf:6f:c5:53:3d:66:8e:29:d1:27:25:
20:2e:3d:15:7f:85:93:2b:53:75:38:96:5f:11:c4:
f1:c1:fd:43:c3:17:7c:69:ca:81:74:46:15:84:20:
dc:00:18:d7:b1:14:de:f0:b3:df:82:c9:b2:27:fb:
03:74:bf:b2:f9:ae:84:a7:1a:f4:85:d3:d5:c9:73:
33:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:F2:A6:95:25:DB:62:E6:E1:6E:5E:37:A2:65:AA:EA:C5:3E:30:B5
X509v3 Authority Key Identifier:
keyid:EB:7C:85:C4:42:CC:AB:75:E2:CE:6D:E2:9D:B5:FD:00:F3:26:74:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/63yFxELMq3Xizm3inbX9APMmdJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/72a168-dc1c-46f4-b31c-4e659d2be654/1/r_KmlSXbYubhbl43omWq6sU-MLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/72a168-dc1c-46f4-b31c-4e659d2be654/1/63yFxELMq3Xizm3inbX9APMmdJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:7640::/29
Signature Algorithm: sha256WithRSAEncryption
aa:0f:aa:b3:4c:7b:60:5e:32:3b:0a:25:e1:2d:ae:28:b1:db:
07:79:b9:55:75:0b:de:99:c0:f0:67:21:b2:a7:c7:9a:72:43:
7b:0f:99:43:6f:69:05:94:46:e9:72:12:5a:95:ef:ad:6a:23:
ff:8d:a2:9d:ea:de:5f:e5:fd:36:92:8c:94:f8:26:e7:7c:81:
93:29:b0:10:87:89:4c:a8:91:9d:33:89:0a:18:e9:85:f8:a8:
31:58:5e:b0:3e:c8:df:7b:01:b7:d7:f6:fe:92:a2:54:cd:18:
04:2f:1c:13:0f:c8:ed:d6:f2:8c:85:ac:59:fd:49:40:e6:ca:
8c:d6:c3:5a:27:88:cb:34:2f:ec:b6:6e:ec:32:ac:59:d6:1a:
d0:f8:d3:49:d8:ef:1f:22:2c:8c:95:9d:bb:4f:75:30:c3:23:
69:c0:01:a1:d4:f9:29:1e:e8:58:b9:8f:c4:92:19:cb:dd:10:
6a:d1:fb:76:a8:c1:66:3a:b9:c3:80:bc:f5:f0:e3:3c:ba:17:
53:ac:8b:32:40:81:30:f9:64:65:b6:c1:3a:06:64:15:0f:30:
73:42:72:2a:2c:dc:b4:ec:b8:37:35:ac:58:76:94:f3:5d:6d:
ac:81:46:06:d6:a1:d3:53:c2:38:65:0d:7e:d4:e0:d0:42:8d:
8f:b0:7d:dc
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEAiLWSzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YjdjODVjNDQyY2NhYjc1ZTJjZTZkZTI5ZGI1ZmQwMGYzMjY3NDlkMB4XDTIyMDEw
MTAzNTMzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWZmMmE2OTUyNWRi
NjJlNmUxNmU1ZTM3YTI2NWFhZWFjNTNlMzBiNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALIogtxOW0Kf8gEk74WOYe2s2AD1qCK/n2B5iU/DAMTb5wnO
jJokZ9dJd5EH8PvBrUvBAJnMHaFnd+v4OgeLsEAzAvhmq8QvlJyS8bjjPyQJGSpu
7Gdth/Rmu0nm102XqyaLwy5wpO6pAGnOuXmhGWSokQ9AHD1uZOWFRdwgOEZtlxwX
rLfhUIx8bZ8yfdjKHcvHz+h0p76Znwcv2/TTnVWmDAGEY9vtts2NByVPfJP/m5EY
w3wNjr9vxVM9Zo4p0SclIC49FX+FkytTdTiWXxHE8cH9Q8MXfGnKgXRGFYQg3AAY
17EU3vCz34LJsif7A3S/svmuhKca9IXT1clzM/UCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBSv8qaVJdti5uFuXjeiZarqxT4wtTAfBgNVHSMEGDAWgBTrfIXEQsyrdeLO
beKdtf0A8yZ0nTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzYzeUZ4RUxNcTNYaXptM2luYlg5QVBNbWRKMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzcvNzJhMTY4LWRjMWMtNDZmNC1iMzFjLTRlNjU5ZDJiZTY1NC8x
L3JfS21sU1hiWXViaGJsNDNvbVdxNnNVLU1MVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcv
NzJhMTY4LWRjMWMtNDZmNC1iMzFjLTRlNjU5ZDJiZTY1NC8xLzYzeUZ4RUxNcTNY
aXptM2luYlg5QVBNbWRKMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoQdkAwDQYJKoZIhvcNAQELBQAD
ggEBAKoPqrNMe2BeMjsKJeEtriix2wd5uVV1C96ZwPBnIbKnx5pyQ3sPmUNvaQWU
RulyElqV761qI/+Nop3q3l/l/TaSjJT4Jud8gZMpsBCHiUyokZ0ziQoY6YX4qDFY
XrA+yN97AbfX9v6SolTNGAQvHBMPyO3W8oyFrFn9SUDmyozWw1oniMs0L+y2buwy
rFnWGtD400nY7x8iLIyVnbtPdTDDI2nAAaHU+Ske6Fi5j8SSGcvdEGrR+3aowWY6
ucOAvPXw4zy6F1OsizJAgTD5ZGW2wToGZBUPMHNCcios3LTsuDc1rFh2lPNdbayB
RgbWodNTwjhlDX7U4NBCjY+wfdw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:31 2024 by rpki-client on console-ams.rpki-client.org