Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/xe8AP6y4TibCHFq8ZztvP9jD3PU.roa
File: xe8AP6y4TibCHFq8ZztvP9jD3PU.roa (raw, json)
Hash identifier: 496ei24J6dQWonuXwiFC15f3dhRgudovsXO3YTq1QBc=
Subject key identifier: C5:EF:00:3F:AC:B8:4E:26:C2:1C:5A:BC:67:3B:6F:3F:D8:C3:DC:F5
Certificate issuer: /CN=d7475ecb0f680a56d20f581bbdce521cfb7eb46d
Certificate serial: 01B14882
Authority key identifier: D7:47:5E:CB:0F:68:0A:56:D2:0F:58:1B:BD:CE:52:1C:FB:7E:B4:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10deyw9oClbSD1gbvc5SHPt-tG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/xe8AP6y4TibCHFq8ZztvP9jD3PU.roa
Signing time: Sat 26 Mar 2022 21:49:27 +0000
ROA not before: Sat 26 Mar 2022 21:49:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210761
IP address blocks: 2001:67c:81c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28395650 (0x1b14882)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7475ecb0f680a56d20f581bbdce521cfb7eb46d
Validity
Not Before: Mar 26 21:49:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5ef003facb84e26c21c5abc673b6f3fd8c3dcf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ab:db:71:d4:20:f6:a0:38:e4:f8:ec:dd:bc:
21:07:f3:eb:32:64:99:c2:f7:99:89:c9:ba:a8:c6:
45:7a:36:ef:c8:55:44:40:67:bc:2a:24:24:26:ef:
f5:28:fe:f2:dd:23:d5:a0:13:13:b6:5c:40:56:fe:
be:67:a3:4b:b0:69:85:2f:f4:f6:ac:bb:26:89:da:
76:51:f2:2d:e3:9e:aa:3f:a3:ee:38:fa:c8:ab:d0:
6c:b9:ca:97:51:0c:99:ee:88:f0:e1:6c:1e:f5:62:
51:e9:22:db:0d:74:8d:c8:ce:b2:c7:2e:93:7c:5b:
a5:d7:53:f2:53:3a:c8:9f:01:e3:c0:55:68:92:4e:
0b:21:30:bc:d3:e6:43:9e:c9:fe:4c:ab:9b:8f:7e:
91:2a:7e:0e:0c:ec:54:76:a6:bb:a2:7c:8e:c2:09:
cc:a3:8b:7b:e6:fe:95:64:50:3a:bf:38:53:3e:18:
39:2c:35:62:e6:ae:7f:ed:10:72:80:05:de:63:9d:
70:74:91:16:77:1d:16:a9:8a:1e:ce:a0:f9:ad:08:
e8:07:d5:a8:27:d4:46:0d:43:31:82:55:7c:e3:34:
5d:5a:36:c7:61:da:29:f3:b5:1e:13:e5:85:89:09:
cc:83:19:be:0d:e5:ed:33:af:fe:09:c3:9c:86:12:
9a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:EF:00:3F:AC:B8:4E:26:C2:1C:5A:BC:67:3B:6F:3F:D8:C3:DC:F5
X509v3 Authority Key Identifier:
keyid:D7:47:5E:CB:0F:68:0A:56:D2:0F:58:1B:BD:CE:52:1C:FB:7E:B4:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10deyw9oClbSD1gbvc5SHPt-tG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/xe8AP6y4TibCHFq8ZztvP9jD3PU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/f33dff-8270-4894-ba8a-bbf2e37438d5/1/10deyw9oClbSD1gbvc5SHPt-tG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:81c::/48
Signature Algorithm: sha256WithRSAEncryption
71:42:7e:0f:99:90:fc:ce:4f:b2:4e:bd:f6:0d:23:fb:93:a8:
33:42:75:07:e0:0f:5f:cf:ca:94:35:0a:d5:98:61:8c:98:91:
57:50:21:2f:4c:42:d6:11:52:11:a6:75:71:ca:64:50:46:79:
69:9d:72:42:46:48:9a:65:bd:a5:a5:83:38:a9:d8:e8:b9:84:
33:a8:e1:15:42:91:c8:90:3a:a6:81:8a:d4:f9:41:90:59:17:
41:e8:69:1c:82:3d:e0:e3:ab:bc:ce:31:e3:aa:7e:47:92:e0:
46:73:62:ea:b6:b1:7b:71:c1:31:28:37:9c:58:91:ee:75:6d:
78:bc:ec:49:cd:4a:c4:9a:4e:55:14:47:26:8d:33:14:0c:08:
a6:78:1f:d0:44:05:ab:c0:5d:97:7e:ff:ae:d4:ba:e3:d7:0f:
71:28:90:a9:e0:52:8d:cc:a2:44:0f:e1:26:af:59:f8:a7:d0:
fb:98:f0:a0:3d:31:11:3a:b4:8a:54:4a:c3:54:33:76:fd:70:
92:f0:88:45:3c:40:ca:ca:20:f8:72:f5:f8:60:86:59:27:3d:
bf:e3:e5:a5:67:ef:f0:02:65:68:2d:ce:9d:4a:7d:43:1e:38:
6c:05:7f:38:2c:80:86:f3:64:1c:4d:76:f3:ea:17:c3:9c:60:
37:d5:b6:9f
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEAbFIgjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NzQ3NWVjYjBmNjgwYTU2ZDIwZjU4MWJiZGNlNTIxY2ZiN2ViNDZkMB4XDTIyMDMy
NjIxNDkyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzVlZjAwM2ZhY2I4
NGUyNmMyMWM1YWJjNjczYjZmM2ZkOGMzZGNmNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALWr23HUIPagOOT47N28IQfz6zJkmcL3mYnJuqjGRXo278hV
REBnvCokJCbv9Sj+8t0j1aATE7ZcQFb+vmejS7BphS/09qy7JonadlHyLeOeqj+j
7jj6yKvQbLnKl1EMme6I8OFsHvViUeki2w10jcjOsscuk3xbpddT8lM6yJ8B48BV
aJJOCyEwvNPmQ57J/kyrm49+kSp+DgzsVHamu6J8jsIJzKOLe+b+lWRQOr84Uz4Y
OSw1Yuauf+0QcoAF3mOdcHSRFncdFqmKHs6g+a0I6AfVqCfURg1DMYJVfOM0XVo2
x2HaKfO1HhPlhYkJzIMZvg3l7TOv/gnDnIYSmhUCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTF7wA/rLhOJsIcWrxnO28/2MPc9TAfBgNVHSMEGDAWgBTXR17LD2gKVtIP
WBu9zlIc+360bTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEwZGV5dzlvQ2xiU0QxZ2J2YzVTSFB0LXRHMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzcvZjMzZGZmLTgyNzAtNDg5NC1iYThhLWJiZjJlMzc0MzhkNS8x
L3hlOEFQNnk0VGliQ0hGcThaenR2UDlqRDNQVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcv
ZjMzZGZmLTgyNzAtNDg5NC1iYThhLWJiZjJlMzc0MzhkNS8xLzEwZGV5dzlvQ2xi
U0QxZ2J2YzVTSFB0LXRHMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBnwIHDANBgkqhkiG9w0BAQsF
AAOCAQEAcUJ+D5mQ/M5Psk699g0j+5OoM0J1B+APX8/KlDUK1ZhhjJiRV1AhL0xC
1hFSEaZ1ccpkUEZ5aZ1yQkZImmW9paWDOKnY6LmEM6jhFUKRyJA6poGK1PlBkFkX
QehpHII94OOrvM4x46p+R5LgRnNi6raxe3HBMSg3nFiR7nVteLzsSc1KxJpOVRRH
Jo0zFAwIpngf0EQFq8Bdl37/rtS649cPcSiQqeBSjcyiRA/hJq9Z+KfQ+5jwoD0x
ETq0ilRKw1Qzdv1wkvCIRTxAysog+HL1+GCGWSc9v+PlpWfv8AJlaC3OnUp9Qx44
bAV/OCyAhvNkHE128+oXw5xgN9W2nw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:42 2023 by rpki-client on console-ams.rpki-client.org