Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/89e4e2-b8ab-4814-93c1-28e6c5ba2eae/1/7ISXbfrt2F8MBZcT7spDSDfI8-4.roa
File: 7ISXbfrt2F8MBZcT7spDSDfI8-4.roa (raw, json)
Hash identifier: I54ee0tKIWdXlgLHhfQ/c1kPrq2RXIn263hSy18SYE8=
Subject key identifier: EC:84:97:6D:FA:ED:D8:5F:0C:05:97:13:EE:CA:43:48:37:C8:F3:EE
Certificate issuer: /CN=96b377644e414101db6dead0eb5821063f588e8c
Certificate serial: 059605F1
Authority key identifier: 96:B3:77:64:4E:41:41:01:DB:6D:EA:D0:EB:58:21:06:3F:58:8E:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lrN3ZE5BQQHbberQ61ghBj9Yjow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/89e4e2-b8ab-4814-93c1-28e6c5ba2eae/1/7ISXbfrt2F8MBZcT7spDSDfI8-4.roa
Signing time: Sat 01 Jan 2022 01:01:55 +0000
ROA not before: Sat 01 Jan 2022 01:01:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43006
IP address blocks: 2a10:3200::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93718001 (0x59605f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b377644e414101db6dead0eb5821063f588e8c
Validity
Not Before: Jan 1 01:01:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec84976dfaedd85f0c059713eeca434837c8f3ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:df:28:dc:a3:74:c2:6e:2b:2c:0c:05:d3:26:
64:fd:8b:0d:94:8b:d5:b8:bc:80:d9:20:59:48:36:
7d:78:c9:82:9d:77:46:21:a0:21:13:c1:5c:51:a2:
9b:15:2e:9e:f6:df:9c:c4:68:fd:39:69:59:e9:87:
eb:aa:03:73:65:86:a2:d6:99:40:62:3d:a4:42:a1:
e1:89:15:3c:7d:ac:c1:7c:9d:bc:8f:d0:a0:65:a7:
24:3f:e5:a5:ce:05:ff:eb:ac:8a:6c:0d:bf:70:60:
5f:85:8e:11:a1:e9:6d:cd:0e:47:c8:40:d4:b1:56:
cb:6a:7d:46:38:a7:25:65:3c:94:34:23:0a:de:55:
ac:ca:c1:d3:98:7a:cb:35:e5:0f:5c:b7:ed:d4:f7:
39:2a:04:ec:e1:07:09:79:35:83:d9:2f:e5:72:9b:
07:cd:11:05:4a:58:80:2f:15:61:9d:4c:c1:9d:c7:
77:0d:22:73:c2:d8:13:46:c0:c2:aa:28:4d:e1:45:
6d:d7:d2:28:bb:77:70:9a:29:b3:3c:40:6d:f6:f4:
83:17:00:1b:d0:94:85:70:6e:e4:c4:ec:8c:39:e9:
14:bb:62:e9:31:74:5e:f1:81:0d:21:e9:49:71:4d:
64:81:60:5f:0b:1f:2c:0b:de:61:ae:b2:2d:16:3a:
b3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:84:97:6D:FA:ED:D8:5F:0C:05:97:13:EE:CA:43:48:37:C8:F3:EE
X509v3 Authority Key Identifier:
keyid:96:B3:77:64:4E:41:41:01:DB:6D:EA:D0:EB:58:21:06:3F:58:8E:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lrN3ZE5BQQHbberQ61ghBj9Yjow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/89e4e2-b8ab-4814-93c1-28e6c5ba2eae/1/7ISXbfrt2F8MBZcT7spDSDfI8-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/89e4e2-b8ab-4814-93c1-28e6c5ba2eae/1/lrN3ZE5BQQHbberQ61ghBj9Yjow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:3200::/29
Signature Algorithm: sha256WithRSAEncryption
40:ed:4b:c4:c4:c6:21:05:95:2b:94:fb:f0:fe:cc:15:30:7e:
73:08:14:09:28:c7:b0:3b:5e:53:91:f1:39:9a:67:07:51:a8:
64:87:1a:47:46:b1:e8:c2:71:25:71:7a:8d:25:c9:bb:78:a1:
41:d3:1c:2a:b2:a7:95:7c:09:0a:ce:b2:11:d4:d4:70:be:eb:
34:63:5a:79:83:93:51:3f:08:62:15:78:b4:c8:75:25:06:61:
3d:fe:54:a6:c7:a4:53:4f:53:02:3f:0d:85:ff:da:4e:c4:31:
4b:ce:c7:98:ea:b3:da:34:33:78:92:a1:ca:91:73:4b:f5:2e:
fc:4d:de:2f:82:c3:e4:9d:2c:54:42:a0:e3:6a:d2:44:f2:1e:
d9:41:67:f3:02:3c:a8:b6:01:2b:07:a8:1d:a8:28:4b:d2:00:
60:b7:67:fd:e6:35:b6:a9:15:ee:a0:7f:3e:e9:84:1f:b2:2a:
b1:45:b1:28:ac:3e:4e:c6:ec:c8:2c:40:6b:7d:96:2d:92:c1:
d9:2b:fd:4c:8b:3d:ca:2e:55:1b:85:21:75:e3:01:63:e4:7c:
24:95:c5:a7:6d:26:60:74:ca:c8:db:c3:99:42:a2:20:04:2a:
80:6c:b6:7c:75:8a:39:e5:08:6c:c3:bd:1a:39:33:1c:f9:1d:
f1:6d:cc:1b
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEBZYF8TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NmIzNzc2NDRlNDE0MTAxZGI2ZGVhZDBlYjU4MjEwNjNmNTg4ZThjMB4XDTIyMDEw
MTAxMDE1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWM4NDk3NmRmYWVk
ZDg1ZjBjMDU5NzEzZWVjYTQzNDgzN2M4ZjNlZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMbfKNyjdMJuKywMBdMmZP2LDZSL1bi8gNkgWUg2fXjJgp13
RiGgIRPBXFGimxUunvbfnMRo/TlpWemH66oDc2WGotaZQGI9pEKh4YkVPH2swXyd
vI/QoGWnJD/lpc4F/+usimwNv3BgX4WOEaHpbc0OR8hA1LFWy2p9RjinJWU8lDQj
Ct5VrMrB05h6yzXlD1y37dT3OSoE7OEHCXk1g9kv5XKbB80RBUpYgC8VYZ1MwZ3H
dw0ic8LYE0bAwqooTeFFbdfSKLt3cJopszxAbfb0gxcAG9CUhXBu5MTsjDnpFLti
6TF0XvGBDSHpSXFNZIFgXwsfLAveYa6yLRY6sy8CAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBTshJdt+u3YXwwFlxPuykNIN8jz7jAfBgNVHSMEGDAWgBSWs3dkTkFBAdtt
6tDrWCEGP1iOjDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2xyTjNaRTVCUVFIYmJlclE2MWdoQmo5WWpvdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvODllNGUyLWI4YWItNDgxNC05M2MxLTI4ZTZjNWJhMmVhZS8x
LzdJU1hiZnJ0MkY4TUJaY1Q3c3BEU0RmSTgtNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
ODllNGUyLWI4YWItNDgxNC05M2MxLTI4ZTZjNWJhMmVhZS8xL2xyTjNaRTVCUVFI
YmJlclE2MWdoQmo5WWpvdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoQMgAwDQYJKoZIhvcNAQELBQAD
ggEBAEDtS8TExiEFlSuU+/D+zBUwfnMIFAkox7A7XlOR8TmaZwdRqGSHGkdGsejC
cSVxeo0lybt4oUHTHCqyp5V8CQrOshHU1HC+6zRjWnmDk1E/CGIVeLTIdSUGYT3+
VKbHpFNPUwI/DYX/2k7EMUvOx5jqs9o0M3iSocqRc0v1LvxN3i+Cw+SdLFRCoONq
0kTyHtlBZ/MCPKi2ASsHqB2oKEvSAGC3Z/3mNbapFe6gfz7phB+yKrFFsSisPk7G
7MgsQGt9li2Swdkr/UyLPcouVRuFIXXjAWPkfCSVxadtJmB0ysjbw5lCoiAEKoBs
tnx1ijnlCGzDvRo5Mxz5HfFtzBs=
-----END CERTIFICATE-----
Generated at Sun Apr 20 02:51:25 2025 by rpki-client