Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a96ac3-3990-45aa-b48e-870cc5f43cd5/1/gVAnFz1haUwbwUhdOyVDl1zuyFk.roa
File: gVAnFz1haUwbwUhdOyVDl1zuyFk.roa (raw, json)
Hash identifier: sNDO49xg+CBDhWx+uSmxVtkTCRpl+gnuJl+p+22w7p4=
Subject key identifier: 81:50:27:17:3D:61:69:4C:1B:C1:48:5D:3B:25:43:97:5C:EE:C8:59
Certificate issuer: /CN=8032c07faa22feb5969ff1f3b4905d1ea1e4deeb
Certificate serial: 039A0377
Authority key identifier: 80:32:C0:7F:AA:22:FE:B5:96:9F:F1:F3:B4:90:5D:1E:A1:E4:DE:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gDLAf6oi_rWWn_HztJBdHqHk3us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a96ac3-3990-45aa-b48e-870cc5f43cd5/1/gVAnFz1haUwbwUhdOyVDl1zuyFk.roa
Signing time: Sat 01 Jan 2022 09:02:13 +0000
ROA not before: Sat 01 Jan 2022 09:02:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31317
IP address blocks: 2001:67c:10b0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60425079 (0x39a0377)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8032c07faa22feb5969ff1f3b4905d1ea1e4deeb
Validity
Not Before: Jan 1 09:02:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=815027173d61694c1bc1485d3b2543975ceec859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:bd:c1:25:65:bd:48:f9:ba:8a:15:aa:96:c7:
9f:1d:3e:ad:74:1c:81:c1:f7:2f:1b:73:86:48:3d:
49:b6:64:d2:18:3b:5a:df:29:1f:8a:93:aa:2d:91:
66:aa:91:d7:33:0f:0f:b7:c9:d5:23:61:c0:93:ca:
27:ec:18:04:d1:f3:e5:6f:a7:ea:b1:fa:b6:47:b6:
4a:04:c2:81:92:31:7e:51:b9:f1:d5:4b:28:84:57:
0d:6c:57:61:cb:55:f4:95:7c:45:fd:2d:16:82:ff:
8a:00:60:70:ed:74:ec:bb:00:2d:fd:53:43:3a:df:
fb:7c:f8:03:60:41:d6:01:21:2e:f8:5e:b2:3c:d4:
87:f5:e2:51:19:d4:78:b4:b8:4f:6f:64:a7:e6:f0:
87:02:cf:d6:7c:2b:e7:31:ef:16:41:a5:54:d0:f5:
4d:f3:83:09:23:dd:4f:65:3d:09:c1:02:6e:04:7b:
6c:bd:52:32:45:ba:b2:58:19:ca:3d:74:7b:74:2d:
c7:ca:b6:9b:1a:2d:1a:a2:79:47:eb:07:19:a5:42:
1d:9c:b1:a8:21:a5:45:10:b1:87:b3:00:a8:45:75:
85:d1:c3:10:8a:55:72:a2:07:bb:9b:23:31:b5:f1:
68:e1:37:11:70:f2:5c:f2:de:71:be:9e:0b:a6:f3:
66:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:50:27:17:3D:61:69:4C:1B:C1:48:5D:3B:25:43:97:5C:EE:C8:59
X509v3 Authority Key Identifier:
keyid:80:32:C0:7F:AA:22:FE:B5:96:9F:F1:F3:B4:90:5D:1E:A1:E4:DE:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gDLAf6oi_rWWn_HztJBdHqHk3us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a96ac3-3990-45aa-b48e-870cc5f43cd5/1/gVAnFz1haUwbwUhdOyVDl1zuyFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a96ac3-3990-45aa-b48e-870cc5f43cd5/1/gDLAf6oi_rWWn_HztJBdHqHk3us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:10b0::/48
Signature Algorithm: sha256WithRSAEncryption
4f:f2:f9:85:c7:36:aa:1a:74:be:ff:71:41:17:9a:39:26:c0:
18:3c:ef:94:8b:20:1a:c5:6c:2d:3f:82:f4:46:b2:4f:3a:7d:
03:6a:86:25:dc:cb:0b:97:3b:ab:4d:ea:e1:98:bf:3c:4d:b7:
8b:2d:62:dc:d6:8f:cc:97:ee:15:a1:c5:fb:df:9a:6f:f3:3b:
a5:d9:f7:d4:29:98:f3:8b:1b:3f:ac:10:7e:05:71:18:75:ce:
58:77:f8:4b:db:27:3c:40:be:f6:70:77:f8:f1:52:1a:0c:2b:
58:e7:c2:61:9b:b2:e4:8d:b6:da:9d:d2:b6:f6:49:31:59:3b:
cd:9d:9e:af:28:2e:be:bc:30:53:a7:35:e8:9b:6e:79:3d:55:
6f:ed:94:76:59:8f:03:6a:64:5e:0b:29:3b:de:54:9b:7f:7d:
f7:47:7c:25:89:8e:c3:c5:d4:91:a5:47:cc:2d:26:a3:d3:90:
f9:cd:26:3a:3b:4c:05:ea:3a:36:b9:44:c5:e1:e2:55:1f:67:
de:c4:65:dc:ae:06:2d:4a:f4:e0:bd:51:4d:cd:b5:4b:6f:f1:
65:fc:2a:37:56:dd:ff:6d:4a:a1:97:23:4b:21:69:fb:e8:e6:
97:10:48:48:de:25:40:df:7c:55:0b:e3:e5:7c:ac:1c:bc:c6:
0b:69:b9:5b
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEA5oDdzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MDMyYzA3ZmFhMjJmZWI1OTY5ZmYxZjNiNDkwNWQxZWExZTRkZWViMB4XDTIyMDEw
MTA5MDIxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODE1MDI3MTczZDYx
Njk0YzFiYzE0ODVkM2IyNTQzOTc1Y2VlYzg1OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJm9wSVlvUj5uooVqpbHnx0+rXQcgcH3Lxtzhkg9SbZk0hg7
Wt8pH4qTqi2RZqqR1zMPD7fJ1SNhwJPKJ+wYBNHz5W+n6rH6tke2SgTCgZIxflG5
8dVLKIRXDWxXYctV9JV8Rf0tFoL/igBgcO107LsALf1TQzrf+3z4A2BB1gEhLvhe
sjzUh/XiURnUeLS4T29kp+bwhwLP1nwr5zHvFkGlVND1TfODCSPdT2U9CcECbgR7
bL1SMkW6slgZyj10e3Qtx8q2mxotGqJ5R+sHGaVCHZyxqCGlRRCxh7MAqEV1hdHD
EIpVcqIHu5sjMbXxaOE3EXDyXPLecb6eC6bzZvECAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSBUCcXPWFpTBvBSF07JUOXXO7IWTAfBgNVHSMEGDAWgBSAMsB/qiL+tZaf
8fO0kF0eoeTe6zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2dETEFmNm9pX3JXV25fSHp0SkJkSHFIazN1cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTQvYTk2YWMzLTM5OTAtNDVhYS1iNDhlLTg3MGNjNWY0M2NkNS8x
L2dWQW5GejFoYVV3YndVaGRPeVZEbDF6dXlGay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTQv
YTk2YWMzLTM5OTAtNDVhYS1iNDhlLTg3MGNjNWY0M2NkNS8xL2dETEFmNm9pX3JX
V25fSHp0SkJkSHFIazN1cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBnwQsDANBgkqhkiG9w0BAQsF
AAOCAQEAT/L5hcc2qhp0vv9xQReaOSbAGDzvlIsgGsVsLT+C9EayTzp9A2qGJdzL
C5c7q03q4Zi/PE23iy1i3NaPzJfuFaHF+9+ab/M7pdn31CmY84sbP6wQfgVxGHXO
WHf4S9snPEC+9nB3+PFSGgwrWOfCYZuy5I222p3StvZJMVk7zZ2eryguvrwwU6c1
6JtueT1Vb+2UdlmPA2pkXgspO95Um39990d8JYmOw8XUkaVHzC0mo9OQ+c0mOjtM
Beo6NrlExeHiVR9n3sRl3K4GLUr04L1RTc21S2/xZfwqN1bd/21KoZcjSyFp++jm
lxBISN4lQN98VQvj5XysHLzGC2m5Ww==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:27 2024 by rpki-client on console-fra.rpki-client.org