Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/624546-4ac8-4dbe-8697-aace878bab65/1/COhVQGbC5_IjHd6h492OeChJKIw.roa
File: COhVQGbC5_IjHd6h492OeChJKIw.roa (raw, json)
Hash identifier: uLCkaKRazf2PCNOHTrxuZvFRbYkhvc0LP2lbU+sSBuw=
Subject key identifier: 08:E8:55:40:66:C2:E7:F2:23:1D:DE:A1:E3:DD:8E:78:28:49:28:8C
Certificate issuer: /CN=f9cb9094cb7cda138bd010013eb9ecc331903041
Certificate serial: 1870DD88
Authority key identifier: F9:CB:90:94:CB:7C:DA:13:8B:D0:10:01:3E:B9:EC:C3:31:90:30:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-cuQlMt82hOL0BABPrnswzGQMEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/624546-4ac8-4dbe-8697-aace878bab65/1/COhVQGbC5_IjHd6h492OeChJKIw.roa
Signing time: Sat 01 Jan 2022 15:02:00 +0000
ROA not before: Sat 01 Jan 2022 15:02:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60391
IP address blocks: 2001:67c:12ac::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 410049928 (0x1870dd88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9cb9094cb7cda138bd010013eb9ecc331903041
Validity
Not Before: Jan 1 15:02:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08e8554066c2e7f2231ddea1e3dd8e782849288c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:19:98:cc:f0:a4:c6:c8:b5:2f:1b:82:88:1e:
8a:7f:c3:11:b3:3e:8f:78:ca:69:63:90:ea:72:54:
df:18:14:2d:f4:ca:c7:88:11:72:ab:73:f3:c6:32:
b5:c4:19:04:e0:6a:d3:28:26:b0:9d:63:3f:3f:e9:
4b:64:0a:c6:6c:c8:3d:b4:56:14:a2:f0:b2:a3:9d:
e5:50:60:3e:76:91:de:a2:9b:4b:06:d0:99:47:15:
8e:4f:91:41:e1:61:d4:ba:85:c3:2e:73:a7:6c:f4:
2c:4b:49:f3:a8:af:0c:41:c5:1a:c0:1d:19:fc:3e:
0b:8d:db:cf:fc:43:7f:04:6c:1d:c5:db:88:30:9c:
82:90:d6:09:89:24:a6:f2:53:cc:de:0a:d1:29:b8:
0e:e9:2b:52:ae:7e:23:5a:28:7e:33:b6:2b:d4:67:
80:ac:9d:e2:d1:6f:94:e8:4b:3e:91:df:b2:42:e5:
0b:f9:7a:8e:22:71:a6:50:6b:96:ba:ae:b1:6a:12:
1e:ea:77:f5:07:cf:0e:b9:d2:e6:91:83:78:8c:40:
1d:94:0b:8f:c6:90:8d:50:67:7d:e8:0c:69:de:6e:
12:54:6f:fd:53:c6:54:5d:73:35:e7:c5:6c:f0:3b:
0f:bf:ea:d9:ec:70:50:17:bc:85:57:49:3f:47:f3:
a1:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:E8:55:40:66:C2:E7:F2:23:1D:DE:A1:E3:DD:8E:78:28:49:28:8C
X509v3 Authority Key Identifier:
keyid:F9:CB:90:94:CB:7C:DA:13:8B:D0:10:01:3E:B9:EC:C3:31:90:30:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-cuQlMt82hOL0BABPrnswzGQMEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/624546-4ac8-4dbe-8697-aace878bab65/1/COhVQGbC5_IjHd6h492OeChJKIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/624546-4ac8-4dbe-8697-aace878bab65/1/1-cuQlMt82hOL0BABPrnswzGQMEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:12ac::/48
Signature Algorithm: sha256WithRSAEncryption
09:3d:b7:bd:e0:3a:a1:2d:8a:d8:0e:08:1d:44:76:ea:e9:2e:
aa:8f:fd:87:e2:06:59:8a:9b:57:a2:e8:d7:ac:08:79:1c:88:
2a:fd:24:dd:4d:d1:cf:ef:04:af:42:0b:e9:de:99:28:32:a6:
c6:a7:61:66:c7:39:0d:36:c6:e0:0e:02:02:a6:e4:d2:e0:87:
3e:67:53:96:dc:d4:82:f8:b0:51:d9:c3:af:1e:52:59:b0:88:
0a:dc:b4:bd:07:1d:23:fd:bc:71:39:81:47:59:9b:31:f6:e3:
9b:02:4f:09:d2:07:a1:ba:30:b4:97:c0:b2:a3:f6:c3:c3:2f:
5d:73:49:00:bb:e4:38:51:5e:a7:ce:fc:a7:f1:d7:8a:10:b6:
aa:bc:13:79:1e:6a:a5:d8:fc:fb:19:63:40:f3:90:e8:e3:f5:
6f:09:7a:fa:d5:7e:4e:eb:6d:e8:1b:ab:c2:05:ba:e6:18:69:
cf:3e:0a:bd:c4:62:99:e5:e0:77:f3:f8:7a:32:35:ba:67:20:
b3:0e:40:db:0e:76:fd:af:a7:c5:8c:de:e7:57:eb:1b:5f:8a:
47:bd:cd:78:9a:17:96:45:10:a5:cf:66:6f:93:d2:dd:59:f7:
6b:63:62:35:02:44:42:47:3c:5d:15:04:89:7f:8a:cd:10:90:
c0:2d:01:7d
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIEGHDdiDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OWNiOTA5NGNiN2NkYTEzOGJkMDEwMDEzZWI5ZWNjMzMxOTAzMDQxMB4XDTIyMDEw
MTE1MDIwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDhlODU1NDA2NmMy
ZTdmMjIzMWRkZWExZTNkZDhlNzgyODQ5Mjg4YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALgZmMzwpMbItS8bgogein/DEbM+j3jKaWOQ6nJU3xgULfTK
x4gRcqtz88YytcQZBOBq0ygmsJ1jPz/pS2QKxmzIPbRWFKLwsqOd5VBgPnaR3qKb
SwbQmUcVjk+RQeFh1LqFwy5zp2z0LEtJ86ivDEHFGsAdGfw+C43bz/xDfwRsHcXb
iDCcgpDWCYkkpvJTzN4K0Sm4DukrUq5+I1oofjO2K9RngKyd4tFvlOhLPpHfskLl
C/l6jiJxplBrlrqusWoSHup39QfPDrnS5pGDeIxAHZQLj8aQjVBnfegMad5uElRv
/VPGVF1zNefFbPA7D7/q2exwUBe8hVdJP0fzoc8CAwEAAaOCAg4wggIKMB0GA1Ud
DgQWBBQI6FVAZsLn8iMd3qHj3Y54KEkojDAfBgNVHSMEGDAWgBT5y5CUy3zaE4vQ
EAE+uezDMZAwQTAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtY3VRbE10ODJoT0wwQkFCUHJuc3d6R1FNRUUuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL2VhLzYyNDU0Ni00YWM4LTRkYmUtODY5Ny1hYWNlODc4YmFiNjUv
MS9DT2hWUUdiQzVfSWpIZDZoNDkyT2VDaEpLSXcucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Vh
LzYyNDU0Ni00YWM4LTRkYmUtODY5Ny1hYWNlODc4YmFiNjUvMS8xLWN1UWxNdDgy
aE9MMEJBQlBybnN3ekdRTUVFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBKsMA0GCSqGSIb3DQEB
CwUAA4IBAQAJPbe94DqhLYrYDggdRHbq6S6qj/2H4gZZiptXoujXrAh5HIgq/STd
TdHP7wSvQgvp3pkoMqbGp2FmxzkNNsbgDgICpuTS4Ic+Z1OW3NSC+LBR2cOvHlJZ
sIgK3LS9Bx0j/bxxOYFHWZsx9uObAk8J0gehujC0l8Cyo/bDwy9dc0kAu+Q4UV6n
zvyn8deKELaqvBN5Hmql2Pz7GWNA85Do4/VvCXr61X5O623oG6vCBbrmGGnPPgq9
xGKZ5eB38/h6MjW6ZyCzDkDbDnb9r6fFjN7nV+sbX4pHvc14mheWRRClz2Zvk9Ld
WfdrY2I1AkRCRzxdFQSJf4rNEJDALQF9
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:52 2023 by rpki-client on console-fra.rpki-client.org