Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/vIa4WvlEXtyqnfElh81Vcgf3Z_k.roa
File: vIa4WvlEXtyqnfElh81Vcgf3Z_k.roa (raw, json)
Hash identifier: eGVRztr/3p0oi1oFQZbbrnwWqH6KJYz6ehGFJwshA/o=
Subject key identifier: BC:86:B8:5A:F9:44:5E:DC:AA:9D:F1:25:87:CD:55:72:07:F7:67:F9
Certificate issuer: /CN=7fe0e759354e83cc19320381109de22da0f1a700
Certificate serial: 3756F77B
Authority key identifier: 7F:E0:E7:59:35:4E:83:CC:19:32:03:81:10:9D:E2:2D:A0:F1:A7:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f-DnWTVOg8wZMgOBEJ3iLaDxpwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/vIa4WvlEXtyqnfElh81Vcgf3Z_k.roa
Signing time: Sat 01 Jan 2022 04:59:28 +0000
ROA not before: Sat 01 Jan 2022 04:59:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48818
IP address blocks: 2a00:9700:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 928446331 (0x3756f77b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fe0e759354e83cc19320381109de22da0f1a700
Validity
Not Before: Jan 1 04:59:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc86b85af9445edcaa9df12587cd557207f767f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:1a:38:b5:cd:e6:cf:37:29:ab:42:c5:ec:03:
25:a3:c8:a6:49:09:99:06:1f:8a:e0:92:29:f0:c9:
69:3d:b7:01:16:12:96:e1:f5:7c:5d:d5:0d:bb:5a:
85:fb:c7:13:cf:be:38:32:89:ab:13:01:de:30:e0:
95:80:b4:b9:15:34:53:62:27:b8:c6:d3:3a:c5:65:
6e:f2:29:bf:3f:ec:b7:fe:aa:55:72:c2:f2:d3:63:
e8:f2:57:d2:7d:ea:d2:7d:e7:43:70:8b:4d:e3:dc:
94:5b:02:3e:2a:e4:1a:41:4a:38:1e:c9:8b:68:4d:
c3:5d:af:23:2f:b8:41:18:20:64:fc:84:86:a3:70:
b8:01:60:46:1f:69:18:93:28:90:68:11:85:e2:48:
7b:5f:fc:7e:3b:28:59:c0:46:02:22:c2:c7:6b:78:
b8:1b:03:62:dc:37:02:77:1b:ac:d1:68:b7:70:7b:
4b:40:f4:32:dc:b9:10:0d:cc:be:e5:72:55:cb:33:
97:92:bb:98:78:93:05:b8:2a:fd:0e:ba:5b:1a:88:
d8:83:49:de:6c:38:62:f9:e1:8c:8d:a6:de:c0:bb:
c4:c8:28:12:56:f1:1b:85:19:5b:27:d4:64:5c:95:
83:f4:b3:da:3a:3f:ca:a2:a9:fa:c4:18:2f:70:a2:
37:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:86:B8:5A:F9:44:5E:DC:AA:9D:F1:25:87:CD:55:72:07:F7:67:F9
X509v3 Authority Key Identifier:
keyid:7F:E0:E7:59:35:4E:83:CC:19:32:03:81:10:9D:E2:2D:A0:F1:A7:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f-DnWTVOg8wZMgOBEJ3iLaDxpwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/vIa4WvlEXtyqnfElh81Vcgf3Z_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/f-DnWTVOg8wZMgOBEJ3iLaDxpwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:9700:2::/48
Signature Algorithm: sha256WithRSAEncryption
89:ca:af:43:90:13:24:78:44:d1:69:4b:23:d4:bf:d9:2b:86:
99:40:0f:3f:66:a6:d1:fb:39:2b:ba:4e:bc:61:e9:56:80:70:
d4:4a:87:bb:10:f7:fd:a4:cb:a8:17:2d:a2:6a:34:6a:f7:da:
24:7e:fb:8d:5d:81:2e:bb:4a:63:e1:10:2d:92:8e:a4:7c:e5:
d2:af:60:a3:49:42:36:a2:2d:a5:eb:e3:5e:ec:c1:d0:57:4f:
83:67:05:79:69:12:92:ee:52:99:c3:25:0a:5a:6b:69:58:d2:
34:c4:b5:71:90:07:d8:96:f3:6b:8a:03:64:6e:6a:0d:06:d3:
46:da:e7:fb:a3:1c:d7:93:6a:6b:32:5b:fd:a9:5f:2a:7e:e9:
75:e9:f2:74:b0:2c:25:63:b1:48:ba:d0:5b:18:93:1a:a7:73:
ba:e3:e4:d1:c0:4b:67:0b:cf:e7:6c:e8:7f:65:f7:d7:1a:ce:
3f:9c:e4:22:dc:f1:a3:79:f0:65:0a:94:30:24:df:29:48:39:
ba:54:ab:63:6b:6e:18:37:eb:df:54:4a:26:40:b8:f6:13:ff:
66:51:cd:41:c1:17:3a:c7:53:e4:0d:c6:31:49:3b:cf:51:a4:
96:15:3d:60:a0:95:d0:11:75:42:5f:d8:ab:d8:ed:22:8c:a2:
dd:85:70:49
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEN1b3ezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZmUwZTc1OTM1NGU4M2NjMTkzMjAzODExMDlkZTIyZGEwZjFhNzAwMB4XDTIyMDEw
MTA0NTkyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmM4NmI4NWFmOTQ0
NWVkY2FhOWRmMTI1ODdjZDU1NzIwN2Y3NjdmOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ4aOLXN5s83KatCxewDJaPIpkkJmQYfiuCSKfDJaT23ARYS
luH1fF3VDbtahfvHE8++ODKJqxMB3jDglYC0uRU0U2InuMbTOsVlbvIpvz/st/6q
VXLC8tNj6PJX0n3q0n3nQ3CLTePclFsCPirkGkFKOB7Ji2hNw12vIy+4QRggZPyE
hqNwuAFgRh9pGJMokGgRheJIe1/8fjsoWcBGAiLCx2t4uBsDYtw3AncbrNFot3B7
S0D0Mty5EA3MvuVyVcszl5K7mHiTBbgq/Q66WxqI2INJ3mw4YvnhjI2m3sC7xMgo
ElbxG4UZWyfUZFyVg/Sz2jo/yqKp+sQYL3CiN1ECAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBS8hrha+URe3Kqd8SWHzVVyB/dn+TAfBgNVHSMEGDAWgBR/4OdZNU6DzBky
A4EQneItoPGnADAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2YtRG5XVFZPZzh3Wk1nT0JFSjNpTGFEeHB3QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvMGM3MjQzLTFmZmItNDlkMi1iNWMxLWI0MDJlOGExZDkzNC8x
L3ZJYTRXdmxFWHR5cW5mRWxoODFWY2dmM1pfay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
MGM3MjQzLTFmZmItNDlkMi1iNWMxLWI0MDJlOGExZDkzNC8xL2YtRG5XVFZPZzh3
Wk1nT0JFSjNpTGFEeHB3QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoAlwAAAjANBgkqhkiG9w0BAQsF
AAOCAQEAicqvQ5ATJHhE0WlLI9S/2SuGmUAPP2am0fs5K7pOvGHpVoBw1EqHuxD3
/aTLqBctomo0avfaJH77jV2BLrtKY+EQLZKOpHzl0q9go0lCNqItpevjXuzB0FdP
g2cFeWkSku5SmcMlClpraVjSNMS1cZAH2Jbza4oDZG5qDQbTRtrn+6Mc15NqazJb
/alfKn7pdenydLAsJWOxSLrQWxiTGqdzuuPk0cBLZwvP52zof2X31xrOP5zkItzx
o3nwZQqUMCTfKUg5ulSrY2tuGDfr31RKJkC49hP/ZlHNQcEXOsdT5A3GMUk7z1Gk
lhU9YKCV0BF1Ql/Yq9jtIoyi3YVwSQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:58 2023 by rpki-client on console.sobornost.net