Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/cUV6ydJV5LL7RGYrGXTJentWakY.roa
File: cUV6ydJV5LL7RGYrGXTJentWakY.roa (raw, json)
Hash identifier: IrKguYxY05VX1W3lxGr8vfZq900BVK/hNTAvNvThuk0=
Subject key identifier: 71:45:7A:C9:D2:55:E4:B2:FB:44:66:2B:19:74:C9:7A:7B:56:6A:46
Certificate issuer: /CN=a7ddfaf13b7dbe05daa32b5878b8b68024045971
Certificate serial: 01E4A4
Authority key identifier: A7:DD:FA:F1:3B:7D:BE:05:DA:A3:2B:58:78:B8:B6:80:24:04:59:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9368Tt9vgXaoytYeLi2gCQEWXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/cUV6ydJV5LL7RGYrGXTJentWakY.roa
Signing time: Wed 02 Mar 2022 18:24:56 +0000
ROA not before: Wed 02 Mar 2022 18:24:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202560
IP address blocks: 2001:67c:74::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124068 (0x1e4a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7ddfaf13b7dbe05daa32b5878b8b68024045971
Validity
Not Before: Mar 2 18:24:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71457ac9d255e4b2fb44662b1974c97a7b566a46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:90:fc:2c:58:22:cf:b5:81:e3:bb:76:23:30:
18:53:5f:f4:5b:c6:13:1f:f0:0b:ac:1e:96:f4:fc:
3c:60:a0:f3:d3:8f:de:ab:6e:c1:78:0e:46:5a:c0:
82:cb:38:ff:60:89:7f:61:3d:33:e1:dc:40:f9:c4:
76:63:19:a0:3d:f3:88:56:3c:0f:a6:e5:4e:a0:f6:
62:08:e7:3c:fc:35:b2:c8:62:d2:bb:cd:5f:00:87:
2c:91:d8:94:0d:1d:4b:ed:ea:f0:ad:1c:0d:75:05:
10:0a:70:03:88:82:85:de:b2:81:a8:97:18:a9:78:
73:e4:0f:3d:7c:86:4b:bb:17:63:73:fd:aa:3a:fb:
26:0e:d4:bb:83:12:1d:1b:a5:a8:e6:d4:e0:a0:bf:
42:94:93:9b:85:af:fb:4f:20:e9:8a:7e:df:60:71:
a2:fe:d3:c1:a6:2c:e6:33:5c:f6:a4:b3:81:e5:5f:
84:0f:d6:1a:cf:e6:e8:1d:d6:a6:2b:0c:8c:41:b5:
b3:29:40:b1:ba:b2:a6:5c:0e:e2:6f:e6:76:83:30:
d0:f2:05:1f:34:b0:71:02:81:02:2f:bd:c5:97:2a:
62:9e:42:c6:ef:47:51:1e:4d:ad:58:9f:22:a1:8b:
9f:0f:a4:9f:b6:cf:51:7b:fd:91:24:75:42:53:d0:
89:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:45:7A:C9:D2:55:E4:B2:FB:44:66:2B:19:74:C9:7A:7B:56:6A:46
X509v3 Authority Key Identifier:
keyid:A7:DD:FA:F1:3B:7D:BE:05:DA:A3:2B:58:78:B8:B6:80:24:04:59:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9368Tt9vgXaoytYeLi2gCQEWXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/cUV6ydJV5LL7RGYrGXTJentWakY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/p9368Tt9vgXaoytYeLi2gCQEWXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:74::/48
Signature Algorithm: sha256WithRSAEncryption
66:5a:b3:84:b6:c2:e0:a9:76:7f:6f:0a:be:bd:93:ba:ed:b0:
d3:d3:8a:d7:51:fa:43:c1:b2:49:18:59:e0:e6:b0:75:6a:7d:
bf:97:24:5c:e0:5e:9b:29:bb:02:9e:85:4f:1e:e6:03:44:9b:
21:fd:06:66:4a:9c:92:19:d5:7c:42:2c:6e:09:77:9f:85:43:
fe:62:92:4e:0b:19:fd:31:81:30:df:98:c6:70:66:b5:79:e6:
59:bc:e4:da:cd:23:bb:20:51:1f:03:fc:71:5f:75:9f:9c:8c:
97:9a:43:ea:4c:72:86:d3:11:a0:89:3e:ce:b8:d5:12:8e:5b:
6e:77:f3:fd:b1:14:c1:16:f7:25:77:01:9b:a4:24:ca:75:65:
d0:de:35:d0:12:1e:27:e2:05:4b:89:8d:ed:4d:fa:72:43:3d:
73:a5:0f:0b:27:0f:3a:4f:e8:17:ec:85:eb:5f:8e:b9:09:da:
02:61:f8:9f:0c:2c:c5:1b:95:e2:d6:9f:06:20:eb:e6:bf:06:
8d:68:28:ca:1d:17:60:b2:d0:75:4b:bf:cf:1d:6e:4a:86:c9:
02:ab:d4:e1:72:3e:4f:b7:04:5a:23:f4:a0:68:e4:e4:1e:bd:
55:cb:b4:1f:b6:70:6d:80:2d:c4:dd:b2:c8:19:f1:21:a7:84:
36:0d:5c:19
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIDAeSkMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGE3
ZGRmYWYxM2I3ZGJlMDVkYWEzMmI1ODc4YjhiNjgwMjQwNDU5NzEwHhcNMjIwMzAy
MTgyNDU2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg3MTQ1N2FjOWQyNTVl
NGIyZmI0NDY2MmIxOTc0Yzk3YTdiNTY2YTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEArJD8LFgiz7WB47t2IzAYU1/0W8YTH/ALrB6W9Pw8YKDz04/e
q27BeA5GWsCCyzj/YIl/YT0z4dxA+cR2YxmgPfOIVjwPpuVOoPZiCOc8/DWyyGLS
u81fAIcskdiUDR1L7erwrRwNdQUQCnADiIKF3rKBqJcYqXhz5A89fIZLuxdjc/2q
OvsmDtS7gxIdG6Wo5tTgoL9ClJObha/7TyDpin7fYHGi/tPBpizmM1z2pLOB5V+E
D9Yaz+boHdamKwyMQbWzKUCxurKmXA7ib+Z2gzDQ8gUfNLBxAoECL73FlypinkLG
70dRHk2tWJ8ioYufD6Sfts9Re/2RJHVCU9CJwQIDAQABo4ICDDCCAggwHQYDVR0O
BBYEFHFFesnSVeSy+0RmKxl0yXp7VmpGMB8GA1UdIwQYMBaAFKfd+vE7fb4F2qMr
WHi4toAkBFlxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
cDkzNjhUdDl2Z1hhb3l0WWVMaTJnQ1FFV1hFLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84Yi9mMmIwODMtYjNiOS00YWE2LWExNDktZmJiNTUzYjg0NjQxLzEv
Y1VWNnlkSlY1TEw3UkdZckdYVEplbnRXYWtZLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9m
MmIwODMtYjNiOS00YWE2LWExNDktZmJiNTUzYjg0NjQxLzEvcDkzNjhUdDl2Z1hh
b3l0WWVMaTJnQ1FFV1hFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIG
CCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAB0MA0GCSqGSIb3DQEBCwUA
A4IBAQBmWrOEtsLgqXZ/bwq+vZO67bDT04rXUfpDwbJJGFng5rB1an2/lyRc4F6b
KbsCnoVPHuYDRJsh/QZmSpySGdV8QixuCXefhUP+YpJOCxn9MYEw35jGcGa1eeZZ
vOTazSO7IFEfA/xxX3WfnIyXmkPqTHKG0xGgiT7OuNUSjltud/P9sRTBFvcldwGb
pCTKdWXQ3jXQEh4n4gVLiY3tTfpyQz1zpQ8LJw86T+gX7IXrX465CdoCYfifDCzF
G5Xi1p8GIOvmvwaNaCjKHRdgstB1S7/PHW5KhskCq9Thcj5PtwRaI/SgaOTkHr1V
y7QftnBtgC3E3bLIGfEhp4Q2DVwZ
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:45 2023 by rpki-client on console.sobornost.net