Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/FzSNh1IPkktRW9n52d0iXHUFtVs.roa
File: FzSNh1IPkktRW9n52d0iXHUFtVs.roa (raw, json)
Hash identifier: mb0kmG1xa3eHJGHEpV3RfkikkASuA6ZAzUylJ5WfWik=
Subject key identifier: 17:34:8D:87:52:0F:92:4B:51:5B:D9:F9:D9:DD:22:5C:75:05:B5:5B
Certificate issuer: /CN=3787b324b0d32fb1a3678b02c482286d4c26ba0f
Certificate serial: 0DB54128
Authority key identifier: 37:87:B3:24:B0:D3:2F:B1:A3:67:8B:02:C4:82:28:6D:4C:26:BA:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N4ezJLDTL7GjZ4sCxIIobUwmug8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/FzSNh1IPkktRW9n52d0iXHUFtVs.roa
Signing time: Sat 01 Jan 2022 08:58:15 +0000
ROA not before: Sat 01 Jan 2022 08:58:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204378
IP address blocks: 2a0c:3800:300::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229982504 (0xdb54128)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3787b324b0d32fb1a3678b02c482286d4c26ba0f
Validity
Not Before: Jan 1 08:58:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17348d87520f924b515bd9f9d9dd225c7505b55b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1a:84:27:3a:e5:94:1c:92:b2:52:31:b6:83:
10:db:7b:4a:a1:ed:ca:13:d2:fc:cf:f8:86:07:1f:
44:ff:10:55:1b:a4:63:a8:bb:ab:11:7c:89:45:01:
8f:fc:0f:06:38:ff:e7:6b:a5:8f:7d:d9:32:8a:59:
01:e1:68:a6:7b:78:60:bb:bf:5c:ee:3c:00:26:6b:
1f:87:40:ba:23:54:4f:9b:a4:e8:58:22:20:1a:8c:
20:31:14:76:2d:ca:69:02:f6:f8:59:5c:29:b0:4d:
82:8f:3a:66:ab:e9:ef:72:2f:11:ee:42:3a:ac:72:
7d:3c:c9:32:0b:b3:0a:fc:ab:68:ad:a2:54:88:21:
4f:db:1d:00:50:ec:35:75:79:1b:bc:23:5e:e0:b7:
59:9c:df:4a:8c:9f:cc:aa:2d:b2:3f:6c:79:81:dc:
09:4b:d1:41:c8:da:9a:36:cc:16:03:af:38:bb:6b:
ac:12:1e:87:7b:ac:de:8e:f2:ca:bb:c8:85:b4:cc:
d4:eb:89:22:04:76:97:6a:a2:a0:42:a4:c5:d4:41:
23:97:25:58:2e:59:46:1e:28:31:c0:70:e0:77:6c:
08:b3:9a:11:d8:82:15:5d:f7:86:d2:71:92:49:14:
d9:80:58:4e:28:8e:8e:97:38:8f:e2:44:1e:98:de:
6e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:34:8D:87:52:0F:92:4B:51:5B:D9:F9:D9:DD:22:5C:75:05:B5:5B
X509v3 Authority Key Identifier:
keyid:37:87:B3:24:B0:D3:2F:B1:A3:67:8B:02:C4:82:28:6D:4C:26:BA:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N4ezJLDTL7GjZ4sCxIIobUwmug8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/FzSNh1IPkktRW9n52d0iXHUFtVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/N4ezJLDTL7GjZ4sCxIIobUwmug8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:3800:300::/48
Signature Algorithm: sha256WithRSAEncryption
2b:8c:40:63:e7:06:b6:cf:19:c9:87:3c:67:89:32:97:82:e0:
0f:5b:52:2e:5e:cc:82:c9:e8:0e:70:71:2c:69:df:4d:fc:19:
8f:de:d2:6c:6d:d3:00:80:ad:0a:34:c7:d4:75:8d:7a:09:28:
17:10:75:7d:83:7f:ce:ab:93:a8:1c:aa:d8:23:9b:e5:e4:02:
2a:99:b7:16:fd:2b:0e:d4:f4:94:d7:af:53:79:b1:1d:b3:a8:
38:14:eb:93:6b:37:0b:fe:9d:23:b6:3c:a4:d4:db:13:fd:9f:
31:20:b8:f8:ad:22:4f:ba:a6:49:ea:04:7f:a7:a7:6a:d4:f1:
43:9d:11:09:b2:43:23:b5:a7:b0:37:6b:7b:2f:dd:5b:82:3c:
b3:ee:0f:d5:a7:1c:ca:98:b0:e9:0e:2d:41:48:ff:e0:14:2c:
81:02:f5:cf:65:3d:a8:a5:20:93:c4:8f:ff:cb:ed:ba:1e:69:
7e:a2:66:53:2e:04:45:7a:f1:78:6c:36:c1:20:eb:f3:6d:e1:
3a:92:2a:e3:38:48:cf:dd:ba:f9:7e:41:33:28:e3:8c:c1:5c:
0f:28:d9:07:25:51:f2:3a:a3:ff:0d:59:57:66:0d:05:a3:a7:
34:b2:57:f0:a3:44:36:6d:af:5f:08:4f:ee:c5:e2:be:86:e6:
9e:52:28:c0
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEDbVBKDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
Nzg3YjMyNGIwZDMyZmIxYTM2NzhiMDJjNDgyMjg2ZDRjMjZiYTBmMB4XDTIyMDEw
MTA4NTgxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTczNDhkODc1MjBm
OTI0YjUxNWJkOWY5ZDlkZDIyNWM3NTA1YjU1YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKUahCc65ZQckrJSMbaDENt7SqHtyhPS/M/4hgcfRP8QVRuk
Y6i7qxF8iUUBj/wPBjj/52ulj33ZMopZAeFopnt4YLu/XO48ACZrH4dAuiNUT5uk
6FgiIBqMIDEUdi3KaQL2+FlcKbBNgo86Zqvp73IvEe5COqxyfTzJMguzCvyraK2i
VIghT9sdAFDsNXV5G7wjXuC3WZzfSoyfzKotsj9seYHcCUvRQcjamjbMFgOvOLtr
rBIeh3us3o7yyrvIhbTM1OuJIgR2l2qioEKkxdRBI5clWC5ZRh4oMcBw4HdsCLOa
EdiCFV33htJxkkkU2YBYTiiOjpc4j+JEHpjeblsCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQXNI2HUg+SS1Fb2fnZ3SJcdQW1WzAfBgNVHSMEGDAWgBQ3h7MksNMvsaNn
iwLEgihtTCa6DzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L040ZXpKTERUTDdHalo0c0N4SUlvYlV3bXVnOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTEvNjAyMjQ0LTc2OTktNDEwMy1iYzdlLWM0NzExNDgyMzgwZS8x
L0Z6U05oMUlQa2t0Ulc5bjUyZDBpWEhVRnRWcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTEv
NjAyMjQ0LTc2OTktNDEwMy1iYzdlLWM0NzExNDgyMzgwZS8xL040ZXpKTERUTDdH
alo0c0N4SUlvYlV3bXVnOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoMOAADADANBgkqhkiG9w0BAQsF
AAOCAQEAK4xAY+cGts8ZyYc8Z4kyl4LgD1tSLl7MgsnoDnBxLGnfTfwZj97SbG3T
AICtCjTH1HWNegkoFxB1fYN/zquTqByq2COb5eQCKpm3Fv0rDtT0lNevU3mxHbOo
OBTrk2s3C/6dI7Y8pNTbE/2fMSC4+K0iT7qmSeoEf6enatTxQ50RCbJDI7WnsDdr
ey/dW4I8s+4P1accypiw6Q4tQUj/4BQsgQL1z2U9qKUgk8SP/8vtuh5pfqJmUy4E
RXrxeGw2wSDr823hOpIq4zhIz926+X5BMyjjjMFcDyjZByVR8jqj/w1ZV2YNBaOn
NLJX8KNENm2vXwhP7sXivobmnlIowA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:28 2023 by rpki-client on console.sobornost.net