Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/GB9Tz_plmWuizcu6dIpXM1BhRMk.roa
File: GB9Tz_plmWuizcu6dIpXM1BhRMk.roa (raw, json)
Hash identifier: CtCnu6RxdMRm4YojeK9ITLPYNevBGp+xj3caFnKxuc4=
Subject key identifier: 18:1F:53:CF:FA:65:99:6B:A2:CD:CB:BA:74:8A:57:33:50:61:44:C9
Certificate issuer: /CN=325a8b688deadbb91efbe0772308bac9f304a533
Certificate serial: 0673B572
Authority key identifier: 32:5A:8B:68:8D:EA:DB:B9:1E:FB:E0:77:23:08:BA:C9:F3:04:A5:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlqLaI3q27ke--B3Iwi6yfMEpTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/GB9Tz_plmWuizcu6dIpXM1BhRMk.roa
Signing time: Fri 03 Jun 2022 18:59:20 +0000
ROA not before: Fri 03 Jun 2022 18:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209861
IP address blocks: 2a0b:6647::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108246386 (0x673b572)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=325a8b688deadbb91efbe0772308bac9f304a533
Validity
Not Before: Jun 3 18:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=181f53cffa65996ba2cdcbba748a5733506144c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b5:79:bd:01:d8:27:55:b5:5d:6c:50:6b:c7:
63:dd:62:aa:96:d4:29:70:a7:b6:62:c0:09:e5:ac:
b6:1c:89:21:8b:15:0a:68:f9:4e:b7:3d:7c:15:3c:
23:60:e2:42:d1:8e:71:f3:44:21:eb:2a:94:72:bc:
92:91:08:11:91:a1:f5:5a:d3:da:b6:fa:7a:7d:a3:
0c:d0:1e:bb:fb:42:52:7f:57:bc:49:cb:d6:d2:de:
62:2d:73:f1:4c:ee:09:de:5a:7c:94:9f:03:16:66:
5f:9e:13:33:c3:ab:aa:bd:24:12:19:7a:2a:81:de:
12:bc:0d:4b:7b:47:43:6a:85:c2:7b:29:cc:df:97:
74:9c:0b:69:3f:3d:7c:18:51:b7:f8:75:3c:60:dd:
1c:96:4b:30:97:a4:5e:03:c7:85:1a:94:ad:3b:f4:
89:82:f6:74:b4:41:52:92:5a:02:48:12:44:f6:7b:
e2:c1:93:e5:ea:65:f3:bc:31:c9:15:21:3a:ba:bc:
dd:ed:07:e6:9a:b0:34:ba:7e:28:1c:d3:a0:3f:7e:
01:b0:c5:78:65:09:4a:d0:c7:e7:a2:d4:8f:95:a2:
aa:8a:67:86:81:f1:40:1d:2b:95:cf:46:b8:06:c0:
4e:43:28:a4:df:c5:03:12:83:c3:b7:d3:10:d0:11:
21:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:1F:53:CF:FA:65:99:6B:A2:CD:CB:BA:74:8A:57:33:50:61:44:C9
X509v3 Authority Key Identifier:
keyid:32:5A:8B:68:8D:EA:DB:B9:1E:FB:E0:77:23:08:BA:C9:F3:04:A5:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlqLaI3q27ke--B3Iwi6yfMEpTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/GB9Tz_plmWuizcu6dIpXM1BhRMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/a35bc9-72e6-4979-b462-bb4a8672cc0c/1/MlqLaI3q27ke--B3Iwi6yfMEpTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:6647::/32
Signature Algorithm: sha256WithRSAEncryption
bd:dd:ea:1d:ae:e2:e9:23:f1:0b:cf:69:fe:7b:7c:d1:cf:48:
75:36:78:f6:22:3e:87:d6:48:05:34:d0:a8:46:00:ef:0a:af:
d1:6f:0f:b6:2d:44:52:03:d1:48:94:d4:79:d1:89:d8:8c:07:
27:43:d5:d6:8b:af:87:1a:d3:ad:68:35:ef:2c:d8:bb:52:99:
8b:38:13:45:07:43:9e:ad:53:99:5d:9d:06:be:78:b2:c4:c7:
1e:21:d2:35:22:b6:6d:52:ef:29:8a:c2:89:72:a9:96:8c:a9:
cc:a7:2f:c0:c7:9e:71:4e:ac:46:e9:bf:e7:a2:fd:a2:7c:af:
72:02:12:c2:6b:9e:90:11:c9:28:62:00:3d:16:f7:e1:8d:34:
ae:a3:68:3a:c9:08:ce:a5:ae:3d:33:05:66:fe:a7:4c:cc:3a:
ec:dd:2e:7c:de:00:2e:5f:34:a7:86:6d:13:f2:e0:74:c0:d1:
11:62:56:15:fe:33:8f:ac:2c:cf:d4:b2:e5:83:a6:c5:46:02:
42:d9:42:e7:fb:cd:42:84:24:cf:80:52:52:0f:89:dd:0d:6c:
10:19:cf:b2:5d:7b:a0:c4:dd:43:1a:67:c2:3e:67:21:f0:ad:
3b:44:09:b4:47:a0:ee:5b:83:be:de:7c:8b:ed:a2:c1:6e:a5:
d3:7b:7e:ab
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEBnO1cjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MjVhOGI2ODhkZWFkYmI5MWVmYmUwNzcyMzA4YmFjOWYzMDRhNTMzMB4XDTIyMDYw
MzE4NTkyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTgxZjUzY2ZmYTY1
OTk2YmEyY2RjYmJhNzQ4YTU3MzM1MDYxNDRjOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANK1eb0B2CdVtV1sUGvHY91iqpbUKXCntmLACeWsthyJIYsV
Cmj5Trc9fBU8I2DiQtGOcfNEIesqlHK8kpEIEZGh9VrT2rb6en2jDNAeu/tCUn9X
vEnL1tLeYi1z8UzuCd5afJSfAxZmX54TM8Orqr0kEhl6KoHeErwNS3tHQ2qFwnsp
zN+XdJwLaT89fBhRt/h1PGDdHJZLMJekXgPHhRqUrTv0iYL2dLRBUpJaAkgSRPZ7
4sGT5epl87wxyRUhOrq83e0H5pqwNLp+KBzToD9+AbDFeGUJStDH56LUj5Wiqopn
hoHxQB0rlc9GuAbATkMopN/FAxKDw7fTENARITsCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBQYH1PP+mWZa6LNy7p0ilczUGFEyTAfBgNVHSMEGDAWgBQyWotojerbuR77
4HcjCLrJ8wSlMzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01scUxhSTNxMjdrZS0tQjNJd2k2eWZNRXBUTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDMvYTM1YmM5LTcyZTYtNDk3OS1iNDYyLWJiNGE4NjcyY2MwYy8x
L0dCOVR6X3BsbVd1aXpjdTZkSXBYTTFCaFJNay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMv
YTM1YmM5LTcyZTYtNDk3OS1iNDYyLWJiNGE4NjcyY2MwYy8xL01scUxhSTNxMjdr
ZS0tQjNJd2k2eWZNRXBUTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoLZkcwDQYJKoZIhvcNAQELBQAD
ggEBAL3d6h2u4ukj8QvPaf57fNHPSHU2ePYiPofWSAU00KhGAO8Kr9FvD7YtRFID
0UiU1HnRidiMBydD1daLr4ca061oNe8s2LtSmYs4E0UHQ56tU5ldnQa+eLLExx4h
0jUitm1S7ymKwolyqZaMqcynL8DHnnFOrEbpv+ei/aJ8r3ICEsJrnpARyShiAD0W
9+GNNK6jaDrJCM6lrj0zBWb+p0zMOuzdLnzeAC5fNKeGbRPy4HTA0RFiVhX+M4+s
LM/UsuWDpsVGAkLZQuf7zUKEJM+AUlIPid0NbBAZz7Jde6DE3UMaZ8I+ZyHwrTtE
CbRHoO5bg77efIvtosFupdN7fqs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:23 2024 by rpki-client on console-fra.rpki-client.org