Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/8ab26c-ba17-4288-8749-8fc930d8702a/1/wfDU-6Fi5Xa_dq4ffozfOue43dA.roa
File: wfDU-6Fi5Xa_dq4ffozfOue43dA.roa (raw, json)
Hash identifier: fPpQsttmj0UF6cd0gSLuA4KzF3S8RPgUNHHVaGnRnkM=
Subject key identifier: C1:F0:D4:FB:A1:62:E5:76:BF:76:AE:1F:7E:8C:DF:3A:E7:B8:DD:D0
Certificate issuer: /CN=c29c1007746981fcc408839965b1671c037d121b
Certificate serial: 0184C3D8DEFB523CC33FDEA267846C4AD56A
Authority key identifier: C2:9C:10:07:74:69:81:FC:C4:08:83:99:65:B1:67:1C:03:7D:12:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wpwQB3RpgfzECIOZZbFnHAN9Ehs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/8ab26c-ba17-4288-8749-8fc930d8702a/1/wfDU-6Fi5Xa_dq4ffozfOue43dA.roa
Signing time: Tue 29 Nov 2022 14:44:40 +0000
ROA not before: Tue 29 Nov 2022 14:44:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199902
IP address blocks: 2001:67c:268c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c3:d8:de:fb:52:3c:c3:3f:de:a2:67:84:6c:4a:d5:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c29c1007746981fcc408839965b1671c037d121b
Validity
Not Before: Nov 29 14:44:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1f0d4fba162e576bf76ae1f7e8cdf3ae7b8ddd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:21:34:4d:22:16:a9:3f:fc:a5:f3:28:47:d3:
7b:b6:74:16:80:74:cd:52:50:fb:c9:6a:0f:57:0a:
68:a8:b7:d5:78:fc:5e:2a:83:83:35:6c:10:62:ee:
75:64:2f:fa:90:5a:6b:84:87:68:95:4c:1d:d1:6d:
08:7e:d0:97:85:4c:5f:f4:96:e8:8d:5b:2b:6e:ed:
85:fd:6c:a8:72:be:e3:cb:58:eb:a7:1b:d3:74:49:
3f:c1:bb:32:4a:e2:72:d0:f5:8e:56:a8:cc:18:a0:
a7:54:d1:0d:37:c8:55:3c:e7:33:b9:8e:c3:97:1a:
41:36:3a:14:f7:68:30:f7:cc:95:07:a4:3c:60:60:
fe:25:88:ae:50:b8:a4:d1:71:aa:35:4a:e3:7f:aa:
9e:e4:d6:c6:e8:f7:86:3b:b0:7d:bb:fe:63:ab:d8:
50:a5:ae:5c:9b:8f:18:83:06:ba:f4:a3:18:a6:b3:
08:2f:db:5c:74:e9:36:ec:9b:55:e6:43:25:84:0d:
f9:f8:b9:e6:c6:07:6a:f5:e7:70:3a:b3:c5:06:f7:
38:2a:a3:99:8f:c8:c0:00:fb:c4:7c:f7:46:f9:54:
ba:cd:e0:a5:14:ce:1e:e7:2b:88:5f:12:be:4c:ee:
61:6f:91:0b:0b:33:3e:90:2c:2e:25:91:61:8d:88:
95:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F0:D4:FB:A1:62:E5:76:BF:76:AE:1F:7E:8C:DF:3A:E7:B8:DD:D0
X509v3 Authority Key Identifier:
keyid:C2:9C:10:07:74:69:81:FC:C4:08:83:99:65:B1:67:1C:03:7D:12:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wpwQB3RpgfzECIOZZbFnHAN9Ehs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/8ab26c-ba17-4288-8749-8fc930d8702a/1/wfDU-6Fi5Xa_dq4ffozfOue43dA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/8ab26c-ba17-4288-8749-8fc930d8702a/1/wpwQB3RpgfzECIOZZbFnHAN9Ehs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:268c::/48
Signature Algorithm: sha256WithRSAEncryption
9b:54:65:2b:16:79:54:24:b3:ac:e7:c8:6a:a0:01:d4:be:d4:
87:82:3b:d1:25:dd:a8:d2:5c:d6:af:61:15:40:77:b8:02:55:
32:8d:ed:b0:f0:74:dc:8a:c2:cf:8a:ae:56:c4:7a:c7:d3:13:
ca:fe:ce:e4:e9:6d:0f:7b:a3:43:2e:32:f8:35:3e:ab:01:c1:
88:3f:8f:d9:07:38:08:95:b3:76:f5:44:04:96:85:08:53:99:
5c:d3:a0:63:a6:82:62:b2:97:a2:2e:cd:25:1a:93:ce:63:9a:
57:79:70:50:53:8a:95:f0:36:74:c5:50:7c:68:b2:0c:7a:77:
f7:48:ef:42:87:85:9c:6e:84:e8:9e:f6:4f:78:4f:7c:0e:b6:
bf:75:ae:e6:f0:f7:9f:c8:d6:9e:fd:26:14:b6:a5:ba:ce:89:
d4:a0:46:81:c7:79:e5:26:eb:ae:aa:da:c0:ad:19:36:93:4a:
a1:c1:13:6a:79:2d:98:4f:3f:e1:95:83:33:aa:b2:ab:f2:fa:
23:41:25:1b:6e:f4:e9:de:84:6a:97:e8:a5:38:94:e1:81:96:
b9:60:e2:da:45:65:5d:9c:e1:31:dc:35:ba:49:4d:ff:33:a3:
df:52:8a:36:46:aa:12:7b:05:fa:a7:8c:7c:0b:2a:17:11:90:
ce:cd:87:5c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYTD2N77UjzDP96iZ4RsStVqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyOWMxMDA3NzQ2OTgxZmNjNDA4ODM5OTY1YjE2NzFjMDM3
ZDEyMWIwHhcNMjIxMTI5MTQ0NDQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMWYwZDRmYmExNjJlNTc2YmY3NmFlMWY3ZThjZGYzYWU3YjhkZGQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnSE0TSIWqT/8pfMoR9N7tnQWgHTN
UlD7yWoPVwpoqLfVePxeKoODNWwQYu51ZC/6kFprhIdolUwd0W0IftCXhUxf9Jbo
jVsrbu2F/Wyocr7jy1jrpxvTdEk/wbsySuJy0PWOVqjMGKCnVNENN8hVPOczuY7D
lxpBNjoU92gw98yVB6Q8YGD+JYiuULik0XGqNUrjf6qe5NbG6PeGO7B9u/5jq9hQ
pa5cm48Ygwa69KMYprMIL9tcdOk27JtV5kMlhA35+Lnmxgdq9edwOrPFBvc4KqOZ
j8jAAPvEfPdG+VS6zeClFM4e5yuIXxK+TO5hb5ELCzM+kCwuJZFhjYiV3wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFMHw1PuhYuV2v3auH36M3zrnuN3QMB8GA1UdIwQY
MBaAFMKcEAd0aYH8xAiDmWWxZxwDfRIbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3B3UUIzUnBnZnpFQ0lPWlpiRm5IQU45RWhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS84YWIyNmMtYmExNy00Mjg4LTg3NDkt
OGZjOTMwZDg3MDJhLzEvd2ZEVS02Rmk1WGFfZHE0ZmZvemZPdWU0M2RBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS84YWIyNmMtYmExNy00Mjg4LTg3NDktOGZjOTMwZDg3MDJh
LzEvd3B3UUIzUnBnZnpFQ0lPWlpiRm5IQU45RWhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCaM
MA0GCSqGSIb3DQEBCwUAA4IBAQCbVGUrFnlUJLOs58hqoAHUvtSHgjvRJd2o0lzW
r2EVQHe4AlUyje2w8HTcisLPiq5WxHrH0xPK/s7k6W0Pe6NDLjL4NT6rAcGIP4/Z
BzgIlbN29UQEloUIU5lc06BjpoJispeiLs0lGpPOY5pXeXBQU4qV8DZ0xVB8aLIM
enf3SO9Ch4WcboTonvZPeE98Dra/da7m8PefyNae/SYUtqW6zonUoEaBx3nlJuuu
qtrArRk2k0qhwRNqeS2YTz/hlYMzqrKr8vojQSUbbvTp3oRql+ilOJThgZa5YOLa
RWVdnOEx3DW6SU3/M6PfUoo2RqoSewX6p4x8CyoXEZDOzYdc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:03 2024 by rpki-client on console-fra.rpki-client.org