Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/dtWnnpshDgMpvBAYRYJZkTcICXo.roa
File: dtWnnpshDgMpvBAYRYJZkTcICXo.roa (raw, json)
Hash identifier: 18DL7s0+iQvYABCsZYkxJBUu04NfJHmzeWJSI4RED9A=
Subject key identifier: 76:D5:A7:9E:9B:21:0E:03:29:BC:10:18:45:82:59:91:37:08:09:7A
Certificate issuer: /CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Certificate serial: 065A3E8E
Authority key identifier: FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/dtWnnpshDgMpvBAYRYJZkTcICXo.roa
Signing time: Wed 30 Mar 2022 06:06:01 +0000
ROA not before: Wed 30 Mar 2022 06:06:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a0a:4540:220::/48 maxlen: 48
2a0a:4540:1000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106577550 (0x65a3e8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbac50f19d9930aeec09cd27f508fc502ea14d1f
Validity
Not Before: Mar 30 06:06:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76d5a79e9b210e0329bc1018458259913708097a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:2a:eb:74:11:f6:d9:1c:70:9e:59:ef:e6:e0:
1c:7c:6a:6a:e8:9a:b5:df:af:64:2e:36:34:e3:28:
ff:cc:ad:c8:73:31:2f:1e:de:95:88:bf:5f:62:69:
03:23:c3:6a:1a:e3:8a:93:39:f2:45:33:82:14:39:
7a:5c:86:a7:c8:d2:c5:df:ca:0b:15:a5:14:56:6a:
2a:c0:d7:5f:3a:41:01:3c:34:7a:81:cb:c4:41:77:
c8:13:91:a3:2d:0e:5f:ba:4c:52:cd:c6:e9:a1:15:
3a:cf:4e:c3:78:df:a2:16:28:45:2c:24:49:c0:93:
cb:bf:b2:a7:fc:b3:4c:1b:2c:0c:f4:61:66:d7:8b:
ba:6f:6c:6c:17:81:c8:ad:22:87:68:63:f1:d5:f7:
c8:cd:c8:53:1c:ce:72:4d:b1:43:f8:38:a3:f4:db:
a5:7b:c3:fa:cf:c0:9e:6b:a2:89:50:33:90:d3:55:
7d:b0:0d:8e:a8:33:b1:7b:c9:1b:e6:af:45:aa:01:
59:5d:9f:1d:5c:ed:24:b0:19:32:b3:b3:57:7e:2e:
f1:d3:87:0a:9e:bf:d1:be:6b:2f:30:93:35:fa:95:
99:67:19:f5:25:5c:cf:59:ad:45:03:2b:2b:c8:f3:
dd:a5:f7:8a:76:c4:82:6f:8c:f8:79:43:0b:79:93:
73:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:D5:A7:9E:9B:21:0E:03:29:BC:10:18:45:82:59:91:37:08:09:7A
X509v3 Authority Key Identifier:
keyid:FB:AC:50:F1:9D:99:30:AE:EC:09:CD:27:F5:08:FC:50:2E:A1:4D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/dtWnnpshDgMpvBAYRYJZkTcICXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8fc09d-7d25-425c-8b91-d62e454bf37f/1/1-6xQ8Z2ZMK7sCc0n9Qj8UC6hTR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4540:220::/48
2a0a:4540:1000::/48
Signature Algorithm: sha256WithRSAEncryption
94:28:7f:be:cb:44:46:c3:73:78:21:aa:51:e6:52:8f:37:02:
c2:5a:c7:ab:52:cf:62:e2:4e:81:af:49:6a:e4:31:20:b4:6b:
3c:f0:41:6c:8f:8a:ae:7c:6f:a4:ad:c1:29:bb:8a:23:a6:2d:
2d:fb:6b:ef:63:fb:b3:6e:24:7b:25:5a:e0:66:31:c8:d7:ac:
ea:39:c8:38:88:29:02:4c:7b:a5:e1:35:25:7a:88:f4:40:c8:
bd:ce:c9:d9:3f:7a:56:cb:a3:77:07:ea:31:25:25:ea:0f:c4:
ac:34:5d:17:ad:a5:be:c3:ba:49:fd:7d:63:7e:a5:f5:f8:df:
7a:67:6e:92:f2:f9:f4:b5:26:47:c4:4d:04:be:5d:f8:e5:67:
e1:8e:10:f4:96:ca:97:ad:c0:5e:af:58:1b:78:ac:8b:ca:46:
fc:78:fa:a6:49:e4:57:f0:2e:7a:86:7f:4e:f7:1f:f4:5b:3a:
11:b4:4f:57:9b:39:dd:46:87:c7:99:7c:d0:51:1e:21:bf:4b:
ab:c8:40:32:b2:4a:32:2a:2f:2f:38:e8:23:a5:4b:4b:19:b3:
81:4b:58:40:93:b0:99:05:0a:c0:5d:ff:e6:f4:62:87:c8:f1:
3b:d7:0d:4a:e4:1f:97:ce:de:7a:4d:ce:ca:da:41:24:11:6d:
8d:2c:c9:29
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIEBlo+jjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YmFjNTBmMTlkOTkzMGFlZWMwOWNkMjdmNTA4ZmM1MDJlYTE0ZDFmMB4XDTIyMDMz
MDA2MDYwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzZkNWE3OWU5YjIx
MGUwMzI5YmMxMDE4NDU4MjU5OTEzNzA4MDk3YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOEq63QR9tkccJ5Z7+bgHHxqauiatd+vZC42NOMo/8ytyHMx
Lx7elYi/X2JpAyPDahrjipM58kUzghQ5elyGp8jSxd/KCxWlFFZqKsDXXzpBATw0
eoHLxEF3yBORoy0OX7pMUs3G6aEVOs9Ow3jfohYoRSwkScCTy7+yp/yzTBssDPRh
ZteLum9sbBeByK0ih2hj8dX3yM3IUxzOck2xQ/g4o/TbpXvD+s/AnmuiiVAzkNNV
fbANjqgzsXvJG+avRaoBWV2fHVztJLAZMrOzV34u8dOHCp6/0b5rLzCTNfqVmWcZ
9SVcz1mtRQMrK8jz3aX3inbEgm+M+HlDC3mTc9cCAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBR21aeemyEOAym8EBhFglmRNwgJejAfBgNVHSMEGDAWgBT7rFDxnZkwruwJ
zSf1CPxQLqFNHzAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtNnhROFoyWk1LN3NDYzBuOVFqOFVDNmhUUjguY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzRlLzhmYzA5ZC03ZDI1LTQyNWMtOGI5MS1kNjJlNDU0YmYzN2Yv
MS9kdFdubnBzaERnTXB2QkFZUllKWmtUY0lDWG8ucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRl
LzhmYzA5ZC03ZDI1LTQyNWMtOGI5MS1kNjJlNDU0YmYzN2YvMS8xLTZ4UThaMlpN
SzdzQ2MwbjlRajhVQzZoVFI4LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgpFQAIgAwcAKgpFQBAAMA0G
CSqGSIb3DQEBCwUAA4IBAQCUKH++y0RGw3N4IapR5lKPNwLCWserUs9i4k6Br0lq
5DEgtGs88EFsj4qufG+krcEpu4ojpi0t+2vvY/uzbiR7JVrgZjHI16zqOcg4iCkC
THul4TUleoj0QMi9zsnZP3pWy6N3B+oxJSXqD8SsNF0XraW+w7pJ/X1jfqX1+N96
Z26S8vn0tSZHxE0Evl345WfhjhD0lsqXrcBer1gbeKyLykb8ePqmSeRX8C56hn9O
9x/0WzoRtE9XmzndRofHmXzQUR4hv0uryEAyskoyKi8vOOgjpUtLGbOBS1hAk7CZ
BQrAXf/m9GKHyPE71w1K5B+Xzt56Tc7K2kEkEW2NLMkp
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:15 2024 by rpki-client on console-ams.rpki-client.org