Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/KXxXgWgDGZHLkkPhIno6VCH-NdY.roa
File: KXxXgWgDGZHLkkPhIno6VCH-NdY.roa (raw, json)
Hash identifier: VHZIRcoBdZv1ciJcxLjz46xYQiV2iHu1ezITMK3Zr9o=
Subject key identifier: 29:7C:57:81:68:03:19:91:CB:92:43:E1:22:7A:3A:54:21:FE:35:D6
Certificate issuer: /CN=06a4c18d2e20db64ff9db5292b379f538b76a151
Certificate serial: 49E0
Authority key identifier: 06:A4:C1:8D:2E:20:DB:64:FF:9D:B5:29:2B:37:9F:53:8B:76:A1:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/KXxXgWgDGZHLkkPhIno6VCH-NdY.roa
Signing time: Mon 18 Apr 2022 16:20:37 +0000
ROA not before: Mon 18 Apr 2022 16:20:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206402
IP address blocks: 2001:67c:990::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18912 (0x49e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06a4c18d2e20db64ff9db5292b379f538b76a151
Validity
Not Before: Apr 18 16:20:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=297c578168031991cb9243e1227a3a5421fe35d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:64:44:91:ef:ef:9a:fb:d9:9a:e8:48:08:31:
1a:9b:0b:08:95:64:f3:9e:33:a3:70:5d:87:14:7d:
53:3a:f1:81:92:dc:df:73:0f:b7:89:24:4b:1b:76:
74:f1:e8:12:33:df:cf:83:42:34:8b:65:8d:ae:65:
b1:db:0e:e9:dc:86:cd:ad:7f:93:6a:52:a5:bc:c2:
55:6d:b3:5d:49:c6:4b:60:83:b6:3b:09:1e:16:2c:
72:02:44:45:e7:92:fb:cd:35:a5:33:5c:9f:2f:ff:
ca:0c:f6:af:22:ed:dc:99:83:c4:c6:d1:da:ef:87:
eb:b6:f1:eb:01:14:a6:57:21:3e:57:33:36:51:a1:
89:02:4c:69:3e:b9:2b:80:56:91:99:cd:17:5b:c0:
b6:a8:60:95:dd:2f:f8:6b:83:57:eb:58:67:cf:2d:
61:33:d8:14:24:33:48:ef:a6:84:8e:37:5d:c4:eb:
9b:46:80:1e:bb:a4:b4:19:5a:77:2c:ee:79:0a:9c:
54:74:ce:15:d9:b3:ab:d1:5e:67:b7:98:b2:c1:9b:
25:e3:7b:a1:30:6a:dd:8e:be:bf:b5:aa:6a:08:08:
92:72:43:e2:4b:d0:c8:18:a8:05:97:5f:8e:f3:ff:
92:7c:eb:54:ef:11:52:72:37:8e:be:d1:58:d0:67:
e9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:7C:57:81:68:03:19:91:CB:92:43:E1:22:7A:3A:54:21:FE:35:D6
X509v3 Authority Key Identifier:
keyid:06:A4:C1:8D:2E:20:DB:64:FF:9D:B5:29:2B:37:9F:53:8B:76:A1:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/KXxXgWgDGZHLkkPhIno6VCH-NdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:990::/48
Signature Algorithm: sha256WithRSAEncryption
15:d4:e1:b7:6d:90:63:6b:40:2c:1c:d6:6a:43:b7:c9:a8:e1:
49:9a:94:e0:f6:ae:7d:d2:18:64:09:ae:ca:75:e1:2c:ae:f6:
6b:dc:1e:43:fe:ad:8e:20:38:43:57:87:ed:8a:17:5b:4f:14:
a4:52:e4:dc:a3:f8:b5:4f:3d:a1:43:53:a2:35:a7:03:c6:11:
4b:9f:9c:3b:b2:57:47:34:0b:d3:44:ec:09:23:2f:16:53:d0:
be:73:a1:16:6a:da:3d:b0:95:18:1e:6b:77:20:e5:ea:3d:38:
8a:4e:fb:5c:10:f6:ab:03:51:48:ab:96:db:e2:40:17:e0:78:
6c:ac:c6:19:49:8d:86:dc:2f:da:27:01:ca:f2:0e:ea:39:c4:
69:67:43:63:65:c7:e3:80:90:13:7f:70:5b:8b:37:b7:3a:d1:
de:c0:8e:86:7e:9a:9c:88:ba:58:92:c0:e4:e1:1f:fe:34:6d:
9e:a1:3b:95:b8:eb:a9:4b:52:09:8f:10:ea:d4:d2:fe:9c:b8:
46:43:b1:fe:e5:14:70:aa:b9:91:c2:51:e0:9e:18:4a:8b:3c:
44:1c:a5:61:0c:75:ed:13:92:55:86:fd:33:7b:76:a5:17:98:
34:64:56:a2:53:d5:c3:60:2c:25:7a:b6:2c:ba:09:12:a4:91:
66:6e:13:6d
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICSeAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDZh
NGMxOGQyZTIwZGI2NGZmOWRiNTI5MmIzNzlmNTM4Yjc2YTE1MTAeFw0yMjA0MTgx
NjIwMzdaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDI5N2M1NzgxNjgwMzE5
OTFjYjkyNDNlMTIyN2EzYTU0MjFmZTM1ZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD1ZESR7++a+9ma6EgIMRqbCwiVZPOeM6NwXYcUfVM68YGS3N9z
D7eJJEsbdnTx6BIz38+DQjSLZY2uZbHbDunchs2tf5NqUqW8wlVts11Jxktgg7Y7
CR4WLHICREXnkvvNNaUzXJ8v/8oM9q8i7dyZg8TG0drvh+u28esBFKZXIT5XMzZR
oYkCTGk+uSuAVpGZzRdbwLaoYJXdL/hrg1frWGfPLWEz2BQkM0jvpoSON13E65tG
gB67pLQZWncs7nkKnFR0zhXZs6vRXme3mLLBmyXje6Ewat2Ovr+1qmoICJJyQ+JL
0MgYqAWXX47z/5J861TvEVJyN46+0VjQZ+llAgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUKXxXgWgDGZHLkkPhIno6VCH+NdYwHwYDVR0jBBgwFoAUBqTBjS4g22T/nbUp
KzefU4t2oVEwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9C
cVRCalM0ZzIyVF9uYlVwS3plZlU0dDJvVkUuY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxULzYwLzNkMjg5NC0zMmU5LTRmMDItYThiOS01MzJlZDI1NjdlOWIvMS9L
WHhYZ1dnREdaSExra1BoSW5vNlZDSC1OZFkucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYwLzNk
Mjg5NC0zMmU5LTRmMDItYThiOS01MzJlZDI1NjdlOWIvMS9CcVRCalM0ZzIyVF9u
YlVwS3plZlU0dDJvVkUuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYI
KwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQZ8CZAwDQYJKoZIhvcNAQELBQAD
ggEBABXU4bdtkGNrQCwc1mpDt8mo4UmalOD2rn3SGGQJrsp14Syu9mvcHkP+rY4g
OENXh+2KF1tPFKRS5Nyj+LVPPaFDU6I1pwPGEUufnDuyV0c0C9NE7AkjLxZT0L5z
oRZq2j2wlRgea3cg5eo9OIpO+1wQ9qsDUUirltviQBfgeGysxhlJjYbcL9onAcry
Duo5xGlnQ2Nlx+OAkBN/cFuLN7c60d7AjoZ+mpyIuliSwOThH/40bZ6hO5W466lL
UgmPEOrU0v6cuEZDsf7lFHCquZHCUeCeGEqLPEQcpWEMde0TklWG/TN7dqUXmDRk
VqJT1cNgLCV6tiy6CRKkkWZuE20=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:15 2024 by rpki-client on console-fra.rpki-client.org