Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/6fa6d0-f2c8-412c-9bc7-365c51a5f9ff/1/hMBxludmG630M6Nq280_F7FxtLc.roa
File: hMBxludmG630M6Nq280_F7FxtLc.roa (raw, json)
Hash identifier: FZUzXVVvIG0E0NRd0QmvUPWmR92N/csaNsIFmNpkdMo=
Subject key identifier: 84:C0:71:96:E7:66:1B:AD:F4:33:A3:6A:DB:CD:3F:17:B1:71:B4:B7
Certificate issuer: /CN=2cba355669b4f9b9035f05b1fba211ef8696101d
Certificate serial: 04FDDF5D
Authority key identifier: 2C:BA:35:56:69:B4:F9:B9:03:5F:05:B1:FB:A2:11:EF:86:96:10:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LLo1Vmm0-bkDXwWx-6IR74aWEB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/6fa6d0-f2c8-412c-9bc7-365c51a5f9ff/1/hMBxludmG630M6Nq280_F7FxtLc.roa
Signing time: Sat 01 Jan 2022 01:58:09 +0000
ROA not before: Sat 01 Jan 2022 01:58:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202886
IP address blocks: 2001:678:158::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83746653 (0x4fddf5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cba355669b4f9b9035f05b1fba211ef8696101d
Validity
Not Before: Jan 1 01:58:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84c07196e7661badf433a36adbcd3f17b171b4b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f3:53:a1:f4:31:2a:61:fb:cd:0a:dc:07:f7:
61:dd:02:1f:1f:92:73:e3:04:47:41:c7:4c:3b:6d:
c1:8d:6d:1e:0f:44:73:1d:b0:50:6c:51:fb:57:71:
ff:c9:fa:d9:ac:00:69:20:0a:4f:42:69:9a:39:d3:
71:96:de:9d:46:e2:65:8b:3b:86:8d:f7:3d:e1:b9:
98:c1:f6:40:a0:4c:ea:d6:4d:8a:4c:9e:87:6a:2e:
97:0e:b5:cb:a0:08:94:67:f9:5a:94:c4:70:00:66:
b8:d3:77:61:24:43:95:fb:22:d3:b0:70:0d:a2:5e:
23:1d:de:29:74:de:fb:c1:e1:9d:94:9f:56:05:d5:
c7:f6:a7:c8:0a:25:6a:d5:e7:cc:3a:bb:f9:29:ae:
e6:77:bd:77:2b:d1:28:c5:eb:62:be:3c:6e:d2:15:
3a:7d:e8:71:6b:67:d1:44:40:a2:b1:2f:8c:60:0e:
07:cc:ec:cf:54:41:08:56:b6:82:4d:ac:96:a3:4f:
ff:ce:fa:bb:49:95:85:42:47:12:9e:e2:e2:5f:4c:
e4:a9:d3:5a:b1:fb:08:a5:9c:9c:f8:61:eb:1c:cf:
0b:9f:75:30:c3:9f:e1:0b:e8:4e:08:2a:2e:2b:5a:
45:4b:69:09:30:2c:4f:dc:81:c3:b6:46:f3:24:6a:
57:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C0:71:96:E7:66:1B:AD:F4:33:A3:6A:DB:CD:3F:17:B1:71:B4:B7
X509v3 Authority Key Identifier:
keyid:2C:BA:35:56:69:B4:F9:B9:03:5F:05:B1:FB:A2:11:EF:86:96:10:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LLo1Vmm0-bkDXwWx-6IR74aWEB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6fa6d0-f2c8-412c-9bc7-365c51a5f9ff/1/hMBxludmG630M6Nq280_F7FxtLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6fa6d0-f2c8-412c-9bc7-365c51a5f9ff/1/LLo1Vmm0-bkDXwWx-6IR74aWEB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:158::/48
Signature Algorithm: sha256WithRSAEncryption
84:31:63:1a:53:f7:aa:fa:c0:00:de:19:14:8e:b3:9b:fe:15:
9b:8e:fb:aa:68:f2:df:7a:f2:e4:88:ed:e9:f3:dd:43:9f:8c:
09:4a:23:ff:1b:6e:f2:0f:f8:7f:eb:38:53:cd:07:6b:b3:ef:
f5:1b:9e:46:a9:c8:2f:25:be:32:8e:6d:cf:22:86:ce:4a:aa:
c7:c0:56:9a:59:fa:72:18:1a:64:ad:d5:04:ba:9e:a9:23:64:
e7:b9:d4:fc:7b:47:18:4b:b1:c8:24:2f:03:bc:b6:3b:30:56:
a1:05:3c:01:11:c4:e1:f4:94:6b:9c:b6:70:f8:43:d9:dc:02:
d7:63:22:8e:3d:49:d9:af:e4:fb:b9:9f:01:60:0e:d7:00:db:
69:21:4e:fb:2d:a0:02:0c:5b:c2:d7:e6:b6:4d:12:a8:35:b9:
4f:41:b9:05:97:1d:7a:df:ee:e1:5f:1f:5f:6b:64:88:58:dd:
39:ad:7f:60:9a:ed:54:8d:85:06:4e:14:55:92:5f:20:b3:ae:
cf:33:5a:3c:63:99:36:bc:27:12:e8:7e:0a:8c:58:34:45:37:
27:f6:b8:34:7d:25:cf:96:f1:80:ab:65:d4:b4:4e:13:b3:cc:
dd:6d:e2:2c:7c:86:53:d4:4f:e7:0d:4b:ad:d1:1a:4a:f7:4a:
1e:57:96:b4
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEBP3fXTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
Y2JhMzU1NjY5YjRmOWI5MDM1ZjA1YjFmYmEyMTFlZjg2OTYxMDFkMB4XDTIyMDEw
MTAxNTgwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODRjMDcxOTZlNzY2
MWJhZGY0MzNhMzZhZGJjZDNmMTdiMTcxYjRiNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJXzU6H0MSph+80K3Af3Yd0CHx+Sc+MER0HHTDttwY1tHg9E
cx2wUGxR+1dx/8n62awAaSAKT0JpmjnTcZbenUbiZYs7ho33PeG5mMH2QKBM6tZN
ikyeh2oulw61y6AIlGf5WpTEcABmuNN3YSRDlfsi07BwDaJeIx3eKXTe+8HhnZSf
VgXVx/anyAolatXnzDq7+Smu5ne9dyvRKMXrYr48btIVOn3ocWtn0URAorEvjGAO
B8zsz1RBCFa2gk2slqNP/876u0mVhUJHEp7i4l9M5KnTWrH7CKWcnPhh6xzPC591
MMOf4QvoTggqLitaRUtpCTAsT9yBw7ZG8yRqVwECAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSEwHGW52YbrfQzo2rbzT8XsXG0tzAfBgNVHSMEGDAWgBQsujVWabT5uQNf
BbH7ohHvhpYQHTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0xMbzFWbW0wLWJrRFh3V3gtNklSNzRhV0VCMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjIvNmZhNmQwLWYyYzgtNDEyYy05YmM3LTM2NWM1MWE1ZjlmZi8x
L2hNQnhsdWRtRzYzME02TnEyODBfRjdGeHRMYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjIv
NmZhNmQwLWYyYzgtNDEyYy05YmM3LTM2NWM1MWE1ZjlmZi8xL0xMbzFWbW0wLWJr
RFh3V3gtNklSNzRhV0VCMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBngBWDANBgkqhkiG9w0BAQsF
AAOCAQEAhDFjGlP3qvrAAN4ZFI6zm/4Vm477qmjy33ry5Ijt6fPdQ5+MCUoj/xtu
8g/4f+s4U80Ha7Pv9RueRqnILyW+Mo5tzyKGzkqqx8BWmln6chgaZK3VBLqeqSNk
57nU/HtHGEuxyCQvA7y2OzBWoQU8ARHE4fSUa5y2cPhD2dwC12Mijj1J2a/k+7mf
AWAO1wDbaSFO+y2gAgxbwtfmtk0SqDW5T0G5BZcdet/u4V8fX2tkiFjdOa1/YJrt
VI2FBk4UVZJfILOuzzNaPGOZNrwnEuh+CoxYNEU3J/a4NH0lz5bxgKtl1LROE7PM
3W3iLHyGU9RP5w1LrdEaSvdKHleWtA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:27 2024 by rpki-client on console-ams.rpki-client.org