Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/z6wocCx3wKTltcPze7kRW2dRmdQ.roa
File: z6wocCx3wKTltcPze7kRW2dRmdQ.roa (raw, json)
Hash identifier: IhukfhcQfVt/usmN7behxTgJDvWVnz95jUgu+FoHcWw=
Subject key identifier: CF:AC:28:70:2C:77:C0:A4:E5:B5:C3:F3:7B:B9:11:5B:67:51:99:D4
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 060C7BB9
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/z6wocCx3wKTltcPze7kRW2dRmdQ.roa
Signing time: Sat 19 Feb 2022 03:34:13 +0000
ROA not before: Sat 19 Feb 2022 03:34:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17830
IP address blocks: 2a0c:e640:6000::/36 maxlen: 48
2a0c:e640::/36 maxlen: 48
2a0c:e640:1000::/44 maxlen: 48
2a0c:e640:1020::/44 maxlen: 48
2a0c:e640:1010::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101481401 (0x60c7bb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Feb 19 03:34:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cfac28702c77c0a4e5b5c3f37bb9115b675199d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6d:d2:30:e6:cb:f3:ac:b8:43:19:1f:8a:a7:
fe:dd:d8:7a:7b:b9:64:45:46:f9:15:31:24:40:21:
4f:e1:d5:8c:8a:48:82:06:d2:04:35:32:95:29:ee:
24:a4:3f:b6:31:63:f6:8f:84:a2:96:f8:93:43:1b:
53:61:c9:d6:09:3c:33:75:44:4c:46:2e:61:01:a7:
7b:61:e3:23:1a:3c:22:34:9e:ac:c0:dc:69:84:19:
ef:61:5d:1a:70:f6:1f:b0:37:62:5e:25:cc:d2:3d:
b7:b6:6e:78:dd:df:d7:6a:a7:26:10:f6:32:c9:00:
4f:1e:fc:1f:44:f5:db:34:2b:bb:ae:dc:64:de:2b:
e8:c1:a2:1d:a3:34:cc:9c:07:fe:12:be:74:55:b8:
9a:14:c0:8e:0c:da:44:15:71:4a:08:ea:93:66:68:
94:8c:74:69:35:eb:18:70:35:c8:c2:06:a3:d2:db:
60:fe:9d:8c:3d:ce:97:ac:cf:eb:ad:f5:c1:c3:4b:
03:02:15:40:7d:c4:40:54:0e:ab:ee:95:13:87:c0:
45:1d:d7:16:e5:ca:30:e9:92:93:60:38:9e:22:7a:
17:d1:b3:ca:af:08:20:f9:32:36:59:0e:4a:c2:26:
24:fb:1a:1b:ea:80:b0:3d:41:58:1f:aa:fe:25:a5:
1e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:AC:28:70:2C:77:C0:A4:E5:B5:C3:F3:7B:B9:11:5B:67:51:99:D4
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/z6wocCx3wKTltcPze7kRW2dRmdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:e640::-2a0c:e640:102f:ffff:ffff:ffff:ffff:ffff
2a0c:e640:6000::/36
Signature Algorithm: sha256WithRSAEncryption
75:12:da:ee:b0:2c:da:27:29:cf:83:30:b0:8f:26:fc:11:2b:
3e:20:59:77:2e:f2:f1:1b:fb:a1:ea:24:83:bc:c3:10:d7:3b:
55:26:34:b2:fd:73:75:4d:20:d6:7d:82:82:c7:a4:d6:39:85:
84:95:0c:14:ef:02:d4:92:a7:e9:d7:2d:36:2c:b5:4a:60:91:
b3:e9:3d:a3:0b:da:96:c7:10:37:08:02:68:a8:5f:51:bd:4c:
be:de:31:17:0b:88:3b:d9:30:b9:05:40:70:22:c7:5f:e2:96:
ca:b5:3f:e5:b3:d2:d7:61:63:d3:e9:ba:28:98:56:43:ee:ff:
ec:0c:51:04:eb:c5:76:11:55:84:53:99:1a:8b:61:3b:fc:04:
53:80:6f:6d:f1:a2:05:81:27:14:45:f3:40:36:cc:2e:68:eb:
ef:84:d0:60:96:42:11:5d:0b:b0:68:2c:32:09:f4:d2:69:7e:
e2:da:e6:af:40:cc:77:61:2e:c4:2b:2a:22:bf:1e:fe:56:d0:
81:61:d3:28:88:35:7b:ce:9e:e9:4b:f0:61:d9:1b:0b:66:ea:
7a:f5:2f:6e:da:dd:51:1f:e0:1d:41:85:f3:6a:85:54:3d:9d:
a6:e9:7a:26:66:6e:2e:bc:0f:33:2a:71:e5:04:46:a4:63:68:
3e:84:97:1b
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIEBgx7uTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
M2M2OWQwNDU4MzUwMGM1ZWY4MTEzNjgzMTIzNzU5M2UwYmI4NmNlMB4XDTIyMDIx
OTAzMzQxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2ZhYzI4NzAyYzc3
YzBhNGU1YjVjM2YzN2JiOTExNWI2NzUxOTlkNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM5t0jDmy/OsuEMZH4qn/t3Yenu5ZEVG+RUxJEAhT+HVjIpI
ggbSBDUylSnuJKQ/tjFj9o+Eopb4k0MbU2HJ1gk8M3VETEYuYQGne2HjIxo8IjSe
rMDcaYQZ72FdGnD2H7A3Yl4lzNI9t7ZueN3f12qnJhD2MskATx78H0T12zQru67c
ZN4r6MGiHaM0zJwH/hK+dFW4mhTAjgzaRBVxSgjqk2ZolIx0aTXrGHA1yMIGo9Lb
YP6djD3Ol6zP6631wcNLAwIVQH3EQFQOq+6VE4fARR3XFuXKMOmSk2A4niJ6F9Gz
yq8IIPkyNlkOSsImJPsaG+qAsD1BWB+q/iWlHjECAwEAAaOCAh0wggIZMB0GA1Ud
DgQWBBTPrChwLHfApOW1w/N7uRFbZ1GZ1DAfBgNVHSMEGDAWgBRzxp0EWDUAxe+B
E2gxI3WT4LuGzjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2M4YWRCRmcxQU1YdmdSTm9NU04xay1DN2hzNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzgvNmY2Y2UyLWU2ZWUtNGUyYS05MDVkLWY5Y2IwYTdiMjA2Yy8x
L3o2d29jQ3gzd0tUbHRjUHplN2tSVzJkUm1kUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgv
NmY2Y2UyLWU2ZWUtNGUyYS05MDVkLWY5Y2IwYTdiMjA2Yy8xL2M4YWRCRmcxQU1Y
dmdSTm9NU04xay1DN2hzNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAz
BggrBgEFBQcBBwEB/wQkMCIwIAQCAAIwGjAQAwUGKgzmQAMHBCoM5kAQIAMGBCoM
5kBgMA0GCSqGSIb3DQEBCwUAA4IBAQB1EtrusCzaJynPgzCwjyb8ESs+IFl3LvLx
G/uh6iSDvMMQ1ztVJjSy/XN1TSDWfYKCx6TWOYWElQwU7wLUkqfp1y02LLVKYJGz
6T2jC9qWxxA3CAJoqF9RvUy+3jEXC4g72TC5BUBwIsdf4pbKtT/ls9LXYWPT6boo
mFZD7v/sDFEE68V2EVWEU5kai2E7/ARTgG9t8aIFgScURfNANswuaOvvhNBglkIR
XQuwaCwyCfTSaX7i2uavQMx3YS7EKyoivx7+VtCBYdMoiDV7zp7pS/Bh2RsLZup6
9S9u2t1RH+AdQYXzaoVUPZ2m6XomZm4uvA8zKnHlBEakY2g+hJcb
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:48 2023 by rpki-client on console-ams.rpki-client.org