Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/qcQ8YZX3FYvxC-sA0K022Hp_5KI.roa
File: qcQ8YZX3FYvxC-sA0K022Hp_5KI.roa (raw, json)
Hash identifier: fk6OjIdPlLCC8qJaWb3ul+RXNbAyomSR1SMfi3JPU10=
Subject key identifier: A9:C4:3C:61:95:F7:15:8B:F1:0B:EB:00:D0:AD:36:D8:7A:7F:E4:A2
Certificate issuer: /CN=66e92c341e769443fde1d27566044b4b65159060
Certificate serial: 1136C90F
Authority key identifier: 66:E9:2C:34:1E:76:94:43:FD:E1:D2:75:66:04:4B:4B:65:15:90:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZuksNB52lEP94dJ1ZgRLS2UVkGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/qcQ8YZX3FYvxC-sA0K022Hp_5KI.roa
Signing time: Sat 01 Jan 2022 14:58:35 +0000
ROA not before: Sat 01 Jan 2022 14:58:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53755
IP address blocks: 2a0d:da07::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 288803087 (0x1136c90f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66e92c341e769443fde1d27566044b4b65159060
Validity
Not Before: Jan 1 14:58:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9c43c6195f7158bf10beb00d0ad36d87a7fe4a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b1:49:59:c0:57:07:c4:e3:d4:b5:5e:15:ec:
d3:d0:5e:c5:38:79:2a:c3:29:7a:43:7c:e3:4f:27:
05:22:e2:d3:ba:ee:54:3b:eb:cd:a0:80:48:f3:90:
ab:dd:00:ea:52:f7:cc:85:10:f5:69:e9:ae:80:f2:
bc:62:13:36:30:e4:d6:36:52:95:a0:18:66:ff:6c:
28:d4:d1:65:19:ee:57:3b:93:68:52:ac:b7:3a:6c:
00:d3:48:2c:4e:0d:cc:4b:00:6a:b4:ac:7e:5d:c5:
b6:fe:f8:9a:ce:43:af:af:95:70:9b:7e:79:b4:aa:
42:d3:fa:ec:0a:5a:38:9e:1a:04:15:bd:2e:0d:aa:
2a:87:60:e1:0e:3c:b4:ff:79:5b:51:df:9e:ad:fc:
7c:f2:dd:ec:67:b5:01:59:e5:b0:01:c5:32:26:e5:
f3:c0:ea:f3:b7:e7:f1:a7:03:73:f5:de:7b:e7:2f:
43:5b:38:48:a3:50:e7:e0:48:7f:4e:83:34:ad:09:
86:ff:b9:f9:da:1a:d2:43:69:13:9d:d5:96:b1:62:
58:91:d5:e4:9b:e0:82:e2:03:a7:d4:e6:82:6e:29:
60:f3:f4:c1:e0:df:d2:27:e7:33:e9:56:2b:43:6e:
36:ed:89:d9:fe:c1:72:ac:99:88:ce:56:da:1b:b8:
5e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:C4:3C:61:95:F7:15:8B:F1:0B:EB:00:D0:AD:36:D8:7A:7F:E4:A2
X509v3 Authority Key Identifier:
keyid:66:E9:2C:34:1E:76:94:43:FD:E1:D2:75:66:04:4B:4B:65:15:90:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZuksNB52lEP94dJ1ZgRLS2UVkGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/qcQ8YZX3FYvxC-sA0K022Hp_5KI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/ZuksNB52lEP94dJ1ZgRLS2UVkGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:da07::/32
Signature Algorithm: sha256WithRSAEncryption
a0:a1:ed:a6:34:93:0d:26:d8:06:5c:1b:3f:76:a6:42:5f:fb:
88:71:81:85:b1:f4:d5:cf:28:62:3d:ab:c9:ba:8a:23:30:85:
21:fa:57:02:e5:3b:88:88:df:1f:76:db:4c:7b:03:8e:6e:9f:
4f:93:a2:08:df:c0:d1:ed:49:ad:a2:ec:fc:82:e0:54:68:6b:
e4:66:60:e9:af:73:1e:82:1f:e3:3f:13:d5:61:e0:f5:ed:86:
53:27:0b:ed:37:05:f8:b9:a5:a3:43:56:f6:17:ff:2f:b5:92:
bf:19:9d:ec:cd:74:3d:af:39:bb:65:6c:f2:d8:94:48:cb:10:
2a:fa:67:ff:14:b6:5c:ea:4c:96:af:89:25:ed:65:cc:86:c4:
b4:fd:b8:5b:a1:a5:80:40:a3:52:6b:11:f5:1d:85:ed:4d:f6:
4e:a7:7d:77:e0:22:f9:69:ba:85:93:ec:a1:6b:f1:06:56:84:
20:15:da:ed:cd:02:02:84:56:cc:51:80:ce:be:68:0b:ee:a3:
37:fe:a8:1f:c3:b0:36:32:ac:26:0e:32:4d:99:3d:7f:b2:f1:
f0:65:db:eb:75:db:3b:43:5a:72:89:41:01:d5:a0:f9:6f:bd:
8a:fd:03:9c:2a:96:f3:56:a1:aa:e5:ef:43:34:22:78:55:35:
b7:f6:b0:80
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEETbJDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NmU5MmMzNDFlNzY5NDQzZmRlMWQyNzU2NjA0NGI0YjY1MTU5MDYwMB4XDTIyMDEw
MTE0NTgzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTljNDNjNjE5NWY3
MTU4YmYxMGJlYjAwZDBhZDM2ZDg3YTdmZTRhMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALWxSVnAVwfE49S1XhXs09BexTh5KsMpekN8408nBSLi07ru
VDvrzaCASPOQq90A6lL3zIUQ9WnproDyvGITNjDk1jZSlaAYZv9sKNTRZRnuVzuT
aFKstzpsANNILE4NzEsAarSsfl3Ftv74ms5Dr6+VcJt+ebSqQtP67ApaOJ4aBBW9
Lg2qKodg4Q48tP95W1Hfnq38fPLd7Ge1AVnlsAHFMibl88Dq87fn8acDc/Xee+cv
Q1s4SKNQ5+BIf06DNK0Jhv+5+doa0kNpE53VlrFiWJHV5JvgguIDp9Tmgm4pYPP0
weDf0ifnM+lWK0NuNu2J2f7BcqyZiM5W2hu4XtsCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBSpxDxhlfcVi/EL6wDQrTbYen/kojAfBgNVHSMEGDAWgBRm6Sw0HnaUQ/3h
0nVmBEtLZRWQYDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1p1a3NOQjUybEVQOTRkSjFaZ1JMUzJVVmtHQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTkvOGYxOTY4LWE3OWEtNGEwNy1hY2U2LWMxZDI5NmY4ZmQwNy8x
L3FjUThZWlgzRll2eEMtc0EwSzAyMkhwXzVLSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkv
OGYxOTY4LWE3OWEtNGEwNy1hY2U2LWMxZDI5NmY4ZmQwNy8xL1p1a3NOQjUybEVQ
OTRkSjFaZ1JMUzJVVmtHQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoN2gcwDQYJKoZIhvcNAQELBQAD
ggEBAKCh7aY0kw0m2AZcGz92pkJf+4hxgYWx9NXPKGI9q8m6iiMwhSH6VwLlO4iI
3x9220x7A45un0+TogjfwNHtSa2i7PyC4FRoa+RmYOmvcx6CH+M/E9Vh4PXthlMn
C+03Bfi5paNDVvYX/y+1kr8ZnezNdD2vObtlbPLYlEjLECr6Z/8UtlzqTJaviSXt
ZcyGxLT9uFuhpYBAo1JrEfUdhe1N9k6nfXfgIvlpuoWT7KFr8QZWhCAV2u3NAgKE
VsxRgM6+aAvuozf+qB/DsDYyrCYOMk2ZPX+y8fBl2+t12ztDWnKJQQHVoPlvvYr9
A5wqlvNWoarl70M0InhVNbf2sIA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:17 2024 by rpki-client on console-ams.rpki-client.org