Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/27e1ca-e61f-4e8c-ad9c-145c36e38276/1/9bTB5dGjq2_zdeCOwwGfdx0fx04.roa
File: 9bTB5dGjq2_zdeCOwwGfdx0fx04.roa (raw, json)
Hash identifier: XY3jFv2FKq/mR1Bfwylojc3HbTYRMenj13fo3XtVCu8=
Subject key identifier: F5:B4:C1:E5:D1:A3:AB:6F:F3:75:E0:8E:C3:01:9F:77:1D:1F:C7:4E
Certificate issuer: /CN=4de2dc2c1c93847bf979f9b010edc4cda849f4f8
Certificate serial: 1489995A
Authority key identifier: 4D:E2:DC:2C:1C:93:84:7B:F9:79:F9:B0:10:ED:C4:CD:A8:49:F4:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TeLcLByThHv5efmwEO3EzahJ9Pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/27e1ca-e61f-4e8c-ad9c-145c36e38276/1/9bTB5dGjq2_zdeCOwwGfdx0fx04.roa
Signing time: Sat 01 Jan 2022 04:53:32 +0000
ROA not before: Sat 01 Jan 2022 04:53:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15542
IP address blocks: 2001:67c:2e64::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 344562010 (0x1489995a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4de2dc2c1c93847bf979f9b010edc4cda849f4f8
Validity
Not Before: Jan 1 04:53:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5b4c1e5d1a3ab6ff375e08ec3019f771d1fc74e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:15:d9:b7:13:87:bb:97:00:6c:bf:76:98:c5:
2a:a5:d6:13:bf:9e:e7:4a:82:b2:c0:c7:f1:d4:18:
b5:27:01:71:4d:39:49:35:3f:b9:24:37:32:35:9e:
6d:01:36:91:be:d4:20:e5:85:6e:f1:6d:c0:1b:bf:
61:35:7e:1f:b0:47:65:69:c8:b4:95:83:51:56:de:
13:6d:09:d4:61:e5:8a:fa:ed:79:92:22:28:18:ce:
1a:15:df:4c:29:63:fc:59:34:c4:6e:71:af:46:5d:
d4:f7:5e:5a:1e:ee:2b:90:24:9a:2d:5f:0b:d6:5f:
d8:37:d7:00:50:e7:2f:02:f5:6b:85:92:47:58:8d:
88:90:85:92:79:4b:fe:d9:07:82:64:22:ca:cb:7c:
b8:27:91:ac:c6:3c:44:7b:13:1b:4f:4e:9a:c2:1a:
f0:1e:7b:a1:0f:57:eb:fe:e2:a8:53:b3:d0:fd:88:
66:01:54:21:be:79:14:ae:53:60:38:e6:6a:cd:42:
42:d4:bc:14:8b:de:a4:9a:ee:2f:72:2c:b5:c2:35:
ac:4c:d9:e4:ef:2e:98:01:50:e6:97:ab:37:8a:88:
fd:5f:6d:f4:23:c6:b3:e4:e6:e8:53:b5:b2:4a:dd:
9b:4b:1f:91:5c:00:61:2d:b2:f1:a6:7f:e4:74:bc:
6e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B4:C1:E5:D1:A3:AB:6F:F3:75:E0:8E:C3:01:9F:77:1D:1F:C7:4E
X509v3 Authority Key Identifier:
keyid:4D:E2:DC:2C:1C:93:84:7B:F9:79:F9:B0:10:ED:C4:CD:A8:49:F4:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TeLcLByThHv5efmwEO3EzahJ9Pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/27e1ca-e61f-4e8c-ad9c-145c36e38276/1/9bTB5dGjq2_zdeCOwwGfdx0fx04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/27e1ca-e61f-4e8c-ad9c-145c36e38276/1/TeLcLByThHv5efmwEO3EzahJ9Pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2e64::/48
Signature Algorithm: sha256WithRSAEncryption
ae:29:f1:8e:8a:7f:91:e8:46:b6:8a:c6:36:67:d9:9a:d2:d9:
9f:70:53:c3:48:1e:d6:84:09:12:9d:e8:0a:2d:52:5a:a3:67:
14:c8:e5:0a:6e:18:8e:05:d8:3f:37:cb:b7:c1:82:b4:de:b6:
18:c8:d5:7f:06:61:61:2a:cb:b3:c9:7d:ab:bc:a1:6b:b5:b6:
fa:55:0e:4a:c8:58:9a:c0:d4:af:43:6f:62:3a:fe:20:fa:0b:
c8:1f:d7:93:43:40:23:71:b3:9f:dd:95:fe:56:88:af:b3:f4:
70:c7:15:69:4d:b2:25:fa:ae:12:0d:93:24:51:48:4e:53:28:
49:cb:e3:c4:08:69:66:50:fc:d3:c4:64:a3:c8:49:b0:41:3e:
3c:22:71:86:31:85:6b:44:bc:8a:34:af:00:87:55:24:cc:a0:
16:de:90:18:23:06:bd:3f:ae:70:49:0c:b3:fb:83:87:fb:9c:
99:d8:f7:43:cd:0b:01:c6:56:bc:bb:6f:7a:7f:0d:23:24:a2:
a4:55:8e:2b:a3:e8:e4:f1:d9:fd:96:20:2d:9f:24:35:8c:de:
1c:4b:12:5f:36:59:5d:18:b0:f7:61:92:1c:9d:e3:d9:f9:6c:
c1:62:de:96:c6:d9:bc:bf:90:c0:81:d7:a6:99:48:c7:6e:84:
c3:ff:cd:c9
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEFImZWjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZGUyZGMyYzFjOTM4NDdiZjk3OWY5YjAxMGVkYzRjZGE4NDlmNGY4MB4XDTIyMDEw
MTA0NTMzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjViNGMxZTVkMWEz
YWI2ZmYzNzVlMDhlYzMwMTlmNzcxZDFmYzc0ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKcV2bcTh7uXAGy/dpjFKqXWE7+e50qCssDH8dQYtScBcU05
STU/uSQ3MjWebQE2kb7UIOWFbvFtwBu/YTV+H7BHZWnItJWDUVbeE20J1GHlivrt
eZIiKBjOGhXfTClj/Fk0xG5xr0Zd1PdeWh7uK5Akmi1fC9Zf2DfXAFDnLwL1a4WS
R1iNiJCFknlL/tkHgmQiyst8uCeRrMY8RHsTG09OmsIa8B57oQ9X6/7iqFOz0P2I
ZgFUIb55FK5TYDjmas1CQtS8FIvepJruL3IstcI1rEzZ5O8umAFQ5perN4qI/V9t
9CPGs+Tm6FO1skrdm0sfkVwAYS2y8aZ/5HS8brMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBT1tMHl0aOrb/N14I7DAZ93HR/HTjAfBgNVHSMEGDAWgBRN4twsHJOEe/l5
+bAQ7cTNqEn0+DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RlTGNMQnlUaEh2NWVmbXdFTzNFemFoSjlQZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjQvMjdlMWNhLWU2MWYtNGU4Yy1hZDljLTE0NWMzNmUzODI3Ni8x
LzliVEI1ZEdqcTJfemRlQ093d0dmZHgwZngwNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjQv
MjdlMWNhLWU2MWYtNGU4Yy1hZDljLTE0NWMzNmUzODI3Ni8xL1RlTGNMQnlUaEh2
NWVmbXdFTzNFemFoSjlQZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBnwuZDANBgkqhkiG9w0BAQsF
AAOCAQEArinxjop/kehGtorGNmfZmtLZn3BTw0ge1oQJEp3oCi1SWqNnFMjlCm4Y
jgXYPzfLt8GCtN62GMjVfwZhYSrLs8l9q7yha7W2+lUOSshYmsDUr0NvYjr+IPoL
yB/Xk0NAI3Gzn92V/laIr7P0cMcVaU2yJfquEg2TJFFITlMoScvjxAhpZlD808Rk
o8hJsEE+PCJxhjGFa0S8ijSvAIdVJMygFt6QGCMGvT+ucEkMs/uDh/ucmdj3Q80L
AcZWvLtven8NIySipFWOK6Po5PHZ/ZYgLZ8kNYzeHEsSXzZZXRiw92GSHJ3j2fls
wWLelsbZvL+QwIHXpplIx26Ew//NyQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:37 2024 by rpki-client on console-ams.rpki-client.org