Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/CBrSSJaEwh8U0jvtL0tD-5w0kVo.roa
File: CBrSSJaEwh8U0jvtL0tD-5w0kVo.roa (raw, json)
Hash identifier: WOJ69VFpuHURT6R1uzzfy+zSJSG/z+Az2Xcbo6YR2ic=
Subject key identifier: 08:1A:D2:48:96:84:C2:1F:14:D2:3B:ED:2F:4B:43:FB:9C:34:91:5A
Certificate issuer: /CN=a669f1c21370c44dfd10e2af688c8c4e0ea12955
Certificate serial: 0B0D16
Authority key identifier: A6:69:F1:C2:13:70:C4:4D:FD:10:E2:AF:68:8C:8C:4E:0E:A1:29:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pmnxwhNwxE39EOKvaIyMTg6hKVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/CBrSSJaEwh8U0jvtL0tD-5w0kVo.roa
Signing time: Sat 01 Jan 2022 01:55:57 +0000
ROA not before: Sat 01 Jan 2022 01:55:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211723
IP address blocks: 2001:67c:296c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 724246 (0xb0d16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a669f1c21370c44dfd10e2af688c8c4e0ea12955
Validity
Not Before: Jan 1 01:55:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=081ad2489684c21f14d23bed2f4b43fb9c34915a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:45:75:c0:aa:5f:56:06:8e:27:39:b9:c3:be:
52:4d:f1:93:b8:dd:37:cd:22:e4:5b:ad:7a:5a:09:
23:16:e9:f3:07:c2:b8:8d:33:29:1f:ee:15:53:8a:
67:c1:7e:27:14:61:80:c1:f8:3c:3d:30:03:66:1c:
b4:36:3d:a0:b5:c1:2a:62:e6:b7:d6:b2:b4:bc:ec:
da:e9:64:1c:48:9f:0d:f3:88:bc:e3:25:43:55:0d:
b7:25:09:f2:90:d5:68:94:b3:0f:df:5f:b1:b6:d4:
71:3f:a3:3b:8a:3d:fa:e7:a0:8f:09:be:14:01:9f:
9e:fb:14:a0:74:16:77:3a:8d:a7:b4:d9:67:89:60:
c1:08:14:b0:c0:93:ad:75:0b:a3:d4:e2:9c:78:f6:
e1:26:a1:9b:b7:7b:f5:43:ec:a6:fd:f1:c6:5d:c8:
a2:a4:8f:f9:17:6e:fd:82:15:da:37:ac:b5:bc:21:
3c:60:27:04:d4:47:d9:76:78:57:4d:db:6c:75:01:
bd:27:18:4c:73:88:34:1d:a7:7a:9f:7c:4e:dc:44:
dc:1a:98:13:d7:45:41:55:2a:08:03:1e:04:2f:f7:
04:7b:94:a9:c8:b1:0d:bc:31:57:55:26:08:fd:82:
41:22:83:14:43:89:59:68:35:42:30:93:b8:64:ee:
c3:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:1A:D2:48:96:84:C2:1F:14:D2:3B:ED:2F:4B:43:FB:9C:34:91:5A
X509v3 Authority Key Identifier:
keyid:A6:69:F1:C2:13:70:C4:4D:FD:10:E2:AF:68:8C:8C:4E:0E:A1:29:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pmnxwhNwxE39EOKvaIyMTg6hKVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/CBrSSJaEwh8U0jvtL0tD-5w0kVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e7b40c-414b-473a-b8c7-b7b1481625b1/1/pmnxwhNwxE39EOKvaIyMTg6hKVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:296c::/48
Signature Algorithm: sha256WithRSAEncryption
3d:3c:d2:11:6b:79:b1:b8:6f:39:2d:b3:73:a6:4a:25:27:d0:
c7:a9:0a:33:9b:ec:60:34:36:11:76:58:79:64:0f:16:bc:dc:
49:55:69:c9:fd:f5:e0:b9:4c:15:ae:6b:f2:a0:b5:2f:0b:90:
96:e1:29:4e:62:a4:32:95:9d:51:56:6c:fa:93:a4:cc:f4:59:
68:fd:d6:e4:80:80:40:12:09:ec:d0:73:8e:e1:f7:b2:16:2c:
49:d3:90:11:15:68:88:14:dd:f6:ab:91:53:ec:9a:19:8a:26:
63:87:46:0b:6c:db:f3:04:e5:83:2e:75:7e:a7:4d:af:8e:84:
9a:b9:b3:ca:f1:26:53:bd:e3:3a:b6:63:9f:03:c6:52:b9:0c:
63:d5:33:4f:ea:eb:fd:07:5c:75:20:a9:a9:ae:e1:38:2e:cf:
f9:09:f1:1e:c7:3d:d4:a5:37:62:f0:8d:72:f4:4f:cc:8b:26:
2a:3e:f1:1a:72:1f:7d:f4:ff:2c:58:ce:fd:07:de:db:35:c4:
7e:8e:6b:5a:4e:82:e7:e3:4f:58:7f:2d:17:60:49:cc:d4:44:
1c:9e:80:1e:ea:b4:bb:2d:19:bf:60:23:04:bb:ef:a3:d8:16:
bf:92:11:44:8b:99:28:3e:86:87:2c:85:cf:a3:89:12:73:e1:
a6:bd:22:33
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIDCw0WMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGE2
NjlmMWMyMTM3MGM0NGRmZDEwZTJhZjY4OGM4YzRlMGVhMTI5NTUwHhcNMjIwMTAx
MDE1NTU3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwODFhZDI0ODk2ODRj
MjFmMTRkMjNiZWQyZjRiNDNmYjljMzQ5MTVhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAvkV1wKpfVgaOJzm5w75STfGTuN03zSLkW616WgkjFunzB8K4
jTMpH+4VU4pnwX4nFGGAwfg8PTADZhy0Nj2gtcEqYua31rK0vOza6WQcSJ8N84i8
4yVDVQ23JQnykNVolLMP31+xttRxP6M7ij3656CPCb4UAZ+e+xSgdBZ3Oo2ntNln
iWDBCBSwwJOtdQuj1OKcePbhJqGbt3v1Q+ym/fHGXciipI/5F279ghXaN6y1vCE8
YCcE1EfZdnhXTdtsdQG9JxhMc4g0Had6n3xO3ETcGpgT10VBVSoIAx4EL/cEe5Sp
yLENvDFXVSYI/YJBIoMUQ4lZaDVCMJO4ZO7DHwIDAQABo4ICDDCCAggwHQYDVR0O
BBYEFAga0kiWhMIfFNI77S9LQ/ucNJFaMB8GA1UdIwQYMBaAFKZp8cITcMRN/RDi
r2iMjE4OoSlVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
cG1ueHdoTnd4RTM5RU9LdmFJeU1UZzZoS1ZVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iOS9lN2I0MGMtNDE0Yi00NzNhLWI4YzctYjdiMTQ4MTYyNWIxLzEv
Q0JyU1NKYUV3aDhVMGp2dEwwdEQtNXcwa1ZvLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS9l
N2I0MGMtNDE0Yi00NzNhLWI4YzctYjdiMTQ4MTYyNWIxLzEvcG1ueHdoTnd4RTM5
RU9LdmFJeU1UZzZoS1ZVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIG
CCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfClsMA0GCSqGSIb3DQEBCwUA
A4IBAQA9PNIRa3mxuG85LbNzpkolJ9DHqQozm+xgNDYRdlh5ZA8WvNxJVWnJ/fXg
uUwVrmvyoLUvC5CW4SlOYqQylZ1RVmz6k6TM9Flo/dbkgIBAEgns0HOO4feyFixJ
05ARFWiIFN32q5FT7JoZiiZjh0YLbNvzBOWDLnV+p02vjoSaubPK8SZTveM6tmOf
A8ZSuQxj1TNP6uv9B1x1IKmpruE4Ls/5CfEexz3UpTdi8I1y9E/MiyYqPvEach99
9P8sWM79B97bNcR+jmtaToLn409Yfy0XYEnM1EQcnoAe6rS7LRm/YCMEu++j2Ba/
khFEi5koPoaHLIXPo4kSc+GmvSIz
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:35 2024 by rpki-client on console-ams.rpki-client.org