Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/547580-38fa-47c5-9a6c-4baf0c85fbdf/1/6okw2HuwmTlEd8FzpKRmkwJv9y4.roa
File: 6okw2HuwmTlEd8FzpKRmkwJv9y4.roa (raw, json)
Hash identifier: ZA4bIM52g3/RN2LHsnO9JW1Ax64FdtKKl+mcAkj8jYA=
Subject key identifier: EA:89:30:D8:7B:B0:99:39:44:77:C1:73:A4:A4:66:93:02:6F:F7:2E
Certificate issuer: /CN=3d361ba1d6be589f9a69d5d06274caba7897b24f
Certificate serial: 013A27
Authority key identifier: 3D:36:1B:A1:D6:BE:58:9F:9A:69:D5:D0:62:74:CA:BA:78:97:B2:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PTYboda-WJ-aadXQYnTKuniXsk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/547580-38fa-47c5-9a6c-4baf0c85fbdf/1/6okw2HuwmTlEd8FzpKRmkwJv9y4.roa
Signing time: Mon 02 May 2022 06:46:08 +0000
ROA not before: Mon 02 May 2022 06:46:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210623
IP address blocks: 2001:67c:9e4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80423 (0x13a27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d361ba1d6be589f9a69d5d06274caba7897b24f
Validity
Not Before: May 2 06:46:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea8930d87bb099394477c173a4a46693026ff72e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a5:8b:31:a8:5b:d6:48:1a:46:fa:ee:15:d2:
19:63:7b:8b:40:33:58:a7:03:87:1c:f1:3e:ed:33:
b9:15:f2:d5:87:42:ec:5c:e7:7c:8a:7c:48:a7:4f:
52:92:c7:71:31:3c:2c:f3:4d:45:e9:3c:f1:04:9d:
6b:bc:db:23:6e:8d:a8:06:91:77:63:f4:34:97:fa:
65:43:d1:ca:c5:a8:c6:77:01:5f:9b:56:73:c7:71:
41:2f:ec:11:ed:6c:0b:54:a1:ec:b7:b4:5f:82:b0:
18:94:3a:d2:36:27:30:b9:90:ea:51:a6:9c:fa:57:
ba:f1:e2:f8:46:2c:01:91:1d:8f:8d:de:6d:6e:c9:
f2:45:4b:0a:4d:24:d2:76:77:31:eb:74:72:16:9b:
8e:7b:df:e2:1a:55:9d:c1:da:93:c5:bf:47:0c:8d:
eb:2b:70:df:4c:41:56:53:36:26:04:ca:5b:77:95:
2e:d7:19:f7:00:ee:4a:59:9e:05:98:7e:10:d1:34:
30:33:12:ce:3e:d1:43:fe:92:c4:88:11:1c:a0:7f:
c7:07:64:4a:2f:b9:62:61:85:e0:6f:04:9c:db:f1:
47:f4:52:21:f6:b2:5a:3a:7b:1e:d2:e6:49:57:ac:
e1:e6:3c:13:c6:e0:08:00:ac:e2:09:72:4c:bf:2f:
6d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:89:30:D8:7B:B0:99:39:44:77:C1:73:A4:A4:66:93:02:6F:F7:2E
X509v3 Authority Key Identifier:
keyid:3D:36:1B:A1:D6:BE:58:9F:9A:69:D5:D0:62:74:CA:BA:78:97:B2:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PTYboda-WJ-aadXQYnTKuniXsk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/547580-38fa-47c5-9a6c-4baf0c85fbdf/1/6okw2HuwmTlEd8FzpKRmkwJv9y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/547580-38fa-47c5-9a6c-4baf0c85fbdf/1/PTYboda-WJ-aadXQYnTKuniXsk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:9e4::/48
Signature Algorithm: sha256WithRSAEncryption
74:4f:2b:2e:c0:7c:53:e5:66:c6:8d:9d:6c:c2:c3:db:af:d4:
6b:35:e3:8d:1e:7e:3e:51:19:81:66:ad:73:65:ee:e7:c7:e4:
7d:83:9f:2c:a6:3a:93:50:67:73:37:81:17:41:61:ee:b8:14:
2a:7a:69:1e:76:9f:52:53:f2:ad:91:8e:71:01:8a:ef:32:0a:
8c:4c:b5:a1:8b:ff:ac:70:7b:4f:c1:f1:42:7e:5a:9e:3d:70:
41:df:1c:c8:68:45:c5:83:08:ee:ae:bf:2d:3e:3d:58:97:28:
87:95:63:1b:f0:69:8f:99:20:73:e7:a2:f8:1e:d2:53:18:ea:
d9:81:3d:b7:13:97:2d:fb:83:9d:c7:75:ca:51:92:3d:94:18:
4b:96:24:3b:00:03:37:f6:7f:07:db:89:00:22:39:86:78:79:
7c:70:14:82:16:ad:a7:f3:e0:88:b5:af:60:eb:25:20:76:07:
60:cd:fd:11:3d:c8:1c:64:94:6d:94:d5:25:69:c0:31:38:dd:
d4:57:34:c3:49:4c:1c:4b:b4:f3:17:8d:22:8b:fc:42:1b:ed:
e0:74:05:2e:ef:06:46:73:59:fb:2e:13:be:7b:be:7b:40:49:
bf:54:22:1b:87:53:40:e3:58:66:c1:1a:cd:2c:a7:66:ac:b6:
eb:72:b2:31
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIDATonMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDNk
MzYxYmExZDZiZTU4OWY5YTY5ZDVkMDYyNzRjYWJhNzg5N2IyNGYwHhcNMjIwNTAy
MDY0NjA4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhlYTg5MzBkODdiYjA5
OTM5NDQ3N2MxNzNhNGE0NjY5MzAyNmZmNzJlMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA36WLMahb1kgaRvruFdIZY3uLQDNYpwOHHPE+7TO5FfLVh0Ls
XOd8inxIp09SksdxMTws801F6TzxBJ1rvNsjbo2oBpF3Y/Q0l/plQ9HKxajGdwFf
m1Zzx3FBL+wR7WwLVKHst7RfgrAYlDrSNicwuZDqUaac+le68eL4RiwBkR2Pjd5t
bsnyRUsKTSTSdncx63RyFpuOe9/iGlWdwdqTxb9HDI3rK3DfTEFWUzYmBMpbd5Uu
1xn3AO5KWZ4FmH4Q0TQwMxLOPtFD/pLEiBEcoH/HB2RKL7liYYXgbwSc2/FH9FIh
9rJaOnse0uZJV6zh5jwTxuAIAKziCXJMvy9t7QIDAQABo4ICDDCCAggwHQYDVR0O
BBYEFOqJMNh7sJk5RHfBc6SkZpMCb/cuMB8GA1UdIwQYMBaAFD02G6HWvlifmmnV
0GJ0yrp4l7JPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
UFRZYm9kYS1XSi1hYWRYUVluVEt1bmlYc2s4LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mYi81NDc1ODAtMzhmYS00N2M1LTlhNmMtNGJhZjBjODVmYmRmLzEv
Nm9rdzJIdXdtVGxFZDhGenBLUm1rd0p2OXk0LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi81
NDc1ODAtMzhmYS00N2M1LTlhNmMtNGJhZjBjODVmYmRmLzEvUFRZYm9kYS1XSi1h
YWRYUVluVEt1bmlYc2s4LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIG
CCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAnkMA0GCSqGSIb3DQEBCwUA
A4IBAQB0TysuwHxT5WbGjZ1swsPbr9RrNeONHn4+URmBZq1zZe7nx+R9g58spjqT
UGdzN4EXQWHuuBQqemkedp9SU/KtkY5xAYrvMgqMTLWhi/+scHtPwfFCflqePXBB
3xzIaEXFgwjurr8tPj1YlyiHlWMb8GmPmSBz56L4HtJTGOrZgT23E5ct+4Odx3XK
UZI9lBhLliQ7AAM39n8H24kAIjmGeHl8cBSCFq2n8+CIta9g6yUgdgdgzf0RPcgc
ZJRtlNUlacAxON3UVzTDSUwcS7TzF40ii/xCG+3gdAUu7wZGc1n7LhO+e757QEm/
VCIbh1NA41hmwRrNLKdmrLbrcrIx
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:57 2024 by rpki-client on console-ams.rpki-client.org