Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/s2wozX_v7_JwbHAvcGMGzMPPVwc.roa
File: s2wozX_v7_JwbHAvcGMGzMPPVwc.roa (raw, json)
Hash identifier: MJHrGhEyJ8wOyTGUZd6DAEOQHUegL8o6kAfDCBmdhSg=
Subject key identifier: B3:6C:28:CD:7F:EF:EF:F2:70:6C:70:2F:70:63:06:CC:C3:CF:57:07
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0183647D2C1D0BD9313C892373BB3094172C
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/s2wozX_v7_JwbHAvcGMGzMPPVwc.roa
Signing time: Thu 22 Sep 2022 09:17:48 +0000
ROA not before: Thu 22 Sep 2022 09:17:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202776
IP address blocks: 2a0c:9a40:8c30::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:64:7d:2c:1d:0b:d9:31:3c:89:23:73:bb:30:94:17:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Sep 22 09:17:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b36c28cd7fefeff2706c702f706306ccc3cf5707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:8f:97:73:33:4e:4d:b4:7c:ba:b3:49:6f:d4:
fc:6a:f5:5e:d1:e0:df:e7:74:4f:0c:85:af:97:ef:
1c:1c:44:47:80:58:ff:75:71:0e:29:28:cd:85:21:
fe:0b:ea:67:e1:87:38:87:45:c9:d8:f9:b5:93:07:
49:a7:6e:40:34:7f:7f:35:f9:7a:43:bb:57:49:f3:
62:ed:85:1e:e6:87:9b:d5:13:d4:1d:0a:31:99:8e:
8c:82:b8:20:be:f5:1b:32:30:b9:00:c9:ce:29:ce:
9d:67:38:88:04:40:34:c6:1a:75:86:23:a2:8f:99:
d2:eb:9f:33:9c:1a:a4:1a:b3:69:37:25:6d:57:44:
c8:36:69:51:bf:11:18:e8:e6:a1:8c:00:6e:03:99:
b3:a2:d8:f3:b9:2c:55:f6:b0:34:e2:9a:42:b9:df:
74:58:71:1b:ae:ca:35:5c:6b:aa:9c:92:47:41:83:
35:a8:90:8f:22:1f:92:27:13:37:63:ce:0f:23:87:
0d:d5:19:cb:03:0c:71:a2:b3:15:7b:ad:f1:d0:28:
0a:1b:4d:07:70:39:0e:0f:d6:65:7b:4f:a1:33:1b:
89:54:60:2f:b6:68:1d:ef:d8:6a:4d:b3:82:18:9e:
98:11:a3:8c:1b:c3:31:43:02:da:a0:88:56:c0:8f:
34:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:6C:28:CD:7F:EF:EF:F2:70:6C:70:2F:70:63:06:CC:C3:CF:57:07
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/s2wozX_v7_JwbHAvcGMGzMPPVwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8c30::/48
Signature Algorithm: sha256WithRSAEncryption
13:c4:a1:6b:fb:bb:3c:e5:bc:41:e3:cc:93:1b:87:d6:87:3c:
fc:10:7c:c8:5d:cd:84:10:0d:9c:8e:c1:f7:9b:b7:c5:23:10:
fa:6f:e7:32:4b:20:79:09:6b:80:b6:b1:d0:10:75:61:10:11:
08:9a:0f:53:f1:12:dd:af:83:8d:e5:57:4f:58:a3:00:4e:c8:
da:d8:ef:cd:56:13:f7:38:9d:25:9e:aa:4d:9b:d7:7c:cf:50:
4a:75:49:c0:3d:cb:20:b5:6b:33:42:75:08:91:dd:1d:97:19:
7e:0f:62:21:e1:17:89:de:6c:5b:02:17:9d:90:6e:2f:9a:36:
cc:7e:5f:07:1b:ee:36:b3:1a:c4:00:25:bb:cb:89:46:80:cf:
1b:c3:b7:0b:92:92:2a:38:0b:df:50:01:1e:57:2b:0e:07:96:
a9:75:a7:f9:c1:27:5e:04:3c:76:cb:d6:1e:38:74:05:69:1e:
a0:7e:b1:6f:58:de:cc:e3:50:b0:da:d0:cc:75:f7:cd:0e:7f:
d6:df:50:45:97:47:b9:76:8f:69:e1:1a:bd:53:24:6a:25:f6:
ed:34:4e:10:d2:29:6f:07:c8:f4:28:e2:c9:1c:f5:4f:f1:5b:
0b:11:c8:19:c8:9d:a9:7a:dd:f5:62:8b:bf:bd:d0:80:35:45:
6d:6c:24:c9
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYNkfSwdC9kxPIkjc7swlBcsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl
NDgwMDgwHhcNMjIwOTIyMDkxNzQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzZjMjhjZDdmZWZlZmYyNzA2YzcwMmY3MDYzMDZjY2MzY2Y1NzA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAho+XczNOTbR8urNJb9T8avVe0eDf
53RPDIWvl+8cHERHgFj/dXEOKSjNhSH+C+pn4Yc4h0XJ2Pm1kwdJp25ANH9/Nfl6
Q7tXSfNi7YUe5oeb1RPUHQoxmY6MgrggvvUbMjC5AMnOKc6dZziIBEA0xhp1hiOi
j5nS658znBqkGrNpNyVtV0TINmlRvxEY6OahjABuA5mzotjzuSxV9rA04ppCud90
WHEbrso1XGuqnJJHQYM1qJCPIh+SJxM3Y84PI4cN1RnLAwxxorMVe63x0CgKG00H
cDkOD9Zle0+hMxuJVGAvtmgd79hqTbOCGJ6YEaOMG8MxQwLaoIhWwI80FwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLNsKM1/7+/ycGxwL3BjBszDz1cHMB8GA1UdIwQY
MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt
YmY0ZTUyN2I5ZmE4LzEvczJ3b3pYX3Y3X0p3YkhBdmNHTUd6TVBQVndjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4
LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgyaQIww
MA0GCSqGSIb3DQEBCwUAA4IBAQATxKFr+7s85bxB48yTG4fWhzz8EHzIXc2EEA2c
jsH3m7fFIxD6b+cySyB5CWuAtrHQEHVhEBEImg9T8RLdr4ON5VdPWKMATsja2O/N
VhP3OJ0lnqpNm9d8z1BKdUnAPcsgtWszQnUIkd0dlxl+D2Ih4ReJ3mxbAhedkG4v
mjbMfl8HG+42sxrEACW7y4lGgM8bw7cLkpIqOAvfUAEeVysOB5apdaf5wSdeBDx2
y9YeOHQFaR6gfrFvWN7M41Cw2tDMdffNDn/W31BFl0e5do9p4Rq9UyRqJfbtNE4Q
0ilvB8j0KOLJHPVP8VsLEcgZyJ2pet31You/vdCANUVtbCTJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:16 2024 by rpki-client on console-ams.rpki-client.org