Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/tqOnnwLMnHtQG8jwQmDTOx-IG8c.roa
File: tqOnnwLMnHtQG8jwQmDTOx-IG8c.roa (raw, json)
Hash identifier: ePkMsZnJHclwBSV2LChHFS+sfa0RqY97l/oH/UTakZg=
Subject key identifier: B6:A3:A7:9F:02:CC:9C:7B:50:1B:C8:F0:42:60:D3:3B:1F:88:1B:C7
Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10
Certificate serial: 156579B0
Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/tqOnnwLMnHtQG8jwQmDTOx-IG8c.roa
Signing time: Sat 01 Jan 2022 08:04:53 +0000
ROA not before: Sat 01 Jan 2022 08:04:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198507
IP address blocks: 2a05:2d07::/32 maxlen: 32
2a04:a147::/32 maxlen: 32
2a06:3e87::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358971824 (0x156579b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10
Validity
Not Before: Jan 1 08:04:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6a3a79f02cc9c7b501bc8f04260d33b1f881bc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:29:c9:4d:dd:03:61:ae:ac:2c:af:26:cd:7b:
8f:bf:4a:63:ef:51:36:7a:3c:0b:d1:e2:b2:3a:fd:
4a:75:3b:88:91:32:b1:f6:7f:9d:28:a0:7c:9b:9e:
2d:01:16:32:c2:51:17:b4:17:08:31:6f:75:24:ce:
96:f2:1e:c1:7c:46:25:c2:ca:2c:1a:81:9d:ce:c8:
73:6f:b2:b5:dc:41:56:e2:f6:3f:76:4a:0b:30:47:
9f:e3:72:f9:b5:54:c4:63:d4:e2:2d:13:1e:d2:c7:
34:7b:17:a8:9a:c8:bb:a9:5c:0d:68:45:6b:20:c2:
a1:5f:10:6e:7e:f2:6f:f6:14:da:0e:f2:04:6c:d6:
a3:23:1c:64:b9:57:09:3a:68:53:d3:a7:77:78:8b:
ea:fc:9d:18:3e:21:fc:93:ce:83:78:58:29:fa:be:
67:4c:c6:70:ae:59:0c:82:70:00:54:4c:7c:e9:fc:
ca:c3:19:0d:e2:d4:83:5a:d9:7e:75:21:ec:c2:25:
1b:36:25:78:ae:07:8f:e7:39:c6:e0:85:02:3b:d8:
f8:31:a5:5f:d7:82:47:a3:da:15:72:e9:f0:bf:a5:
af:96:49:bb:95:4e:f2:15:d9:d4:de:a1:7a:25:54:
cb:45:bb:61:ed:75:5f:a8:23:9e:56:0b:05:78:f7:
f4:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:A3:A7:9F:02:CC:9C:7B:50:1B:C8:F0:42:60:D3:3B:1F:88:1B:C7
X509v3 Authority Key Identifier:
keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/tqOnnwLMnHtQG8jwQmDTOx-IG8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:a147::/32
2a05:2d07::/32
2a06:3e87::/32
Signature Algorithm: sha256WithRSAEncryption
5f:66:c3:3c:9c:53:64:42:d3:3c:8e:1c:0e:c4:4a:63:7c:5b:
16:c3:4d:25:d2:89:46:be:12:1b:c1:fb:29:13:36:e6:a3:ad:
95:6f:ad:28:51:e1:65:5d:0f:39:e8:0e:16:07:33:c0:0b:0f:
09:e2:c0:98:88:64:7f:1a:0a:e0:ff:44:21:c1:ce:45:fd:6e:
9c:89:82:a8:2a:d1:ce:d9:9f:24:ce:63:8e:04:28:fe:01:17:
64:6c:80:74:b0:b2:b1:3a:92:e2:e8:bd:9f:a4:88:b4:8e:72:
ad:ef:9b:e6:3f:90:9c:66:cc:73:d0:df:70:36:9a:22:b9:af:
a8:7d:f3:7f:25:4e:1a:8b:6e:db:f3:51:26:d4:10:1a:e2:de:
52:bb:4d:bf:f5:ca:22:29:7e:65:c2:98:0a:86:a9:aa:1b:28:
d2:bf:ee:23:f5:09:58:a4:a8:25:92:af:c8:68:d0:5c:1c:1b:
bc:42:27:17:8d:11:74:b3:a2:9e:48:ad:4d:bf:cc:8a:30:78:
40:89:94:f2:70:89:37:44:a7:f9:d6:84:f6:c2:fb:c5:1f:9a:
23:9e:5e:c3:a2:0e:36:db:46:37:8f:dd:44:3d:12:8e:ae:f9:
f5:cb:c9:19:83:aa:61:22:01:81:7b:79:f9:39:04:91:68:18:
82:3e:99:4a
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEFWV5sDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZjA3NDM0OTZjN2ZmM2VmZmI4NzA2MDExMzljYWQ5ZDJmMjcxZTEwMB4XDTIyMDEw
MTA4MDQ1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjZhM2E3OWYwMmNj
OWM3YjUwMWJjOGYwNDI2MGQzM2IxZjg4MWJjNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKspyU3dA2GurCyvJs17j79KY+9RNno8C9Hisjr9SnU7iJEy
sfZ/nSigfJueLQEWMsJRF7QXCDFvdSTOlvIewXxGJcLKLBqBnc7Ic2+ytdxBVuL2
P3ZKCzBHn+Ny+bVUxGPU4i0THtLHNHsXqJrIu6lcDWhFayDCoV8Qbn7yb/YU2g7y
BGzWoyMcZLlXCTpoU9Ond3iL6vydGD4h/JPOg3hYKfq+Z0zGcK5ZDIJwAFRMfOn8
ysMZDeLUg1rZfnUh7MIlGzYleK4Hj+c5xuCFAjvY+DGlX9eCR6PaFXLp8L+lr5ZJ
u5VO8hXZ1N6heiVUy0W7Ye11X6gjnlYLBXj39OMCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBS2o6efAsyce1AbyPBCYNM7H4gbxzAfBgNVHSMEGDAWgBSfB0NJbH/z7/uH
BgETnK2dLyceEDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L253ZERTV3hfOC1fN2h3WUJFNXl0blM4bkhoQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTUvMjJiN2FiLWZjMTEtNDA3YS1iZDNjLTYzNDExMzY3ZDkwYS8x
L3RxT25ud0xNbkh0UUc4andRbURUT3gtSUc4Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTUv
MjJiN2FiLWZjMTEtNDA3YS1iZDNjLTYzNDExMzY3ZDkwYS8xL253ZERTV3hfOC1f
N2h3WUJFNXl0blM4bkhoQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wGwQCAAIwFQMFACoEoUcDBQAqBS0HAwUAKgY+hzAN
BgkqhkiG9w0BAQsFAAOCAQEAX2bDPJxTZELTPI4cDsRKY3xbFsNNJdKJRr4SG8H7
KRM25qOtlW+tKFHhZV0POegOFgczwAsPCeLAmIhkfxoK4P9EIcHORf1unImCqCrR
ztmfJM5jjgQo/gEXZGyAdLCysTqS4ui9n6SItI5yre+b5j+QnGbMc9DfcDaaIrmv
qH3zfyVOGotu2/NRJtQQGuLeUrtNv/XKIil+ZcKYCoapqhso0r/uI/UJWKSoJZKv
yGjQXBwbvEInF40RdLOinkitTb/MijB4QImU8nCJN0Sn+daE9sL7xR+aI55ew6IO
NttGN4/dRD0Sjq759cvJGYOqYSIBgXt5+TkEkWgYgj6ZSg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:19 2024 by rpki-client on console-fra.rpki-client.org