Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/856ea4-de5a-4f11-8228-87bf6fdbe193/1/KGuBU4TL3M8_fmBL6WOETN2C9O8.roa
File: KGuBU4TL3M8_fmBL6WOETN2C9O8.roa (raw, json)
Hash identifier: XC/JSnf9C2g91C/NPOIkHrKoCMDnytxU7VMPsIBWe/o=
Subject key identifier: 28:6B:81:53:84:CB:DC:CF:3F:7E:60:4B:E9:63:84:4C:DD:82:F4:EF
Certificate issuer: /CN=bfa6e96fca7a2783cb9721ebb62de1b536c163a9
Certificate serial: 3BFC
Authority key identifier: BF:A6:E9:6F:CA:7A:27:83:CB:97:21:EB:B6:2D:E1:B5:36:C1:63:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v6bpb8p6J4PLlyHrti3htTbBY6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/856ea4-de5a-4f11-8228-87bf6fdbe193/1/KGuBU4TL3M8_fmBL6WOETN2C9O8.roa
Signing time: Thu 17 Feb 2022 16:01:46 +0000
ROA not before: Thu 17 Feb 2022 16:01:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42927
IP address blocks: 2a07:a440::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15356 (0x3bfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfa6e96fca7a2783cb9721ebb62de1b536c163a9
Validity
Not Before: Feb 17 16:01:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=286b815384cbdccf3f7e604be963844cdd82f4ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ae:e3:1b:47:9c:27:29:55:55:0f:20:b0:e9:
14:9b:06:1a:2f:a1:fd:7e:f9:62:73:a4:45:cd:4b:
d2:72:67:50:3e:6f:5a:28:07:27:69:59:5a:af:02:
d2:4d:06:24:0b:eb:7b:8f:cf:9b:3d:f5:8f:97:ca:
a5:01:3a:9e:43:cd:f2:e2:9b:25:4a:76:ac:27:51:
4a:96:55:0c:c5:9a:f9:8a:85:07:16:7d:9f:79:15:
b8:0c:af:9b:55:05:40:ba:31:69:07:f0:d8:fc:e9:
ae:47:e5:da:51:26:5e:d9:1c:88:08:04:a4:cc:2e:
12:47:bc:27:0e:b8:8f:db:9f:e4:91:5b:e9:f1:80:
c6:e9:bd:5d:43:4c:f3:43:8b:76:c3:23:3e:df:2f:
8a:59:4d:18:3e:57:fe:4d:73:17:58:98:d8:96:fe:
f6:fc:c0:48:65:8a:8a:fc:75:21:cd:1b:cd:c2:06:
c3:e1:53:9e:8b:4b:da:92:60:96:fa:ba:df:a8:93:
09:1f:29:e1:19:ac:78:2a:6c:e5:29:0c:72:03:0f:
b3:69:71:2d:63:7c:bb:cb:cd:e0:6d:6e:e5:b4:29:
3d:fb:cd:d8:3e:11:ab:55:49:42:f0:75:5c:f6:d6:
72:8e:1c:e8:5b:37:51:87:08:de:dd:23:f8:2b:85:
bc:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:6B:81:53:84:CB:DC:CF:3F:7E:60:4B:E9:63:84:4C:DD:82:F4:EF
X509v3 Authority Key Identifier:
keyid:BF:A6:E9:6F:CA:7A:27:83:CB:97:21:EB:B6:2D:E1:B5:36:C1:63:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v6bpb8p6J4PLlyHrti3htTbBY6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/856ea4-de5a-4f11-8228-87bf6fdbe193/1/KGuBU4TL3M8_fmBL6WOETN2C9O8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/856ea4-de5a-4f11-8228-87bf6fdbe193/1/v6bpb8p6J4PLlyHrti3htTbBY6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:a440::/30
Signature Algorithm: sha256WithRSAEncryption
0c:e4:31:5b:ed:73:a2:51:95:2a:a3:56:e1:9f:db:b4:fb:4c:
e4:bc:59:04:7e:b6:39:0b:26:5a:2f:cc:88:a3:ad:ce:66:b6:
b0:fc:7f:da:b9:fe:03:52:bd:97:f9:1f:f1:00:cc:4e:7a:db:
9d:15:b6:cc:28:96:4a:0d:29:32:f3:e9:4b:fb:be:bf:8e:9a:
8a:5b:ff:0a:ea:9e:da:1a:b6:f4:f8:30:a4:6d:0a:43:d1:a8:
c3:55:fa:dd:12:32:56:07:d1:38:e5:bb:83:ea:7a:cd:ab:f5:
5b:cf:70:3d:30:cf:94:1a:9b:8f:24:02:49:02:10:f8:3f:c0:
7e:58:d9:97:b4:9a:fb:09:5a:e5:70:db:75:69:ce:53:96:37:
f2:9f:76:69:fb:8e:b0:57:81:cb:d1:f6:72:52:b0:61:70:55:
14:d5:67:91:b6:17:f8:85:20:12:4f:6b:0e:5a:15:c2:f7:bd:
11:39:28:ae:b2:41:33:77:f7:98:ba:0f:03:85:e5:cb:57:ed:
6a:5f:d6:f3:79:c4:86:02:93:6a:a3:87:dc:08:98:04:bf:d9:
81:ac:53:5c:f4:d7:a1:d2:40:f5:e8:83:af:22:36:9f:88:63:
cc:7a:44:55:22:36:8a:97:58:0f:e1:0c:14:82:b3:49:f6:73:
b0:2d:cd:01
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgICO/wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoYmZh
NmU5NmZjYTdhMjc4M2NiOTcyMWViYjYyZGUxYjUzNmMxNjNhOTAeFw0yMjAyMTcx
NjAxNDZaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDI4NmI4MTUzODRjYmRj
Y2YzZjdlNjA0YmU5NjM4NDRjZGQ4MmY0ZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqruMbR5wnKVVVDyCw6RSbBhovof1++WJzpEXNS9JyZ1A+b1oo
BydpWVqvAtJNBiQL63uPz5s99Y+XyqUBOp5DzfLimyVKdqwnUUqWVQzFmvmKhQcW
fZ95FbgMr5tVBUC6MWkH8Nj86a5H5dpRJl7ZHIgIBKTMLhJHvCcOuI/bn+SRW+nx
gMbpvV1DTPNDi3bDIz7fL4pZTRg+V/5NcxdYmNiW/vb8wEhlior8dSHNG83CBsPh
U56LS9qSYJb6ut+okwkfKeEZrHgqbOUpDHIDD7NpcS1jfLvLzeBtbuW0KT37zdg+
EatVSULwdVz21nKOHOhbN1GHCN7dI/grhbzzAgMBAAGjggIKMIICBjAdBgNVHQ4E
FgQUKGuBU4TL3M8/fmBL6WOETN2C9O8wHwYDVR0jBBgwFoAUv6bpb8p6J4PLlyHr
ti3htTbBY6kwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC92
NmJwYjhwNko0UExseUhydGkzaHRUYkJZNmsuY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxULzE2Lzg1NmVhNC1kZTVhLTRmMTEtODIyOC04N2JmNmZkYmUxOTMvMS9L
R3VCVTRUTDNNOF9mbUJMNldPRVROMkM5Tzgucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzE2Lzg1
NmVhNC1kZTVhLTRmMTEtODIyOC04N2JmNmZkYmUxOTMvMS92NmJwYjhwNko0UExs
eUhydGkzaHRUYkJZNmsuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYI
KwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQIqB6RAMA0GCSqGSIb3DQEBCwUAA4IB
AQAM5DFb7XOiUZUqo1bhn9u0+0zkvFkEfrY5CyZaL8yIo63OZraw/H/auf4DUr2X
+R/xAMxOetudFbbMKJZKDSky8+lL+76/jpqKW/8K6p7aGrb0+DCkbQpD0ajDVfrd
EjJWB9E45buD6nrNq/Vbz3A9MM+UGpuPJAJJAhD4P8B+WNmXtJr7CVrlcNt1ac5T
ljfyn3Zp+46wV4HL0fZyUrBhcFUU1WeRthf4hSAST2sOWhXC970ROSiuskEzd/eY
ug8DheXLV+1qX9bzecSGApNqo4fcCJgEv9mBrFNc9Neh0kD16IOvIjafiGPMekRV
IjaKl1gP4QwUgrNJ9nOwLc0B
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:21 2024 by rpki-client on console-ams.rpki-client.org