Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/dxJRV2uwkZQa0ZduoEk-fjMQfIo.roa
File: dxJRV2uwkZQa0ZduoEk-fjMQfIo.roa (raw, json)
Hash identifier: dRYMGSSNzX4ACiLiyOIH64KrXpM0BV1Cx7OFMJ615hY=
Subject key identifier: 77:12:51:57:6B:B0:91:94:1A:D1:97:6E:A0:49:3E:7E:33:10:7C:8A
Certificate issuer: /CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004
Certificate serial: 6A5A0E
Authority key identifier: F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/dxJRV2uwkZQa0ZduoEk-fjMQfIo.roa
Signing time: Sat 01 Jan 2022 01:56:20 +0000
ROA not before: Sat 01 Jan 2022 01:56:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211523
IP address blocks: 2001:678:f28::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6969870 (0x6a5a0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004
Validity
Not Before: Jan 1 01:56:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=771251576bb091941ad1976ea0493e7e33107c8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2a:05:ef:4f:1a:45:36:16:aa:53:a7:26:73:
80:48:ac:9a:39:9b:73:a7:48:96:55:2c:9b:39:47:
a1:5e:6d:dd:fe:8f:ae:a0:07:3a:26:74:81:b6:e4:
e5:1f:fd:8d:52:05:5e:f8:67:ca:89:7e:11:e0:14:
83:a7:c7:20:0a:0d:45:1a:94:c8:19:70:16:9c:52:
a2:f2:af:9f:50:ce:79:18:78:c9:3e:1b:ff:5a:09:
5c:e4:0c:96:21:aa:ca:ce:d8:61:06:70:19:ff:e1:
47:01:5d:cf:00:8a:59:b9:47:96:dd:97:6b:ab:9e:
65:44:2a:c6:d4:98:33:4b:dc:cc:ed:89:01:01:e9:
c3:dc:ed:3b:cd:74:2b:c7:75:59:ee:32:12:68:68:
d1:2b:1e:a8:84:bb:70:19:4b:14:05:83:72:0b:40:
24:6f:f3:c4:91:25:6b:e3:9b:ba:99:dd:b4:32:8b:
41:30:36:04:55:e8:00:32:71:81:92:c1:9b:41:a0:
93:70:2d:75:b7:a8:76:d1:f9:d9:15:b9:a8:54:70:
bd:1e:2d:ab:66:f6:c6:75:2a:94:87:95:f0:0e:52:
5f:13:b2:c6:40:51:c1:e0:76:e3:70:a4:50:1c:1c:
c5:fa:ce:65:32:ce:90:c6:ce:26:ad:d5:21:09:d2:
20:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:12:51:57:6B:B0:91:94:1A:D1:97:6E:A0:49:3E:7E:33:10:7C:8A
X509v3 Authority Key Identifier:
keyid:F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/dxJRV2uwkZQa0ZduoEk-fjMQfIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f28::/48
Signature Algorithm: sha256WithRSAEncryption
25:f4:a2:60:e1:14:4c:44:a0:b4:12:59:94:58:23:a3:fb:fb:
45:06:43:ac:66:00:df:6f:44:01:48:61:9d:d2:f0:7b:b4:ed:
f2:24:d7:12:6a:09:11:bd:e2:99:2c:c0:7b:e1:09:f2:e9:2f:
d7:f6:3d:bc:11:c1:7d:10:09:98:e9:64:3f:a8:5a:de:6c:be:
c4:2c:47:a6:7e:d9:c8:f6:a0:ab:e3:c2:4c:e1:a2:ed:19:cf:
b8:b5:b3:41:ad:60:56:a6:71:79:9c:32:a0:28:d7:f9:25:b0:
97:86:5e:e8:e7:06:e7:e3:54:ff:5c:c6:f2:9c:53:73:5f:33:
02:dd:b4:33:6c:ae:13:a5:fc:91:af:12:5c:34:c1:76:0f:53:
e4:fe:d6:22:f9:ad:18:31:37:27:73:21:1b:ef:ed:66:53:6d:
17:d7:79:ec:bb:ef:e9:d0:3e:86:5b:6b:b8:1e:58:d3:0d:72:
1c:27:c2:20:52:a2:40:99:db:18:04:e0:05:f2:f5:3e:cb:75:
6f:f7:c9:d7:6c:c7:5f:29:7b:d3:e7:d6:f8:cb:65:d5:07:6b:
c8:4f:2d:54:4f:ee:4a:e4:bc:04:b2:3c:c4:6d:32:ea:fe:06:
59:c3:00:cd:b9:1e:3f:8b:17:ef:ad:aa:68:6b:76:0d:16:59:
7b:06:86:e5
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIDaloOMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGYy
OGM2OWRhOTRjODVlZGQ0OGQ5YzFmZDhlMzMyYWUzYmVlNjYwMDQwHhcNMjIwMTAx
MDE1NjIwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg3NzEyNTE1NzZiYjA5
MTk0MWFkMTk3NmVhMDQ5M2U3ZTMzMTA3YzhhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA1CoF708aRTYWqlOnJnOASKyaOZtzp0iWVSybOUehXm3d/o+u
oAc6JnSBtuTlH/2NUgVe+GfKiX4R4BSDp8cgCg1FGpTIGXAWnFKi8q+fUM55GHjJ
Phv/Wglc5AyWIarKzthhBnAZ/+FHAV3PAIpZuUeW3Zdrq55lRCrG1JgzS9zM7YkB
AenD3O07zXQrx3VZ7jISaGjRKx6ohLtwGUsUBYNyC0Akb/PEkSVr45u6md20MotB
MDYEVegAMnGBksGbQaCTcC11t6h20fnZFbmoVHC9Hi2rZvbGdSqUh5XwDlJfE7LG
QFHB4HbjcKRQHBzF+s5lMs6Qxs4mrdUhCdIgRQIDAQABo4ICDDCCAggwHQYDVR0O
BBYEFHcSUVdrsJGUGtGXbqBJPn4zEHyKMB8GA1UdIwQYMBaAFPKMadqUyF7dSNnB
/Y4zKuO+5mAEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
OG94cDJwVElYdDFJMmNIOWpqTXE0NzdtWUFRLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8xYi8wZGNkOTYtMGFlMy00ZjVjLThkMjEtYTkwMmIwMDk2Yjk5LzEv
ZHhKUlYydXdrWlFhMFpkdW9Fay1mak1RZklvLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8w
ZGNkOTYtMGFlMy00ZjVjLThkMjEtYTkwMmIwMDk2Yjk5LzEvOG94cDJwVElYdDFJ
MmNIOWpqTXE0NzdtWUFRLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIG
CCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA8oMA0GCSqGSIb3DQEBCwUA
A4IBAQAl9KJg4RRMRKC0ElmUWCOj+/tFBkOsZgDfb0QBSGGd0vB7tO3yJNcSagkR
veKZLMB74Qny6S/X9j28EcF9EAmY6WQ/qFrebL7ELEemftnI9qCr48JM4aLtGc+4
tbNBrWBWpnF5nDKgKNf5JbCXhl7o5wbn41T/XMbynFNzXzMC3bQzbK4TpfyRrxJc
NMF2D1Pk/tYi+a0YMTcncyEb7+1mU20X13nsu+/p0D6GW2u4HljTDXIcJ8IgUqJA
mdsYBOAF8vU+y3Vv98nXbMdfKXvT59b4y2XVB2vITy1UT+5K5LwEsjzEbTLq/gZZ
wwDNuR4/ixfvrapoa3YNFll7Bobl
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:40 2023 by rpki-client on console-ams.rpki-client.org