Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/6f1f2d-99bb-44e0-adc5-8dfd5b152f79/1/fYcfBWOG76bYDKh39kimQWMlNeM.roa
File: fYcfBWOG76bYDKh39kimQWMlNeM.roa (raw, json)
Hash identifier: pHmR/P715JE+PKRznMNaaEY9b9vxdGcJOoGTXDpMRpM=
Subject key identifier: 7D:87:1F:05:63:86:EF:A6:D8:0C:A8:77:F6:48:A6:41:63:25:35:E3
Certificate issuer: /CN=92d8b76b21647696c9f4d6382b525d83a0580f4a
Certificate serial: 052930D4
Authority key identifier: 92:D8:B7:6B:21:64:76:96:C9:F4:D6:38:2B:52:5D:83:A0:58:0F:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kti3ayFkdpbJ9NY4K1Jdg6BYD0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/6f1f2d-99bb-44e0-adc5-8dfd5b152f79/1/fYcfBWOG76bYDKh39kimQWMlNeM.roa
Signing time: Sat 01 Jan 2022 06:55:19 +0000
ROA not before: Sat 01 Jan 2022 06:55:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213151
IP address blocks: 2001:678:1e8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86585556 (0x52930d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d8b76b21647696c9f4d6382b525d83a0580f4a
Validity
Not Before: Jan 1 06:55:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d871f056386efa6d80ca877f648a641632535e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b0:3c:0d:b6:ac:35:78:b1:ee:82:1e:e5:b6:
57:d4:cf:c4:e2:8e:27:c3:1c:3a:bb:80:f1:5e:93:
ee:4f:05:ca:34:74:59:29:d2:fd:0d:ff:56:87:5d:
06:c9:38:ad:58:25:35:8a:2c:ec:74:30:b3:c1:b5:
6a:52:f2:bf:77:59:00:04:f2:d1:b2:c5:0d:04:31:
a1:69:1a:bc:40:3c:f5:08:cb:ec:30:08:1f:6e:65:
e5:ce:a2:c6:62:fa:b7:47:2a:9d:5c:7e:7a:ca:95:
99:4a:81:d8:c0:ba:03:02:93:aa:e0:ce:51:ac:a2:
a8:5c:5f:87:41:91:b6:d6:a7:e6:0b:0e:aa:92:e3:
4e:11:fa:8d:52:4d:97:02:da:50:29:c7:82:9f:9d:
02:cc:00:ae:0f:06:cf:7e:58:74:6b:8e:55:91:b0:
f2:f7:9a:89:bd:59:05:b5:63:a8:89:35:5a:04:36:
1f:f7:f8:b8:4b:65:e5:5c:a0:ff:4d:ee:56:d0:8d:
89:eb:30:9a:98:7b:51:2c:7c:76:dd:e8:4a:d2:89:
66:62:65:ef:d0:ae:46:34:d2:ee:63:63:39:58:6c:
cd:3e:7a:04:3e:05:dc:6c:b0:86:f2:23:df:22:0f:
d1:24:eb:3e:61:2f:34:d0:ee:ff:78:ec:f4:0a:03:
9d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:87:1F:05:63:86:EF:A6:D8:0C:A8:77:F6:48:A6:41:63:25:35:E3
X509v3 Authority Key Identifier:
keyid:92:D8:B7:6B:21:64:76:96:C9:F4:D6:38:2B:52:5D:83:A0:58:0F:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kti3ayFkdpbJ9NY4K1Jdg6BYD0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6f1f2d-99bb-44e0-adc5-8dfd5b152f79/1/fYcfBWOG76bYDKh39kimQWMlNeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/6f1f2d-99bb-44e0-adc5-8dfd5b152f79/1/kti3ayFkdpbJ9NY4K1Jdg6BYD0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:1e8::/48
Signature Algorithm: sha256WithRSAEncryption
9b:11:52:d0:1d:4a:3e:50:82:5e:6d:3c:6e:74:08:64:31:81:
af:8d:bb:1b:b4:5f:6b:c6:ea:80:61:bb:de:e1:1c:7d:f9:da:
71:23:21:e5:be:b8:c3:fe:81:ad:d0:f8:36:01:bb:11:cd:3f:
b4:b5:b0:66:fe:dc:e4:4f:df:f0:e2:33:45:fa:92:12:f7:cb:
7b:2d:6d:5f:e7:e3:04:86:1b:06:61:fd:bf:e4:23:97:fa:0f:
79:40:39:72:5c:6a:f5:f0:ae:39:92:35:96:73:a8:8f:eb:4b:
9d:7d:0a:64:18:14:e8:f4:8d:34:d6:75:fb:3b:f8:01:f5:b2:
6a:4f:27:a0:e9:5a:c6:53:7a:50:f1:b3:2d:b3:e3:82:f2:27:
33:0c:47:5f:ef:e2:f1:e3:9e:55:8f:57:2a:61:35:b5:7d:23:
f7:88:f0:65:2d:90:2f:c7:f5:c6:53:1c:7b:0f:fb:b0:6e:84:
46:57:6b:b4:b6:7e:58:6b:2e:ab:83:61:22:cc:eb:7e:fb:78:
91:dd:2a:95:a1:45:d9:9e:9a:0c:5d:e5:06:c0:f5:6d:09:05:
20:fb:81:23:df:9d:30:c2:88:37:fd:8d:cc:4a:40:66:0f:e7:
ba:15:22:6f:d2:3c:5e:4d:65:0f:2a:a4:3b:df:39:c4:9c:e3:
4f:65:ce:bb
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEBSkw1DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MmQ4Yjc2YjIxNjQ3Njk2YzlmNGQ2MzgyYjUyNWQ4M2EwNTgwZjRhMB4XDTIyMDEw
MTA2NTUxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2Q4NzFmMDU2Mzg2
ZWZhNmQ4MGNhODc3ZjY0OGE2NDE2MzI1MzVlMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKiwPA22rDV4se6CHuW2V9TPxOKOJ8McOruA8V6T7k8FyjR0
WSnS/Q3/VoddBsk4rVglNYos7HQws8G1alLyv3dZAATy0bLFDQQxoWkavEA89QjL
7DAIH25l5c6ixmL6t0cqnVx+esqVmUqB2MC6AwKTquDOUayiqFxfh0GRttan5gsO
qpLjThH6jVJNlwLaUCnHgp+dAswArg8Gz35YdGuOVZGw8veaib1ZBbVjqIk1WgQ2
H/f4uEtl5Vyg/03uVtCNieswmph7USx8dt3oStKJZmJl79CuRjTS7mNjOVhszT56
BD4F3GywhvIj3yIP0STrPmEvNNDu/3js9AoDnRsCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBR9hx8FY4bvptgMqHf2SKZBYyU14zAfBgNVHSMEGDAWgBSS2LdrIWR2lsn0
1jgrUl2DoFgPSjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2t0aTNheUZrZHBiSjlOWTRLMUpkZzZCWUQwby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWIvNmYxZjJkLTk5YmItNDRlMC1hZGM1LThkZmQ1YjE1MmY3OS8x
L2ZZY2ZCV09HNzZiWURLaDM5a2ltUVdNbE5lTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWIv
NmYxZjJkLTk5YmItNDRlMC1hZGM1LThkZmQ1YjE1MmY3OS8xL2t0aTNheUZrZHBi
SjlOWTRLMUpkZzZCWUQwby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBngB6DANBgkqhkiG9w0BAQsF
AAOCAQEAmxFS0B1KPlCCXm08bnQIZDGBr427G7Rfa8bqgGG73uEcffnacSMh5b64
w/6BrdD4NgG7Ec0/tLWwZv7c5E/f8OIzRfqSEvfLey1tX+fjBIYbBmH9v+Qjl/oP
eUA5clxq9fCuOZI1lnOoj+tLnX0KZBgU6PSNNNZ1+zv4AfWyak8noOlaxlN6UPGz
LbPjgvInMwxHX+/i8eOeVY9XKmE1tX0j94jwZS2QL8f1xlMcew/7sG6ERldrtLZ+
WGsuq4NhIszrfvt4kd0qlaFF2Z6aDF3lBsD1bQkFIPuBI9+dMMKIN/2NzEpAZg/n
uhUib9I8Xk1lDyqkO985xJzjT2XOuw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:47 2024 by rpki-client on console-ams.rpki-client.org