Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/QS7SgsVX1SO4Mr_WyBLj2vZ8vg8.roa
File: QS7SgsVX1SO4Mr_WyBLj2vZ8vg8.roa (raw, json)
Hash identifier: O95TiiWe9Tm1S1A9SdEGRNX/0IkrMLOBD4Rbqh8A6VE=
Subject key identifier: 41:2E:D2:82:C5:57:D5:23:B8:32:BF:D6:C8:12:E3:DA:F6:7C:BE:0F
Certificate issuer: /CN=c6bfbef279bf9ded6e3651e0628d39ba79294f78
Certificate serial: 132AF394
Authority key identifier: C6:BF:BE:F2:79:BF:9D:ED:6E:36:51:E0:62:8D:39:BA:79:29:4F:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xr--8nm_ne1uNlHgYo05unkpT3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/QS7SgsVX1SO4Mr_WyBLj2vZ8vg8.roa
Signing time: Sat 01 Jan 2022 01:51:15 +0000
ROA not before: Sat 01 Jan 2022 01:51:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20118
IP address blocks: 2a03:ba1::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321581972 (0x132af394)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6bfbef279bf9ded6e3651e0628d39ba79294f78
Validity
Not Before: Jan 1 01:51:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=412ed282c557d523b832bfd6c812e3daf67cbe0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0a:b3:f5:f4:82:32:f5:65:1e:5d:eb:d5:a2:
54:74:29:5f:74:8e:ac:05:00:66:fc:41:d6:3a:fc:
55:40:26:40:b6:0a:df:07:24:05:11:99:d0:9c:19:
8e:68:9c:48:8d:10:f8:73:4b:b4:15:8a:19:97:fc:
af:74:9b:58:8e:25:1a:e0:86:24:0c:ae:51:f9:10:
d6:8b:bd:30:69:10:aa:1d:70:b3:25:0f:89:df:30:
97:13:13:b3:cf:59:07:e2:97:f7:1b:d5:40:02:66:
9e:35:f6:ec:4f:a3:47:6d:7b:2f:c9:fa:43:45:22:
a3:b0:4b:d6:65:6d:2a:d6:ee:3b:df:0a:e5:43:b1:
34:e8:ac:5a:ce:d4:14:58:02:43:ce:4b:b9:9b:c9:
3e:3b:d0:87:e2:b6:a3:0c:d6:4b:3b:72:e3:f0:23:
83:27:4b:49:3b:f5:8c:da:ee:8c:b9:65:61:3d:c1:
3a:84:65:63:1b:66:cd:75:ed:8f:e4:ef:04:bd:8a:
a7:62:03:e3:66:5d:49:c4:b8:f3:7c:a7:f9:c7:cd:
0c:56:68:a8:28:44:4a:22:40:1d:3b:dd:f3:3f:79:
49:d7:e5:40:69:2f:ea:34:80:e8:cc:99:28:75:5d:
80:a6:76:51:7f:c5:5b:7a:98:ee:88:6f:05:ed:a4:
f0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:2E:D2:82:C5:57:D5:23:B8:32:BF:D6:C8:12:E3:DA:F6:7C:BE:0F
X509v3 Authority Key Identifier:
keyid:C6:BF:BE:F2:79:BF:9D:ED:6E:36:51:E0:62:8D:39:BA:79:29:4F:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xr--8nm_ne1uNlHgYo05unkpT3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/QS7SgsVX1SO4Mr_WyBLj2vZ8vg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/xr--8nm_ne1uNlHgYo05unkpT3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:ba1::/64
Signature Algorithm: sha256WithRSAEncryption
9b:c0:23:b0:43:01:e8:24:bb:75:a9:ed:51:27:ae:74:d6:22:
4c:58:1f:e3:f1:64:c7:b5:48:cb:2f:cf:f2:36:f4:8f:94:84:
19:b6:ce:77:28:17:92:31:a9:6d:3b:81:df:2f:46:27:9b:43:
a6:4d:c6:09:7d:ed:51:ba:23:57:63:a9:56:33:2e:37:96:d5:
ef:5e:08:70:90:2e:20:d4:9a:3e:0d:ba:84:79:1c:da:5d:59:
bb:5f:5d:bf:1b:9c:8e:ca:49:d6:a8:b3:5e:45:8c:c6:03:8d:
54:46:84:0e:6c:93:06:88:53:4a:2f:a5:b2:df:da:cb:0b:9f:
79:06:de:bf:eb:42:ac:cc:97:1e:2e:38:0b:86:47:de:a3:7c:
a6:76:b2:a8:b1:a0:a2:5f:a3:7b:6d:1a:01:42:eb:82:ce:2d:
f0:ec:85:4c:d2:ed:35:80:6b:62:1d:14:25:a7:69:36:a5:53:
ba:90:02:b3:7c:50:fd:63:45:d0:11:76:55:b3:eb:36:69:74:
b8:7d:3b:46:0e:1d:a8:b4:9b:52:86:a0:79:73:fa:85:df:ee:
c7:4f:4b:40:53:31:15:e8:84:53:19:39:a4:75:66:d1:ad:83:
56:53:21:81:7a:c7:1a:f2:4a:d4:36:f5:23:6e:2c:fd:2f:01:
a8:cb:3a:da
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIEEyrzlDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NmJmYmVmMjc5YmY5ZGVkNmUzNjUxZTA2MjhkMzliYTc5Mjk0Zjc4MB4XDTIyMDEw
MTAxNTExNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDEyZWQyODJjNTU3
ZDUyM2I4MzJiZmQ2YzgxMmUzZGFmNjdjYmUwZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL4Ks/X0gjL1ZR5d69WiVHQpX3SOrAUAZvxB1jr8VUAmQLYK
3wckBRGZ0JwZjmicSI0Q+HNLtBWKGZf8r3SbWI4lGuCGJAyuUfkQ1ou9MGkQqh1w
syUPid8wlxMTs89ZB+KX9xvVQAJmnjX27E+jR217L8n6Q0Uio7BL1mVtKtbuO98K
5UOxNOisWs7UFFgCQ85LuZvJPjvQh+K2owzWSzty4/AjgydLSTv1jNrujLllYT3B
OoRlYxtmzXXtj+TvBL2Kp2ID42ZdScS483yn+cfNDFZoqChESiJAHTvd8z95Sdfl
QGkv6jSA6MyZKHVdgKZ2UX/FW3qY7ohvBe2k8CECAwEAAaOCAg4wggIKMB0GA1Ud
DgQWBBRBLtKCxVfVI7gyv9bIEuPa9ny+DzAfBgNVHSMEGDAWgBTGv77yeb+d7W42
UeBijTm6eSlPeDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hyLS04bm1fbmUxdU5sSGdZbzA1dW5rcFQzZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjAvMjg0NjJjLTJjMjMtNGY5NS04ZThkLWFkZTUzMGQ3YzQxYi8x
L1FTN1Nnc1ZYMVNPNE1yX1d5QkxqMnZaOHZnOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjAv
Mjg0NjJjLTJjMjMtNGY5NS04ZThkLWFkZTUzMGQ3YzQxYi8xL3hyLS04bm1fbmUx
dU5sSGdZbzA1dW5rcFQzZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAk
BggrBgEFBQcBBwEB/wQVMBMwEQQCAAIwCwMJACoDC6EAAAAAMA0GCSqGSIb3DQEB
CwUAA4IBAQCbwCOwQwHoJLt1qe1RJ6501iJMWB/j8WTHtUjLL8/yNvSPlIQZts53
KBeSMaltO4HfL0Ynm0OmTcYJfe1RuiNXY6lWMy43ltXvXghwkC4g1Jo+DbqEeRza
XVm7X12/G5yOyknWqLNeRYzGA41URoQObJMGiFNKL6Wy39rLC595Bt6/60KszJce
LjgLhkfeo3ymdrKosaCiX6N7bRoBQuuCzi3w7IVM0u01gGtiHRQlp2k2pVO6kAKz
fFD9Y0XQEXZVs+s2aXS4fTtGDh2otJtShqB5c/qF3+7HT0tAUzEV6IRTGTmkdWbR
rYNWUyGBesca8krUNvUjbiz9LwGoyzra
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:38 2024 by rpki-client on console-ams.rpki-client.org