Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/xv_9_Rkzu9dnBn-qaoZyk8rdhJ8.roa
File: xv_9_Rkzu9dnBn-qaoZyk8rdhJ8.roa (raw, json)
Hash identifier: 4OpexX1FIQRRA3CN2wCFUILF6MXx9hhe7Dr59f7bOIA=
Subject key identifier: C6:FF:FD:FD:19:33:BB:D7:67:06:7F:AA:6A:86:72:93:CA:DD:84:9F
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 01855D3F1237F9C7957396BCEFC50A5F9AF8
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/xv_9_Rkzu9dnBn-qaoZyk8rdhJ8.roa
Signing time: Thu 29 Dec 2022 09:38:12 +0000
ROA not before: Thu 29 Dec 2022 09:38:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210381
IP address blocks: 2a10:4646:50::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5d:3f:12:37:f9:c7:95:73:96:bc:ef:c5:0a:5f:9a:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Dec 29 09:38:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6fffdfd1933bbd767067faa6a867293cadd849f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b1:bc:0e:9e:d5:26:80:1c:53:8b:35:fc:e6:
e2:31:b6:f0:77:f6:6f:b8:ef:d9:cb:27:d1:85:45:
4d:58:8a:9a:51:b8:c8:b2:3b:e3:a2:0f:5d:1d:8c:
dc:1a:65:78:99:93:62:70:a2:6c:e3:ea:18:36:b3:
d6:36:87:58:7c:9f:dd:58:02:31:cf:0e:4a:d2:3f:
3c:39:8c:fd:0b:c5:83:07:b0:83:25:38:05:0b:e5:
0b:25:5e:37:da:b0:84:35:a8:3c:61:28:26:8a:3d:
8e:61:4d:06:38:65:59:70:d7:25:42:2a:29:68:6e:
23:00:c0:ea:93:04:57:6b:c2:82:fd:bc:c1:af:d9:
e3:11:88:6b:83:7e:b6:81:8d:3e:80:07:46:0f:f1:
e1:68:07:80:a8:db:ae:a9:06:9e:6b:41:a2:dd:60:
15:09:c6:bc:84:f0:d4:8b:79:e1:92:11:0a:9f:6c:
91:dd:f6:85:a8:42:8f:46:17:8d:e2:55:af:bb:dc:
73:2b:68:42:3c:b3:8f:73:48:1a:e4:63:60:55:a7:
34:03:18:03:6b:9e:3a:55:19:88:99:19:48:65:f0:
89:28:35:5f:d1:71:da:cd:67:70:79:c6:43:79:b9:
47:60:03:6b:3d:ce:8c:75:ed:1b:65:db:de:3f:4a:
b3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:FF:FD:FD:19:33:BB:D7:67:06:7F:AA:6A:86:72:93:CA:DD:84:9F
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/xv_9_Rkzu9dnBn-qaoZyk8rdhJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:50::/44
Signature Algorithm: sha256WithRSAEncryption
10:6e:09:96:7f:9b:0a:99:b4:18:ef:a8:10:d4:20:0d:00:b7:
28:d0:50:c7:71:89:20:6e:e9:f1:16:17:42:a1:63:a9:c8:86:
61:fb:84:99:de:08:83:2e:88:a6:3b:0a:08:f2:b7:a1:6e:58:
ea:63:50:11:f9:1b:7f:b6:50:2a:7c:5b:7e:78:f1:73:29:9e:
5d:c8:e2:d7:5d:a0:8a:dc:f7:ac:fa:d1:84:9a:27:a6:23:6e:
27:ce:1b:7a:8f:c2:70:2c:83:ac:90:6f:eb:41:8e:19:19:92:
6a:e6:04:f9:d8:8c:85:93:d7:39:c1:cb:bc:e9:25:48:26:d8:
f3:7b:94:35:57:63:3c:b4:87:fe:43:a7:ad:1a:95:87:e7:80:
60:4b:ae:b9:a2:0a:15:10:78:32:e4:4b:57:b5:2e:61:25:13:
b8:25:39:3f:0c:a4:ee:0a:83:f4:d3:2f:2b:4d:c0:91:52:e8:
62:1b:31:04:f7:ae:13:ab:38:04:0a:06:62:94:dc:20:e5:0f:
3f:3e:06:ba:eb:2b:05:2e:2b:94:5b:9a:92:a4:fc:3a:8e:41:
79:eb:f5:b4:43:f8:d4:f9:0f:86:7e:c1:06:f7:d0:6f:8b:57:
0b:3f:64:32:82:da:e2:e5:76:ec:3e:1b:22:cc:d6:dd:9f:bc:
71:85:cf:dc
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVdPxI3+ceVc5a878UKX5r4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNmQyODE3NDkxZGQyY2QwNjc4MDY4ZTM1YTllZmM2ODY2
N2RmMDIwHhcNMjIxMjI5MDkzODEyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNmZmZmRmZDE5MzNiYmQ3NjcwNjdmYWE2YTg2NzI5M2NhZGQ4NDlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtLG8Dp7VJoAcU4s1/ObiMbbwd/Zv
uO/ZyyfRhUVNWIqaUbjIsjvjog9dHYzcGmV4mZNicKJs4+oYNrPWNodYfJ/dWAIx
zw5K0j88OYz9C8WDB7CDJTgFC+ULJV432rCENag8YSgmij2OYU0GOGVZcNclQiop
aG4jAMDqkwRXa8KC/bzBr9njEYhrg362gY0+gAdGD/HhaAeAqNuuqQaea0Gi3WAV
Cca8hPDUi3nhkhEKn2yR3faFqEKPRheN4lWvu9xzK2hCPLOPc0ga5GNgVac0AxgD
a546VRmImRlIZfCJKDVf0XHazWdwecZDeblHYANrPc6Mde0bZdveP0qz1QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFMb//f0ZM7vXZwZ/qmqGcpPK3YSfMB8GA1UdIwQY
MBaAFEptKBdJHdLNBngGjjWp78aGZ98CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMt
YWU5MjgzZTc5NjRlLzEveHZfOV9Sa3p1OWRuQm4tcWFvWnlrOHJkaEo4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMtYWU5MjgzZTc5NjRl
LzEvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhBGRgBQ
MA0GCSqGSIb3DQEBCwUAA4IBAQAQbgmWf5sKmbQY76gQ1CANALco0FDHcYkgbunx
FhdCoWOpyIZh+4SZ3giDLoimOwoI8rehbljqY1AR+Rt/tlAqfFt+ePFzKZ5dyOLX
XaCK3Pes+tGEmiemI24nzht6j8JwLIOskG/rQY4ZGZJq5gT52IyFk9c5wcu86SVI
Jtjze5Q1V2M8tIf+Q6etGpWH54BgS665ogoVEHgy5EtXtS5hJRO4JTk/DKTuCoP0
0y8rTcCRUuhiGzEE964TqzgECgZilNwg5Q8/Pga66ysFLiuUW5qSpPw6jkF56/W0
Q/jU+Q+GfsEG99Bvi1cLP2Qygtri5XbsPhsizNbdn7xxhc/c
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:43 2024 by rpki-client on console-ams.rpki-client.org