Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/iM2wkFim2PfytfaUO-wTDOYQ9E4.roa
File: iM2wkFim2PfytfaUO-wTDOYQ9E4.roa (raw, json)
Hash identifier: AwkT48AUHYu+1ZMubefclG62tMVwT+osQxhfpTnsNLQ=
Subject key identifier: 88:CD:B0:90:58:A6:D8:F7:F2:B5:F6:94:3B:EC:13:0C:E6:10:F4:4E
Certificate issuer: /CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Certificate serial: 0CF54244
Authority key identifier: EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/iM2wkFim2PfytfaUO-wTDOYQ9E4.roa
Signing time: Sat 01 Jan 2022 12:58:00 +0000
ROA not before: Sat 01 Jan 2022 12:58:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202656
IP address blocks: 2a0d:2406:1134::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 217399876 (0xcf54244)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Validity
Not Before: Jan 1 12:58:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88cdb09058a6d8f7f2b5f6943bec130ce610f44e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b1:71:71:c2:52:e9:f1:f0:7d:06:cb:89:3b:
15:af:59:24:ed:c6:19:9f:83:a6:40:44:91:05:2e:
2a:b7:c1:4d:33:77:38:70:a9:a0:87:c9:fc:bf:01:
1a:aa:9b:2f:b6:bb:63:e7:54:76:63:e4:7e:c3:04:
0c:37:82:17:da:f9:e4:7b:8c:e8:b0:58:5f:d8:29:
26:d8:d4:99:f6:33:9a:c9:1f:91:9d:84:84:b2:e5:
ec:e3:4d:ff:51:c0:41:57:7b:5c:1b:97:a4:a9:4e:
52:26:3b:b9:7d:ce:b1:56:91:bf:16:7b:eb:a6:33:
9e:c9:8c:fb:10:7c:08:d9:3d:60:2a:81:d1:58:9d:
64:cc:2e:16:42:79:d8:b6:f6:fa:64:f0:ac:e2:f3:
ce:fd:f5:4b:b4:35:40:7f:64:03:0b:33:61:14:23:
24:4c:f9:f6:36:a6:9b:e6:fc:a2:ed:95:69:ca:38:
5e:f2:0f:78:0f:8c:b7:4e:6c:cd:c6:50:b7:74:c8:
fe:8c:29:69:82:39:d3:5a:43:78:f9:08:79:00:f4:
ae:66:dd:d8:bd:22:eb:6b:60:c7:f1:a4:70:4a:fd:
06:6a:fc:96:ac:98:9c:a9:5b:42:e8:f5:be:ff:08:
72:55:77:62:d9:6b:e8:d7:07:44:45:ce:91:91:da:
85:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:CD:B0:90:58:A6:D8:F7:F2:B5:F6:94:3B:EC:13:0C:E6:10:F4:4E
X509v3 Authority Key Identifier:
keyid:EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/iM2wkFim2PfytfaUO-wTDOYQ9E4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/7E-wYalCbk-yiF2CKGdXKhtYpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2406:1134::/48
Signature Algorithm: sha256WithRSAEncryption
74:01:c8:da:6f:69:6a:87:36:c0:af:1d:7a:43:52:f0:c9:2c:
b2:7e:0a:ff:ba:3b:c7:6b:29:5d:f6:b8:58:06:65:75:27:02:
1f:f7:fa:38:40:ed:6f:37:b4:48:42:a7:3c:a0:b4:3c:dd:80:
5f:b7:a5:28:f2:06:32:fc:06:98:ab:63:00:8e:a3:37:2f:57:
e8:77:1b:c6:f3:1d:a9:ae:55:3e:29:71:08:71:d0:07:45:56:
80:ae:1c:10:d7:2b:04:bb:43:ef:5e:00:f0:af:28:66:58:a6:
1e:79:22:bd:12:43:76:94:bc:51:9a:06:59:07:2a:14:5b:ec:
bb:8b:e5:4f:58:58:a4:50:2f:64:bf:e2:6d:ff:0d:15:b5:e1:
a6:fe:5e:39:4b:e5:b0:9a:de:87:db:40:76:e9:f7:ba:b8:ff:
85:9c:0e:74:48:48:55:13:d8:49:6d:41:e2:9d:8b:9d:dc:3a:
20:c9:45:33:7e:15:ff:76:b9:03:38:88:96:1f:dc:e3:45:e4:
25:67:d5:b1:50:7b:c3:f4:c3:67:ad:a9:7f:2c:39:52:d3:f9:
ba:44:3a:a3:33:16:df:0b:e0:c6:cf:fe:fc:74:33:18:fe:84:
77:49:77:39:b5:6b:03:9a:fc:af:8f:05:14:8f:03:26:0a:73:
d3:bd:c8:27
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEDPVCRDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YzRmYjA2MWE5NDI2ZTRmYjI4ODVkODIyODY3NTcyYTFiNThhNGMwMB4XDTIyMDEw
MTEyNTgwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODhjZGIwOTA1OGE2
ZDhmN2YyYjVmNjk0M2JlYzEzMGNlNjEwZjQ0ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK+xcXHCUunx8H0Gy4k7Fa9ZJO3GGZ+DpkBEkQUuKrfBTTN3
OHCpoIfJ/L8BGqqbL7a7Y+dUdmPkfsMEDDeCF9r55HuM6LBYX9gpJtjUmfYzmskf
kZ2EhLLl7ONN/1HAQVd7XBuXpKlOUiY7uX3OsVaRvxZ766YznsmM+xB8CNk9YCqB
0VidZMwuFkJ52Lb2+mTwrOLzzv31S7Q1QH9kAwszYRQjJEz59jamm+b8ou2Vaco4
XvIPeA+Mt05szcZQt3TI/owpaYI501pDePkIeQD0rmbd2L0i62tgx/GkcEr9Bmr8
lqyYnKlbQuj1vv8IclV3Ytlr6NcHREXOkZHahRUCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSIzbCQWKbY9/K19pQ77BMM5hD0TjAfBgNVHSMEGDAWgBTsT7BhqUJuT7KI
XYIoZ1cqG1ikwDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzdFLXdZYWxDYmsteWlGMkNLR2RYS2h0WXBNQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjIvN2JjM2FiLWQ5YjYtNGFlNC1iY2QxLWNlNTcxNTA2OTVhOS8x
L2lNMndrRmltMlBmeXRmYVVPLXdURE9ZUTlFNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjIv
N2JjM2FiLWQ5YjYtNGFlNC1iY2QxLWNlNTcxNTA2OTVhOS8xLzdFLXdZYWxDYmst
eWlGMkNLR2RYS2h0WXBNQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoNJAYRNDANBgkqhkiG9w0BAQsF
AAOCAQEAdAHI2m9paoc2wK8dekNS8Mkssn4K/7o7x2spXfa4WAZldScCH/f6OEDt
bze0SEKnPKC0PN2AX7elKPIGMvwGmKtjAI6jNy9X6HcbxvMdqa5VPilxCHHQB0VW
gK4cENcrBLtD714A8K8oZlimHnkivRJDdpS8UZoGWQcqFFvsu4vlT1hYpFAvZL/i
bf8NFbXhpv5eOUvlsJreh9tAdun3urj/hZwOdEhIVRPYSW1B4p2Lndw6IMlFM34V
/3a5AziIlh/c40XkJWfVsVB7w/TDZ62pfyw5UtP5ukQ6ozMW3wvgxs/+/HQzGP6E
d0l3ObVrA5r8r48FFI8DJgpz073IJw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:00 2024 by rpki-client on console-ams.rpki-client.org