Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/mZ9ExFUTvtIs4vOWLRIqMaSHaN8.roa
File: mZ9ExFUTvtIs4vOWLRIqMaSHaN8.roa (raw, json)
Hash identifier: DXZjHXRig9XFp2SWp984KJlf3hoZUIzZC9RhKBK1EBI=
Subject key identifier: 99:9F:44:C4:55:13:BE:D2:2C:E2:F3:96:2D:12:2A:31:A4:87:68:DF
Certificate issuer: /CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34
Certificate serial: 018506BAF82A9A6C8C47594F2CA4A383F057
Authority key identifier: 1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/mZ9ExFUTvtIs4vOWLRIqMaSHaN8.roa
Signing time: Mon 12 Dec 2022 14:26:34 +0000
ROA not before: Mon 12 Dec 2022 14:26:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201612
IP address blocks: 2001:678:24::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:06:ba:f8:2a:9a:6c:8c:47:59:4f:2c:a4:a3:83:f0:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34
Validity
Not Before: Dec 12 14:26:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=999f44c45513bed22ce2f3962d122a31a48768df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ed:c7:57:34:b0:3c:38:67:62:5b:90:c0:8c:
ee:df:3b:03:b4:86:ec:10:2b:7b:c4:56:f4:3f:5d:
88:8a:5f:6e:0a:90:d3:10:8f:7c:6b:1d:b2:55:4f:
bd:a3:d4:5e:92:2f:80:56:90:10:b9:59:80:95:98:
bd:c6:53:a2:72:85:eb:50:37:79:13:b1:42:a1:c6:
eb:08:f1:6b:e4:c6:ec:d7:5c:1c:7e:c2:c4:47:4a:
aa:ff:50:ab:c9:c8:46:2a:e7:cf:35:3c:b0:81:13:
eb:cf:40:3f:5e:26:38:71:7b:83:28:97:25:12:27:
c0:fd:e3:f7:7a:1a:03:37:b5:9a:75:eb:f6:4f:c2:
0c:7f:65:94:0e:c0:ec:85:da:16:a9:cb:ec:ac:42:
6a:d8:2d:df:4e:39:b7:a4:08:7a:be:35:28:fb:50:
03:96:a8:2b:ff:56:14:70:91:3e:dc:51:6a:38:c0:
8f:28:b6:12:c0:73:92:ed:df:d0:ab:6b:a4:c7:72:
0e:8b:6c:61:bd:5b:e4:05:4e:de:ea:1b:e5:3b:8e:
b2:ab:0b:3f:3c:aa:99:4c:be:b1:60:b3:ef:a1:89:
8c:86:d0:d0:55:8a:a2:61:21:8c:11:88:5d:57:74:
69:b1:3b:02:33:c2:f2:5f:50:f1:d7:16:00:e2:b4:
e9:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:9F:44:C4:55:13:BE:D2:2C:E2:F3:96:2D:12:2A:31:A4:87:68:DF
X509v3 Authority Key Identifier:
keyid:1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/mZ9ExFUTvtIs4vOWLRIqMaSHaN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:24::/48
Signature Algorithm: sha256WithRSAEncryption
76:ac:85:a7:c7:42:b3:41:3d:34:05:e7:d6:41:6c:65:bb:75:
69:b1:95:cf:39:85:ab:fe:73:05:7a:0a:37:08:3f:90:86:b8:
c1:44:52:d4:a0:bf:fd:ae:fe:e7:44:f0:2a:d2:ef:02:d4:c7:
f7:f9:25:9a:ca:02:ab:98:03:a0:56:da:5c:57:99:7a:ae:c7:
84:89:b9:b8:e5:19:a1:1c:ed:06:ca:a1:ad:6d:77:ae:b0:55:
9a:00:58:e2:09:43:69:0c:56:e9:29:f9:d8:81:7c:b1:de:c8:
33:8c:15:1f:fb:29:88:b7:bf:09:9d:1d:eb:2e:fb:c2:03:1c:
c7:63:fb:8e:3d:35:19:f6:ad:5f:b9:ed:b7:d4:a8:6d:fc:fc:
aa:64:12:78:81:d9:3c:0c:69:ad:ad:9e:06:05:66:e3:85:88:
dc:c6:f0:64:87:ea:4d:c9:9f:18:f6:da:1c:a1:53:c2:9c:d8:
a1:68:09:51:f1:8c:81:b9:1a:d3:73:1e:61:03:0c:88:bb:17:
e2:00:32:35:e3:06:df:7f:55:1f:2d:74:b4:99:67:19:65:f1:
48:62:15:52:b0:50:1e:d5:60:86:47:ad:83:e2:88:f9:31:1c:
e5:8a:46:c5:54:52:5c:48:1a:78:2e:52:ff:1d:a5:11:96:4b:
be:2e:88:8f
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYUGuvgqmmyMR1lPLKSjg/BXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMzkwYmZmNjVkY2VkY2E4MTNkN2ExMGQ3ZWMzMjhjMmY2
ZWFjMzQwHhcNMjIxMjEyMTQyNjM0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OTlmNDRjNDU1MTNiZWQyMmNlMmYzOTYyZDEyMmEzMWE0ODc2OGRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk+3HVzSwPDhnYluQwIzu3zsDtIbs
ECt7xFb0P12Iil9uCpDTEI98ax2yVU+9o9Reki+AVpAQuVmAlZi9xlOicoXrUDd5
E7FCocbrCPFr5Mbs11wcfsLER0qq/1CrychGKufPNTywgRPrz0A/XiY4cXuDKJcl
EifA/eP3ehoDN7Wadev2T8IMf2WUDsDshdoWqcvsrEJq2C3fTjm3pAh6vjUo+1AD
lqgr/1YUcJE+3FFqOMCPKLYSwHOS7d/Qq2ukx3IOi2xhvVvkBU7e6hvlO46yqws/
PKqZTL6xYLPvoYmMhtDQVYqiYSGMEYhdV3RpsTsCM8LyX1Dx1xYA4rTp/QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJmfRMRVE77SLOLzli0SKjGkh2jfMB8GA1UdIwQY
MBaAFBw5C/9l3O3KgT16ENfsMowvbqw0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSERrTF8yWGM3Y3FCUFhvUTEtd3lqQzl1ckRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8zNDgxMDQtOGE0MS00OTQ5LTg1NTIt
YTk3NjVlZGM3OTVjLzEvbVo5RXhGVVR2dElzNHZPV0xSSXFNYVNIYU44LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8zNDgxMDQtOGE0MS00OTQ5LTg1NTItYTk3NjVlZGM3OTVj
LzEvSERrTF8yWGM3Y3FCUFhvUTEtd3lqQzl1ckRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAAk
MA0GCSqGSIb3DQEBCwUAA4IBAQB2rIWnx0KzQT00BefWQWxlu3VpsZXPOYWr/nMF
ego3CD+QhrjBRFLUoL/9rv7nRPAq0u8C1Mf3+SWaygKrmAOgVtpcV5l6rseEibm4
5RmhHO0GyqGtbXeusFWaAFjiCUNpDFbpKfnYgXyx3sgzjBUf+ymIt78JnR3rLvvC
AxzHY/uOPTUZ9q1fue231Kht/PyqZBJ4gdk8DGmtrZ4GBWbjhYjcxvBkh+pNyZ8Y
9tocoVPCnNihaAlR8YyBuRrTcx5hAwyIuxfiADI14wbff1UfLXS0mWcZZfFIYhVS
sFAe1WCGR62D4oj5MRzlikbFVFJcSBp4LlL/HaURlku+LoiP
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:15 2023 by rpki-client on console-ams.rpki-client.org