Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/017f89-9130-4a4e-8547-f3b9741d1d4f/1/AibZPa22HsR_zPT9QrOQ0JOykts.roa
File: AibZPa22HsR_zPT9QrOQ0JOykts.roa (raw, json)
Hash identifier: S5uTpfsiPeWJzpnu2IIr4rY8wjLrFQh3W7XY74ivL4U=
Subject key identifier: 02:26:D9:3D:AD:B6:1E:C4:7F:CC:F4:FD:42:B3:90:D0:93:B2:92:DB
Certificate issuer: /CN=ff2a50eedfe78040209d6c0ab95f83b5460398dd
Certificate serial: 06F5DD50
Authority key identifier: FF:2A:50:EE:DF:E7:80:40:20:9D:6C:0A:B9:5F:83:B5:46:03:98:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ypQ7t_ngEAgnWwKuV-DtUYDmN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/017f89-9130-4a4e-8547-f3b9741d1d4f/1/AibZPa22HsR_zPT9QrOQ0JOykts.roa
Signing time: Sat 01 Jan 2022 00:53:00 +0000
ROA not before: Sat 01 Jan 2022 00:53:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207076
IP address blocks: 2001:67c:1430::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116776272 (0x6f5dd50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff2a50eedfe78040209d6c0ab95f83b5460398dd
Validity
Not Before: Jan 1 00:53:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0226d93dadb61ec47fccf4fd42b390d093b292db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:98:88:e2:ba:fb:6c:ed:30:7a:d7:1b:59:5a:
ed:0c:3a:f4:ff:65:c6:45:62:54:77:ed:f2:59:a2:
93:25:1f:6a:94:cc:43:9d:a5:1a:9b:07:b9:3f:01:
b6:d8:d9:ba:b8:27:74:7e:b4:86:9a:34:a5:9c:52:
db:11:e2:4b:63:0b:36:f4:85:7d:74:8a:28:88:c1:
9c:01:7a:78:5a:b5:fe:e2:e0:e9:b9:f9:33:f7:ac:
6a:ce:1e:7e:be:fa:93:8b:6d:1c:80:f8:56:e1:89:
31:ad:d3:ca:be:89:c6:50:13:dd:ba:bf:12:d8:41:
fb:fd:4d:47:2d:f1:c4:c9:dc:fa:ae:55:00:ad:85:
25:29:2e:bd:4e:7d:69:57:cd:6e:14:85:ca:b5:9b:
eb:be:f4:2c:a8:96:32:18:37:c0:c9:35:c6:3d:c4:
56:13:f5:bb:53:2a:c9:67:68:3a:3a:12:ad:a8:ad:
93:83:1d:36:62:e2:54:ef:aa:9d:77:ec:1a:99:6b:
0b:2f:83:3b:fa:a3:09:4e:70:82:63:37:d2:f5:7f:
ab:ba:ca:c9:1f:b2:6e:17:fa:27:e0:29:f3:72:b8:
9a:b4:5e:4b:6e:f8:5b:6a:d6:9e:30:0d:df:cb:0b:
d9:18:db:8c:61:5c:28:bd:31:dc:62:51:94:28:e4:
f0:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:26:D9:3D:AD:B6:1E:C4:7F:CC:F4:FD:42:B3:90:D0:93:B2:92:DB
X509v3 Authority Key Identifier:
keyid:FF:2A:50:EE:DF:E7:80:40:20:9D:6C:0A:B9:5F:83:B5:46:03:98:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ypQ7t_ngEAgnWwKuV-DtUYDmN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/017f89-9130-4a4e-8547-f3b9741d1d4f/1/AibZPa22HsR_zPT9QrOQ0JOykts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/017f89-9130-4a4e-8547-f3b9741d1d4f/1/_ypQ7t_ngEAgnWwKuV-DtUYDmN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1430::/48
Signature Algorithm: sha256WithRSAEncryption
2a:e3:0d:8e:f0:ff:25:a1:6b:1b:5f:be:4d:67:ac:d6:5a:92:
51:ff:48:62:30:05:a7:04:08:bf:66:42:80:6f:54:a7:ab:c0:
dc:09:0f:d0:c8:46:04:75:4c:8b:e6:a8:c3:ac:cc:bd:83:c4:
c6:7f:d5:00:d1:7b:76:c9:b8:18:77:15:0a:c1:19:4c:cd:39:
d1:4e:d3:8c:02:15:ec:ac:81:23:28:3b:6a:5c:b9:52:6f:fd:
f3:33:dc:c1:5d:47:68:e0:69:d6:e5:5a:a5:fe:c8:c9:57:47:
d7:71:f2:dd:d3:39:39:9c:20:b8:ea:5a:af:5c:ab:67:74:ee:
ba:d8:70:44:61:3b:e8:20:95:a3:97:46:29:db:7c:9c:a4:2d:
ad:c7:3b:0b:98:12:e1:62:f1:bb:49:37:5c:c6:f8:7a:59:6e:
24:00:18:af:c0:e0:ae:a9:26:d1:74:73:a7:54:99:a1:d3:76:
a6:6f:d6:4a:e2:68:3a:f3:49:8c:b8:7b:47:83:c1:ab:43:8d:
b1:0a:5d:1f:dc:44:48:d9:31:9e:f9:40:5c:ff:b2:6a:ba:ed:
bb:0f:89:b1:42:e7:88:c8:b0:12:8d:bd:f1:86:58:07:0d:8a:
c5:ef:cb:ac:4c:e9:6a:7e:e9:46:16:5f:65:46:cc:40:08:dc:
b0:22:f7:6c
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEBvXdUDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZjJhNTBlZWRmZTc4MDQwMjA5ZDZjMGFiOTVmODNiNTQ2MDM5OGRkMB4XDTIyMDEw
MTAwNTMwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDIyNmQ5M2RhZGI2
MWVjNDdmY2NmNGZkNDJiMzkwZDA5M2IyOTJkYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJiYiOK6+2ztMHrXG1la7Qw69P9lxkViVHft8lmikyUfapTM
Q52lGpsHuT8BttjZurgndH60hpo0pZxS2xHiS2MLNvSFfXSKKIjBnAF6eFq1/uLg
6bn5M/esas4efr76k4ttHID4VuGJMa3Tyr6JxlAT3bq/EthB+/1NRy3xxMnc+q5V
AK2FJSkuvU59aVfNbhSFyrWb6770LKiWMhg3wMk1xj3EVhP1u1MqyWdoOjoSrait
k4MdNmLiVO+qnXfsGplrCy+DO/qjCU5wgmM30vV/q7rKyR+ybhf6J+Ap83K4mrRe
S274W2rWnjAN38sL2RjbjGFcKL0x3GJRlCjk8E0CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQCJtk9rbYexH/M9P1Cs5DQk7KS2zAfBgNVHSMEGDAWgBT/KlDu3+eAQCCd
bAq5X4O1RgOY3TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L195cFE3dF9uZ0VBZ25Xd0t1Vi1EdFVZRG1OMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvMDE3Zjg5LTkxMzAtNGE0ZS04NTQ3LWYzYjk3NDFkMWQ0Zi8x
L0FpYlpQYTIySHNSX3pQVDlRck9RMEpPeWt0cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
MDE3Zjg5LTkxMzAtNGE0ZS04NTQ3LWYzYjk3NDFkMWQ0Zi8xL195cFE3dF9uZ0VB
Z25Xd0t1Vi1EdFVZRG1OMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBnwUMDANBgkqhkiG9w0BAQsF
AAOCAQEAKuMNjvD/JaFrG1++TWes1lqSUf9IYjAFpwQIv2ZCgG9Up6vA3AkP0MhG
BHVMi+aow6zMvYPExn/VANF7dsm4GHcVCsEZTM050U7TjAIV7KyBIyg7aly5Um/9
8zPcwV1HaOBp1uVapf7IyVdH13Hy3dM5OZwguOpar1yrZ3TuuthwRGE76CCVo5dG
Kdt8nKQtrcc7C5gS4WLxu0k3XMb4elluJAAYr8Dgrqkm0XRzp1SZodN2pm/WSuJo
OvNJjLh7R4PBq0ONsQpdH9xESNkxnvlAXP+yarrtuw+JsULniMiwEo298YZYBw2K
xe/LrEzpan7pRhZfZUbMQAjcsCL3bA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:55 2024 by rpki-client on console-fra.rpki-client.org