Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/fdXzdomekgsBOgl5gYJhJOi_U6w.roa
File: fdXzdomekgsBOgl5gYJhJOi_U6w.roa (raw, json)
Hash identifier: 9lq8x4Wyngytbee4IQGDaAuLPyIe1f5UWTJTl01EOPA=
Subject key identifier: 7D:D5:F3:76:89:9E:92:0B:01:3A:09:79:81:82:61:24:E8:BF:53:AC
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01229F13
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/fdXzdomekgsBOgl5gYJhJOi_U6w.roa
Signing time: Sat 01 Jan 2022 00:59:44 +0000
ROA not before: Sat 01 Jan 2022 00:59:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207536
IP address blocks: 2a0c:b641:670::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19046163 (0x1229f13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7dd5f376899e920b013a097981826124e8bf53ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4c:0d:36:b4:22:0e:e7:2a:f2:b0:23:b2:ec:
29:99:da:c1:9d:3d:67:d6:f6:29:e7:99:a7:6d:62:
5f:b2:b0:f9:1a:ec:9c:2f:ea:3c:fc:9f:ec:5b:7d:
53:a3:62:f8:49:8a:db:9e:d0:95:eb:3e:1a:5c:48:
57:b5:22:eb:df:4e:c1:51:37:f4:3e:da:90:44:0e:
4e:0f:fe:72:58:93:39:7d:51:06:4b:e9:40:c2:5b:
9f:f9:2b:df:b1:4e:bb:8a:fa:2c:51:95:a4:b5:00:
40:ff:0d:fa:26:2f:7d:25:c6:5d:ac:a2:5f:b2:33:
8d:36:82:5a:21:07:58:41:47:65:8a:7a:d2:4d:57:
3c:f3:99:57:9c:05:ae:3f:08:6c:19:2e:0e:a5:61:
03:0e:d7:c6:eb:b5:ed:66:12:44:c3:b8:82:ee:77:
26:4d:f1:47:f3:30:d6:0b:3b:e4:86:4b:c0:88:a1:
78:1c:63:36:70:ca:63:12:da:2b:82:41:6e:62:57:
07:ea:59:4f:87:ee:f1:b2:da:02:19:a2:32:3e:8c:
23:72:55:94:b3:12:cf:25:be:c4:9d:80:56:7c:77:
5e:ec:02:24:8d:16:63:9f:73:9f:fc:f0:6e:c2:26:
c6:71:4f:73:54:72:6e:0d:02:4b:34:f4:ab:99:48:
8a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:D5:F3:76:89:9E:92:0B:01:3A:09:79:81:82:61:24:E8:BF:53:AC
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/fdXzdomekgsBOgl5gYJhJOi_U6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:670::/44
Signature Algorithm: sha256WithRSAEncryption
1c:2a:64:5d:6b:b9:13:d4:04:06:75:f1:82:a6:79:e2:c4:3b:
f2:59:78:6f:4c:1b:79:4c:df:32:a5:43:0a:6a:88:71:bf:a3:
97:bd:14:e2:6e:c9:ee:86:7e:ba:0f:bf:c6:14:bb:53:4a:0d:
e2:c7:de:a5:41:e5:1c:08:16:0d:73:8b:ac:0e:e8:2e:e6:31:
16:43:41:81:a0:b5:6a:42:89:cd:0d:1e:5c:d8:1f:37:a3:be:
7c:97:be:40:62:31:53:7e:be:01:c6:89:9b:fd:7f:b3:e3:71:
d0:50:0c:6a:34:59:ed:cb:d1:47:cb:8e:e8:6f:5e:11:18:f9:
12:39:94:fe:de:38:da:07:cd:30:ee:aa:16:12:2f:c8:5d:98:
e8:d3:38:ec:16:3b:b7:6f:fc:6b:58:6d:19:66:e6:f3:c5:a6:
34:b7:86:8e:2f:01:c9:bf:df:29:85:5e:e4:93:23:ba:19:00:
cf:4d:19:6f:47:34:46:bd:b6:63:d8:a5:71:f7:79:19:db:89:
7e:ab:a6:fc:f2:2b:bb:19:04:5a:65:d8:e0:a7:67:34:a3:5f:
7f:e6:d5:be:af:33:71:cc:1f:aa:56:ee:ee:40:cf:84:9c:d7:
be:04:4c:47:b0:df:8b:34:77:46:bf:2a:b1:a7:aa:0d:87:80:
36:5c:96:0a
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEASKfEzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTk3NjgwMTM2M2QzNzU3ODYxNTJlNGQwNjFlNzVjOGJlYjM1MDU4MB4XDTIyMDEw
MTAwNTk0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2RkNWYzNzY4OTll
OTIwYjAxM2EwOTc5ODE4MjYxMjRlOGJmNTNhYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMlMDTa0Ig7nKvKwI7LsKZnawZ09Z9b2KeeZp21iX7Kw+Rrs
nC/qPPyf7Ft9U6Ni+EmK257Qles+GlxIV7Ui699OwVE39D7akEQOTg/+cliTOX1R
BkvpQMJbn/kr37FOu4r6LFGVpLUAQP8N+iYvfSXGXayiX7IzjTaCWiEHWEFHZYp6
0k1XPPOZV5wFrj8IbBkuDqVhAw7Xxuu17WYSRMO4gu53Jk3xR/Mw1gs75IZLwIih
eBxjNnDKYxLaK4JBbmJXB+pZT4fu8bLaAhmiMj6MI3JVlLMSzyW+xJ2AVnx3XuwC
JI0WY59zn/zwbsImxnFPc1Rybg0CSzT0q5lIijkCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBR91fN2iZ6SCwE6CXmBgmEk6L9TrDAfBgNVHSMEGDAWgBQFl2gBNj03V4YV
Lk0GHnXIvrNQWDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JaZG9BVFk5TjFlR0ZTNU5CaDUxeUw2elVGZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvMmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8x
L2ZkWHpkb21la2dzQk9nbDVnWUpoSk9pX1U2dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
MmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8xL0JaZG9BVFk5TjFl
R0ZTNU5CaDUxeUw2elVGZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoMtkEGcDANBgkqhkiG9w0BAQsF
AAOCAQEAHCpkXWu5E9QEBnXxgqZ54sQ78ll4b0wbeUzfMqVDCmqIcb+jl70U4m7J
7oZ+ug+/xhS7U0oN4sfepUHlHAgWDXOLrA7oLuYxFkNBgaC1akKJzQ0eXNgfN6O+
fJe+QGIxU36+AcaJm/1/s+Nx0FAMajRZ7cvRR8uO6G9eERj5EjmU/t442gfNMO6q
FhIvyF2Y6NM47BY7t2/8a1htGWbm88WmNLeGji8Byb/fKYVe5JMjuhkAz00Zb0c0
Rr22Y9ilcfd5GduJfqum/PIruxkEWmXY4KdnNKNff+bVvq8zccwfqlbu7kDPhJzX
vgRMR7DfizR3Rr8qsaeqDYeANlyWCg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org