Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/Yn2RjAUKfalgSEAT2r9w-UFJ8ec.roa
File: Yn2RjAUKfalgSEAT2r9w-UFJ8ec.roa (raw, json)
Hash identifier: f3U4FjnfuO4uHjqB8wD9hs7zeYusiF6BZb8s2kTlgiQ=
Subject key identifier: 62:7D:91:8C:05:0A:7D:A9:60:48:40:13:DA:BF:70:F9:41:49:F1:E7
Certificate issuer: /CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Certificate serial: 01837BAD7491F650158039C9A0BC7573DDE5
Authority key identifier: 9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/Yn2RjAUKfalgSEAT2r9w-UFJ8ec.roa
Signing time: Mon 26 Sep 2022 21:21:48 +0000
ROA not before: Mon 26 Sep 2022 21:21:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56817
IP address blocks: 2a0d:ff40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7b:ad:74:91:f6:50:15:80:39:c9:a0:bc:75:73:dd:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44
Validity
Not Before: Sep 26 21:21:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=627d918c050a7da960484013dabf70f94149f1e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:06:6f:00:e5:f8:49:bc:5f:b0:42:c3:71:de:
94:47:6d:b5:ff:d7:30:74:0a:1a:ca:19:59:a5:65:
4c:2e:3c:05:a8:52:e4:08:7b:1b:15:f4:4a:cd:fa:
b4:89:63:05:61:69:30:45:4b:46:6b:26:2a:c1:bf:
2c:ca:db:33:40:22:bf:c6:b9:47:58:3b:c2:5f:17:
07:83:6b:62:6a:af:47:4e:38:76:bc:ea:e4:41:c5:
72:7c:db:39:e1:57:80:7b:88:99:af:d2:41:f1:fe:
50:62:34:97:cb:ac:bd:ad:f3:b0:c9:9f:ac:6c:ad:
45:e3:8a:59:a3:13:15:e3:f4:26:f0:3f:3b:bc:46:
10:e5:a9:d8:27:3d:e1:1f:61:c5:6d:19:0f:a4:e1:
8d:55:26:46:79:f2:15:3f:d3:c6:10:54:31:d6:7f:
42:70:0b:6a:4e:df:b7:e4:b5:d0:df:39:8d:58:9a:
31:a9:6a:80:c5:2d:af:20:b5:6f:b1:0c:d1:7e:b6:
de:34:ba:5d:be:4f:e7:df:09:ca:d4:e5:c5:6c:24:
61:2c:36:a0:35:00:72:c8:00:98:24:94:cb:4b:22:
f8:25:a3:43:2b:71:4d:82:9f:33:21:7b:3f:f9:57:
7d:70:9a:0c:0b:74:a6:f8:eb:ed:ac:a4:52:fc:7a:
10:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:7D:91:8C:05:0A:7D:A9:60:48:40:13:DA:BF:70:F9:41:49:F1:E7
X509v3 Authority Key Identifier:
keyid:9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/Yn2RjAUKfalgSEAT2r9w-UFJ8ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:ff40::/29
Signature Algorithm: sha256WithRSAEncryption
1d:18:94:02:f9:aa:a7:e8:7e:54:2a:c2:1f:51:d5:1d:a8:73:
ca:88:94:56:53:4c:b1:34:ed:d0:60:75:c7:eb:cb:df:5d:2f:
0a:2f:42:a5:4a:51:21:db:10:26:f3:13:01:87:ec:d8:0c:4b:
b7:06:87:15:ab:6d:7a:21:31:e7:d3:25:bb:5f:90:4b:62:35:
82:50:da:73:19:5c:79:d8:31:d1:b0:ba:69:e6:26:23:7b:49:
90:2a:32:5a:6e:f2:d5:89:b8:c1:4d:1b:dd:22:72:08:94:df:
eb:07:bd:b0:a3:f6:ce:93:bf:71:13:9d:41:97:b8:16:ff:0a:
d3:82:a7:e6:bc:fe:89:62:60:a6:e0:1e:33:81:91:59:38:54:
0b:eb:42:0e:2e:d1:f6:bc:4d:50:01:a7:f2:23:e5:bb:00:c3:
53:e5:e0:ff:e6:5a:e8:04:07:62:da:4f:55:0a:c5:1f:89:7b:
9a:02:ce:c2:f1:62:e6:3e:0f:90:b5:e9:9d:60:58:89:87:cc:
85:bb:1c:22:e3:ad:bf:81:9e:75:bb:af:30:48:51:35:cd:6c:
22:96:a7:09:72:a4:0b:0c:40:11:50:5d:b7:88:9f:1e:92:fe:
c6:4d:d9:b4:c1:e3:d4:70:74:8f:45:c6:ee:9b:fc:af:45:20:
02:4a:f6:26
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYN7rXSR9lAVgDnJoLx1c93lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljNTU2NzY3MjAxYzUwZjZiMmE5NTVkYjZhMWU2ZTAxMWRm
YTVkNDQwHhcNMjIwOTI2MjEyMTQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MjdkOTE4YzA1MGE3ZGE5NjA0ODQwMTNkYWJmNzBmOTQxNDlmMWU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgZvAOX4SbxfsELDcd6UR221/9cw
dAoayhlZpWVMLjwFqFLkCHsbFfRKzfq0iWMFYWkwRUtGayYqwb8sytszQCK/xrlH
WDvCXxcHg2tiaq9HTjh2vOrkQcVyfNs54VeAe4iZr9JB8f5QYjSXy6y9rfOwyZ+s
bK1F44pZoxMV4/Qm8D87vEYQ5anYJz3hH2HFbRkPpOGNVSZGefIVP9PGEFQx1n9C
cAtqTt+35LXQ3zmNWJoxqWqAxS2vILVvsQzRfrbeNLpdvk/n3wnK1OXFbCRhLDag
NQByyACYJJTLSyL4JaNDK3FNgp8zIXs/+Vd9cJoMC3Sm+OvtrKRS/HoQjQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFGJ9kYwFCn2pYEhAE9q/cPlBSfHnMB8GA1UdIwQY
MBaAFJxVZ2cgHFD2sqlV22oebgEd+l1EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkZWblp5QWNVUGF5cVZYYmFoNXVBUjM2WFVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi82ZGFjODYtMjI0Yi00YWU1LWIyYTgt
NDk2YmE4MjQ5MmNlLzEvWW4yUmpBVUtmYWxnU0VBVDJyOXctVUZKOGVjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi82ZGFjODYtMjI0Yi00YWU1LWIyYTgtNDk2YmE4MjQ5MmNl
LzEvbkZWblp5QWNVUGF5cVZYYmFoNXVBUjM2WFVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg3/QDAN
BgkqhkiG9w0BAQsFAAOCAQEAHRiUAvmqp+h+VCrCH1HVHahzyoiUVlNMsTTt0GB1
x+vL310vCi9CpUpRIdsQJvMTAYfs2AxLtwaHFatteiEx59Mlu1+QS2I1glDacxlc
edgx0bC6aeYmI3tJkCoyWm7y1Ym4wU0b3SJyCJTf6we9sKP2zpO/cROdQZe4Fv8K
04Kn5rz+iWJgpuAeM4GRWThUC+tCDi7R9rxNUAGn8iPluwDDU+Xg/+Za6AQHYtpP
VQrFH4l7mgLOwvFi5j4PkLXpnWBYiYfMhbscIuOtv4GedbuvMEhRNc1sIpanCXKk
CwxAEVBdt4ifHpL+xk3ZtMHj1HB0j0XG7pv8r0UgAkr2Jg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:06 2024 by rpki-client on console-ams.rpki-client.org