Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/v28eOpTnL89xlNH3BNFGG4v3ZWo.roa
File: v28eOpTnL89xlNH3BNFGG4v3ZWo.roa (raw, json)
Hash identifier: hcCjbZbbNh1TEbOWYN4qVH8xu/VQeKjvfUfKYmsECqY=
Subject key identifier: BF:6F:1E:3A:94:E7:2F:CF:71:94:D1:F7:04:D1:46:1B:8B:F7:65:6A
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 03F5044C
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/v28eOpTnL89xlNH3BNFGG4v3ZWo.roa
Signing time: Sat 01 Jan 2022 06:00:49 +0000
ROA not before: Sat 01 Jan 2022 06:00:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212437
IP address blocks: 2a07:22c1:9::/48 maxlen: 48
2a07:22c1:30::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66389068 (0x3f5044c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Jan 1 06:00:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf6f1e3a94e72fcf7194d1f704d1461b8bf7656a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7e:a4:dd:45:6c:80:1a:0e:1e:3a:9d:88:91:
e0:7f:af:ae:c4:dc:28:f8:40:4a:f7:73:c4:64:02:
98:94:5a:aa:bb:31:c6:77:5a:99:2e:fc:98:39:e6:
9d:89:16:0f:fc:56:4f:3f:b5:39:92:fe:ca:ad:bd:
ca:49:fe:66:fc:b3:c6:90:ec:dd:79:c4:09:1c:70:
60:4b:6b:b5:af:55:b0:1e:04:5f:ca:54:7e:4e:45:
85:ee:ca:e2:d8:74:30:4f:6e:5f:6f:f1:1f:29:0d:
28:73:db:ec:9d:ba:72:8e:e6:1e:76:b3:97:62:0b:
27:89:d0:bd:f2:f2:3a:57:be:7d:ff:97:78:09:a5:
e6:7b:87:0d:02:15:1f:0d:ed:ab:d5:45:92:9f:c5:
60:eb:40:a9:e9:1a:80:cd:82:82:92:f9:6e:5b:a0:
db:23:87:90:e2:3f:7a:a2:7e:d7:e6:b5:30:c9:e5:
3b:86:7a:8b:ab:38:4e:0d:6a:cb:93:cf:61:95:93:
5e:76:72:aa:71:6e:2e:9f:c3:13:d9:5c:c2:f2:3c:
6d:29:95:92:f5:3e:4e:19:9a:c2:b2:32:5e:5d:2c:
1b:8d:98:6d:4b:22:5f:b8:b6:f8:c3:91:3e:cc:d5:
46:07:d9:8c:82:58:40:ab:ca:7c:be:f8:a7:ec:28:
d8:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:6F:1E:3A:94:E7:2F:CF:71:94:D1:F7:04:D1:46:1B:8B:F7:65:6A
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/v28eOpTnL89xlNH3BNFGG4v3ZWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:22c1:9::/48
2a07:22c1:30::/48
Signature Algorithm: sha256WithRSAEncryption
70:7c:e7:2e:72:42:60:4f:06:52:88:5c:79:08:0c:b9:b7:74:
81:62:bf:2d:af:da:e1:4c:8b:fd:03:26:45:3a:b8:03:2d:2e:
62:54:28:b6:66:37:8e:54:8a:5a:c7:48:49:7f:9f:6b:62:a3:
d3:6f:ce:8c:41:08:e8:50:f5:f4:b4:9b:38:4d:03:40:7c:64:
b5:2d:26:14:f4:76:b9:00:6b:88:d1:ff:28:59:2b:61:a9:40:
c0:76:1c:3c:ae:4b:59:95:26:fc:e1:73:65:c4:cf:18:2f:00:
3a:b2:10:78:79:6e:b1:8a:af:7b:4e:7d:4d:9a:1a:6f:3e:7d:
9a:2d:30:b7:41:b4:13:1f:5f:ca:6d:cd:aa:01:e8:09:59:e2:
2b:33:4f:08:b6:bb:98:5c:12:a4:c7:38:0d:1b:f2:b1:f8:b3:
08:2d:7f:2b:5f:8d:42:49:e6:0f:59:f6:4f:0d:c9:9e:6b:52:
49:42:a3:fd:82:d3:4f:e6:37:50:11:d6:51:17:b0:c7:8b:af:
12:86:22:24:b9:78:90:bb:75:b4:a2:bf:dc:52:cf:e8:0e:c3:
2f:c1:0f:d8:78:9d:9d:d8:69:25:16:4a:e7:fc:a5:73:12:a8:
8c:76:60:80:9f:e3:d0:d0:4b:5f:e1:3d:99:0c:d0:b0:74:ac:
1b:22:31:fe
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEA/UETDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YmFiNmMxMWQ0MTE2MmRiMDMwNjg1OGY4M2U1ZTY1MTIxMTMyYTZiMB4XDTIyMDEw
MTA2MDA0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmY2ZjFlM2E5NGU3
MmZjZjcxOTRkMWY3MDRkMTQ2MWI4YmY3NjU2YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANR+pN1FbIAaDh46nYiR4H+vrsTcKPhASvdzxGQCmJRaqrsx
xndamS78mDnmnYkWD/xWTz+1OZL+yq29ykn+ZvyzxpDs3XnECRxwYEtrta9VsB4E
X8pUfk5Fhe7K4th0ME9uX2/xHykNKHPb7J26co7mHnazl2ILJ4nQvfLyOle+ff+X
eAml5nuHDQIVHw3tq9VFkp/FYOtAqekagM2CgpL5blug2yOHkOI/eqJ+1+a1MMnl
O4Z6i6s4Tg1qy5PPYZWTXnZyqnFuLp/DE9lcwvI8bSmVkvU+ThmawrIyXl0sG42Y
bUsiX7i2+MORPszVRgfZjIJYQKvKfL74p+wo2GECAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBS/bx46lOcvz3GU0fcE0UYbi/dlajAfBgNVHSMEGDAWgBR7q2wR1BFi2wMG
hY+D5eZRIRMqazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2U2dHNFZFFSWXRzREJvV1BnLVhtVVNFVEttcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzkvZDMzNGFkLTUyNDAtNGRhYS1hMDUwLTlmNWJmNzM2NzIwZS8x
L3YyOGVPcFRuTDg5eGxOSDNCTkZHRzR2M1pXby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzkv
ZDMzNGFkLTUyNDAtNGRhYS1hMDUwLTlmNWJmNzM2NzIwZS8xL2U2dHNFZFFSWXRz
REJvV1BnLVhtVVNFVEttcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAIwEgMHACoHIsEACQMHACoHIsEAMDANBgkq
hkiG9w0BAQsFAAOCAQEAcHznLnJCYE8GUohceQgMubd0gWK/La/a4UyL/QMmRTq4
Ay0uYlQotmY3jlSKWsdISX+fa2Kj02/OjEEI6FD19LSbOE0DQHxktS0mFPR2uQBr
iNH/KFkrYalAwHYcPK5LWZUm/OFzZcTPGC8AOrIQeHlusYqve059TZoabz59mi0w
t0G0Ex9fym3NqgHoCVniKzNPCLa7mFwSpMc4DRvysfizCC1/K1+NQknmD1n2Tw3J
nmtSSUKj/YLTT+Y3UBHWURewx4uvEoYiJLl4kLt1tKK/3FLP6A7DL8EP2Hidndhp
JRZK5/ylcxKojHZggJ/j0NBLX+E9mQzQsHSsGyIx/g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:35 2024 by rpki-client on console-ams.rpki-client.org