Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/VYxw1wnvXVwKohGAKgGtuxKjxrM.roa
File: VYxw1wnvXVwKohGAKgGtuxKjxrM.roa (raw, json)
Hash identifier: BSmZ3p3HRsGueF9jjKcfWt6w72HCt/KBMfm2Zff3WYs=
Subject key identifier: 55:8C:70:D7:09:EF:5D:5C:0A:A2:11:80:2A:01:AD:BB:12:A3:C6:B3
Certificate issuer: /CN=69a28c2f84c75e8d0388694355152dd2b731f249
Certificate serial: 132D76C0
Authority key identifier: 69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/VYxw1wnvXVwKohGAKgGtuxKjxrM.roa
Signing time: Sat 01 Jan 2022 09:57:00 +0000
ROA not before: Sat 01 Jan 2022 09:57:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41783
IP address blocks: 217.26.16.0/20 maxlen: 22
2a00:7c00::/32 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321746624 (0x132d76c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a28c2f84c75e8d0388694355152dd2b731f249
Validity
Not Before: Jan 1 09:57:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=558c70d709ef5d5c0aa211802a01adbb12a3c6b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:7e:43:b6:bf:83:bf:61:9a:1d:92:e3:d5:8c:
ca:1c:df:d3:db:5f:1d:84:95:4e:68:86:de:7b:d2:
aa:ad:98:75:0e:14:1c:63:e9:97:74:4d:fb:20:1a:
a9:0f:4f:5d:63:48:90:64:ed:8a:f4:b2:87:65:5f:
9f:67:7a:aa:19:ad:c2:c0:d3:50:b9:49:4e:9f:14:
3f:fe:5a:29:42:c1:79:f9:3b:7f:05:03:4e:e0:87:
03:1f:0d:3e:06:ff:cf:bc:eb:08:c8:6c:17:2b:8c:
f1:b9:6a:65:a9:ba:1f:3f:a5:53:73:e4:2b:5c:a2:
14:4d:50:0e:da:bf:2c:d1:83:1a:da:ff:f9:d0:bb:
b5:d9:b3:0f:69:66:fa:01:b0:ba:92:e4:07:32:38:
63:d0:ad:e8:04:4f:e4:0f:55:27:5e:ea:a8:99:2d:
98:a5:51:2a:34:4e:e4:05:59:3f:9c:4b:4e:0e:43:
2b:a5:43:de:fd:79:31:e9:ec:86:36:22:68:78:3b:
09:95:7b:47:95:c0:27:dd:a3:e2:2d:f3:32:92:34:
2d:2e:c8:00:98:b6:4e:0b:cc:51:26:fe:4e:9e:0e:
7f:f0:80:e1:9a:92:39:6d:78:39:22:66:c3:45:a4:
7b:79:ae:97:3c:90:1d:5c:67:70:fe:5b:54:85:c8:
51:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:8C:70:D7:09:EF:5D:5C:0A:A2:11:80:2A:01:AD:BB:12:A3:C6:B3
X509v3 Authority Key Identifier:
keyid:69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/VYxw1wnvXVwKohGAKgGtuxKjxrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.26.16.0/20
IPv6:
2a00:7c00::/32
Signature Algorithm: sha256WithRSAEncryption
3e:67:d3:1f:e8:7f:4c:c9:af:c6:54:40:cb:04:0d:7f:29:4a:
4e:f0:c8:c9:d2:e6:18:8e:dc:98:f0:1d:89:92:07:4d:30:97:
c2:65:61:ff:cd:53:c3:be:b3:38:de:d6:51:30:fa:e1:62:5c:
5a:53:36:93:1a:60:8e:be:f0:a3:4a:e1:56:8b:83:ab:a5:82:
54:f8:a3:d4:8b:3a:5f:de:04:4d:e7:a2:88:71:18:42:d1:55:
2c:7b:f4:f6:27:95:d1:c3:eb:bd:b8:ad:17:12:d2:5b:2e:0a:
a4:1c:ed:27:fb:7c:ab:75:50:89:b8:d0:ae:5d:3c:6a:f6:6d:
28:18:2e:11:fc:dd:93:f5:06:2d:94:b6:ea:38:df:01:2b:51:
6a:c1:6c:17:e2:c1:4a:b1:7a:93:0f:7e:61:16:b6:b2:b8:90:
cf:48:6d:43:f6:c1:cb:59:32:0a:fc:b1:dd:eb:f6:62:ce:7c:
70:f2:b6:11:d5:81:1f:86:74:56:34:4e:54:b8:46:57:27:f7:
6d:15:6c:ee:5e:e7:bf:94:fa:a4:0f:e7:9d:e8:49:bb:37:37:
cc:00:ee:8f:d2:75:48:d9:24:77:1d:cd:0c:b9:82:40:31:dd:
fc:1c:5c:b0:c5:da:c4:dd:de:43:34:b2:bb:59:a1:b9:4b:96:
a3:12:76:82
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEEy12wDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
OWEyOGMyZjg0Yzc1ZThkMDM4ODY5NDM1NTE1MmRkMmI3MzFmMjQ5MB4XDTIyMDEw
MTA5NTcwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTU4YzcwZDcwOWVm
NWQ1YzBhYTIxMTgwMmEwMWFkYmIxMmEzYzZiMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIx+Q7a/g79hmh2S49WMyhzf09tfHYSVTmiG3nvSqq2YdQ4U
HGPpl3RN+yAaqQ9PXWNIkGTtivSyh2Vfn2d6qhmtwsDTULlJTp8UP/5aKULBefk7
fwUDTuCHAx8NPgb/z7zrCMhsFyuM8blqZam6Hz+lU3PkK1yiFE1QDtq/LNGDGtr/
+dC7tdmzD2lm+gGwupLkBzI4Y9Ct6ARP5A9VJ17qqJktmKVRKjRO5AVZP5xLTg5D
K6VD3v15MenshjYiaHg7CZV7R5XAJ92j4i3zMpI0LS7IAJi2TgvMUSb+Tp4Of/CA
4ZqSOW14OSJmw0Wke3mulzyQHVxncP5bVIXIUX8CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRVjHDXCe9dXAqiEYAqAa27EqPGszAfBgNVHSMEGDAWgBRpoowvhMdejQOI
aUNVFS3StzHySTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2FhS01MNFRIWG8wRGlHbERWUlV0MHJjeDhray5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2EvODlmZjQ3LTBiN2ItNDMwOS1hOGFmLTJjYmQ1NWY5YThlZS8x
L1ZZeHcxd252WFZ3S29oR0FLZ0d0dXhLanhyTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Ev
ODlmZjQ3LTBiN2ItNDMwOS1hOGFmLTJjYmQ1NWY5YThlZS8xL2FhS01MNFRIWG8w
RGlHbERWUlV0MHJjeDhray5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEBNkaEDANBAIAAjAHAwUAKgB8ADAN
BgkqhkiG9w0BAQsFAAOCAQEAPmfTH+h/TMmvxlRAywQNfylKTvDIydLmGI7cmPAd
iZIHTTCXwmVh/81Tw76zON7WUTD64WJcWlM2kxpgjr7wo0rhVouDq6WCVPij1Is6
X94ETeeiiHEYQtFVLHv09ieV0cPrvbitFxLSWy4KpBztJ/t8q3VQibjQrl08avZt
KBguEfzdk/UGLZS26jjfAStRasFsF+LBSrF6kw9+YRa2sriQz0htQ/bBy1kyCvyx
3ev2Ys58cPK2EdWBH4Z0VjROVLhGVyf3bRVs7l7nv5T6pA/nnehJuzc3zADuj9J1
SNkkdx3NDLmCQDHd/BxcsMXaxN3eQzSyu1mhuUuWoxJ2gg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:02 2024 by rpki-client on console-fra.rpki-client.org