Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/a13c40-dc67-423c-979e-2fad9a2fc3ef/1/hOofSGUHs75IAvmgOfoU8ycAmPA.roa
File: hOofSGUHs75IAvmgOfoU8ycAmPA.roa (raw, json)
Hash identifier: 2DIpV8w7sYuirIlhAh44SMp4i5Td2tFLTa9Lt0Btqis=
Subject key identifier: 84:EA:1F:48:65:07:B3:BE:48:02:F9:A0:39:FA:14:F3:27:00:98:F0
Certificate issuer: /CN=6b7d1f1e877c12798274e01334554f899f38eac1
Certificate serial: 01C4877F
Authority key identifier: 6B:7D:1F:1E:87:7C:12:79:82:74:E0:13:34:55:4F:89:9F:38:EA:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a30fHod8EnmCdOATNFVPiZ846sE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/a13c40-dc67-423c-979e-2fad9a2fc3ef/1/hOofSGUHs75IAvmgOfoU8ycAmPA.roa
Signing time: Sat 01 Jan 2022 16:06:56 +0000
ROA not before: Sat 01 Jan 2022 16:06:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40970
IP address blocks: 2a0c:7100::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29656959 (0x1c4877f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b7d1f1e877c12798274e01334554f899f38eac1
Validity
Not Before: Jan 1 16:06:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84ea1f486507b3be4802f9a039fa14f3270098f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:67:52:92:75:d4:d3:fc:02:7b:d2:e5:87:4f:
0c:f4:c7:ab:03:0b:f0:97:16:da:14:c2:67:d8:6e:
69:ed:1a:b7:1b:10:a8:3e:19:e7:13:df:ea:65:14:
c7:98:76:ee:82:c8:7c:1f:ea:23:04:35:19:44:df:
5c:d1:cd:02:d1:95:19:38:f1:f5:50:2c:4d:ec:f9:
5b:7e:eb:13:d6:05:2d:4c:db:77:f6:69:21:6f:24:
00:64:5c:cd:e7:4e:c5:4b:e3:7c:db:23:ab:37:d0:
68:96:6f:cd:89:20:cd:43:f9:27:f0:bc:1a:70:56:
9c:9a:68:e5:7b:70:c2:f0:3f:e2:10:e5:01:43:ee:
98:03:b1:4e:83:1f:bf:7c:41:27:ef:a4:fe:7e:16:
28:96:38:9b:c7:f1:f0:fe:48:40:0f:fd:f7:94:6f:
13:8a:45:20:ab:91:b1:87:8b:31:c2:fb:69:2d:55:
e6:6a:6d:4b:4b:c7:5b:72:3d:49:69:11:1c:42:da:
14:48:37:d4:15:e0:b7:e4:81:c0:12:a2:bc:5b:4c:
fd:d9:64:49:d5:12:01:4f:b8:59:31:0d:6c:50:74:
6a:fc:d0:80:31:ab:f8:88:13:d1:0a:89:c6:a0:60:
02:86:90:9d:12:2d:a2:28:ad:e9:65:b4:c3:de:f2:
1a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:EA:1F:48:65:07:B3:BE:48:02:F9:A0:39:FA:14:F3:27:00:98:F0
X509v3 Authority Key Identifier:
keyid:6B:7D:1F:1E:87:7C:12:79:82:74:E0:13:34:55:4F:89:9F:38:EA:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a30fHod8EnmCdOATNFVPiZ846sE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/a13c40-dc67-423c-979e-2fad9a2fc3ef/1/hOofSGUHs75IAvmgOfoU8ycAmPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/a13c40-dc67-423c-979e-2fad9a2fc3ef/1/a30fHod8EnmCdOATNFVPiZ846sE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:7100::/29
Signature Algorithm: sha256WithRSAEncryption
1d:6f:76:20:38:05:c9:72:ff:53:e5:af:86:cc:df:2e:a8:00:
b4:bc:3d:61:81:12:a2:96:ed:29:63:ca:ce:f0:34:f4:40:e5:
69:01:2c:8c:c6:d5:46:7f:3f:61:93:79:27:42:c1:a9:be:ab:
a1:25:f8:0a:aa:03:95:6b:e6:73:74:91:03:92:f5:f9:3e:15:
28:df:81:83:1f:53:1c:41:f2:45:31:3c:f1:cb:92:17:d9:4f:
32:db:e7:49:11:ea:a2:fe:3c:ed:5a:9c:6f:2e:88:24:5b:8f:
c7:53:7a:75:0c:db:c5:4e:b6:f3:33:58:57:e9:49:b5:20:06:
0d:7d:52:b5:55:11:5a:7d:c8:ae:84:48:0b:6d:c5:d4:59:fe:
04:8a:f5:38:5b:ef:f2:10:04:2a:62:04:1d:a1:78:eb:bf:63:
04:7c:da:b4:80:f1:1c:15:99:cb:1e:da:7d:25:e6:a0:3a:6e:
e7:20:59:2c:37:74:c0:f6:06:69:51:ef:40:71:2a:1b:5b:31:
cf:14:17:cc:29:f3:a6:6f:4c:3f:da:d4:5a:2f:44:7d:a1:71:
5a:ad:90:07:f9:1c:47:6b:7a:ab:33:b3:05:b5:9b:65:94:3e:
3b:45:b9:5d:0e:f9:b3:04:ba:e9:82:86:a4:14:5a:03:5a:74:
12:b8:96:b0
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEAcSHfzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YjdkMWYxZTg3N2MxMjc5ODI3NGUwMTMzNDU1NGY4OTlmMzhlYWMxMB4XDTIyMDEw
MTE2MDY1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODRlYTFmNDg2NTA3
YjNiZTQ4MDJmOWEwMzlmYTE0ZjMyNzAwOThmMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN1nUpJ11NP8AnvS5YdPDPTHqwML8JcW2hTCZ9huae0atxsQ
qD4Z5xPf6mUUx5h27oLIfB/qIwQ1GUTfXNHNAtGVGTjx9VAsTez5W37rE9YFLUzb
d/ZpIW8kAGRczedOxUvjfNsjqzfQaJZvzYkgzUP5J/C8GnBWnJpo5XtwwvA/4hDl
AUPumAOxToMfv3xBJ++k/n4WKJY4m8fx8P5IQA/995RvE4pFIKuRsYeLMcL7aS1V
5mptS0vHW3I9SWkRHELaFEg31BXgt+SBwBKivFtM/dlkSdUSAU+4WTENbFB0avzQ
gDGr+IgT0QqJxqBgAoaQnRItoiit6WW0w97yGpcCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBSE6h9IZQezvkgC+aA5+hTzJwCY8DAfBgNVHSMEGDAWgBRrfR8eh3wSeYJ0
4BM0VU+JnzjqwTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2EzMGZIb2Q4RW5tQ2RPQVRORlZQaVo4NDZzRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2MvYTEzYzQwLWRjNjctNDIzYy05NzllLTJmYWQ5YTJmYzNlZi8x
L2hPb2ZTR1VIczc1SUF2bWdPZm9VOHljQW1QQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Mv
YTEzYzQwLWRjNjctNDIzYy05NzllLTJmYWQ5YTJmYzNlZi8xL2EzMGZIb2Q4RW5t
Q2RPQVRORlZQaVo4NDZzRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoMcQAwDQYJKoZIhvcNAQELBQAD
ggEBAB1vdiA4Bcly/1Plr4bM3y6oALS8PWGBEqKW7Sljys7wNPRA5WkBLIzG1UZ/
P2GTeSdCwam+q6El+AqqA5Vr5nN0kQOS9fk+FSjfgYMfUxxB8kUxPPHLkhfZTzLb
50kR6qL+PO1anG8uiCRbj8dTenUM28VOtvMzWFfpSbUgBg19UrVVEVp9yK6ESAtt
xdRZ/gSK9Thb7/IQBCpiBB2heOu/YwR82rSA8RwVmcse2n0l5qA6bucgWSw3dMD2
BmlR70BxKhtbMc8UF8wp86ZvTD/a1FovRH2hcVqtkAf5HEdreqszswW1m2WUPjtF
uV0O+bMEuumChqQUWgNadBK4lrA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:14 2024 by rpki-client on console-ams.rpki-client.org