Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/68f651-f3a6-4252-9faf-9e044092b826/1/xnZ5WWJcWz7S6p9Wy3N2J_diDL4.roa
File: xnZ5WWJcWz7S6p9Wy3N2J_diDL4.roa (raw, json)
Hash identifier: 0hrQIpsd9d3ehaYXjOsUxZVwvuLPbvaSiMVRoLwVfgg=
Subject key identifier: C6:76:79:59:62:5C:5B:3E:D2:EA:9F:56:CB:73:76:27:F7:62:0C:BE
Certificate issuer: /CN=ac7670698cfaef2647fbc9a06f7380856e2b3027
Certificate serial: 02B90C2F
Authority key identifier: AC:76:70:69:8C:FA:EF:26:47:FB:C9:A0:6F:73:80:85:6E:2B:30:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rHZwaYz67yZH-8mgb3OAhW4rMCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/68f651-f3a6-4252-9faf-9e044092b826/1/xnZ5WWJcWz7S6p9Wy3N2J_diDL4.roa
Signing time: Wed 08 Jun 2022 15:02:04 +0000
ROA not before: Wed 08 Jun 2022 15:02:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60505
IP address blocks: 2a11:a500::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45681711 (0x2b90c2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac7670698cfaef2647fbc9a06f7380856e2b3027
Validity
Not Before: Jun 8 15:02:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6767959625c5b3ed2ea9f56cb737627f7620cbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4e:84:6c:23:7f:ec:c4:3c:8d:f0:55:7d:85:
8d:c2:30:cf:33:6b:81:ef:0c:29:3b:11:61:4c:3b:
32:4d:8d:10:90:85:b4:5d:c8:40:9b:80:a4:fb:03:
5b:69:4c:c7:9a:d6:7c:e1:c3:fe:72:99:d4:c0:8c:
d1:77:00:e2:58:fa:16:c1:78:47:1b:d7:d2:c7:f0:
b2:31:46:10:17:9b:dd:30:bf:76:b4:d4:1f:a8:a4:
d4:7a:34:02:5f:ec:7f:e2:ec:09:10:bf:46:70:21:
1f:e4:ef:04:29:d3:d6:69:4d:69:ba:ad:1c:bf:2f:
c9:45:7f:ce:60:95:08:19:4d:33:07:7b:78:49:20:
b3:2f:77:ff:3f:17:3e:69:93:43:1b:d6:aa:72:f1:
f7:8b:16:ba:50:12:b1:77:65:d2:d7:6d:1a:7b:f2:
e4:93:d7:16:f5:f9:d4:15:09:3a:7c:a3:17:40:13:
b3:94:ed:3f:09:c4:1e:07:e0:46:44:ae:27:34:c9:
43:a2:9a:86:98:df:19:27:8c:b2:14:2f:1d:26:d7:
8c:5b:80:42:aa:d2:0b:19:47:34:f9:4a:a7:8e:74:
b9:b9:37:d5:3e:75:6a:38:3e:c8:35:7f:03:a6:18:
27:a4:ff:66:f1:34:31:17:82:ca:5c:76:05:cf:b4:
e6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:76:79:59:62:5C:5B:3E:D2:EA:9F:56:CB:73:76:27:F7:62:0C:BE
X509v3 Authority Key Identifier:
keyid:AC:76:70:69:8C:FA:EF:26:47:FB:C9:A0:6F:73:80:85:6E:2B:30:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rHZwaYz67yZH-8mgb3OAhW4rMCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/68f651-f3a6-4252-9faf-9e044092b826/1/xnZ5WWJcWz7S6p9Wy3N2J_diDL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/68f651-f3a6-4252-9faf-9e044092b826/1/rHZwaYz67yZH-8mgb3OAhW4rMCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:a500::/32
Signature Algorithm: sha256WithRSAEncryption
8c:be:e4:cd:1a:1d:de:30:83:a3:f0:a8:96:ca:60:2f:24:eb:
d5:fb:98:82:d4:00:bc:12:b9:47:20:a0:bb:a7:d6:60:0d:de:
5e:eb:2a:89:31:dd:a7:ba:12:79:cb:41:f9:94:31:e5:83:0a:
59:e2:d2:43:43:f9:5d:7a:cc:e4:94:f6:f0:0a:2f:04:16:26:
a9:86:71:58:3e:78:84:b5:a5:5f:9d:5a:41:70:c1:0f:8d:58:
c7:22:3c:58:d7:89:8b:bd:32:a7:0b:b3:35:e3:57:c6:d9:b9:
a1:09:08:59:74:4f:13:21:1a:c1:8d:31:78:7a:de:0e:36:8c:
66:9b:b3:a2:76:76:be:b1:0d:c7:45:83:64:31:8a:fb:9a:89:
af:3c:96:20:c1:92:3f:fb:c2:cb:37:ab:a6:aa:e5:d7:a1:9d:
cf:53:e3:a3:b3:37:6d:08:01:4d:ee:be:cd:78:9d:19:ad:13:
73:92:0b:51:da:36:b1:55:19:4f:40:c9:40:c5:34:b5:ac:e4:
91:e7:07:9b:bd:72:75:ab:2b:22:20:c8:7c:d7:27:01:ed:c3:
25:b6:09:89:89:5e:93:e8:7f:93:e2:21:ce:79:f9:31:95:5d:
9a:a7:9a:56:a8:71:b3:bd:9b:8f:cc:54:cc:4e:8d:e3:72:09:
57:a2:c2:1c
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEArkMLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
Yzc2NzA2OThjZmFlZjI2NDdmYmM5YTA2ZjczODA4NTZlMmIzMDI3MB4XDTIyMDYw
ODE1MDIwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzY3Njc5NTk2MjVj
NWIzZWQyZWE5ZjU2Y2I3Mzc2MjdmNzYyMGNiZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ5OhGwjf+zEPI3wVX2FjcIwzzNrge8MKTsRYUw7Mk2NEJCF
tF3IQJuApPsDW2lMx5rWfOHD/nKZ1MCM0XcA4lj6FsF4RxvX0sfwsjFGEBeb3TC/
drTUH6ik1Ho0Al/sf+LsCRC/RnAhH+TvBCnT1mlNabqtHL8vyUV/zmCVCBlNMwd7
eEkgsy93/z8XPmmTQxvWqnLx94sWulASsXdl0tdtGnvy5JPXFvX51BUJOnyjF0AT
s5TtPwnEHgfgRkSuJzTJQ6KahpjfGSeMshQvHSbXjFuAQqrSCxlHNPlKp450ubk3
1T51ajg+yDV/A6YYJ6T/ZvE0MReCylx2Bc+05pMCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBTGdnlZYlxbPtLqn1bLc3Yn92IMvjAfBgNVHSMEGDAWgBSsdnBpjPrvJkf7
yaBvc4CFbiswJzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JIWndhWXo2N3laSC04bWdiM09BaFc0ck1DYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDQvNjhmNjUxLWYzYTYtNDI1Mi05ZmFmLTllMDQ0MDkyYjgyNi8x
L3huWjVXV0pjV3o3UzZwOVd5M04ySl9kaURMNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDQv
NjhmNjUxLWYzYTYtNDI1Mi05ZmFmLTllMDQ0MDkyYjgyNi8xL3JIWndhWXo2N3la
SC04bWdiM09BaFc0ck1DYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoRpQAwDQYJKoZIhvcNAQELBQAD
ggEBAIy+5M0aHd4wg6PwqJbKYC8k69X7mILUALwSuUcgoLun1mAN3l7rKokx3ae6
EnnLQfmUMeWDClni0kND+V16zOSU9vAKLwQWJqmGcVg+eIS1pV+dWkFwwQ+NWMci
PFjXiYu9MqcLszXjV8bZuaEJCFl0TxMhGsGNMXh63g42jGabs6J2dr6xDcdFg2Qx
ivuaia88liDBkj/7wss3q6aq5dehnc9T46OzN20IAU3uvs14nRmtE3OSC1HaNrFV
GU9AyUDFNLWs5JHnB5u9cnWrKyIgyHzXJwHtwyW2CYmJXpPof5PiIc55+TGVXZqn
mlaocbO9m4/MVMxOjeNyCVeiwhw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:45 2024 by rpki-client on console-ams.rpki-client.org