Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/b3c34d-ccd1-4bba-a06e-e5c76bba8460/1/KJFsyaSQvK3XHvMTzCwhoCZxj_I.roa
File: KJFsyaSQvK3XHvMTzCwhoCZxj_I.roa (raw, json)
Hash identifier: sZb9T1zSBfFZza8APj71NXwDD9W93DUJxYBQT3fQVPc=
Subject key identifier: 28:91:6C:C9:A4:90:BC:AD:D7:1E:F3:13:CC:2C:21:A0:26:71:8F:F2
Certificate issuer: /CN=e087a0a7baf39038c2a3ce1b53efda8350d13b41
Certificate serial: 0184B9CCB3F8D20AD275EB24EC197EE26FFA
Authority key identifier: E0:87:A0:A7:BA:F3:90:38:C2:A3:CE:1B:53:EF:DA:83:50:D1:3B:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Iegp7rzkDjCo84bU-_ag1DRO0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/b3c34d-ccd1-4bba-a06e-e5c76bba8460/1/KJFsyaSQvK3XHvMTzCwhoCZxj_I.roa
Signing time: Sun 27 Nov 2022 15:55:11 +0000
ROA not before: Sun 27 Nov 2022 15:55:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62349
IP address blocks: 2a0a:6b40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b9:cc:b3:f8:d2:0a:d2:75:eb:24:ec:19:7e:e2:6f:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e087a0a7baf39038c2a3ce1b53efda8350d13b41
Validity
Not Before: Nov 27 15:55:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28916cc9a490bcadd71ef313cc2c21a026718ff2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:da:d2:9b:76:73:c3:6d:a7:a6:51:b9:d6:d5:
e1:d8:07:24:b5:86:7d:3f:4c:d4:e9:16:69:27:8e:
b3:aa:ae:cc:95:72:b4:9d:17:5d:52:58:34:19:fa:
ec:86:00:eb:36:71:f7:af:3f:3b:f5:86:92:b2:03:
80:48:e5:a6:98:3c:c1:7c:e1:92:05:ea:b4:f3:80:
26:b7:c1:e0:4b:0d:dc:c4:79:a9:2f:7f:63:1c:2f:
71:ab:11:77:d9:41:86:11:26:d8:f5:2a:67:bd:ce:
df:df:b4:81:67:3f:4f:dd:eb:a1:6e:f1:d3:b3:6a:
bd:c0:59:eb:c7:49:69:90:34:0a:78:8e:91:44:51:
25:7d:70:a0:c3:20:33:81:1d:bc:92:1b:af:c0:af:
29:d0:12:c9:81:0d:49:94:ec:ce:52:cb:ae:22:05:
5e:a0:74:50:f2:96:2f:78:a6:92:4f:32:c1:74:e4:
80:c0:ff:5d:1e:5e:bc:8f:91:3e:4f:2c:7a:57:07:
21:65:c9:ed:1d:66:dd:e4:ad:7b:da:0f:a3:8b:8c:
10:17:e2:78:7f:e7:25:62:ec:a6:3b:c3:2d:17:46:
c6:7e:ed:93:d6:97:8b:7d:85:85:35:bf:ff:17:6b:
a5:ab:fb:c8:29:52:04:1e:c6:36:e0:60:9b:0e:01:
c9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:91:6C:C9:A4:90:BC:AD:D7:1E:F3:13:CC:2C:21:A0:26:71:8F:F2
X509v3 Authority Key Identifier:
keyid:E0:87:A0:A7:BA:F3:90:38:C2:A3:CE:1B:53:EF:DA:83:50:D1:3B:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Iegp7rzkDjCo84bU-_ag1DRO0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b3c34d-ccd1-4bba-a06e-e5c76bba8460/1/KJFsyaSQvK3XHvMTzCwhoCZxj_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b3c34d-ccd1-4bba-a06e-e5c76bba8460/1/4Iegp7rzkDjCo84bU-_ag1DRO0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6b40::/29
Signature Algorithm: sha256WithRSAEncryption
52:26:c9:0b:2a:99:80:cb:03:16:d0:f9:ea:78:ef:29:6d:40:
22:62:50:fc:13:5b:e1:fa:73:25:c5:50:a6:bb:78:19:67:cc:
d2:9c:66:e5:18:9f:c7:5e:1a:ab:cc:8f:24:1c:be:ca:f1:6d:
86:f0:25:dd:2f:a7:20:fd:65:21:1b:0f:14:e3:9a:57:c6:d6:
49:7d:56:df:3a:98:44:68:c4:50:44:ea:2c:7f:6d:a4:de:f1:
ce:bf:4e:fb:b9:4d:16:8b:3d:6d:e6:7c:05:5f:fc:1d:04:1c:
5e:77:82:3b:9c:18:ed:b7:eb:d1:09:47:e7:57:9f:ee:d4:43:
48:dc:df:25:75:89:e2:c1:19:82:47:cf:ca:c2:5c:bb:0e:d2:
21:fe:b5:86:c1:a1:c4:1d:14:00:80:05:6b:97:ea:9e:a6:df:
e1:85:9d:34:f8:eb:5a:04:b6:90:c4:1c:63:7d:33:1b:69:70:
d5:35:d4:34:8a:0b:c0:14:62:43:de:e6:d7:48:14:1b:f1:4c:
85:85:37:9a:ba:ea:0c:5d:b0:cf:52:d8:27:73:e9:26:b6:7e:
00:e4:0e:6f:a3:ab:1a:23:b2:38:5b:69:1b:5e:09:50:36:35:
55:62:4a:40:e7:9c:df:c9:39:e3:62:82:51:82:61:8d:0e:e5:
6b:5f:06:9d
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYS5zLP40grSdesk7Bl+4m/6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwODdhMGE3YmFmMzkwMzhjMmEzY2UxYjUzZWZkYTgzNTBk
MTNiNDEwHhcNMjIxMTI3MTU1NTExWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyODkxNmNjOWE0OTBiY2FkZDcxZWYzMTNjYzJjMjFhMDI2NzE4ZmYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA19rSm3Zzw22nplG51tXh2AcktYZ9
P0zU6RZpJ46zqq7MlXK0nRddUlg0GfrshgDrNnH3rz879YaSsgOASOWmmDzBfOGS
Beq084Amt8HgSw3cxHmpL39jHC9xqxF32UGGESbY9Spnvc7f37SBZz9P3euhbvHT
s2q9wFnrx0lpkDQKeI6RRFElfXCgwyAzgR28khuvwK8p0BLJgQ1JlOzOUsuuIgVe
oHRQ8pYveKaSTzLBdOSAwP9dHl68j5E+Tyx6VwchZcntHWbd5K172g+ji4wQF+J4
f+clYuymO8MtF0bGfu2T1peLfYWFNb//F2ulq/vIKVIEHsY24GCbDgHJyQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFCiRbMmkkLyt1x7zE8wsIaAmcY/yMB8GA1UdIwQY
MBaAFOCHoKe685A4wqPOG1Pv2oNQ0TtBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEllZ3A3cnprRGpDbzg0YlUtX2FnMURSTzBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9iM2MzNGQtY2NkMS00YmJhLWEwNmUt
ZTVjNzZiYmE4NDYwLzEvS0pGc3lhU1F2SzNYSHZNVHpDd2hvQ1p4al9JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni9iM2MzNGQtY2NkMS00YmJhLWEwNmUtZTVjNzZiYmE4NDYw
LzEvNEllZ3A3cnprRGpDbzg0YlUtX2FnMURSTzBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgprQDAN
BgkqhkiG9w0BAQsFAAOCAQEAUibJCyqZgMsDFtD56njvKW1AImJQ/BNb4fpzJcVQ
prt4GWfM0pxm5Rifx14aq8yPJBy+yvFthvAl3S+nIP1lIRsPFOOaV8bWSX1W3zqY
RGjEUETqLH9tpN7xzr9O+7lNFos9beZ8BV/8HQQcXneCO5wY7bfr0QlH51ef7tRD
SNzfJXWJ4sEZgkfPysJcuw7SIf61hsGhxB0UAIAFa5fqnqbf4YWdNPjrWgS2kMQc
Y30zG2lw1TXUNIoLwBRiQ97m10gUG/FMhYU3mrrqDF2wz1LYJ3PpJrZ+AOQOb6Or
GiOyOFtpG14JUDY1VWJKQOec38k542KCUYJhjQ7la18GnQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:23 2023 by rpki-client on console-fra.rpki-client.org