Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/Z49_CHvmHM85u0V5u-S9teG8fqM.roa
File: Z49_CHvmHM85u0V5u-S9teG8fqM.roa (raw, json)
Hash identifier: y4tVuUkswaDX7aLsThNfdISR8DaSaiMVOKBBzeCk+6k=
Subject key identifier: 67:8F:7F:08:7B:E6:1C:CF:39:BB:45:79:BB:E4:BD:B5:E1:BC:7E:A3
Certificate issuer: /CN=29b79380fe407439cc2ecd3fac18157db36cf768
Certificate serial: 0275A5C9
Authority key identifier: 29:B7:93:80:FE:40:74:39:CC:2E:CD:3F:AC:18:15:7D:B3:6C:F7:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbeTgP5AdDnMLs0_rBgVfbNs92g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/Z49_CHvmHM85u0V5u-S9teG8fqM.roa
Signing time: Sat 01 Jan 2022 13:07:29 +0000
ROA not before: Sat 01 Jan 2022 13:07:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3549
IP address blocks: 2a05:6744::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41264585 (0x275a5c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b79380fe407439cc2ecd3fac18157db36cf768
Validity
Not Before: Jan 1 13:07:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=678f7f087be61ccf39bb4579bbe4bdb5e1bc7ea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5b:9a:3a:c9:d0:fd:1a:04:d6:53:71:26:51:
5a:89:d6:fc:e6:1a:21:ae:db:0e:1a:24:4e:22:6d:
88:e0:01:27:b0:0f:e3:69:eb:37:13:a6:97:4c:35:
4d:93:fd:ef:23:3d:da:64:18:20:46:79:69:89:21:
3a:11:d1:92:d9:c3:6e:ff:ba:18:a6:5f:fd:c1:ca:
f5:31:45:f3:00:11:31:d5:70:f5:50:cf:93:c8:23:
f9:a7:5e:48:8f:1a:78:83:c3:e4:39:cb:56:e2:b8:
e3:1b:f2:66:a2:30:9b:fb:8a:48:61:62:0f:8c:bf:
8c:19:b6:b0:6f:71:5e:b8:73:f5:d1:16:c8:83:20:
09:f8:4e:af:9e:0f:d6:58:f5:da:54:0f:c6:6b:5c:
c2:bd:41:a4:2a:ae:c6:98:dc:55:14:9d:9b:d7:84:
20:a1:8b:7e:9d:e5:39:60:80:1a:c0:64:b4:1d:00:
29:d6:19:3b:1d:4b:c9:88:cb:dc:46:ea:b5:a2:9e:
92:aa:b7:56:af:97:ff:0d:59:54:0f:7a:a7:05:c2:
3e:82:0b:7c:02:be:1a:24:21:90:2b:dc:d7:7c:0d:
fa:aa:d6:13:5b:31:29:a9:e1:b4:e2:ac:4d:c0:5c:
bc:f0:50:ab:0c:e7:4c:77:69:29:99:a1:d2:ed:9f:
e2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:8F:7F:08:7B:E6:1C:CF:39:BB:45:79:BB:E4:BD:B5:E1:BC:7E:A3
X509v3 Authority Key Identifier:
keyid:29:B7:93:80:FE:40:74:39:CC:2E:CD:3F:AC:18:15:7D:B3:6C:F7:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbeTgP5AdDnMLs0_rBgVfbNs92g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/Z49_CHvmHM85u0V5u-S9teG8fqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/393842-e7ef-4893-9c1b-1e842118db6f/1/KbeTgP5AdDnMLs0_rBgVfbNs92g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:6744::/48
Signature Algorithm: sha256WithRSAEncryption
2b:2d:ba:fe:6f:c7:14:bf:5b:c1:98:b6:bd:ee:47:12:79:d7:
ab:52:00:ba:d6:7e:ad:ce:e4:ce:a8:74:3f:90:cf:ac:54:28:
68:ee:53:22:0f:d6:03:1a:47:5e:09:c9:3c:56:e9:05:5f:64:
b7:5d:a6:ca:e2:10:ab:47:3a:54:ff:c0:08:b0:e5:de:d0:c9:
48:49:a6:93:d1:29:72:3f:ac:60:28:b1:34:91:bb:30:ce:fb:
4c:af:12:82:a2:9e:ae:47:59:0b:b3:4f:37:a2:5d:a1:37:41:
33:44:40:3d:23:f5:46:35:1f:1e:13:62:b6:79:65:dd:ea:27:
8d:ae:70:7c:41:81:27:eb:16:54:83:81:65:41:10:ba:b1:d9:
25:80:b7:62:be:8c:32:bf:c7:69:88:3a:3a:01:fb:cd:d6:c8:
b2:45:58:2e:02:0f:e8:9a:6a:0c:4a:c2:6e:3b:88:a2:62:a3:
d5:95:84:b1:00:90:89:b9:4e:95:63:0b:3b:9e:1d:58:15:ad:
d5:f4:83:53:0d:f2:95:ca:fd:16:61:ce:08:13:0a:0a:a6:28:
99:a4:28:7d:79:32:23:26:74:ae:79:43:1f:04:95:a2:41:a6:
95:44:a8:03:84:a7:57:76:e8:c4:97:54:65:ff:1f:b7:75:b0:
3f:78:b6:b8
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEAnWlyTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OWI3OTM4MGZlNDA3NDM5Y2MyZWNkM2ZhYzE4MTU3ZGIzNmNmNzY4MB4XDTIyMDEw
MTEzMDcyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjc4ZjdmMDg3YmU2
MWNjZjM5YmI0NTc5YmJlNGJkYjVlMWJjN2VhMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL5bmjrJ0P0aBNZTcSZRWonW/OYaIa7bDhokTiJtiOABJ7AP
42nrNxOml0w1TZP97yM92mQYIEZ5aYkhOhHRktnDbv+6GKZf/cHK9TFF8wARMdVw
9VDPk8gj+adeSI8aeIPD5DnLVuK44xvyZqIwm/uKSGFiD4y/jBm2sG9xXrhz9dEW
yIMgCfhOr54P1lj12lQPxmtcwr1BpCquxpjcVRSdm9eEIKGLfp3lOWCAGsBktB0A
KdYZOx1LyYjL3EbqtaKekqq3Vq+X/w1ZVA96pwXCPoILfAK+GiQhkCvc13wN+qrW
E1sxKanhtOKsTcBcvPBQqwznTHdpKZmh0u2f4mMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRnj38Ie+Yczzm7RXm75L214bx+ozAfBgNVHSMEGDAWgBQpt5OA/kB0Ocwu
zT+sGBV9s2z3aDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tiZVRnUDVBZERuTUxzMF9yQmdWZmJOczkyZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGYvMzkzODQyLWU3ZWYtNDg5My05YzFiLTFlODQyMTE4ZGI2Zi8x
L1o0OV9DSHZtSE04NXUwVjV1LVM5dGVHOGZxTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGYv
MzkzODQyLWU3ZWYtNDg5My05YzFiLTFlODQyMTE4ZGI2Zi8xL0tiZVRnUDVBZERu
TUxzMF9yQmdWZmJOczkyZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoFZ0QAADANBgkqhkiG9w0BAQsF
AAOCAQEAKy26/m/HFL9bwZi2ve5HEnnXq1IAutZ+rc7kzqh0P5DPrFQoaO5TIg/W
AxpHXgnJPFbpBV9kt12myuIQq0c6VP/ACLDl3tDJSEmmk9Epcj+sYCixNJG7MM77
TK8SgqKerkdZC7NPN6JdoTdBM0RAPSP1RjUfHhNitnll3eonja5wfEGBJ+sWVIOB
ZUEQurHZJYC3Yr6MMr/HaYg6OgH7zdbIskVYLgIP6JpqDErCbjuIomKj1ZWEsQCQ
iblOlWMLO54dWBWt1fSDUw3ylcr9FmHOCBMKCqYomaQofXkyIyZ0rnlDHwSVokGm
lUSoA4SnV3boxJdUZf8ft3WwP3i2uA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:01 2024 by rpki-client on console-fra.rpki-client.org