Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/9DNXisDaR0m_VyqTT-ssKTIEUsQ.roa
File: 9DNXisDaR0m_VyqTT-ssKTIEUsQ.roa (raw, json)
Hash identifier: RLHdr+hPJmhK0gQbOjlAKblO1ktpzGc6Pi1dFZKDWWo=
Subject key identifier: F4:33:57:8A:C0:DA:47:49:BF:57:2A:93:4F:EB:2C:29:32:04:52:C4
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 05A414FE
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/9DNXisDaR0m_VyqTT-ssKTIEUsQ.roa
Signing time: Sat 01 Jan 2022 07:57:06 +0000
ROA not before: Sat 01 Jan 2022 07:57:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19318
IP address blocks: 2a0a:b382::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94639358 (0x5a414fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Jan 1 07:57:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f433578ac0da4749bf572a934feb2c29320452c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ad:f6:49:9a:44:b8:a9:6b:22:4b:0a:7b:64:
e8:89:c8:91:d6:15:5f:b7:18:c8:9a:0b:ea:d6:95:
b4:92:db:ee:7c:f9:1c:92:af:cd:03:73:de:b5:39:
48:d4:6a:20:72:f2:0d:25:0c:e8:a0:ea:cb:f3:88:
e6:a0:0d:0e:cd:31:e8:77:6f:f9:3f:cb:ab:48:03:
5d:89:fd:32:a9:e2:74:52:70:96:9e:c6:f5:fd:25:
aa:b7:b6:6f:4e:c6:4b:b3:05:a3:67:d9:ae:b3:72:
13:5f:25:2a:74:ce:a1:ab:62:33:00:2d:8f:91:4d:
1f:5e:0c:58:66:bc:bc:30:d3:7b:aa:42:3a:e9:d7:
6f:aa:7d:52:7a:0e:66:c2:4c:87:52:7d:3f:c3:e0:
10:85:ee:b5:c7:36:d6:a0:76:92:90:e3:bc:4b:c0:
2d:30:a4:11:be:65:66:26:b4:09:8f:a7:26:0b:ce:
58:19:44:f8:44:ca:2d:30:3e:0c:64:4c:fb:90:3f:
1e:f4:87:c3:0e:8e:af:a8:55:aa:f7:e6:f5:bc:4f:
c5:1f:d7:57:40:66:a9:4f:5b:14:0e:b2:1b:8c:58:
11:c2:90:49:7c:a8:07:e5:28:5d:1b:9c:6a:38:0b:
36:5a:65:30:08:ec:7d:9e:c9:4f:04:8f:73:1b:92:
22:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:33:57:8A:C0:DA:47:49:BF:57:2A:93:4F:EB:2C:29:32:04:52:C4
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/9DNXisDaR0m_VyqTT-ssKTIEUsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:b382::/32
Signature Algorithm: sha256WithRSAEncryption
48:84:9e:41:4c:bb:e2:dc:7f:6d:01:4b:8c:a0:73:f0:56:68:
53:dd:8c:51:a6:92:82:3b:21:92:9a:22:20:ca:96:ca:bf:07:
dd:41:9c:51:fb:c6:96:3a:71:12:a2:c1:cf:4c:2e:78:32:3a:
77:e5:9b:e9:f9:7c:ce:55:0c:db:bb:30:15:07:54:16:16:c3:
88:d2:91:76:a3:6a:bb:72:5a:07:b7:d1:4a:84:99:8b:25:9e:
67:b6:a2:76:3d:2d:65:77:b7:2a:cc:46:59:2c:5a:1e:9f:9f:
c4:86:e5:11:75:68:02:95:a7:27:85:60:e9:4e:66:f1:fe:be:
8d:61:9f:4b:9d:1a:e5:eb:ff:0c:39:f0:12:12:47:c6:0a:38:
d7:f6:89:9d:10:95:f5:ce:b8:1c:88:dd:e5:cb:8b:e0:e0:f7:
1a:12:5b:5a:ce:c8:00:3b:1f:ff:14:77:4a:e0:0f:04:c8:99:
90:02:b1:9c:fb:d7:bc:a1:40:d9:36:d9:02:1c:da:c8:5a:5a:
7f:95:2e:fc:d4:63:e7:61:9a:96:7e:60:ae:2d:88:e6:7c:93:
f7:7a:ce:ee:db:e1:bf:84:3e:89:3c:85:18:b5:2b:de:cb:23:
73:cf:34:76:f5:4e:c2:6d:bb:de:f9:83:c7:9c:46:fa:bb:70:
3a:6b:25:0a
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEBaQU/jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Y2Q3NjE1OWJmZDllMzM3NTIzZWU5MzBmM2RmMTExZDZiYWU3MzA2MB4XDTIyMDEw
MTA3NTcwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjQzMzU3OGFjMGRh
NDc0OWJmNTcyYTkzNGZlYjJjMjkzMjA0NTJjNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKCt9kmaRLipayJLCntk6InIkdYVX7cYyJoL6taVtJLb7nz5
HJKvzQNz3rU5SNRqIHLyDSUM6KDqy/OI5qANDs0x6Hdv+T/Lq0gDXYn9MqnidFJw
lp7G9f0lqre2b07GS7MFo2fZrrNyE18lKnTOoatiMwAtj5FNH14MWGa8vDDTe6pC
OunXb6p9UnoOZsJMh1J9P8PgEIXutcc21qB2kpDjvEvALTCkEb5lZia0CY+nJgvO
WBlE+ETKLTA+DGRM+5A/HvSHww6Or6hVqvfm9bxPxR/XV0BmqU9bFA6yG4xYEcKQ
SXyoB+UoXRucajgLNlplMAjsfZ7JTwSPcxuSIisCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT0M1eKwNpHSb9XKpNP6ywpMgRSxDAfBgNVHSMEGDAWgBTM12FZv9njN1I+
6TDz3xEda65zBjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pOZGhXYl9aNHpkU1B1a3c4OThSSFd1dWN3WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTAvZjZhZGExLTdlOGEtNGIzZS1iN2U4LWY4NTg5ZjY4MjY5MS8x
LzlETlhpc0RhUjBtX1Z5cVRULXNzS1RJRVVzUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTAv
ZjZhZGExLTdlOGEtNGIzZS1iN2U4LWY4NTg5ZjY4MjY5MS8xL3pOZGhXYl9aNHpk
U1B1a3c4OThSSFd1dWN3WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoKs4IwDQYJKoZIhvcNAQELBQAD
ggEBAEiEnkFMu+Lcf20BS4ygc/BWaFPdjFGmkoI7IZKaIiDKlsq/B91BnFH7xpY6
cRKiwc9MLngyOnflm+n5fM5VDNu7MBUHVBYWw4jSkXajartyWge30UqEmYslnme2
onY9LWV3tyrMRlksWh6fn8SG5RF1aAKVpyeFYOlOZvH+vo1hn0udGuXr/ww58BIS
R8YKONf2iZ0QlfXOuByI3eXLi+Dg9xoSW1rOyAA7H/8Ud0rgDwTImZACsZz717yh
QNk22QIc2shaWn+VLvzUY+dhmpZ+YK4tiOZ8k/d6zu7b4b+EPok8hRi1K97LI3PP
NHb1TsJtu975g8ecRvq7cDprJQo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:46 2024 by rpki-client on console-ams.rpki-client.org