Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/KSpUH53w6-ztx_Ey_qmBwLvhasY.roa
File: KSpUH53w6-ztx_Ey_qmBwLvhasY.roa (raw, json)
Hash identifier: BLMlBG6jSJ6IKQIj/0aT/kVYtoW/63XDg1fiyWNPNro=
Subject key identifier: 29:2A:54:1F:9D:F0:EB:EC:ED:C7:F1:32:FE:A9:81:C0:BB:E1:6A:C6
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 835AB224
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/KSpUH53w6-ztx_Ey_qmBwLvhasY.roa
Signing time: Thu 12 May 2022 11:26:02 +0000
ROA not before: Thu 12 May 2022 11:26:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 533333
IP address blocks: 2001:67c:64::/96 maxlen: 96
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2203759140 (0x835ab224)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 12 11:26:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=292a541f9df0ebecedc7f132fea981c0bbe16ac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cb:4b:3d:19:a9:c1:75:f5:ab:46:c7:ce:cb:
83:70:43:95:3f:de:3d:39:93:0e:71:8f:81:c7:49:
99:cc:20:fb:be:a5:94:54:c3:f4:9b:8d:41:83:24:
f1:c6:2c:02:03:ab:08:51:8b:93:e1:c7:4e:f8:92:
7e:26:cb:10:30:9f:80:36:7a:cb:17:f8:e5:bc:ae:
06:ed:a1:29:9a:f9:42:61:82:8a:26:14:3d:78:21:
1b:fa:35:bf:3b:0f:17:ac:1a:90:99:80:0c:22:7d:
bc:8d:1a:0f:0e:d1:3a:79:bd:71:16:0e:c1:02:ac:
48:bb:f9:1c:9a:2a:c7:6e:02:f1:2b:0b:10:b9:78:
a6:b6:78:d4:c2:f5:33:16:42:cb:f4:3a:06:00:fa:
66:a9:f8:c5:b7:e3:fa:b5:06:67:f6:a7:67:62:ce:
fc:99:d8:a8:d8:9b:8f:d2:97:95:28:22:c6:a0:81:
2e:8b:c1:5e:c7:72:95:ef:03:b4:6d:03:de:86:8f:
9c:8c:7f:c3:5b:74:1b:91:ba:62:c5:a4:0c:35:01:
32:52:cb:bc:01:a0:46:1d:b0:97:db:8d:f6:28:d9:
37:30:52:62:90:27:b9:7d:c1:05:14:ad:b8:05:cb:
d4:4b:35:7a:cd:92:f8:2e:ee:be:e4:e3:e4:bb:a6:
07:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:2A:54:1F:9D:F0:EB:EC:ED:C7:F1:32:FE:A9:81:C0:BB:E1:6A:C6
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/KSpUH53w6-ztx_Ey_qmBwLvhasY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64::/96
Signature Algorithm: sha256WithRSAEncryption
93:a0:a1:0a:7d:9d:fc:7d:fe:97:7a:4a:6e:09:f0:50:a8:45:
a9:61:e7:58:1f:cb:ff:56:54:c7:0b:49:29:b7:b8:10:58:ad:
ce:7f:c7:23:d7:66:f6:89:50:9a:b6:e7:46:cf:6c:1b:1d:08:
61:b7:74:a2:1b:57:54:b2:36:73:da:27:c5:54:2d:30:39:f5:
9a:30:97:d1:b9:7e:5d:f9:0c:5c:0c:1a:08:8b:a1:45:63:f1:
c4:9c:a9:fd:c8:79:8a:04:89:a1:e6:c4:83:d4:f9:a6:f2:a1:
ff:db:c5:d8:49:3d:37:30:81:c7:1a:2d:54:eb:ea:83:69:fc:
57:ab:1a:de:12:7a:56:fe:1e:41:59:77:90:cc:ee:2d:03:06:
0b:95:99:1a:a3:64:cf:a4:32:a7:9c:22:19:ed:ef:e0:4a:6d:
21:ae:a8:40:64:58:5c:f5:c2:6b:8a:b6:86:62:96:09:08:6c:
21:fb:22:40:f2:11:03:16:45:59:4d:52:b3:0f:19:39:cf:60:
e3:f5:91:c9:51:9f:08:d3:68:f5:62:41:ad:1e:ae:a5:71:d8:
3a:7a:53:77:f6:7e:6f:14:8a:4a:4e:f3:c6:bf:af:6d:6e:ea:
97:cd:63:f3:0d:3b:5a:69:d9:d0:05:76:40:de:3d:6a:19:8a:
bb:74:86:06
-----BEGIN CERTIFICATE-----
MIIE+TCCA+GgAwIBAgIFAINasiQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMo
NzIwNDdiZTE1YjI3NTkwMmRjZjYxN2RjM2QwZTE2ZGMxZjMwODAyMjAeFw0yMjA1
MTIxMTI2MDJaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDI5MmE1NDFmOWRm
MGViZWNlZGM3ZjEzMmZlYTk4MWMwYmJlMTZhYzYwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDIy0s9GanBdfWrRsfOy4NwQ5U/3j05kw5xj4HHSZnMIPu+
pZRUw/SbjUGDJPHGLAIDqwhRi5Phx074kn4myxAwn4A2essX+OW8rgbtoSma+UJh
goomFD14IRv6Nb87DxesGpCZgAwifbyNGg8O0Tp5vXEWDsECrEi7+RyaKsduAvEr
CxC5eKa2eNTC9TMWQsv0OgYA+map+MW34/q1Bmf2p2dizvyZ2KjYm4/Sl5UoIsag
gS6LwV7HcpXvA7RtA96Gj5yMf8NbdBuRumLFpAw1ATJSy7wBoEYdsJfbjfYo2Tcw
UmKQJ7l9wQUUrbgFy9RLNXrNkvgu7r7k4+S7pgcFAgMBAAGjggISMIICDjAdBgNV
HQ4EFgQUKSpUH53w6+ztx/Ey/qmBwLvhasYwHwYDVR0jBBgwFoAUcgR74VsnWQLc
9hfcPQ4W3B8wgCIwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVM
VC9jZ1I3NFZzbldRTGM5aGZjUFE0VzNCOHdnQ0kuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzVlLzc5ODQ0Ny0yMWY0LTQ1YWItOTlkYy0xYWJlM2FjMTBhYTYv
MS9LU3BVSDUzdzYtenR4X0V5X3FtQndMdmhhc1kucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVl
Lzc5ODQ0Ny0yMWY0LTQ1YWItOTlkYy0xYWJlM2FjMTBhYTYvMS9jZ1I3NFZzbldR
TGM5aGZjUFE0VzNCOHdnQ0kuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
KAYIKwYBBQUHAQcBAf8EGTAXMBUEAgACMA8DDQAgAQZ8AGQAAAAAAAAwDQYJKoZI
hvcNAQELBQADggEBAJOgoQp9nfx9/pd6Sm4J8FCoRalh51gfy/9WVMcLSSm3uBBY
rc5/xyPXZvaJUJq250bPbBsdCGG3dKIbV1SyNnPaJ8VULTA59Zowl9G5fl35DFwM
GgiLoUVj8cScqf3IeYoEiaHmxIPU+abyof/bxdhJPTcwgccaLVTr6oNp/FerGt4S
elb+HkFZd5DM7i0DBguVmRqjZM+kMqecIhnt7+BKbSGuqEBkWFz1wmuKtoZilgkI
bCH7IkDyEQMWRVlNUrMPGTnPYOP1kclRnwjTaPViQa0erqVx2Dp6U3f2fm8UikpO
88a/r21u6pfNY/MNO1pp2dAFdkDePWoZirt0hgY=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:55:26 2023 by rpki-client on console-ams.rpki-client.org