Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/6qq33lLVdfuu345V9ZEpodtCy6U.roa
File: 6qq33lLVdfuu345V9ZEpodtCy6U.roa (raw, json)
Hash identifier: vvWhEvD9soxAb0iY4NNG25Zz2Ilofb63uCvNTwveNhU=
Subject key identifier: EA:AA:B7:DE:52:D5:75:FB:AE:DF:8E:55:F5:91:29:A1:DB:42:CB:A5
Certificate issuer: /CN=5cf56321eb7ea3ee45cded028668420e37fa2fac
Certificate serial: 01828740C4508D2812DD9FA6E8BCC6EFFC81
Authority key identifier: 5C:F5:63:21:EB:7E:A3:EE:45:CD:ED:02:86:68:42:0E:37:FA:2F:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPVjIet-o-5Fze0ChmhCDjf6L6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/6qq33lLVdfuu345V9ZEpodtCy6U.roa
Signing time: Wed 10 Aug 2022 10:15:44 +0000
ROA not before: Wed 10 Aug 2022 10:15:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199938
IP address blocks: 2001:678:e28::/48 maxlen: 56
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:87:40:c4:50:8d:28:12:dd:9f:a6:e8:bc:c6:ef:fc:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf56321eb7ea3ee45cded028668420e37fa2fac
Validity
Not Before: Aug 10 10:15:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eaaab7de52d575fbaedf8e55f59129a1db42cba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f9:f5:1c:be:fb:9c:95:24:9f:c3:d9:5a:1c:
49:d0:b4:2a:18:75:de:cc:68:9e:22:e1:b6:d7:cc:
26:88:99:af:ea:cf:c3:f8:6c:f0:c6:a7:52:5e:40:
80:5f:4e:0f:f3:7b:9c:8f:3f:70:96:51:41:80:2f:
4b:03:4f:20:b8:5f:5d:f3:01:2f:9a:df:89:a7:15:
a6:f6:cf:77:6c:2e:a1:c3:1a:e0:41:22:ea:ba:1a:
a9:f6:82:68:74:74:df:60:fe:77:56:4f:f7:96:42:
24:c1:91:32:15:ba:1f:4b:be:6d:1f:ab:06:2d:59:
96:b4:3f:aa:27:6c:38:07:e9:2b:ba:1a:a1:99:4b:
33:5f:b5:d3:87:a6:cd:1c:62:e0:2e:f9:87:4c:50:
1c:d4:44:5b:22:fd:e5:3d:39:29:3b:66:7a:c2:df:
1b:a9:73:e8:81:1d:e7:6a:47:2d:31:1e:cb:f4:21:
8a:03:27:54:ca:b0:42:b6:2e:ac:76:c3:89:a1:9c:
7c:fe:e7:b3:36:f9:9e:43:d3:2d:7a:81:c5:6e:4d:
fa:2d:82:b5:f7:f6:cf:9d:6c:71:ad:c8:a1:de:b1:
3d:b1:9d:30:7b:3a:a2:0f:45:9d:b9:07:3f:69:9b:
c3:63:db:82:35:fb:b7:24:ff:20:cc:f6:ee:d6:37:
aa:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:AA:B7:DE:52:D5:75:FB:AE:DF:8E:55:F5:91:29:A1:DB:42:CB:A5
X509v3 Authority Key Identifier:
keyid:5C:F5:63:21:EB:7E:A3:EE:45:CD:ED:02:86:68:42:0E:37:FA:2F:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPVjIet-o-5Fze0ChmhCDjf6L6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/6qq33lLVdfuu345V9ZEpodtCy6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/XPVjIet-o-5Fze0ChmhCDjf6L6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:e28::/48
Signature Algorithm: sha256WithRSAEncryption
0d:67:b3:c9:7f:8a:78:30:1b:0a:57:81:c6:12:cd:49:12:8c:
b8:d4:52:fc:1f:ba:55:5a:81:e9:e8:6f:c9:34:d6:b3:6d:2d:
08:10:5a:94:d6:a6:5f:bd:3e:f3:10:f0:3e:6a:5e:18:65:18:
a5:1c:6c:e0:71:82:85:83:a6:15:a9:ea:2e:d2:cc:3c:29:62:
f5:0a:1b:a8:6f:91:97:aa:65:6b:bd:ed:0c:42:e0:6d:91:d7:
f1:30:fe:f4:98:de:a4:25:43:8b:09:04:66:e6:82:7c:2c:35:
89:1c:02:72:24:69:e4:23:80:10:27:94:0a:7e:7d:86:5a:ad:
46:d4:70:f0:2b:51:67:ae:5f:50:5c:80:ed:51:38:80:d9:1e:
92:73:08:dc:eb:0a:7b:5a:ff:82:e4:ea:fb:12:31:96:11:cd:
7a:a4:f5:ec:f7:55:67:8f:2d:db:1f:cf:89:3c:c4:da:b3:2b:
63:a5:57:e2:cb:0c:ee:f1:83:c4:64:8b:27:b7:ca:27:ae:62:
2b:07:75:0a:4d:54:3a:ad:8f:d5:9d:ec:0d:8a:92:a0:dd:be:
76:f2:ea:f5:5a:53:0c:d7:4e:72:b2:16:84:52:85:66:6f:1a:
cf:7a:66:34:6c:49:0f:30:bb:b8:09:db:e5:ed:fe:c6:bf:39:
a6:f6:77:33
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYKHQMRQjSgS3Z+m6LzG7/yBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZjU2MzIxZWI3ZWEzZWU0NWNkZWQwMjg2Njg0MjBlMzdm
YTJmYWMwHhcNMjIwODEwMTAxNTQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYWFhYjdkZTUyZDU3NWZiYWVkZjhlNTVmNTkxMjlhMWRiNDJjYmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkfn1HL77nJUkn8PZWhxJ0LQqGHXe
zGieIuG218wmiJmv6s/D+GzwxqdSXkCAX04P83ucjz9wllFBgC9LA08guF9d8wEv
mt+JpxWm9s93bC6hwxrgQSLquhqp9oJodHTfYP53Vk/3lkIkwZEyFbofS75tH6sG
LVmWtD+qJ2w4B+kruhqhmUszX7XTh6bNHGLgLvmHTFAc1ERbIv3lPTkpO2Z6wt8b
qXPogR3nakctMR7L9CGKAydUyrBCti6sdsOJoZx8/uezNvmeQ9MteoHFbk36LYK1
9/bPnWxxrcih3rE9sZ0wezqiD0WduQc/aZvDY9uCNfu3JP8gzPbu1jeqewIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOqqt95S1XX7rt+OVfWRKaHbQsulMB8GA1UdIwQY
MBaAFFz1YyHrfqPuRc3tAoZoQg43+i+sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFBWaklldC1vLTVGemUwQ2htaENEamY2TDZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9kZmE0YTgtMzhiMC00NjFiLWEwODIt
ODQzZTI2MmRkOGRjLzEvNnFxMzNsTFZkZnV1MzQ1VjlaRXBvZHRDeTZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC9kZmE0YTgtMzhiMC00NjFiLWEwODItODQzZTI2MmRkOGRj
LzEvWFBWaklldC1vLTVGemUwQ2htaENEamY2TDZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA4o
MA0GCSqGSIb3DQEBCwUAA4IBAQANZ7PJf4p4MBsKV4HGEs1JEoy41FL8H7pVWoHp
6G/JNNazbS0IEFqU1qZfvT7zEPA+al4YZRilHGzgcYKFg6YVqeou0sw8KWL1Chuo
b5GXqmVrve0MQuBtkdfxMP70mN6kJUOLCQRm5oJ8LDWJHAJyJGnkI4AQJ5QKfn2G
Wq1G1HDwK1Fnrl9QXIDtUTiA2R6Scwjc6wp7Wv+C5Or7EjGWEc16pPXs91Vnjy3b
H8+JPMTasytjpVfiywzu8YPEZIsnt8onrmIrB3UKTVQ6rY/VnewNipKg3b528ur1
WlMM105yshaEUoVmbxrPemY0bEkPMLu4Cdvl7f7Gvzmm9ncz
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:59 2024 by rpki-client on console-ams.rpki-client.org