Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/9ba66c-bee7-44c9-82e5-d95a5155dd02/1/VcVH7_2EVpjnYjZwRH5K6d5kZPY.roa
File: VcVH7_2EVpjnYjZwRH5K6d5kZPY.roa (raw, json)
Hash identifier: Hb3ax6roCRe9j66qa+Wch5NMDIjmWqLqmhpY5JXAl60=
Subject key identifier: 55:C5:47:EF:FD:84:56:98:E7:62:36:70:44:7E:4A:E9:DE:64:64:F6
Certificate issuer: /CN=11466326406436e31478b7bca2dda16c96d5a964
Certificate serial: 06C9B46F
Authority key identifier: 11:46:63:26:40:64:36:E3:14:78:B7:BC:A2:DD:A1:6C:96:D5:A9:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EUZjJkBkNuMUeLe8ot2hbJbVqWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/9ba66c-bee7-44c9-82e5-d95a5155dd02/1/VcVH7_2EVpjnYjZwRH5K6d5kZPY.roa
Signing time: Sat 01 Jan 2022 11:54:34 +0000
ROA not before: Sat 01 Jan 2022 11:54:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207267
IP address blocks: 2a0f:9247::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113882223 (0x6c9b46f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11466326406436e31478b7bca2dda16c96d5a964
Validity
Not Before: Jan 1 11:54:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55c547effd845698e7623670447e4ae9de6464f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ef:f3:24:01:f6:bb:b1:20:05:d5:2a:4e:f2:
48:60:02:7f:f1:58:30:27:71:20:62:8f:1c:53:31:
eb:08:4f:2d:ee:25:a8:76:9f:5c:16:75:79:a7:d5:
b7:ce:ef:a2:21:43:c5:a5:d5:ec:2a:38:16:b9:d3:
d3:5c:10:96:01:06:b4:93:fd:18:4a:2c:ca:1d:4d:
0a:f7:f6:68:57:1a:c4:45:b6:cc:03:9f:0d:01:46:
6d:b0:b2:35:8e:7c:d4:59:59:50:ca:10:34:49:59:
de:1e:4a:72:6b:4f:66:ae:ee:47:ce:49:73:43:e2:
f2:7e:b0:13:f0:76:bc:92:e6:34:3b:68:d2:b5:7d:
c4:75:05:ee:1f:5e:5b:40:56:01:77:bc:f6:77:6e:
ad:27:3d:e4:e5:e9:03:66:45:6c:d4:68:f1:26:87:
db:e8:14:6e:f3:fa:64:4d:a2:5a:c3:e4:f4:8f:36:
7f:8f:e5:34:53:9b:9a:9e:90:9b:38:aa:bc:a1:5d:
f2:44:2b:bb:5b:55:f4:63:0c:7b:1a:a0:79:88:4c:
2d:3a:ba:5e:eb:e6:3e:b0:65:07:c6:2d:ed:33:03:
ba:68:45:6d:5e:37:0f:2b:9f:c7:c9:55:50:7d:fb:
65:d3:44:15:d0:10:b3:e1:69:33:0c:12:cc:c3:dc:
22:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:C5:47:EF:FD:84:56:98:E7:62:36:70:44:7E:4A:E9:DE:64:64:F6
X509v3 Authority Key Identifier:
keyid:11:46:63:26:40:64:36:E3:14:78:B7:BC:A2:DD:A1:6C:96:D5:A9:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EUZjJkBkNuMUeLe8ot2hbJbVqWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/9ba66c-bee7-44c9-82e5-d95a5155dd02/1/VcVH7_2EVpjnYjZwRH5K6d5kZPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/9ba66c-bee7-44c9-82e5-d95a5155dd02/1/EUZjJkBkNuMUeLe8ot2hbJbVqWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9247::/44
Signature Algorithm: sha256WithRSAEncryption
02:77:d6:2b:1d:d4:b7:33:3f:77:f3:b9:dd:0c:4a:aa:6a:53:
e0:f2:a7:39:cf:f0:fc:d2:ef:38:fa:5f:01:5f:ac:36:7e:59:
c1:fb:68:63:cd:15:00:9a:f4:9a:39:51:7e:5d:95:46:1a:49:
8a:25:04:43:4a:b2:06:1b:5c:1a:0c:b4:29:29:b8:de:a0:af:
66:3c:36:18:a3:2a:7d:45:ff:b7:0b:55:c3:d5:2d:5a:f4:35:
93:65:bd:19:a9:47:05:a8:34:f1:61:f6:6f:40:f8:0a:48:73:
f5:8a:d7:da:ef:96:30:88:77:af:67:01:3d:6b:30:7d:11:35:
4d:4a:18:bb:06:f3:83:52:49:25:33:c2:2e:95:90:d8:1b:d3:
3f:fa:ce:74:a3:dd:d4:25:ec:65:57:ce:2a:b7:76:05:25:8c:
52:ea:1f:78:67:87:cc:2d:64:67:f5:6f:4f:d1:94:ce:53:c0:
12:f7:04:cf:1e:a5:cb:91:13:94:d6:52:10:80:7e:75:7a:e6:
83:54:0f:37:3c:03:e2:de:b9:7d:69:44:29:94:a2:53:a4:a9:
63:0e:1c:62:10:dd:65:52:f4:b9:9e:3f:d9:b0:fe:79:8a:ca:
80:76:a6:fa:e9:f1:ad:b8:74:a9:f0:2f:9d:bc:66:8c:ac:38:
51:6e:22:4d
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEBsm0bzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MTQ2NjMyNjQwNjQzNmUzMTQ3OGI3YmNhMmRkYTE2Yzk2ZDVhOTY0MB4XDTIyMDEw
MTExNTQzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTVjNTQ3ZWZmZDg0
NTY5OGU3NjIzNjcwNDQ3ZTRhZTlkZTY0NjRmNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALnv8yQB9ruxIAXVKk7ySGACf/FYMCdxIGKPHFMx6whPLe4l
qHafXBZ1eafVt87voiFDxaXV7Co4FrnT01wQlgEGtJP9GEosyh1NCvf2aFcaxEW2
zAOfDQFGbbCyNY581FlZUMoQNElZ3h5KcmtPZq7uR85Jc0Pi8n6wE/B2vJLmNDto
0rV9xHUF7h9eW0BWAXe89ndurSc95OXpA2ZFbNRo8SaH2+gUbvP6ZE2iWsPk9I82
f4/lNFObmp6QmziqvKFd8kQru1tV9GMMexqgeYhMLTq6XuvmPrBlB8Yt7TMDumhF
bV43Dyufx8lVUH37ZdNEFdAQs+FpMwwSzMPcIiMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRVxUfv/YRWmOdiNnBEfkrp3mRk9jAfBgNVHSMEGDAWgBQRRmMmQGQ24xR4
t7yi3aFsltWpZDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VVWmpKa0JrTnVNVWVMZThvdDJoYkpiVnFXUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmIvOWJhNjZjLWJlZTctNDRjOS04MmU1LWQ5NWE1MTU1ZGQwMi8x
L1ZjVkg3XzJFVnBqbllqWndSSDVLNmQ1a1pQWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIv
OWJhNjZjLWJlZTctNDRjOS04MmU1LWQ5NWE1MTU1ZGQwMi8xL0VVWmpKa0JrTnVN
VWVMZThvdDJoYkpiVnFXUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoPkkcAADANBgkqhkiG9w0BAQsF
AAOCAQEAAnfWKx3UtzM/d/O53QxKqmpT4PKnOc/w/NLvOPpfAV+sNn5ZwftoY80V
AJr0mjlRfl2VRhpJiiUEQ0qyBhtcGgy0KSm43qCvZjw2GKMqfUX/twtVw9UtWvQ1
k2W9GalHBag08WH2b0D4Ckhz9YrX2u+WMIh3r2cBPWswfRE1TUoYuwbzg1JJJTPC
LpWQ2BvTP/rOdKPd1CXsZVfOKrd2BSWMUuofeGeHzC1kZ/VvT9GUzlPAEvcEzx6l
y5ETlNZSEIB+dXrmg1QPNzwD4t65fWlEKZSiU6SpYw4cYhDdZVL0uZ4/2bD+eYrK
gHam+unxrbh0qfAvnbxmjKw4UW4iTQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:10 2023 by rpki-client on console-ams.rpki-client.org