Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/70496c-63b8-47c8-a769-c9a69683a8e8/1/t9ZC-XDHBlFdgFOJwQ8xpfSbU8w.roa
File: t9ZC-XDHBlFdgFOJwQ8xpfSbU8w.roa (raw, json)
Hash identifier: RIGi27WQrfh5gHqX6Nj2OETRmmayInAVHuAOtVLN6Js=
Subject key identifier: B7:D6:42:F9:70:C7:06:51:5D:80:53:89:C1:0F:31:A5:F4:9B:53:CC
Certificate issuer: /CN=d5f94786d036685440901a3dce5a334cf13272a0
Certificate serial: 0185263AF0CA9EC12163EA2B1B743856FA14
Authority key identifier: D5:F9:47:86:D0:36:68:54:40:90:1A:3D:CE:5A:33:4C:F1:32:72:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1flHhtA2aFRAkBo9zlozTPEycqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/70496c-63b8-47c8-a769-c9a69683a8e8/1/t9ZC-XDHBlFdgFOJwQ8xpfSbU8w.roa
Signing time: Sun 18 Dec 2022 17:14:34 +0000
ROA not before: Sun 18 Dec 2022 17:14:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62093
IP address blocks: 2a02:c540:1000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:26:3a:f0:ca:9e:c1:21:63:ea:2b:1b:74:38:56:fa:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f94786d036685440901a3dce5a334cf13272a0
Validity
Not Before: Dec 18 17:14:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7d642f970c706515d805389c10f31a5f49b53cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ee:e6:c5:79:a4:43:40:b5:b7:1b:6a:25:59:
4e:bb:d5:f4:a5:5a:9d:8b:c9:37:f7:65:df:70:fc:
a2:91:2b:d4:e3:e3:ec:e8:b1:aa:a8:3b:b7:f3:8c:
50:21:87:18:e0:82:31:b0:ca:40:85:d0:85:04:8b:
57:64:6d:e6:8c:08:d2:4c:02:4d:dc:59:ef:8a:29:
2e:08:27:ac:12:7c:5b:94:eb:78:c4:2b:94:45:06:
e0:2b:f3:f9:db:92:27:9a:3e:6b:d6:e9:a3:5e:88:
8c:de:a3:11:e5:9e:05:f7:7d:b5:1c:07:18:3b:99:
29:58:3a:fe:01:f7:76:dd:4f:ed:48:50:da:ab:92:
a8:52:c7:15:48:49:71:61:05:01:de:4b:40:9e:45:
6d:87:84:56:3c:c8:14:5b:b1:1e:60:f0:d7:15:31:
76:21:09:de:e1:54:27:29:b1:eb:03:27:a5:47:d7:
41:6c:ed:2e:fe:2c:83:5f:8f:7c:2e:6c:da:0c:0a:
94:85:c4:76:4d:fe:12:c0:f2:e9:27:0f:66:21:c7:
ee:27:ed:4a:dd:0e:dd:d9:79:4e:9e:0b:8a:0b:12:
ac:6c:e3:61:78:fe:d5:9d:4c:a8:de:7b:50:1a:d1:
72:1c:c8:ae:e7:2f:10:8b:7d:c0:5a:0e:ba:52:6e:
81:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:D6:42:F9:70:C7:06:51:5D:80:53:89:C1:0F:31:A5:F4:9B:53:CC
X509v3 Authority Key Identifier:
keyid:D5:F9:47:86:D0:36:68:54:40:90:1A:3D:CE:5A:33:4C:F1:32:72:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1flHhtA2aFRAkBo9zlozTPEycqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/70496c-63b8-47c8-a769-c9a69683a8e8/1/t9ZC-XDHBlFdgFOJwQ8xpfSbU8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/70496c-63b8-47c8-a769-c9a69683a8e8/1/1flHhtA2aFRAkBo9zlozTPEycqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:c540:1000::/36
Signature Algorithm: sha256WithRSAEncryption
5b:82:cb:e1:70:83:79:2b:c1:f9:58:a4:04:77:d1:16:99:df:
11:5e:23:65:82:6b:e7:f7:88:02:2d:47:76:ef:81:9a:3d:b7:
5f:72:80:36:c0:16:93:4e:8d:de:01:ec:40:2a:63:bf:1f:08:
88:5e:e0:58:c3:0f:d3:c5:4f:ca:9a:35:34:38:ec:98:4b:b6:
e4:80:08:69:38:9c:4e:57:a5:68:0d:67:2f:88:20:d1:29:ce:
58:fe:28:94:c9:16:e1:99:8f:34:34:5a:78:72:ca:a8:12:df:
1b:67:9c:f2:b0:9e:d8:28:bb:54:45:31:5c:58:f5:2b:d1:46:
c4:d0:0c:de:8b:a5:e1:77:cb:c8:1c:c3:89:e0:d6:0b:29:e0:
ce:82:91:53:e1:f3:44:64:4c:26:b9:e5:fa:55:0a:19:a1:76:
95:d1:90:5a:c2:58:05:75:e0:b8:49:29:40:bc:c3:09:39:a4:
a5:fd:c1:58:3a:c3:e9:37:e3:24:11:7b:45:9c:62:18:d3:4c:
6b:c6:b9:97:82:31:20:6c:d2:55:83:00:b9:82:fa:fd:78:3c:
24:e9:cc:ce:aa:1e:a4:ff:e7:7b:a4:9b:c4:ff:e5:44:18:a8:
cf:07:f8:b1:1a:7f:1d:e5:b9:8b:b8:0d:00:e8:f3:b2:d9:fd:
61:5c:f3:f9
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYUmOvDKnsEhY+orG3Q4VvoUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1Zjk0Nzg2ZDAzNjY4NTQ0MDkwMWEzZGNlNWEzMzRjZjEz
MjcyYTAwHhcNMjIxMjE4MTcxNDM0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiN2Q2NDJmOTcwYzcwNjUxNWQ4MDUzODljMTBmMzFhNWY0OWI1M2NjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApe7mxXmkQ0C1txtqJVlOu9X0pVqd
i8k392XfcPyikSvU4+Ps6LGqqDu384xQIYcY4IIxsMpAhdCFBItXZG3mjAjSTAJN
3FnviikuCCesEnxblOt4xCuURQbgK/P525Inmj5r1umjXoiM3qMR5Z4F9321HAcY
O5kpWDr+Afd23U/tSFDaq5KoUscVSElxYQUB3ktAnkVth4RWPMgUW7EeYPDXFTF2
IQne4VQnKbHrAyelR9dBbO0u/iyDX498LmzaDAqUhcR2Tf4SwPLpJw9mIcfuJ+1K
3Q7d2XlOnguKCxKsbONheP7VnUyo3ntQGtFyHMiu5y8Qi33AWg66Um6BkwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFLfWQvlwxwZRXYBTicEPMaX0m1PMMB8GA1UdIwQY
MBaAFNX5R4bQNmhUQJAaPc5aM0zxMnKgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWZsSGh0QTJhRlJBa0JvOXpsb3pUUEV5Y3FBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy83MDQ5NmMtNjNiOC00N2M4LWE3Njkt
YzlhNjk2ODNhOGU4LzEvdDlaQy1YREhCbEZkZ0ZPSndROHhwZlNiVTh3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy83MDQ5NmMtNjNiOC00N2M4LWE3NjktYzlhNjk2ODNhOGU4
LzEvMWZsSGh0QTJhRlJBa0JvOXpsb3pUUEV5Y3FBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKgLFQBAw
DQYJKoZIhvcNAQELBQADggEBAFuCy+Fwg3krwflYpAR30RaZ3xFeI2WCa+f3iAIt
R3bvgZo9t19ygDbAFpNOjd4B7EAqY78fCIhe4FjDD9PFT8qaNTQ47JhLtuSACGk4
nE5XpWgNZy+IINEpzlj+KJTJFuGZjzQ0WnhyyqgS3xtnnPKwntgou1RFMVxY9SvR
RsTQDN6LpeF3y8gcw4ng1gsp4M6CkVPh80RkTCa55fpVChmhdpXRkFrCWAV14LhJ
KUC8wwk5pKX9wVg6w+k34yQRe0WcYhjTTGvGuZeCMSBs0lWDALmC+v14PCTpzM6q
HqT/53ukm8T/5UQYqM8H+LEafx3luYu4DQDo87LZ/WFc8/k=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:12 2023 by rpki-client on console-ams.rpki-client.org