Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f0cfa7-6254-4a81-996c-3b7ef25cfe83/1/CQs8Al23yQFhgZvVS_LP-Cg5XUw.roa
File: CQs8Al23yQFhgZvVS_LP-Cg5XUw.roa (raw, json)
Hash identifier: b27dwU3Ih3emsYeG9NfDkHtPxnhjRZKqR//ULajp30M=
Subject key identifier: 09:0B:3C:02:5D:B7:C9:01:61:81:9B:D5:4B:F2:CF:F8:28:39:5D:4C
Certificate issuer: /CN=a60e46d63a7183f70da492f02b8098c2bffc28be
Certificate serial: 9B3E
Authority key identifier: A6:0E:46:D6:3A:71:83:F7:0D:A4:92:F0:2B:80:98:C2:BF:FC:28:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pg5G1jpxg_cNpJLwK4CYwr_8KL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f0cfa7-6254-4a81-996c-3b7ef25cfe83/1/CQs8Al23yQFhgZvVS_LP-Cg5XUw.roa
Signing time: Sat 18 Jun 2022 00:06:44 +0000
ROA not before: Sat 18 Jun 2022 00:06:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204660
IP address blocks: 2001:67c:a18::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39742 (0x9b3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a60e46d63a7183f70da492f02b8098c2bffc28be
Validity
Not Before: Jun 18 00:06:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=090b3c025db7c90161819bd54bf2cff828395d4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7c:f0:4c:4a:e0:26:85:af:13:51:69:08:3b:
10:e9:c3:98:58:49:c0:d9:f0:88:56:0a:e5:b3:f3:
3a:1d:0b:c1:ff:95:f3:e8:1d:76:42:39:f1:5c:c7:
17:1f:c3:1e:6e:54:7f:fd:84:23:ea:c0:9c:cb:6e:
93:83:87:60:49:75:15:e2:d6:54:5e:e6:62:d2:88:
eb:ed:b3:b6:f2:b4:ad:59:0f:b7:dc:73:70:f6:e4:
a2:80:da:7c:57:0a:27:cd:54:e6:79:e9:ec:6b:85:
fc:73:79:7d:f8:09:e1:4c:35:39:47:c7:d5:d4:f1:
98:f8:97:ad:7b:87:96:26:57:a0:8e:07:ae:d1:22:
05:06:ee:b0:cc:e2:94:05:05:04:dc:17:33:0a:0a:
89:6f:23:9c:8f:e2:b3:2b:0a:6e:96:ae:1a:d8:16:
ff:f3:19:dc:a7:04:18:37:52:a7:19:97:fa:31:ed:
b3:83:08:f1:c0:39:02:c0:01:37:be:b6:f8:e9:c7:
56:9b:9b:e2:90:9c:6d:0f:e4:5b:c7:f8:af:43:cc:
6f:bc:89:d0:17:00:7f:7e:ec:da:18:9b:eb:d9:ce:
79:7c:18:77:32:7c:02:05:4f:ca:33:3a:da:fc:35:
e2:fd:61:4b:c2:e3:25:52:52:cb:8d:4f:23:9d:f0:
07:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:0B:3C:02:5D:B7:C9:01:61:81:9B:D5:4B:F2:CF:F8:28:39:5D:4C
X509v3 Authority Key Identifier:
keyid:A6:0E:46:D6:3A:71:83:F7:0D:A4:92:F0:2B:80:98:C2:BF:FC:28:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pg5G1jpxg_cNpJLwK4CYwr_8KL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f0cfa7-6254-4a81-996c-3b7ef25cfe83/1/CQs8Al23yQFhgZvVS_LP-Cg5XUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f0cfa7-6254-4a81-996c-3b7ef25cfe83/1/pg5G1jpxg_cNpJLwK4CYwr_8KL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:a18::/48
Signature Algorithm: sha256WithRSAEncryption
ad:79:7c:73:53:5f:01:8b:2a:10:de:aa:0c:d8:2e:a0:af:20:
ff:9a:d0:af:a4:b5:90:2f:2d:72:1d:06:41:68:8c:93:3e:87:
d2:e9:dc:39:58:88:41:b5:4f:30:b5:85:41:b0:d7:42:63:7d:
b1:a2:a9:f2:c4:9b:45:2b:7f:b1:d9:5f:be:d0:8d:cd:d1:7e:
cf:c6:6f:4f:94:a4:9e:55:99:22:72:4c:5e:e8:51:fe:7d:f4:
2f:7a:7c:31:88:37:f7:71:cd:9e:ed:32:39:56:e4:79:7c:55:
3c:ea:d0:0c:79:b8:8c:e8:5f:c5:5c:54:d3:8c:3c:08:05:68:
1c:6b:1f:b8:c0:0d:47:dc:72:60:98:29:a3:0c:77:94:a6:40:
af:33:25:ad:fe:d2:41:97:d0:12:e5:f1:27:12:11:76:94:a9:
46:04:70:6e:88:4f:ab:f4:a3:69:7f:04:35:14:d4:e2:cc:63:
78:b8:4f:b3:ae:82:f3:34:81:fd:ba:a9:db:e9:92:44:2c:1e:
03:51:03:f6:23:4d:92:95:57:ae:a1:dc:85:f0:e6:e4:45:44:
19:30:ca:c1:4a:96:85:b9:08:75:eb:af:fa:69:44:a1:41:c1:
94:66:e6:d1:3b:14:16:71:3c:b6:63:88:d2:a7:24:2d:35:2a:
a6:08:1c:57
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIDAJs+MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGE2
MGU0NmQ2M2E3MTgzZjcwZGE0OTJmMDJiODA5OGMyYmZmYzI4YmUwHhcNMjIwNjE4
MDAwNjQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwOTBiM2MwMjVkYjdj
OTAxNjE4MTliZDU0YmYyY2ZmODI4Mzk1ZDRjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA03zwTErgJoWvE1FpCDsQ6cOYWEnA2fCIVgrls/M6HQvB/5Xz
6B12QjnxXMcXH8MeblR//YQj6sCcy26Tg4dgSXUV4tZUXuZi0ojr7bO28rStWQ+3
3HNw9uSigNp8VwonzVTmeensa4X8c3l9+AnhTDU5R8fV1PGY+Jete4eWJlegjgeu
0SIFBu6wzOKUBQUE3BczCgqJbyOcj+KzKwpulq4a2Bb/8xncpwQYN1KnGZf6Me2z
gwjxwDkCwAE3vrb46cdWm5vikJxtD+Rbx/ivQ8xvvInQFwB/fuzaGJvr2c55fBh3
MnwCBU/KMzra/DXi/WFLwuMlUlLLjU8jnfAHNwIDAQABo4ICDDCCAggwHQYDVR0O
BBYEFAkLPAJdt8kBYYGb1Uvyz/goOV1MMB8GA1UdIwQYMBaAFKYORtY6cYP3DaSS
8CuAmMK//Ci+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
cGc1RzFqcHhnX2NOcEpMd0s0Q1l3cl84S0w0LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC82ZC9mMGNmYTctNjI1NC00YTgxLTk5NmMtM2I3ZWYyNWNmZTgzLzEv
Q1FzOEFsMjN5UUZoZ1p2VlNfTFAtQ2c1WFV3LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9m
MGNmYTctNjI1NC00YTgxLTk5NmMtM2I3ZWYyNWNmZTgzLzEvcGc1RzFqcHhnX2NO
cEpMd0s0Q1l3cl84S0w0LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIG
CCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAoYMA0GCSqGSIb3DQEBCwUA
A4IBAQCteXxzU18BiyoQ3qoM2C6gryD/mtCvpLWQLy1yHQZBaIyTPofS6dw5WIhB
tU8wtYVBsNdCY32xoqnyxJtFK3+x2V++0I3N0X7Pxm9PlKSeVZkickxe6FH+ffQv
enwxiDf3cc2e7TI5VuR5fFU86tAMebiM6F/FXFTTjDwIBWgcax+4wA1H3HJgmCmj
DHeUpkCvMyWt/tJBl9AS5fEnEhF2lKlGBHBuiE+r9KNpfwQ1FNTizGN4uE+zroLz
NIH9uqnb6ZJELB4DUQP2I02SlVeuodyF8ObkRUQZMMrBSpaFuQh166/6aUShQcGU
ZubROxQWcTy2Y4jSpyQtNSqmCBxX
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org