Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f55757-5965-4270-beab-a0d6dbfac6eb/1/gZIHQrsG1ea6Zfz4TLq2Ft21zA0.roa
File: gZIHQrsG1ea6Zfz4TLq2Ft21zA0.roa (raw, json)
Hash identifier: /yNAveoDXVuzWPU/uOtZNewkLMWRhfNowvfOr6/BKeI=
Subject key identifier: 81:92:07:42:BB:06:D5:E6:BA:65:FC:F8:4C:BA:B6:16:DD:B5:CC:0D
Certificate issuer: /CN=3f3bf511774b6e1d706bb2727b3d3125775a912f
Certificate serial: 02AB8BA5
Authority key identifier: 3F:3B:F5:11:77:4B:6E:1D:70:6B:B2:72:7B:3D:31:25:77:5A:91:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pzv1EXdLbh1wa7Jyez0xJXdakS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f55757-5965-4270-beab-a0d6dbfac6eb/1/gZIHQrsG1ea6Zfz4TLq2Ft21zA0.roa
Signing time: Sat 01 Jan 2022 09:57:28 +0000
ROA not before: Sat 01 Jan 2022 09:57:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a0a:144::/35 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44796837 (0x2ab8ba5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f3bf511774b6e1d706bb2727b3d3125775a912f
Validity
Not Before: Jan 1 09:57:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81920742bb06d5e6ba65fcf84cbab616ddb5cc0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:cd:c6:27:ce:ed:0f:42:be:02:50:2f:b4:c0:
54:47:00:c3:cc:71:44:a4:7d:f7:cc:67:6e:6e:77:
f8:c7:d6:a0:91:93:71:a3:e1:f6:92:29:cd:45:0a:
53:f2:37:fe:41:ff:59:2e:e3:35:ed:76:af:b7:6e:
8c:12:c2:5b:9d:30:46:13:90:4b:f6:52:4a:1c:a0:
98:6f:74:77:3e:d2:38:6b:b3:e6:25:39:b2:d5:e6:
91:c2:bc:6e:8d:e3:56:82:ef:fc:6d:96:e5:37:36:
cc:a5:57:62:a4:bb:fd:60:5b:ba:d7:cf:68:b6:57:
d7:4d:5f:cd:9c:69:19:f3:76:bb:32:47:a6:fe:f3:
ba:11:d1:69:c7:1b:0e:0b:f7:4f:cc:10:82:e1:48:
d6:19:ae:26:25:30:9f:ea:f7:4b:b7:8b:9e:bc:93:
2c:46:c0:fd:fa:36:34:7d:93:72:40:42:db:8e:44:
66:92:58:23:77:70:9e:a2:06:9a:19:d2:e3:06:ea:
48:2b:a0:50:50:af:c1:2a:21:ba:e3:5c:3e:81:5c:
c1:c2:d3:9e:b2:33:e4:3a:34:ad:3c:df:15:8c:28:
e6:2a:cc:c7:32:30:e1:10:60:eb:be:81:40:1a:d2:
ae:b8:82:c8:b4:72:ff:7d:6d:85:de:7f:aa:ce:6e:
ad:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:92:07:42:BB:06:D5:E6:BA:65:FC:F8:4C:BA:B6:16:DD:B5:CC:0D
X509v3 Authority Key Identifier:
keyid:3F:3B:F5:11:77:4B:6E:1D:70:6B:B2:72:7B:3D:31:25:77:5A:91:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pzv1EXdLbh1wa7Jyez0xJXdakS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f55757-5965-4270-beab-a0d6dbfac6eb/1/gZIHQrsG1ea6Zfz4TLq2Ft21zA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f55757-5965-4270-beab-a0d6dbfac6eb/1/Pzv1EXdLbh1wa7Jyez0xJXdakS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:144::/35
Signature Algorithm: sha256WithRSAEncryption
0a:47:79:f8:65:9e:6a:52:d5:aa:fb:10:3b:b3:a1:83:de:43:
fd:11:db:8f:be:5e:56:e9:50:fc:8e:ab:2d:a0:ae:4b:0b:23:
d7:fd:14:1e:2d:68:3f:0c:99:8e:d4:58:ce:c8:a2:ec:9b:61:
61:ea:0a:10:4e:10:ad:10:b3:e2:65:52:df:03:ae:22:b1:73:
53:b7:9c:19:2a:39:85:5a:93:e9:cf:05:d4:36:d0:01:de:2a:
6e:83:f6:e3:19:5a:7d:d6:9e:bd:71:26:f2:53:05:22:b2:80:
f3:e6:7c:53:28:d3:f0:cf:d3:3d:3a:aa:96:21:9c:b9:78:dc:
81:05:99:05:b1:7f:09:eb:67:7f:b1:47:74:2b:d2:9e:f9:30:
78:da:0a:0f:db:3e:89:23:1f:e4:a1:53:91:c1:a4:ce:8b:30:
2b:9f:c4:a9:e1:d8:ee:53:86:c9:b2:6f:5e:dd:5c:43:99:d2:
fb:4b:2e:48:c5:4b:47:b7:ad:9e:0d:0e:d2:ca:01:60:08:f8:
db:3b:c4:16:2c:d9:ab:42:98:65:5d:51:05:f6:18:06:5e:e6:
40:29:4a:99:f0:f4:ee:d1:bf:f8:d9:bc:0f:44:a4:55:8c:0a:
eb:a7:52:bc:8f:0b:1b:3c:7c:cc:6c:33:4e:82:6f:c2:39:25:
4e:34:53:bb
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEAquLpTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZjNiZjUxMTc3NGI2ZTFkNzA2YmIyNzI3YjNkMzEyNTc3NWE5MTJmMB4XDTIyMDEw
MTA5NTcyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODE5MjA3NDJiYjA2
ZDVlNmJhNjVmY2Y4NGNiYWI2MTZkZGI1Y2MwZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANvNxifO7Q9CvgJQL7TAVEcAw8xxRKR998xnbm53+MfWoJGT
caPh9pIpzUUKU/I3/kH/WS7jNe12r7dujBLCW50wRhOQS/ZSShygmG90dz7SOGuz
5iU5stXmkcK8bo3jVoLv/G2W5Tc2zKVXYqS7/WBbutfPaLZX101fzZxpGfN2uzJH
pv7zuhHRaccbDgv3T8wQguFI1hmuJiUwn+r3S7eLnryTLEbA/fo2NH2TckBC245E
ZpJYI3dwnqIGmhnS4wbqSCugUFCvwSohuuNcPoFcwcLTnrIz5Do0rTzfFYwo5irM
xzIw4RBg676BQBrSrriCyLRy/31thd5/qs5urbkCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBSBkgdCuwbV5rpl/PhMurYW3bXMDTAfBgNVHSMEGDAWgBQ/O/URd0tuHXBr
snJ7PTEld1qRLzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1B6djFFWGRMYmgxd2E3SnllejB4SlhkYWtTOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2EvZjU1NzU3LTU5NjUtNDI3MC1iZWFiLWEwZDZkYmZhYzZlYi8x
L2daSUhRcnNHMWVhNlpmejRUTHEyRnQyMXpBMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Ev
ZjU1NzU3LTU5NjUtNDI3MC1iZWFiLWEwZDZkYmZhYzZlYi8xL1B6djFFWGRMYmgx
d2E3SnllejB4SlhkYWtTOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBSoKAUQAMA0GCSqGSIb3DQEBCwUA
A4IBAQAKR3n4ZZ5qUtWq+xA7s6GD3kP9EduPvl5W6VD8jqstoK5LCyPX/RQeLWg/
DJmO1FjOyKLsm2Fh6goQThCtELPiZVLfA64isXNTt5wZKjmFWpPpzwXUNtAB3ipu
g/bjGVp91p69cSbyUwUisoDz5nxTKNPwz9M9OqqWIZy5eNyBBZkFsX8J62d/sUd0
K9Ke+TB42goP2z6JIx/koVORwaTOizArn8Sp4djuU4bJsm9e3VxDmdL7Sy5IxUtH
t62eDQ7SygFgCPjbO8QWLNmrQphlXVEF9hgGXuZAKUqZ8PTu0b/42bwPRKRVjArr
p1K8jwsbPHzMbDNOgm/COSVONFO7
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:22 2024 by rpki-client on console-ams.rpki-client.org