Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/8kTC6eaHft4l65uQ143FViSmziE.roa
File: 8kTC6eaHft4l65uQ143FViSmziE.roa (raw, json)
Hash identifier: Lk/USnY4PfNXJBbUhV93G1WZ7I2itseHTNVs5CRjW6s=
Subject key identifier: F2:44:C2:E9:E6:87:7E:DE:25:EB:9B:90:D7:8D:C5:56:24:A6:CE:21
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0A82F67B
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/8kTC6eaHft4l65uQ143FViSmziE.roa
Signing time: Tue 19 Apr 2022 16:06:00 +0000
ROA not before: Tue 19 Apr 2022 16:06:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205779
IP address blocks: 2a0e:aa07:e03b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176354939 (0xa82f67b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Apr 19 16:06:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f244c2e9e6877ede25eb9b90d78dc55624a6ce21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f9:b2:78:14:2c:89:77:b4:24:a0:ff:20:8a:
4e:1d:b0:74:3f:39:34:00:ae:f8:38:76:0c:3f:af:
87:04:96:33:3b:52:d9:6e:f7:95:45:b0:64:82:b4:
53:4d:55:df:a5:86:87:8d:3b:2e:a4:3c:6c:eb:d8:
76:38:2e:41:28:a5:78:0a:4f:85:0e:0b:90:71:e7:
0b:86:93:2f:8a:f5:bb:41:44:8a:9d:39:0e:cb:98:
f5:a8:ae:35:0d:5d:73:d3:05:d0:18:d9:52:84:3d:
ac:bc:29:8a:5e:81:65:38:57:02:fa:a8:31:d3:cb:
c6:39:00:fd:7f:9b:b6:84:b9:5d:99:25:2b:ce:31:
27:ff:59:9f:b5:be:bc:53:97:c4:2d:fa:f2:b8:94:
d8:8c:c0:7a:19:0d:2a:65:c0:e0:02:22:eb:35:62:
3c:25:2f:f1:a4:ec:be:f1:c9:34:5b:0a:b6:bf:7d:
bf:2c:bc:72:e7:25:de:bd:d6:f4:40:c1:d1:5a:b0:
af:f3:e4:cd:0a:9b:59:a5:70:79:b0:a8:a5:08:98:
ed:c5:7b:5d:03:2d:77:69:fc:ea:ee:10:b9:bc:21:
4c:d4:b8:ec:62:a6:85:0d:62:b6:98:f8:9e:98:ba:
c7:69:13:85:e0:19:c1:4e:2e:1b:a9:83:eb:f2:de:
50:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:44:C2:E9:E6:87:7E:DE:25:EB:9B:90:D7:8D:C5:56:24:A6:CE:21
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/8kTC6eaHft4l65uQ143FViSmziE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e03b::/48
Signature Algorithm: sha256WithRSAEncryption
93:09:8a:4c:e7:3b:ef:fd:a2:91:4e:ca:d5:17:31:a2:35:6b:
30:10:2f:5b:31:90:2f:d3:f0:ea:b3:a5:de:76:63:31:dd:1f:
f7:42:57:8f:37:b1:93:ef:bf:b5:3a:fc:ad:90:00:1e:6b:3c:
79:76:d8:35:0d:c9:aa:e4:24:b1:02:34:f1:ae:e8:2a:0d:36:
2e:4b:c3:d7:9e:97:e1:42:d3:71:3d:99:48:9b:32:e2:ba:6c:
6c:34:db:5a:9c:15:ab:3e:74:0b:f9:1c:b3:67:ff:4f:23:de:
72:54:17:fb:24:38:a2:19:2e:9d:33:ca:00:54:13:09:38:92:
df:1b:18:9c:47:70:21:d1:7e:b0:6a:f0:11:e4:38:6e:f3:ca:
58:3a:57:35:68:e0:f3:10:7b:05:b5:81:f4:ef:23:3a:11:d7:
b2:f6:fc:dd:72:f1:94:b9:a7:a4:b9:01:6e:6f:fb:46:fd:7f:
e5:63:47:a7:0a:2f:7b:2b:18:8b:6a:d1:79:05:45:b9:2a:9c:
7b:d7:2a:e3:99:60:99:df:c7:9f:01:74:b6:a7:d5:4f:6f:cb:
40:12:03:85:55:23:92:6b:e9:28:15:db:3e:6e:0e:e0:2e:55:
f5:2d:81:2a:58:1f:ba:b3:b7:99:b4:f6:c1:0f:f2:70:35:84:
bb:48:9c:a6
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECoL2ezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzYxYjVjZDY5NjgyNWI3NGZjY2JhN2Q5N2MzZDBhMjcyNGVmM2FhMB4XDTIyMDQx
OTE2MDYwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjI0NGMyZTllNjg3
N2VkZTI1ZWI5YjkwZDc4ZGM1NTYyNGE2Y2UyMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOv5sngULIl3tCSg/yCKTh2wdD85NACu+Dh2DD+vhwSWMztS
2W73lUWwZIK0U01V36WGh407LqQ8bOvYdjguQSileApPhQ4LkHHnC4aTL4r1u0FE
ip05DsuY9aiuNQ1dc9MF0BjZUoQ9rLwpil6BZThXAvqoMdPLxjkA/X+btoS5XZkl
K84xJ/9Zn7W+vFOXxC368riU2IzAehkNKmXA4AIi6zViPCUv8aTsvvHJNFsKtr99
vyy8cucl3r3W9EDB0Vqwr/PkzQqbWaVwebCopQiY7cV7XQMtd2n86u4QubwhTNS4
7GKmhQ1itpj4npi6x2kTheAZwU4uG6mD6/LeUNMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTyRMLp5od+3iXrm5DXjcVWJKbOITAfBgNVHSMEGDAWgBSTYbXNaWglt0/M
un2Xw9Cick7zqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syRzF6V2xvSmJkUHpMcDlsOFBRb25KTzg2by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2YvNzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8x
LzhrVEM2ZWFIZnQ0bDY1dVExNDNGVmlTbXppRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Yv
NzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8xL2syRzF6V2xvSmJk
UHpMcDlsOFBRb25KTzg2by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOqgfgOzANBgkqhkiG9w0BAQsF
AAOCAQEAkwmKTOc77/2ikU7K1RcxojVrMBAvWzGQL9Pw6rOl3nZjMd0f90JXjzex
k++/tTr8rZAAHms8eXbYNQ3JquQksQI08a7oKg02LkvD156X4ULTcT2ZSJsy4rps
bDTbWpwVqz50C/kcs2f/TyPeclQX+yQ4ohkunTPKAFQTCTiS3xsYnEdwIdF+sGrw
EeQ4bvPKWDpXNWjg8xB7BbWB9O8jOhHXsvb83XLxlLmnpLkBbm/7Rv1/5WNHpwov
eysYi2rReQVFuSqce9cq45lgmd/HnwF0tqfVT2/LQBIDhVUjkmvpKBXbPm4O4C5V
9S2BKlgfurO3mbT2wQ/ycDWEu0icpg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:10 2024 by rpki-client on console-ams.rpki-client.org