Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/bSWF7YI6aqQq9_gXT37LRsvA6xI.roa
File: bSWF7YI6aqQq9_gXT37LRsvA6xI.roa (raw, json)
Hash identifier: dsw9SNRVVPW80ZPgxsTJ97lZsvdIZzb93goJsKp8Iyk=
Subject key identifier: 6D:25:85:ED:82:3A:6A:A4:2A:F7:F8:17:4F:7E:CB:46:CB:C0:EB:12
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 09638DDD
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/bSWF7YI6aqQq9_gXT37LRsvA6xI.roa
Signing time: Sat 01 Jan 2022 09:03:53 +0000
ROA not before: Sat 01 Jan 2022 09:03:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 139742
IP address blocks: 2a0e:aa07:f000::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157519325 (0x9638ddd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:03:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d2585ed823a6aa42af7f8174f7ecb46cbc0eb12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:25:00:7c:b7:dc:10:16:cc:3e:22:1d:a8:f2:
13:8a:26:e7:dc:5b:0e:b0:66:8b:97:aa:e5:21:0a:
66:6e:45:c5:76:0b:7a:9e:a9:73:92:01:31:c4:8f:
cf:81:c2:d6:5b:0e:63:fe:80:f0:42:9b:9a:57:d8:
da:88:85:90:c8:44:1b:6d:ef:41:3e:d3:3e:29:4a:
fd:0a:37:0a:5f:30:41:10:2e:8f:d1:b3:51:75:5a:
2f:e3:3c:26:9f:7e:a0:05:79:62:4c:15:c3:28:65:
51:88:3f:7f:3d:41:6d:e8:f1:ad:46:bf:85:e9:f8:
3b:63:03:98:a5:2c:d9:0d:fe:14:ba:ca:49:2b:de:
21:73:1f:cb:1e:ed:a6:8e:84:3f:54:93:6a:07:db:
21:c4:78:3a:13:fb:ef:c1:be:62:14:14:cc:34:be:
83:c3:3d:7a:98:44:e3:b7:1f:b2:de:ee:d7:40:ff:
ed:62:52:ba:fd:92:d2:b7:63:0b:99:1b:bf:99:6b:
21:12:56:a3:45:7c:63:06:d3:61:f8:8b:e1:a6:08:
3b:b3:81:dc:77:4e:d7:a7:73:2b:a1:1b:5b:12:2d:
a5:9d:37:fb:1b:68:e0:b3:50:b7:15:8e:0e:4b:db:
17:be:cb:43:31:37:a9:75:8f:53:54:f7:9f:cd:73:
69:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:25:85:ED:82:3A:6A:A4:2A:F7:F8:17:4F:7E:CB:46:CB:C0:EB:12
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/bSWF7YI6aqQq9_gXT37LRsvA6xI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:f000::/44
Signature Algorithm: sha256WithRSAEncryption
61:9a:51:9d:00:f8:82:1f:99:c9:3f:25:6e:ad:9b:da:7c:92:
91:22:1c:a2:b1:84:19:d2:d2:5f:bd:e3:9b:1d:3c:f3:4a:a3:
2e:4c:ce:02:ed:53:4b:21:71:67:94:c7:9d:e9:f1:fd:17:cc:
d6:8d:8c:b0:89:f7:f8:2e:73:5c:b6:87:41:17:f6:96:db:60:
85:35:38:7e:28:f7:97:92:2d:54:e2:48:cc:c5:84:a5:0f:1e:
4c:27:d2:87:cd:c9:88:65:f5:76:ab:ec:49:a1:8e:48:d4:32:
ce:cb:40:74:cb:ba:87:65:34:2d:2e:d7:66:9a:62:93:e5:ec:
2d:c1:8c:ca:87:26:13:7b:5a:ed:ae:bf:f9:5a:a6:52:01:2a:
9c:0d:50:2d:f5:6c:a5:87:da:2c:75:64:82:de:27:26:ba:68:
f4:b7:1b:ad:cb:73:f3:49:51:56:63:44:6e:72:92:94:27:ca:
81:1d:aa:80:b5:33:e5:b4:44:01:9e:a0:a5:f5:e6:c0:0b:92:
92:4c:11:52:dd:d5:11:61:d8:ec:9d:57:04:71:84:f5:23:ea:
7d:6e:37:bd:7e:04:07:ac:58:2e:12:1e:f0:d1:29:2d:21:3d:
1f:2a:2d:a2:f2:84:fd:2c:a9:58:b1:7f:fe:5b:ac:2e:8d:5c:
34:ae:a1:66
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECWON3TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzYxYjVjZDY5NjgyNWI3NGZjY2JhN2Q5N2MzZDBhMjcyNGVmM2FhMB4XDTIyMDEw
MTA5MDM1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmQyNTg1ZWQ4MjNh
NmFhNDJhZjdmODE3NGY3ZWNiNDZjYmMwZWIxMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPMlAHy33BAWzD4iHajyE4om59xbDrBmi5eq5SEKZm5FxXYL
ep6pc5IBMcSPz4HC1lsOY/6A8EKbmlfY2oiFkMhEG23vQT7TPilK/Qo3Cl8wQRAu
j9GzUXVaL+M8Jp9+oAV5YkwVwyhlUYg/fz1BbejxrUa/hen4O2MDmKUs2Q3+FLrK
SSveIXMfyx7tpo6EP1STagfbIcR4OhP778G+YhQUzDS+g8M9ephE47cfst7u10D/
7WJSuv2S0rdjC5kbv5lrIRJWo0V8YwbTYfiL4aYIO7OB3HdO16dzK6EbWxItpZ03
+xto4LNQtxWODkvbF77LQzE3qXWPU1T3n81zaa0CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRtJYXtgjpqpCr3+BdPfstGy8DrEjAfBgNVHSMEGDAWgBSTYbXNaWglt0/M
un2Xw9Cick7zqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syRzF6V2xvSmJkUHpMcDlsOFBRb25KTzg2by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2YvNzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8x
L2JTV0Y3WUk2YXFRcTlfZ1hUMzdMUnN2QTZ4SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Yv
NzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8xL2syRzF6V2xvSmJk
UHpMcDlsOFBRb25KTzg2by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoOqgfwADANBgkqhkiG9w0BAQsF
AAOCAQEAYZpRnQD4gh+ZyT8lbq2b2nySkSIcorGEGdLSX73jmx0880qjLkzOAu1T
SyFxZ5THnenx/RfM1o2MsIn3+C5zXLaHQRf2lttghTU4fij3l5ItVOJIzMWEpQ8e
TCfSh83JiGX1dqvsSaGOSNQyzstAdMu6h2U0LS7XZppik+XsLcGMyocmE3ta7a6/
+VqmUgEqnA1QLfVspYfaLHVkgt4nJrpo9Lcbrctz80lRVmNEbnKSlCfKgR2qgLUz
5bREAZ6gpfXmwAuSkkwRUt3VEWHY7J1XBHGE9SPqfW43vX4EB6xYLhIe8NEpLSE9
HyotovKE/SypWLF//lusLo1cNK6hZg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org