Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/dcwDnktIBNw28nssf_tVJwhNzdM.roa
File: dcwDnktIBNw28nssf_tVJwhNzdM.roa (raw, json)
Hash identifier: z1oeBMmNUD/8SyYljpF49rU1hWr5anHQKDD4Z6KLb9s=
Subject key identifier: 75:CC:03:9E:4B:48:04:DC:36:F2:7B:2C:7F:FB:55:27:08:4D:CD:D3
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 09A637F2
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/dcwDnktIBNw28nssf_tVJwhNzdM.roa
Signing time: Sat 15 Jan 2022 05:08:43 +0000
ROA not before: Sat 15 Jan 2022 05:08:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 147028
IP address blocks: 2a0e:aa07:e500::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161888242 (0x9a637f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 15 05:08:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75cc039e4b4804dc36f27b2c7ffb5527084dcdd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:03:40:e3:a5:6b:ee:f6:d8:30:64:8b:eb:d7:
89:28:86:9f:d4:4c:b7:d1:58:e3:0f:8a:fd:18:de:
83:d7:aa:0d:fc:65:14:1a:fd:23:21:e0:68:7b:8c:
bc:06:b8:c4:37:22:09:70:eb:1e:70:cf:dc:64:5e:
95:52:9f:04:a8:1c:6f:6a:6e:b1:aa:82:05:c1:0a:
bf:9b:cd:dc:03:cb:47:4a:e0:2a:8b:ea:38:56:7c:
37:b7:93:68:67:87:29:b9:77:de:f2:92:f9:61:67:
11:b1:08:0f:c0:f6:39:c7:83:e8:e4:03:d2:69:7d:
5b:b5:3b:06:17:2b:6e:5f:45:aa:a3:3f:a7:35:50:
d5:10:0f:97:43:42:77:1d:05:e7:f6:f4:43:9f:ba:
7e:16:2c:28:9f:51:dd:31:e8:09:24:94:d9:4e:30:
39:fd:cd:2b:5a:55:f2:dd:1f:d6:09:2d:7a:96:10:
ed:8c:8d:11:f2:60:2e:7a:3a:c8:8a:b8:5b:ad:e4:
5a:ba:e3:1c:7f:3a:76:00:13:71:58:d8:24:0e:75:
ad:de:8a:a4:54:05:c1:58:6b:5d:60:39:8f:2f:43:
f2:49:6e:82:8c:ed:39:48:c2:6a:96:30:95:6d:c0:
1e:19:60:0e:34:af:1d:0e:14:f0:af:e5:c7:d6:2e:
b7:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:CC:03:9E:4B:48:04:DC:36:F2:7B:2C:7F:FB:55:27:08:4D:CD:D3
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/dcwDnktIBNw28nssf_tVJwhNzdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e500::/48
Signature Algorithm: sha256WithRSAEncryption
c6:0c:e9:9d:fe:ef:10:ff:f7:e5:01:9c:c0:d1:35:64:3b:41:
ca:e6:98:0b:0b:fd:2f:5b:de:a4:fe:7f:6b:b5:0a:36:1b:2f:
4d:fa:fa:1a:3e:3d:b8:05:eb:7f:79:9f:da:bb:72:25:9a:d4:
c7:53:f3:be:3a:a5:6f:6d:51:a5:33:98:61:1e:5c:f0:3f:fd:
71:27:cd:8b:8c:73:44:bc:66:40:e8:de:90:7b:30:2c:cf:7d:
2c:e2:9c:70:36:92:1b:af:3a:d9:d7:f6:d6:6a:92:eb:e4:d2:
85:91:57:42:ae:b7:c2:9f:20:19:6b:96:35:22:7b:3b:e9:4c:
9b:90:51:99:8d:17:93:ed:eb:bd:3b:b6:e3:c4:b5:1d:28:18:
b4:fe:8e:18:ab:86:2d:4e:34:56:a3:bb:ed:40:c4:38:e3:e0:
91:a4:ef:c4:78:96:70:55:57:75:15:a9:ea:c9:f4:3d:bf:19:
a5:bc:45:af:fe:2a:24:d4:90:ce:b4:12:cb:28:20:3e:1c:90:
1e:67:0d:a0:51:05:8d:6f:28:fb:da:e4:65:42:52:55:99:70:
64:a6:2d:f7:c2:74:c4:73:6c:61:ce:1a:4a:46:1f:eb:c6:9f:
a3:51:17:0b:85:56:8f:97:a3:f6:09:46:3f:7b:bf:af:e6:f7:
ba:57:e9:7f
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECaY38jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzYxYjVjZDY5NjgyNWI3NGZjY2JhN2Q5N2MzZDBhMjcyNGVmM2FhMB4XDTIyMDEx
NTA1MDg0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzVjYzAzOWU0YjQ4
MDRkYzM2ZjI3YjJjN2ZmYjU1MjcwODRkY2RkMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJkDQOOla+722DBki+vXiSiGn9RMt9FY4w+K/Rjeg9eqDfxl
FBr9IyHgaHuMvAa4xDciCXDrHnDP3GRelVKfBKgcb2pusaqCBcEKv5vN3APLR0rg
KovqOFZ8N7eTaGeHKbl33vKS+WFnEbEID8D2OceD6OQD0ml9W7U7Bhcrbl9FqqM/
pzVQ1RAPl0NCdx0F5/b0Q5+6fhYsKJ9R3THoCSSU2U4wOf3NK1pV8t0f1gktepYQ
7YyNEfJgLno6yIq4W63kWrrjHH86dgATcVjYJA51rd6KpFQFwVhrXWA5jy9D8klu
goztOUjCapYwlW3AHhlgDjSvHQ4U8K/lx9Yut5MCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBR1zAOeS0gE3Dbyeyx/+1UnCE3N0zAfBgNVHSMEGDAWgBSTYbXNaWglt0/M
un2Xw9Cick7zqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syRzF6V2xvSmJkUHpMcDlsOFBRb25KTzg2by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2YvNzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8x
L2Rjd0Rua3RJQk53Mjhuc3NmX3RWSndoTnpkTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Yv
NzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8xL2syRzF6V2xvSmJk
UHpMcDlsOFBRb25KTzg2by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOqgflADANBgkqhkiG9w0BAQsF
AAOCAQEAxgzpnf7vEP/35QGcwNE1ZDtByuaYCwv9L1vepP5/a7UKNhsvTfr6Gj49
uAXrf3mf2rtyJZrUx1Pzvjqlb21RpTOYYR5c8D/9cSfNi4xzRLxmQOjekHswLM99
LOKccDaSG6862df21mqS6+TShZFXQq63wp8gGWuWNSJ7O+lMm5BRmY0Xk+3rvTu2
48S1HSgYtP6OGKuGLU40VqO77UDEOOPgkaTvxHiWcFVXdRWp6sn0Pb8ZpbxFr/4q
JNSQzrQSyyggPhyQHmcNoFEFjW8o+9rkZUJSVZlwZKYt98J0xHNsYc4aSkYf68af
o1EXC4VWj5ej9glGP3u/r+b3ulfpfw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org