Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/rFX4vzKLZ6dWYW8sd5of-59Hu78.roa
File: rFX4vzKLZ6dWYW8sd5of-59Hu78.roa (raw, json)
Hash identifier: 4/VDMwiZMJNFDyn5U8jLlHPvksLQFAPlE/xHY/Czz+Q=
Subject key identifier: AC:55:F8:BF:32:8B:67:A7:56:61:6F:2C:77:9A:1F:FB:9F:47:BB:BF
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 096DEB45
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/rFX4vzKLZ6dWYW8sd5of-59Hu78.roa
Signing time: Sat 01 Jan 2022 09:03:59 +0000
ROA not before: Sat 01 Jan 2022 09:03:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208618
IP address blocks: 2a0e:aa06:470::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158198597 (0x96deb45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:03:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac55f8bf328b67a756616f2c779a1ffb9f47bbbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4c:18:9e:32:29:f7:f7:6d:ac:22:e4:ed:6d:
ba:b8:28:b0:27:95:fe:17:38:1a:4f:70:3c:45:50:
a4:bd:26:75:61:0a:9c:53:13:e7:3f:9d:02:17:e3:
12:f5:b5:84:f7:3e:53:62:e1:ff:ad:c6:f0:8b:6d:
51:18:b7:44:77:39:d4:68:d9:bf:39:9e:f9:5b:49:
dd:d8:7d:4e:ac:f2:e2:f5:24:eb:71:70:ba:72:be:
15:18:b2:30:15:e3:41:b4:33:f8:42:3d:22:fd:17:
e9:1e:ac:35:2c:e1:60:87:a5:bf:83:3a:7e:d9:95:
3b:0e:2c:57:2c:70:90:89:6f:6c:07:a0:25:33:a5:
a3:ac:40:2d:72:b0:73:88:06:02:c1:1d:59:6f:ad:
04:cf:35:c9:68:b7:f4:1e:16:ce:35:fb:87:c4:d4:
ea:2d:2c:ca:e7:b6:a6:85:35:7f:42:3a:60:17:67:
0c:43:e7:16:13:78:7c:0a:02:9e:25:17:92:18:9f:
e6:a7:88:18:0b:c0:7b:99:47:7a:8e:2e:33:15:ba:
82:8f:34:49:22:9e:6f:2c:80:15:7e:3d:9d:70:68:
ef:ea:2f:57:ce:e2:3f:d3:a6:c9:94:68:fd:6a:42:
c6:42:86:6f:bb:98:2e:c2:67:a7:91:94:76:8e:6b:
d6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:55:F8:BF:32:8B:67:A7:56:61:6F:2C:77:9A:1F:FB:9F:47:BB:BF
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/rFX4vzKLZ6dWYW8sd5of-59Hu78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa06:470::/44
Signature Algorithm: sha256WithRSAEncryption
7e:75:a0:3a:7d:d0:c3:21:68:42:8c:61:41:e5:92:92:b2:4a:
38:76:71:9f:43:f2:37:86:21:ac:d3:2c:0d:67:c3:79:77:9f:
b5:5a:8b:9d:11:fd:41:14:2c:ce:f8:82:4f:46:b4:7c:f2:ac:
af:63:f5:57:14:37:4a:8b:a3:e7:80:8c:70:15:d2:1d:e6:f6:
25:24:de:0c:52:49:e0:26:66:5d:6a:fd:a4:18:0c:a3:d3:92:
87:19:70:8d:98:3c:af:27:72:e2:86:e8:36:9d:91:e5:9b:f3:
be:a7:1b:5a:ff:ab:ca:a8:35:5f:4a:4e:f4:14:7e:eb:36:4e:
4e:1f:60:6f:01:e5:5b:7c:e2:b0:dc:b1:b5:f9:b1:13:e9:d6:
f3:c1:b3:3b:d8:24:73:85:c5:f4:8c:05:44:dc:fa:ff:20:7b:
b3:5f:ee:94:34:b4:88:a6:82:57:cb:51:96:f1:52:47:c6:5f:
6b:6b:e7:a0:08:e2:7d:4f:b0:c7:9f:16:b4:3e:e0:9c:7e:89:
84:c4:bc:fb:b4:7d:11:ee:e2:37:20:50:4d:bb:65:43:2a:b2:
09:74:ff:a4:8e:7b:6a:2e:12:bf:37:c6:b6:d7:25:1b:a6:a7:
10:1a:64:5e:83:2c:37:9f:f6:a2:d7:2e:31:e0:9a:c7:8b:5b:
b9:60:bb:88
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECW3rRTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzYxYjVjZDY5NjgyNWI3NGZjY2JhN2Q5N2MzZDBhMjcyNGVmM2FhMB4XDTIyMDEw
MTA5MDM1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWM1NWY4YmYzMjhi
NjdhNzU2NjE2ZjJjNzc5YTFmZmI5ZjQ3YmJiZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL5MGJ4yKff3bawi5O1turgosCeV/hc4Gk9wPEVQpL0mdWEK
nFMT5z+dAhfjEvW1hPc+U2Lh/63G8IttURi3RHc51GjZvzme+VtJ3dh9Tqzy4vUk
63FwunK+FRiyMBXjQbQz+EI9Iv0X6R6sNSzhYIelv4M6ftmVOw4sVyxwkIlvbAeg
JTOlo6xALXKwc4gGAsEdWW+tBM81yWi39B4WzjX7h8TU6i0syue2poU1f0I6YBdn
DEPnFhN4fAoCniUXkhif5qeIGAvAe5lHeo4uMxW6go80SSKebyyAFX49nXBo7+ov
V87iP9OmyZRo/WpCxkKGb7uYLsJnp5GUdo5r1jsCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSsVfi/Motnp1Zhbyx3mh/7n0e7vzAfBgNVHSMEGDAWgBSTYbXNaWglt0/M
un2Xw9Cick7zqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syRzF6V2xvSmJkUHpMcDlsOFBRb25KTzg2by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2YvNzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8x
L3JGWDR2ektMWjZkV1lXOHNkNW9mLTU5SHU3OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Yv
NzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8xL2syRzF6V2xvSmJk
UHpMcDlsOFBRb25KTzg2by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoOqgYEcDANBgkqhkiG9w0BAQsF
AAOCAQEAfnWgOn3QwyFoQoxhQeWSkrJKOHZxn0PyN4YhrNMsDWfDeXeftVqLnRH9
QRQszviCT0a0fPKsr2P1VxQ3Souj54CMcBXSHeb2JSTeDFJJ4CZmXWr9pBgMo9OS
hxlwjZg8rydy4oboNp2R5ZvzvqcbWv+ryqg1X0pO9BR+6zZOTh9gbwHlW3zisNyx
tfmxE+nW88GzO9gkc4XF9IwFRNz6/yB7s1/ulDS0iKaCV8tRlvFSR8Zfa2vnoAji
fU+wx58WtD7gnH6JhMS8+7R9Ee7iNyBQTbtlQyqyCXT/pI57ai4SvzfGttclG6an
EBpkXoMsN5/2otcuMeCax4tbuWC7iA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org