Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/6a6535-6f42-4f2d-9eb9-7d4c8f37f5fd/1/PVtfbTYDzp-zuYabTmrkvCUCqLk.roa
File: PVtfbTYDzp-zuYabTmrkvCUCqLk.roa (raw, json)
Hash identifier: DES18L2eXRlVz0sIgcchaF6jU+t1UygxQwF6NhPGDW8=
Subject key identifier: 3D:5B:5F:6D:36:03:CE:9F:B3:B9:86:9B:4E:6A:E4:BC:25:02:A8:B9
Certificate issuer: /CN=c1db67b85104e4db598fea15678699c92473bda0
Certificate serial: B88E
Authority key identifier: C1:DB:67:B8:51:04:E4:DB:59:8F:EA:15:67:86:99:C9:24:73:BD:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wdtnuFEE5NtZj-oVZ4aZySRzvaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/6a6535-6f42-4f2d-9eb9-7d4c8f37f5fd/1/PVtfbTYDzp-zuYabTmrkvCUCqLk.roa
Signing time: Wed 04 May 2022 06:53:17 +0000
ROA not before: Wed 04 May 2022 06:53:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52000
IP address blocks: 2a0c:dd80:2000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47246 (0xb88e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1db67b85104e4db598fea15678699c92473bda0
Validity
Not Before: May 4 06:53:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d5b5f6d3603ce9fb3b9869b4e6ae4bc2502a8b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c8:d0:05:9d:0e:5b:32:fc:f0:74:7c:6b:f8:
59:3d:13:47:2b:c2:55:11:d9:44:ed:b5:15:5a:36:
e7:65:2b:e0:e5:c8:87:ac:bd:eb:bb:df:44:c6:7e:
33:77:59:0f:b2:bc:22:d3:a6:4d:88:a4:92:93:65:
51:b8:83:3d:38:57:69:14:2b:61:29:ee:7e:42:de:
1b:67:72:69:5e:b8:4d:6b:77:7c:98:21:83:b3:23:
e1:3c:9c:35:8a:76:f2:90:3a:d5:26:fa:a1:06:f2:
36:2f:6d:8b:5d:9b:44:dd:fe:77:96:87:95:7a:fe:
83:3a:99:b7:72:a2:ea:1a:06:d1:86:d2:ad:76:e1:
bf:43:de:1c:48:6a:b0:c1:e2:2a:3b:00:dc:aa:44:
68:00:79:bc:dd:a6:cb:92:df:81:ea:46:4e:38:eb:
4a:2c:73:93:e3:c3:49:ff:49:80:52:cc:65:e4:cc:
4b:b2:ae:4e:e3:d3:3e:7e:6f:4c:93:a8:9e:3b:99:
9a:6b:b4:bd:a6:df:e6:19:a2:c9:87:d5:60:0d:5f:
81:c1:d8:ef:2d:11:e1:66:59:02:1e:56:4d:66:0d:
85:c1:da:e9:b7:93:dc:7f:30:41:29:ae:96:19:f0:
ba:7e:ab:53:7d:64:93:67:ba:c6:58:50:28:48:9a:
cc:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:5B:5F:6D:36:03:CE:9F:B3:B9:86:9B:4E:6A:E4:BC:25:02:A8:B9
X509v3 Authority Key Identifier:
keyid:C1:DB:67:B8:51:04:E4:DB:59:8F:EA:15:67:86:99:C9:24:73:BD:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wdtnuFEE5NtZj-oVZ4aZySRzvaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6a6535-6f42-4f2d-9eb9-7d4c8f37f5fd/1/PVtfbTYDzp-zuYabTmrkvCUCqLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6a6535-6f42-4f2d-9eb9-7d4c8f37f5fd/1/wdtnuFEE5NtZj-oVZ4aZySRzvaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:dd80:2000::/48
Signature Algorithm: sha256WithRSAEncryption
a2:4f:38:65:42:ef:e6:96:fb:71:a6:00:ec:9d:5a:da:46:f3:
bf:6f:1b:76:e0:b5:36:11:ae:d4:d6:cc:13:f8:cc:e8:8e:61:
61:36:9e:93:3c:95:88:dd:1e:df:17:90:24:21:bb:b0:c1:c2:
eb:9f:0e:f1:50:71:c8:b2:fc:45:79:df:8c:ca:af:6d:48:ad:
4b:3a:c8:9b:06:6e:7b:3a:06:b1:81:05:4d:56:db:4c:25:03:
6e:5f:c7:8c:43:fe:ae:63:49:09:ab:fc:1a:31:96:29:ac:0d:
f3:36:17:00:04:0c:69:16:38:86:91:77:be:f6:1b:9e:e1:6b:
da:87:1c:38:44:88:d2:e1:64:db:50:fd:b6:98:fe:0a:d2:4b:
7a:48:56:9d:4d:ac:10:06:48:72:20:f8:9c:1b:a7:da:53:d4:
96:f9:b8:76:5c:1d:37:d3:d5:85:38:cd:20:a1:04:b1:6f:21:
48:24:89:2f:da:bc:48:78:aa:10:76:1f:e3:f5:bd:69:56:72:
f0:9e:68:bd:ff:69:5c:b7:bd:6d:d2:74:74:36:d5:aa:9e:e7:
14:ca:0d:f1:bf:8f:f9:75:77:f1:5f:51:ec:ca:a7:6b:24:d2:
3e:eb:18:15:2d:08:d8:52:a3:02:d6:b3:4e:67:aa:65:b9:04:
8d:f5:5c:b5
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIDALiOMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGMx
ZGI2N2I4NTEwNGU0ZGI1OThmZWExNTY3ODY5OWM5MjQ3M2JkYTAwHhcNMjIwNTA0
MDY1MzE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygzZDViNWY2ZDM2MDNj
ZTlmYjNiOTg2OWI0ZTZhZTRiYzI1MDJhOGI5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAmcjQBZ0OWzL88HR8a/hZPRNHK8JVEdlE7bUVWjbnZSvg5ciH
rL3ru99Exn4zd1kPsrwi06ZNiKSSk2VRuIM9OFdpFCthKe5+Qt4bZ3JpXrhNa3d8
mCGDsyPhPJw1inbykDrVJvqhBvI2L22LXZtE3f53loeVev6DOpm3cqLqGgbRhtKt
duG/Q94cSGqwweIqOwDcqkRoAHm83abLkt+B6kZOOOtKLHOT48NJ/0mAUsxl5MxL
sq5O49M+fm9Mk6ieO5maa7S9pt/mGaLJh9VgDV+BwdjvLRHhZlkCHlZNZg2Fwdrp
t5PcfzBBKa6WGfC6fqtTfWSTZ7rGWFAoSJrMsQIDAQABo4ICDDCCAggwHQYDVR0O
BBYEFD1bX202A86fs7mGm05q5LwlAqi5MB8GA1UdIwQYMBaAFMHbZ7hRBOTbWY/q
FWeGmckkc72gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
d2R0bnVGRUU1TnRaai1vVlo0YVp5U1J6dmFBLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84ZC82YTY1MzUtNmY0Mi00ZjJkLTllYjktN2Q0YzhmMzdmNWZkLzEv
UFZ0ZmJUWUR6cC16dVlhYlRtcmt2Q1VDcUxrLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC82
YTY1MzUtNmY0Mi00ZjJkLTllYjktN2Q0YzhmMzdmNWZkLzEvd2R0bnVGRUU1TnRa
ai1vVlo0YVp5U1J6dmFBLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIG
CCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgzdgCAAMA0GCSqGSIb3DQEBCwUA
A4IBAQCiTzhlQu/mlvtxpgDsnVraRvO/bxt24LU2Ea7U1swT+MzojmFhNp6TPJWI
3R7fF5AkIbuwwcLrnw7xUHHIsvxFed+Myq9tSK1LOsibBm57OgaxgQVNVttMJQNu
X8eMQ/6uY0kJq/waMZYprA3zNhcABAxpFjiGkXe+9hue4Wvahxw4RIjS4WTbUP22
mP4K0kt6SFadTawQBkhyIPicG6faU9SW+bh2XB0309WFOM0goQSxbyFIJIkv2rxI
eKoQdh/j9b1pVnLwnmi9/2lct71t0nR0NtWqnucUyg3xv4/5dXfxX1HsyqdrJNI+
6xgVLQjYUqMC1rNOZ6pluQSN9Vy1
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:37 2025 by rpki-client