Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/mWtsJkEk6vRnrPEmdeX_2npr_cE.roa
File: mWtsJkEk6vRnrPEmdeX_2npr_cE.roa (raw, json)
Hash identifier: FIky/YkdFOe/MSBXuw9RZdJD2tn8VAXg2U0Qsf2Jozk=
Subject key identifier: 99:6B:6C:26:41:24:EA:F4:67:AC:F1:26:75:E5:FF:DA:7A:6B:FD:C1
Certificate issuer: /CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Certificate serial: 076A1B13
Authority key identifier: 81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/mWtsJkEk6vRnrPEmdeX_2npr_cE.roa
Signing time: Sat 01 Jan 2022 00:52:07 +0000
ROA not before: Sat 01 Jan 2022 00:52:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43617
IP address blocks: 2a0f:3784::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124394259 (0x76a1b13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Validity
Not Before: Jan 1 00:52:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=996b6c264124eaf467acf12675e5ffda7a6bfdc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:27:50:97:61:7f:30:13:85:1e:73:7d:87:79:
a4:10:3a:a7:53:a3:b3:5e:a1:fd:bf:87:7c:f3:8a:
a3:0e:fc:e6:38:d0:ff:6d:08:ca:74:5c:5b:be:69:
84:8c:2c:13:c2:cb:fd:aa:2c:d8:81:e1:1f:4a:d7:
ed:4b:b4:d1:08:e7:a0:46:e6:a1:23:37:59:76:07:
3a:b0:29:17:db:be:1e:0d:4d:f6:9b:07:c8:be:a4:
da:84:e9:80:91:14:d9:ec:a7:59:f5:3f:39:60:27:
fb:78:bd:54:69:b8:ba:fe:01:71:7d:41:2e:9f:2d:
c3:ee:8f:d6:13:28:29:a6:ee:3c:9c:94:d2:27:79:
43:75:1f:0d:75:6d:16:b9:c8:a2:f0:82:a0:75:12:
88:e0:85:4c:25:bd:a4:fb:af:0f:ad:ed:2c:cd:9f:
fc:15:63:65:b0:71:a4:3d:35:77:e3:c2:1d:00:37:
6a:e0:c7:7b:ea:a3:6b:75:f6:9a:dc:6e:70:69:a7:
89:f0:90:1c:03:77:c2:53:7e:a3:8e:77:5b:0f:a3:
98:5c:72:92:96:c0:02:3f:6e:fd:4f:69:3a:9a:34:
37:a6:ec:07:2a:f8:80:8c:e0:4b:2d:01:92:0c:67:
d1:01:80:eb:18:5c:5f:32:99:aa:5c:2d:b2:c7:d4:
86:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:6B:6C:26:41:24:EA:F4:67:AC:F1:26:75:E5:FF:DA:7A:6B:FD:C1
X509v3 Authority Key Identifier:
keyid:81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/mWtsJkEk6vRnrPEmdeX_2npr_cE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/gTPYnAaoocydvDYiAffsVZ1_3Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:3784::/32
Signature Algorithm: sha256WithRSAEncryption
c9:75:6b:b3:b2:ea:75:8d:24:38:ea:10:2a:e7:43:bf:15:68:
41:7f:45:c3:a0:6a:39:6f:91:61:ef:e7:59:75:2f:e7:d4:64:
e6:2f:ec:b8:bf:2d:70:ee:2e:9d:48:94:c8:c5:04:22:ae:9d:
72:9c:7d:fa:ee:ee:e7:5d:a2:ac:c1:be:6e:c1:d2:68:14:28:
a6:bb:0a:6b:03:1c:7d:aa:8e:88:27:93:ca:7d:7e:59:20:75:
2c:28:ac:e8:ae:b6:4a:84:be:ba:55:e5:20:6a:73:c0:ef:bb:
c9:5f:56:1e:c0:68:3e:7e:bb:57:6c:18:0e:e4:44:5c:58:f1:
ee:43:02:e7:95:2a:02:0b:d0:7e:65:8a:00:a1:7d:6f:2a:6a:
f4:5c:f2:7d:10:f4:c9:7a:73:a0:34:59:c1:ac:89:de:b2:14:
99:d3:94:62:7e:92:61:6e:7a:87:9e:88:bf:11:b8:55:d6:87:
80:46:dd:7c:9f:d4:25:10:fd:92:be:8d:a5:0c:98:a2:d4:20:
bf:58:c0:7a:72:94:0c:de:cb:78:1e:43:f4:3b:ca:da:ee:0b:
49:1a:b4:db:30:7d:40:9e:3e:7b:20:28:63:7f:c5:8d:eb:64:
d9:86:c6:2f:82:03:bf:d5:0b:41:5a:04:3f:eb:3f:2b:ca:ef:
c6:73:2a:e4
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEB2obEzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MTMzZDg5YzA2YThhMWNjOWRiYzM2MjIwMWY3ZWM1NTlkN2ZkZDQ4MB4XDTIyMDEw
MTAwNTIwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTk2YjZjMjY0MTI0
ZWFmNDY3YWNmMTI2NzVlNWZmZGE3YTZiZmRjMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKInUJdhfzAThR5zfYd5pBA6p1Ojs16h/b+HfPOKow785jjQ
/20IynRcW75phIwsE8LL/aos2IHhH0rX7Uu00QjnoEbmoSM3WXYHOrApF9u+Hg1N
9psHyL6k2oTpgJEU2eynWfU/OWAn+3i9VGm4uv4BcX1BLp8tw+6P1hMoKabuPJyU
0id5Q3UfDXVtFrnIovCCoHUSiOCFTCW9pPuvD63tLM2f/BVjZbBxpD01d+PCHQA3
auDHe+qja3X2mtxucGmnifCQHAN3wlN+o453Ww+jmFxykpbAAj9u/U9pOpo0N6bs
Byr4gIzgSy0Bkgxn0QGA6xhcXzKZqlwtssfUhjUCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBSZa2wmQSTq9Ges8SZ15f/aemv9wTAfBgNVHSMEGDAWgBSBM9icBqihzJ28
NiIB9+xVnX/dSDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2dUUFluQWFvb2N5ZHZEWWlBZmZzVloxXzNVZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTgvZTkwZmYyLTZjOTEtNGViOC1hNGIxLWM1ZmViZTQ4N2M0MC8x
L21XdHNKa0VrNnZSbnJQRW1kZVhfMm5wcl9jRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTgv
ZTkwZmYyLTZjOTEtNGViOC1hNGIxLWM1ZmViZTQ4N2M0MC8xL2dUUFluQWFvb2N5
ZHZEWWlBZmZzVloxXzNVZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoPN4QwDQYJKoZIhvcNAQELBQAD
ggEBAMl1a7Oy6nWNJDjqECrnQ78VaEF/RcOgajlvkWHv51l1L+fUZOYv7Li/LXDu
Lp1IlMjFBCKunXKcffru7uddoqzBvm7B0mgUKKa7CmsDHH2qjognk8p9flkgdSwo
rOiutkqEvrpV5SBqc8Dvu8lfVh7AaD5+u1dsGA7kRFxY8e5DAueVKgIL0H5ligCh
fW8qavRc8n0Q9Ml6c6A0WcGsid6yFJnTlGJ+kmFueoeeiL8RuFXWh4BG3Xyf1CUQ
/ZK+jaUMmKLUIL9YwHpylAzey3geQ/Q7ytruC0katNswfUCePnsgKGN/xY3rZNmG
xi+CA7/VC0FaBD/rPyvK78ZzKuQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:14 2024 by rpki-client on console-fra.rpki-client.org