Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/KlD56z31kAuIUUbZHVnA2biTnHg.roa
File: KlD56z31kAuIUUbZHVnA2biTnHg.roa (raw, json)
Hash identifier: 3kyDKhG0MVWsVGNCcCxwR/4wg0pBZu1+4HqwToLFbEQ=
Subject key identifier: 2A:50:F9:EB:3D:F5:90:0B:88:51:46:D9:1D:59:C0:D9:B8:93:9C:78
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FEBB567
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/KlD56z31kAuIUUbZHVnA2biTnHg.roa
Signing time: Sat 01 Jan 2022 14:59:48 +0000
ROA not before: Sat 01 Jan 2022 14:59:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207755
IP address blocks: 2a06:e881:7108::/46 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267105639 (0xfebb567)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a50f9eb3df5900b885146d91d59c0d9b8939c78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:58:d1:43:24:0c:81:64:90:46:a9:e6:eb:b4:
46:b4:f0:10:78:2d:07:db:98:e1:ec:63:5d:7f:d7:
59:95:94:a9:a5:e0:fb:63:df:b5:ad:05:f3:c9:3e:
43:67:e7:49:03:57:96:f1:d1:3d:0d:f3:60:ee:49:
e5:3e:a1:a2:73:4c:df:6d:d6:5e:fd:68:62:32:51:
10:7b:70:20:ec:70:ba:e6:6f:27:6f:e5:a2:02:d3:
44:8e:9a:16:5f:06:42:98:34:a0:96:a7:d0:b8:55:
72:99:ab:fd:d9:a0:a9:c6:98:a2:72:1f:48:6d:b9:
1c:22:c0:4d:a4:5f:66:b8:de:28:e0:4a:24:59:5c:
7b:06:30:b0:61:c1:b0:de:6c:39:0a:58:0e:4c:0b:
b3:39:81:00:b9:9d:35:68:c0:31:64:d6:d1:f8:18:
8b:44:10:32:27:c0:0f:85:14:75:0e:52:b5:59:12:
63:86:59:42:54:65:6c:5e:2c:73:f6:90:6d:e4:04:
7d:75:78:4c:27:ae:fe:c3:e6:73:f1:8a:6f:7e:5c:
40:3d:bd:18:27:c5:2c:79:23:79:56:ff:7a:25:e2:
53:e9:9d:a0:e9:ba:3a:43:8d:f1:03:93:18:69:e5:
3a:55:c4:2b:76:d9:b6:30:ed:08:2b:e1:75:cc:a4:
5b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:50:F9:EB:3D:F5:90:0B:88:51:46:D9:1D:59:C0:D9:B8:93:9C:78
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/KlD56z31kAuIUUbZHVnA2biTnHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:7108::/46
Signature Algorithm: sha256WithRSAEncryption
24:e7:c5:30:7a:d2:cb:95:e8:85:d4:c8:e6:42:0c:fc:0f:52:
9a:cd:57:f0:f2:3f:90:98:4f:9b:67:87:e7:c9:db:f0:2e:7c:
45:63:3a:e0:50:ae:22:5c:99:65:a8:5c:1f:ba:06:4b:ec:b0:
15:53:63:e6:8f:5a:de:57:75:32:6e:04:63:00:c7:9e:3d:6f:
5d:9c:49:7e:8e:1b:dd:bd:55:7e:6d:3c:e9:9c:89:47:36:8f:
c3:50:f0:e5:d8:a0:a1:3b:e2:08:63:eb:71:36:c2:83:e6:cb:
ef:93:6f:fc:1e:17:ca:2d:43:3e:91:f7:b2:bf:0c:9d:e9:e3:
00:27:49:1a:90:aa:9a:89:b4:73:16:d4:9e:51:12:0f:ae:1c:
bd:f3:0a:7a:4f:9a:84:95:57:b3:72:da:fe:9a:8b:b8:9f:76:
25:77:0e:0b:3f:10:96:55:d1:72:47:ef:d2:46:23:47:d1:7c:
d1:7e:f6:2e:ef:93:b7:39:fa:4e:68:b4:bc:1c:7d:1e:64:0c:
4e:7e:a5:1b:a9:3d:9f:96:44:5a:10:f9:7f:b4:0d:22:c6:f2:
6c:80:c2:96:25:72:66:aa:ec:e4:c0:84:9c:01:c5:cf:78:e9:
13:0f:07:a2:3a:1e:d7:3d:1e:6b:ef:a4:63:67:92:56:42:e7:
6b:3c:9e:f5
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIED+u1ZzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ODA3NGI0MTllYWQ0Y2VmZWEyZjJhZDJjMjU5ZDk3OGM1ZWQ3OTU0MB4XDTIyMDEw
MTE0NTk0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmE1MGY5ZWIzZGY1
OTAwYjg4NTE0NmQ5MWQ1OWMwZDliODkzOWM3ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMRY0UMkDIFkkEap5uu0RrTwEHgtB9uY4exjXX/XWZWUqaXg
+2Pfta0F88k+Q2fnSQNXlvHRPQ3zYO5J5T6honNM323WXv1oYjJREHtwIOxwuuZv
J2/logLTRI6aFl8GQpg0oJan0LhVcpmr/dmgqcaYonIfSG25HCLATaRfZrjeKOBK
JFlcewYwsGHBsN5sOQpYDkwLszmBALmdNWjAMWTW0fgYi0QQMifAD4UUdQ5StVkS
Y4ZZQlRlbF4sc/aQbeQEfXV4TCeu/sPmc/GKb35cQD29GCfFLHkjeVb/eiXiU+md
oOm6OkON8QOTGGnlOlXEK3bZtjDtCCvhdcykW+ECAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQqUPnrPfWQC4hRRtkdWcDZuJOceDAfBgNVHSMEGDAWgBS4B0tBnq1M7+ov
KtLCWdl4xe15VDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VBZExRWjZ0VE9fcUx5clN3bG5aZU1YdGVWUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWIvMWU0M2U0LWQwNmUtNGE1NS1iZGI2LTNkOTFlZGU1YjJiMS8x
L0tsRDU2ejMxa0F1SVVVYlpIVm5BMmJpVG5IZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIv
MWU0M2U0LWQwNmUtNGE1NS1iZGI2LTNkOTFlZGU1YjJiMS8xL3VBZExRWjZ0VE9f
cUx5clN3bG5aZU1YdGVWUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioG6IFxCDANBgkqhkiG9w0BAQsF
AAOCAQEAJOfFMHrSy5XohdTI5kIM/A9Sms1X8PI/kJhPm2eH58nb8C58RWM64FCu
IlyZZahcH7oGS+ywFVNj5o9a3ld1Mm4EYwDHnj1vXZxJfo4b3b1Vfm086ZyJRzaP
w1Dw5digoTviCGPrcTbCg+bL75Nv/B4Xyi1DPpH3sr8MnenjACdJGpCqmom0cxbU
nlESD64cvfMKek+ahJVXs3La/pqLuJ92JXcOCz8QllXRckfv0kYjR9F80X72Lu+T
tzn6Tmi0vBx9HmQMTn6lG6k9n5ZEWhD5f7QNIsbybIDCliVyZqrs5MCEnAHFz3jp
Ew8Hojoe1z0ea++kY2eSVkLnazye9Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:42 2023 by rpki-client on console-ams.rpki-client.org