Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/64ce8b-ff7a-4744-9712-d9730f5b5867/1/aFlCl77Wz7byhZqP6jd6eUyMEhY.roa
File: aFlCl77Wz7byhZqP6jd6eUyMEhY.roa (raw, json)
Hash identifier: Q1BoQen/7uQJIYCZpHu5tbkL9zCBFN9HJgR4X5yDPI0=
Subject key identifier: 68:59:42:97:BE:D6:CF:B6:F2:85:9A:8F:EA:37:7A:79:4C:8C:12:16
Certificate issuer: /CN=a9d988d1df0a6ccab2e93614951059960bad4342
Certificate serial: 0473C5A8
Authority key identifier: A9:D9:88:D1:DF:0A:6C:CA:B2:E9:36:14:95:10:59:96:0B:AD:43:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qdmI0d8KbMqy6TYUlRBZlgutQ0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/64ce8b-ff7a-4744-9712-d9730f5b5867/1/aFlCl77Wz7byhZqP6jd6eUyMEhY.roa
Signing time: Sat 01 Jan 2022 01:02:02 +0000
ROA not before: Sat 01 Jan 2022 01:02:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2200
IP address blocks: 129.104.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74696104 (0x473c5a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9d988d1df0a6ccab2e93614951059960bad4342
Validity
Not Before: Jan 1 01:02:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68594297bed6cfb6f2859a8fea377a794c8c1216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ff:7d:c8:2b:3f:cc:0d:19:55:f8:69:71:6c:
ce:50:89:44:d7:13:6a:73:2f:b2:f9:89:33:ac:32:
ef:e0:84:5e:53:f4:03:18:f2:aa:e7:8d:6e:44:92:
63:b3:52:3f:2b:18:0b:f2:95:7c:40:8d:17:ec:e3:
20:da:11:a9:7c:ce:ae:d3:21:51:72:af:7d:03:a4:
87:75:e5:3c:7a:7d:07:10:64:dd:7f:2d:bb:5f:19:
59:81:8d:94:34:92:e9:c4:67:96:9a:5e:dd:4a:4d:
93:93:aa:33:5d:2b:87:45:d2:f2:96:fe:a2:c8:7d:
6d:e9:bf:ce:32:6f:ac:4c:21:c7:bc:a6:f7:84:25:
18:14:75:94:02:4e:9f:ee:32:83:a8:fa:b2:a9:24:
a2:f0:75:4e:2f:76:f6:d6:88:34:d1:64:2b:ec:ae:
1a:63:6c:95:07:90:df:29:ab:fa:d9:52:42:e8:43:
cf:f8:7e:53:2f:55:2b:7b:82:7f:5f:24:3e:7b:dc:
00:5c:2a:02:f3:90:91:81:9e:30:db:ba:80:b7:86:
d3:e2:5c:d1:a6:35:71:7a:af:87:9a:11:c5:8b:bf:
ed:97:03:bf:16:57:96:4f:1c:73:b5:f3:48:45:cc:
ad:7b:27:e3:b7:65:47:63:0c:8d:c3:45:90:59:b8:
04:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:59:42:97:BE:D6:CF:B6:F2:85:9A:8F:EA:37:7A:79:4C:8C:12:16
X509v3 Authority Key Identifier:
keyid:A9:D9:88:D1:DF:0A:6C:CA:B2:E9:36:14:95:10:59:96:0B:AD:43:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qdmI0d8KbMqy6TYUlRBZlgutQ0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/64ce8b-ff7a-4744-9712-d9730f5b5867/1/aFlCl77Wz7byhZqP6jd6eUyMEhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/64ce8b-ff7a-4744-9712-d9730f5b5867/1/qdmI0d8KbMqy6TYUlRBZlgutQ0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.104.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1c:7c:a7:7f:a6:a3:26:6a:45:b4:ee:44:7b:c7:00:6c:67:08:
5c:02:ca:48:a6:b8:87:00:e4:ba:55:9d:36:0b:49:cd:08:0e:
52:20:a6:e1:78:c7:8f:b3:24:56:1d:d6:a3:86:18:27:96:d0:
7d:2b:ed:46:a0:45:88:1e:50:c8:dd:43:eb:a5:84:df:f8:64:
72:a4:1d:eb:55:62:aa:d7:c1:19:ac:4e:b8:c8:bb:24:52:00:
1d:4e:47:b8:8e:24:73:1c:a8:a5:f7:bf:f6:c0:57:76:a2:69:
09:41:af:06:96:8d:3f:0f:dc:1c:75:1c:37:59:ce:71:d8:f7:
42:45:27:13:c6:02:3d:7e:41:3b:0e:6b:26:ff:99:56:c0:b6:
4d:6e:dc:e0:59:de:f3:9d:c0:b5:6a:aa:a3:ef:d7:1e:29:2f:
c5:83:76:56:65:51:60:2f:a0:be:dc:bf:08:3f:e8:9c:84:fc:
4c:e4:a2:46:e8:07:a4:5e:db:4b:ca:57:89:46:ab:fd:d1:9e:
b8:f5:e8:9f:6e:2b:83:2e:8d:5e:28:65:66:7c:c8:b4:d9:c0:
b0:be:da:54:8e:fa:24:b7:37:82:ab:b2:21:df:5c:ef:d0:ae:
72:53:53:fc:f1:41:c5:24:fc:30:a0:52:4f:e8:ff:7b:f5:3c:
00:e7:43:4f
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIEBHPFqDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
OWQ5ODhkMWRmMGE2Y2NhYjJlOTM2MTQ5NTEwNTk5NjBiYWQ0MzQyMB4XDTIyMDEw
MTAxMDIwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjg1OTQyOTdiZWQ2
Y2ZiNmYyODU5YThmZWEzNzdhNzk0YzhjMTIxNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALb/fcgrP8wNGVX4aXFszlCJRNcTanMvsvmJM6wy7+CEXlP0
AxjyqueNbkSSY7NSPysYC/KVfECNF+zjINoRqXzOrtMhUXKvfQOkh3XlPHp9BxBk
3X8tu18ZWYGNlDSS6cRnlppe3UpNk5OqM10rh0XS8pb+osh9bem/zjJvrEwhx7ym
94QlGBR1lAJOn+4yg6j6sqkkovB1Ti929taINNFkK+yuGmNslQeQ3ymr+tlSQuhD
z/h+Uy9VK3uCf18kPnvcAFwqAvOQkYGeMNu6gLeG0+Jc0aY1cXqvh5oRxYu/7ZcD
vxZXlk8cc7XzSEXMrXsn47dlR2MMjcNFkFm4BNECAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBRoWUKXvtbPtvKFmo/qN3p5TIwSFjAfBgNVHSMEGDAWgBSp2YjR3wpsyrLp
NhSVEFmWC61DQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3FkbUkwZDhLYk1xeTZUWVVsUkJabGd1dFEwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWIvNjRjZThiLWZmN2EtNDc0NC05NzEyLWQ5NzMwZjViNTg2Ny8x
L2FGbENsNzdXejdieWhacVA2amQ2ZVV5TUVoWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIv
NjRjZThiLWZmN2EtNDc0NC05NzEyLWQ5NzMwZjViNTg2Ny8xL3FkbUkwZDhLYk1x
eTZUWVVsUkJabGd1dFEwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAIFoMA0GCSqGSIb3DQEBCwUAA4IB
AQAcfKd/pqMmakW07kR7xwBsZwhcAspIpriHAOS6VZ02C0nNCA5SIKbheMePsyRW
HdajhhgnltB9K+1GoEWIHlDI3UPrpYTf+GRypB3rVWKq18EZrE64yLskUgAdTke4
jiRzHKil97/2wFd2omkJQa8Glo0/D9wcdRw3Wc5x2PdCRScTxgI9fkE7Dmsm/5lW
wLZNbtzgWd7zncC1aqqj79ceKS/Fg3ZWZVFgL6C+3L8IP+ichPxM5KJG6AekXttL
yleJRqv90Z649eifbiuDLo1eKGVmfMi02cCwvtpUjvoktzeCq7Ih31zv0K5yU1P8
8UHFJPwwoFJP6P979TwA50NP
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:44 2024 by rpki-client on console-ams.rpki-client.org