Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/_S_6ZmhIYIWvcdwbkwUmNaB3PLs.roa
File: _S_6ZmhIYIWvcdwbkwUmNaB3PLs.roa (raw, json)
Hash identifier: ryfuqIW0vqrh0QF5uEvs9o2tp73vdj5+SOB+GauVomE=
Subject key identifier: FD:2F:FA:66:68:48:60:85:AF:71:DC:1B:93:05:26:35:A0:77:3C:BB
Certificate issuer: /CN=651bad95276947c7be536af4c870a3721f0b7761
Certificate serial: 0A5CBF13
Authority key identifier: 65:1B:AD:95:27:69:47:C7:BE:53:6A:F4:C8:70:A3:72:1F:0B:77:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZRutlSdpR8e-U2r0yHCjch8Ld2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/_S_6ZmhIYIWvcdwbkwUmNaB3PLs.roa
Signing time: Sat 01 Jan 2022 06:57:17 +0000
ROA not before: Sat 01 Jan 2022 06:57:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208394
IP address blocks: 2a09:3a00:6000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173850387 (0xa5cbf13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=651bad95276947c7be536af4c870a3721f0b7761
Validity
Not Before: Jan 1 06:57:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd2ffa6668486085af71dc1b93052635a0773cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ed:4d:e3:8c:20:f8:fb:b6:77:42:fd:74:e0:
3f:7e:08:07:f6:58:47:12:02:48:5b:d8:7c:1e:6b:
14:50:51:0c:28:94:0b:5a:f3:3c:b5:bc:ca:64:b4:
c2:47:ae:e7:49:3a:97:c1:9c:38:47:c0:af:f3:25:
78:43:38:01:65:b9:0d:4a:4b:15:5e:10:e7:b6:1c:
a1:00:b9:d9:3d:c6:9b:e2:b9:8a:63:06:6a:df:82:
28:5d:b0:9e:f2:98:50:da:ec:6f:a4:93:4e:5d:4e:
9d:27:17:8c:4d:55:31:b3:7a:bf:e8:67:d2:33:c0:
a3:97:81:b6:ec:ff:c3:5f:0f:40:22:ef:23:80:16:
f3:86:b2:0f:53:29:4b:18:a7:6b:62:a7:81:16:98:
00:c7:cb:0e:26:7b:ba:14:d6:d2:7a:38:b9:d1:8a:
54:35:5f:88:fa:a7:69:21:b8:2b:a5:ef:16:a3:34:
fa:87:6b:fc:ad:05:5e:65:12:72:79:b2:f5:6b:b1:
e4:40:37:7f:f1:9b:19:45:2a:d7:95:10:55:28:16:
34:20:88:32:12:e0:61:8e:2b:a1:cf:af:81:a9:cc:
f2:0e:e9:10:38:eb:20:cc:84:72:b0:36:31:de:45:
cd:c8:71:99:a6:ba:04:74:56:c5:0f:11:41:a6:15:
70:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:2F:FA:66:68:48:60:85:AF:71:DC:1B:93:05:26:35:A0:77:3C:BB
X509v3 Authority Key Identifier:
keyid:65:1B:AD:95:27:69:47:C7:BE:53:6A:F4:C8:70:A3:72:1F:0B:77:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZRutlSdpR8e-U2r0yHCjch8Ld2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/_S_6ZmhIYIWvcdwbkwUmNaB3PLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/ZRutlSdpR8e-U2r0yHCjch8Ld2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:3a00:6000::/48
Signature Algorithm: sha256WithRSAEncryption
9f:88:77:8b:bb:58:30:1a:46:df:b1:b3:7c:1f:53:20:b8:2f:
56:95:44:a6:36:da:f8:98:e4:ea:1c:04:38:24:bf:78:40:32:
c1:7b:ec:0b:ef:8a:41:36:e4:74:aa:85:81:d1:41:c5:03:55:
0e:75:e8:59:03:38:4f:c4:7b:8b:d7:8d:dc:6a:8f:78:b1:c2:
34:36:48:96:fc:ee:d7:8f:5f:34:ad:73:5d:95:f5:60:80:8a:
44:93:e0:6b:d3:b5:4b:c5:da:0b:e1:55:a0:63:da:8f:82:97:
a6:dd:86:3c:ec:1a:6d:fe:e0:fe:fc:b4:75:76:8b:9d:b8:f3:
e5:f1:f3:5c:df:a7:e2:b9:61:11:45:3a:21:72:da:8f:54:01:
4f:c9:c4:cb:82:01:94:3a:22:20:6b:d4:16:a7:b4:81:08:9d:
9d:ef:1f:53:68:03:19:2a:43:54:f8:fe:1e:43:ff:5f:f9:a0:
43:58:09:62:1c:e4:7e:ce:51:22:15:63:06:b2:0e:58:7a:cf:
82:46:3b:62:8d:5f:bf:62:92:70:5f:01:1b:2f:d4:60:39:02:
0d:1d:3a:29:70:17:6d:e7:78:1d:89:19:9d:e0:9b:2a:d2:28:
c9:57:c6:52:00:3a:1f:e5:84:88:b8:ba:38:54:8d:c7:59:39:
ac:8a:3c:75
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECly/EzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NTFiYWQ5NTI3Njk0N2M3YmU1MzZhZjRjODcwYTM3MjFmMGI3NzYxMB4XDTIyMDEw
MTA2NTcxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmQyZmZhNjY2ODQ4
NjA4NWFmNzFkYzFiOTMwNTI2MzVhMDc3M2NiYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOTtTeOMIPj7tndC/XTgP34IB/ZYRxICSFvYfB5rFFBRDCiU
C1rzPLW8ymS0wkeu50k6l8GcOEfAr/MleEM4AWW5DUpLFV4Q57YcoQC52T3Gm+K5
imMGat+CKF2wnvKYUNrsb6STTl1OnScXjE1VMbN6v+hn0jPAo5eBtuz/w18PQCLv
I4AW84ayD1MpSxina2KngRaYAMfLDiZ7uhTW0no4udGKVDVfiPqnaSG4K6XvFqM0
+odr/K0FXmUScnmy9Wux5EA3f/GbGUUq15UQVSgWNCCIMhLgYY4roc+vganM8g7p
EDjrIMyEcrA2Md5Fzchxmaa6BHRWxQ8RQaYVcAkCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBT9L/pmaEhgha9x3BuTBSY1oHc8uzAfBgNVHSMEGDAWgBRlG62VJ2lHx75T
avTIcKNyHwt3YTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1pSdXRsU2RwUjhlLVUycjB5SENqY2g4TGQyRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTQvMWRiZDZiLTM1Y2MtNGYwOS1iOTJlLTE5OGI2YTYxY2U4NS8x
L19TXzZabWhJWUlXdmNkd2Jrd1VtTmFCM1BMcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTQv
MWRiZDZiLTM1Y2MtNGYwOS1iOTJlLTE5OGI2YTYxY2U4NS8xL1pSdXRsU2RwUjhl
LVUycjB5SENqY2g4TGQyRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoJOgBgADANBgkqhkiG9w0BAQsF
AAOCAQEAn4h3i7tYMBpG37GzfB9TILgvVpVEpjba+Jjk6hwEOCS/eEAywXvsC++K
QTbkdKqFgdFBxQNVDnXoWQM4T8R7i9eN3GqPeLHCNDZIlvzu149fNK1zXZX1YICK
RJPga9O1S8XaC+FVoGPaj4KXpt2GPOwabf7g/vy0dXaLnbjz5fHzXN+n4rlhEUU6
IXLaj1QBT8nEy4IBlDoiIGvUFqe0gQidne8fU2gDGSpDVPj+HkP/X/mgQ1gJYhzk
fs5RIhVjBrIOWHrPgkY7Yo1fv2KScF8BGy/UYDkCDR06KXAXbed4HYkZneCbKtIo
yVfGUgA6H+WEiLi6OFSNx1k5rIo8dQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:42 2023 by rpki-client on console-fra.rpki-client.org