Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/ASxBCBbgDJ0HkGSdy8L9dbMfXHI.roa
File: ASxBCBbgDJ0HkGSdy8L9dbMfXHI.roa (raw, json)
Hash identifier: fz7sLQLayEQmClT0S0hahDtP1UthGTXfmeNJxOQaoaU=
Subject key identifier: 01:2C:41:08:16:E0:0C:9D:07:90:64:9D:CB:C2:FD:75:B3:1F:5C:72
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0606A912
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/ASxBCBbgDJ0HkGSdy8L9dbMfXHI.roa
Signing time: Sat 01 Jan 2022 16:01:24 +0000
ROA not before: Sat 01 Jan 2022 16:01:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211431
IP address blocks: 2a0d:f407:1028::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101099794 (0x606a912)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 1 16:01:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=012c410816e00c9d0790649dcbc2fd75b31f5c72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a9:88:a6:5c:63:cd:6e:a9:32:3e:f6:e1:62:
5d:7a:fd:cb:df:f4:ed:96:64:2e:a8:92:ee:b4:e6:
7c:9a:d6:b6:a6:1d:4d:07:7e:65:dd:b9:b6:c8:cd:
a8:68:54:14:fd:fd:1e:1c:86:8b:ef:bd:91:f9:2b:
9f:70:b1:8c:80:9d:fe:fc:47:f1:d7:5f:d7:b1:05:
0c:03:b8:9a:b0:e8:f1:f1:3e:2e:6c:ef:c4:ce:75:
09:c9:e9:28:89:4d:ee:55:dc:84:5f:dc:45:b4:2b:
e4:dc:37:16:a6:91:21:66:08:a6:b2:ba:5e:cf:c0:
c0:e9:80:2c:0b:a0:2a:4c:7a:51:0f:78:e9:b9:53:
49:8d:ca:2c:42:94:b6:5d:00:e7:15:95:07:fc:d3:
15:60:ab:f0:1b:2e:57:32:06:f8:c1:81:6d:b1:ba:
fe:22:36:04:d3:fa:4a:53:00:9e:16:96:50:32:69:
48:0c:67:41:2e:19:31:98:38:ce:d5:19:28:26:ed:
4c:92:d0:25:aa:36:6b:49:8f:88:60:b6:60:e8:99:
03:2c:83:f3:c5:70:88:6b:96:df:1d:52:1c:cd:ce:
51:5b:05:c0:29:0e:ff:59:ff:ae:f9:dc:a4:f3:a7:
72:72:37:2e:fe:bc:6e:33:13:57:7b:2c:63:25:2f:
49:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:2C:41:08:16:E0:0C:9D:07:90:64:9D:CB:C2:FD:75:B3:1F:5C:72
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/ASxBCBbgDJ0HkGSdy8L9dbMfXHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:f407:1028::/48
Signature Algorithm: sha256WithRSAEncryption
aa:0c:44:26:70:57:74:37:1e:33:79:84:4c:e4:31:8f:69:95:
78:67:3b:fd:55:25:bc:38:1e:5e:95:75:5a:f4:f5:a6:72:c7:
25:18:d4:5c:65:31:ce:13:1e:a0:dd:7d:1b:9f:9e:fe:5a:f2:
04:76:d6:6b:f9:e2:50:43:4a:5f:9a:08:d8:9e:00:a6:8e:6f:
1f:07:92:07:b6:09:01:90:d0:cb:07:3e:10:7a:d1:d4:83:93:
ae:59:b4:6b:2c:e4:18:52:49:6a:cd:8f:fa:1e:fc:29:0a:57:
e5:14:1d:f4:da:a6:4c:e3:ed:b8:5a:4f:70:6c:51:39:31:ab:
90:1f:7b:c1:fb:ca:59:1e:be:30:ff:08:63:2e:e6:70:ab:34:
a1:37:8a:58:e1:05:48:a6:19:ab:3b:97:31:eb:fe:f8:ec:91:
d9:7b:d0:26:08:37:1a:41:eb:96:a5:df:6c:03:cf:31:c7:64:
52:6e:61:66:90:d1:29:0c:72:f9:fe:29:8c:2d:81:0b:fd:a3:
4b:40:5c:f2:4c:1e:a0:4a:ab:4a:3c:28:88:1d:1e:1f:e7:18:
6a:c5:73:9c:76:4d:a7:d9:6a:83:81:df:bf:a3:c3:2f:f8:83:
33:41:60:e0:c4:70:34:61:2a:34:a5:a9:05:19:72:55:9f:23:
d0:5e:d9:f6
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEBgapEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NjZkOWQ1MGIzYjg5ZDUxYzhhYTI0OTNlN2VmNDcwMWQ2MjUxZGFkMB4XDTIyMDEw
MTE2MDEyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDEyYzQxMDgxNmUw
MGM5ZDA3OTA2NDlkY2JjMmZkNzViMzFmNWM3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK2piKZcY81uqTI+9uFiXXr9y9/07ZZkLqiS7rTmfJrWtqYd
TQd+Zd25tsjNqGhUFP39HhyGi++9kfkrn3CxjICd/vxH8ddf17EFDAO4mrDo8fE+
LmzvxM51CcnpKIlN7lXchF/cRbQr5Nw3FqaRIWYIprK6Xs/AwOmALAugKkx6UQ94
6blTSY3KLEKUtl0A5xWVB/zTFWCr8BsuVzIG+MGBbbG6/iI2BNP6SlMAnhaWUDJp
SAxnQS4ZMZg4ztUZKCbtTJLQJao2a0mPiGC2YOiZAyyD88VwiGuW3x1SHM3OUVsF
wCkO/1n/rvncpPOncnI3Lv68bjMTV3ssYyUvSbMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQBLEEIFuAMnQeQZJ3Lwv11sx9ccjAfBgNVHSMEGDAWgBTGbZ1Qs7idUciq
JJPn70cB1iUdrTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3htMmRVTE80blZISXFpU1Q1LTlIQWRZbEhhMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTUvNGJiNzRiLThkNmQtNDUxNC1hMzljLWI3YzU3OGI3NGUzNS8x
L0FTeEJDQmJnREowSGtHU2R5OEw5ZGJNZlhISS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTUv
NGJiNzRiLThkNmQtNDUxNC1hMzljLWI3YzU3OGI3NGUzNS8xL3htMmRVTE80blZI
SXFpU1Q1LTlIQWRZbEhhMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoN9AcQKDANBgkqhkiG9w0BAQsF
AAOCAQEAqgxEJnBXdDceM3mETOQxj2mVeGc7/VUlvDgeXpV1WvT1pnLHJRjUXGUx
zhMeoN19G5+e/lryBHbWa/niUENKX5oI2J4Apo5vHweSB7YJAZDQywc+EHrR1IOT
rlm0ayzkGFJJas2P+h78KQpX5RQd9NqmTOPtuFpPcGxROTGrkB97wfvKWR6+MP8I
Yy7mcKs0oTeKWOEFSKYZqzuXMev++OyR2XvQJgg3GkHrlqXfbAPPMcdkUm5hZpDR
KQxy+f4pjC2BC/2jS0Bc8kweoEqrSjwoiB0eH+cYasVznHZNp9lqg4Hfv6PDL/iD
M0Fg4MRwNGEqNKWpBRlyVZ8j0F7Z9g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:36 2024 by rpki-client on console-ams.rpki-client.org