Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/IorvBDkL3TtRgxPlJYiOPEF8DK8.roa
File: IorvBDkL3TtRgxPlJYiOPEF8DK8.roa (raw, json)
Hash identifier: ASBgY4fvyGVV8QC8a7pl1JlX3+LFUhFj0DYoOiIOvOE=
Subject key identifier: 22:8A:EF:04:39:0B:DD:3B:51:83:13:E5:25:88:8E:3C:41:7C:0C:AF
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 060F81F1
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/IorvBDkL3TtRgxPlJYiOPEF8DK8.roa
Signing time: Sat 01 Jan 2022 16:01:30 +0000
ROA not before: Sat 01 Jan 2022 16:01:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213273
IP address blocks: 2a0d:f407:1006::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101679601 (0x60f81f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 1 16:01:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=228aef04390bdd3b518313e525888e3c417c0caf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b5:c9:80:92:e7:0b:89:50:df:37:fc:47:2a:
df:0b:37:a9:e2:38:c2:b7:55:d3:6f:3a:d7:a7:92:
38:6a:0a:9d:65:0e:58:eb:d5:d1:2d:4b:fe:a7:22:
c9:25:d0:21:46:2c:4f:4a:db:9e:4e:46:41:17:21:
71:5e:e3:45:9e:41:4d:f4:d5:1c:99:1f:f4:fe:1a:
1f:a6:17:e5:60:f8:f4:ca:35:bd:84:f9:db:ae:6a:
3b:c3:d0:e1:a4:07:e1:c2:39:5b:de:19:c3:be:a4:
5a:74:87:0a:c6:64:79:9d:35:71:30:30:c9:2c:b6:
72:0e:80:81:db:92:da:1a:b8:da:da:a1:30:bf:04:
1e:5b:e9:02:f3:26:5b:f9:05:94:72:92:df:75:9f:
b6:28:6e:e4:01:9b:b2:84:e6:0f:06:b2:c1:1a:b1:
2d:f6:fe:29:82:de:12:aa:0b:d9:56:e5:c4:a3:e1:
fb:17:c4:e8:f5:51:06:4e:be:f2:c4:70:6c:05:d5:
ce:57:9f:a4:fe:fa:07:65:5a:01:23:21:bb:7e:20:
90:27:5b:54:7a:ad:a9:0c:c7:bc:b5:32:45:ce:7f:
83:7f:18:ad:79:4a:88:05:ae:6a:89:73:08:23:11:
af:8f:5e:cc:ca:61:a9:28:88:ce:1f:bc:97:5b:51:
94:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:8A:EF:04:39:0B:DD:3B:51:83:13:E5:25:88:8E:3C:41:7C:0C:AF
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/IorvBDkL3TtRgxPlJYiOPEF8DK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:f407:1006::/48
Signature Algorithm: sha256WithRSAEncryption
a1:b4:09:83:05:bb:7e:cd:d9:52:03:3e:c8:b1:9e:45:50:4e:
93:cb:47:b2:10:9c:65:0b:6b:6f:9a:3b:37:88:cf:bc:f9:ce:
15:6e:06:e5:c5:6f:66:30:d1:44:61:15:3b:de:78:16:91:3b:
79:b2:bd:b6:19:37:de:3a:d6:8f:38:eb:a7:e7:fb:bd:7e:b4:
1f:54:05:40:33:9c:fa:4b:c8:15:87:f3:b7:6a:d2:d4:99:50:
17:a5:95:30:a0:75:d2:3b:e4:c3:14:b9:93:47:27:bb:31:73:
f9:16:76:20:dd:b6:b9:52:37:5b:39:f2:1c:c7:90:42:96:fb:
a2:b1:43:e9:e5:c8:a6:6f:c2:a7:b5:5e:8e:62:b3:c3:dd:78:
8c:01:b4:1e:f7:4d:39:e9:32:99:e3:b4:54:9e:6e:a2:1a:4b:
e7:28:2b:ed:03:43:22:2c:09:c1:4a:68:64:fd:37:b0:5c:7d:
6a:9a:4d:de:94:59:03:16:8a:be:dd:3a:ba:45:f2:eb:52:11:
10:9a:50:1a:a9:ed:90:9c:77:f6:0b:8f:2c:f2:a8:de:55:5c:
81:72:e8:d2:f2:af:77:c0:23:6a:da:92:e1:2e:4e:cc:41:10:
89:aa:71:b9:92:48:8e:07:d3:1a:0e:70:3b:51:dc:76:b8:e8:
be:14:09:45
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEBg+B8TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NjZkOWQ1MGIzYjg5ZDUxYzhhYTI0OTNlN2VmNDcwMWQ2MjUxZGFkMB4XDTIyMDEw
MTE2MDEzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjI4YWVmMDQzOTBi
ZGQzYjUxODMxM2U1MjU4ODhlM2M0MTdjMGNhZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANm1yYCS5wuJUN83/Ecq3ws3qeI4wrdV028616eSOGoKnWUO
WOvV0S1L/qciySXQIUYsT0rbnk5GQRchcV7jRZ5BTfTVHJkf9P4aH6YX5WD49Mo1
vYT5265qO8PQ4aQH4cI5W94Zw76kWnSHCsZkeZ01cTAwySy2cg6AgduS2hq42tqh
ML8EHlvpAvMmW/kFlHKS33Wftihu5AGbsoTmDwaywRqxLfb+KYLeEqoL2VblxKPh
+xfE6PVRBk6+8sRwbAXVzlefpP76B2VaASMhu34gkCdbVHqtqQzHvLUyRc5/g38Y
rXlKiAWuaolzCCMRr49ezMphqSiIzh+8l1tRlO0CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQiiu8EOQvdO1GDE+UliI48QXwMrzAfBgNVHSMEGDAWgBTGbZ1Qs7idUciq
JJPn70cB1iUdrTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3htMmRVTE80blZISXFpU1Q1LTlIQWRZbEhhMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTUvNGJiNzRiLThkNmQtNDUxNC1hMzljLWI3YzU3OGI3NGUzNS8x
L0lvcnZCRGtMM1R0Umd4UGxKWWlPUEVGOERLOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTUv
NGJiNzRiLThkNmQtNDUxNC1hMzljLWI3YzU3OGI3NGUzNS8xL3htMmRVTE80blZI
SXFpU1Q1LTlIQWRZbEhhMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoN9AcQBjANBgkqhkiG9w0BAQsF
AAOCAQEAobQJgwW7fs3ZUgM+yLGeRVBOk8tHshCcZQtrb5o7N4jPvPnOFW4G5cVv
ZjDRRGEVO954FpE7ebK9thk33jrWjzjrp+f7vX60H1QFQDOc+kvIFYfzt2rS1JlQ
F6WVMKB10jvkwxS5k0cnuzFz+RZ2IN22uVI3WznyHMeQQpb7orFD6eXIpm/Cp7Ve
jmKzw914jAG0HvdNOekymeO0VJ5uohpL5ygr7QNDIiwJwUpoZP03sFx9appN3pRZ
AxaKvt06ukXy61IREJpQGqntkJx39guPLPKo3lVcgXLo0vKvd8AjatqS4S5OzEEQ
iapxuZJIjgfTGg5wO1HcdrjovhQJRQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org