Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/On6SCVP5pSRHYBV5A3IgDwlS_Bc.roa
File: On6SCVP5pSRHYBV5A3IgDwlS_Bc.roa (raw, json)
Hash identifier: oo5s/fxO8z7FcZRrRKTrgdZy+KbBd58jbaYDgN/yJZ4=
Subject key identifier: 3A:7E:92:09:53:F9:A5:24:47:60:15:79:03:72:20:0F:09:52:FC:17
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 067960BC
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/On6SCVP5pSRHYBV5A3IgDwlS_Bc.roa
Signing time: Wed 09 Feb 2022 15:03:18 +0000
ROA not before: Wed 09 Feb 2022 15:03:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212001
IP address blocks: 2a0d:f407:1023::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108617916 (0x67960bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Feb 9 15:03:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a7e920953f9a524476015790372200f0952fc17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f5:c8:18:99:b4:79:f5:f3:b5:86:94:c0:a8:
6a:4f:a2:42:ef:20:28:0b:72:bd:49:33:7b:55:77:
3b:25:6d:25:62:da:9d:79:a0:0d:c4:e0:7f:48:3e:
2d:26:b3:7d:18:b7:14:7d:59:2f:32:68:a5:cd:03:
bc:ce:0b:8b:8b:10:db:96:70:b2:6b:04:ae:f7:6d:
80:5c:53:6e:2c:47:39:60:75:fd:97:1d:b6:9f:62:
f4:5e:c5:1a:c7:ab:cd:7a:31:c2:54:96:84:33:5d:
48:8e:4e:3f:e2:1e:e7:df:d5:52:f6:da:f2:57:90:
b0:d5:da:51:0d:37:b9:69:58:7e:b5:c5:e6:35:27:
4c:0a:d3:8b:32:52:c7:e6:bb:b2:79:24:01:9f:19:
5a:3c:96:14:34:c6:1d:c8:82:44:de:95:e6:eb:ec:
14:a8:4c:4c:67:35:07:3d:22:15:49:90:48:be:9b:
b2:1e:4b:e2:e1:05:3d:d9:3a:34:52:79:a5:e7:de:
c6:8f:c0:de:7f:18:b9:a5:0d:71:0e:80:5a:5e:19:
71:23:1f:bb:34:1b:83:e7:bd:e1:5b:1a:45:c3:4d:
2a:41:b9:1d:25:a3:67:bd:40:a0:49:c9:50:fd:f6:
e5:a7:e6:7a:84:15:0d:c3:44:94:1c:26:c5:d0:73:
a6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:7E:92:09:53:F9:A5:24:47:60:15:79:03:72:20:0F:09:52:FC:17
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/On6SCVP5pSRHYBV5A3IgDwlS_Bc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:f407:1023::/48
Signature Algorithm: sha256WithRSAEncryption
30:55:e3:cc:e7:38:be:3d:36:87:56:3e:63:91:3c:3a:9e:81:
4f:58:0d:e1:f7:ed:47:40:0e:21:93:a5:33:33:9b:58:22:fc:
90:c9:65:88:f8:31:23:7a:e4:36:ad:95:fe:66:be:72:a8:7e:
aa:74:d7:f6:34:86:a8:52:d0:95:14:97:b2:8e:90:9e:e3:5c:
8a:6b:31:22:08:6a:56:d1:2c:ae:ca:86:76:30:25:fc:11:fd:
49:67:5c:6a:cf:bf:a8:be:2d:0a:86:28:f9:95:29:55:55:d2:
47:26:bb:f8:fd:a2:cb:79:3c:95:de:51:3e:5f:4d:5c:ca:b0:
b7:10:db:a7:c2:03:5f:56:eb:85:f4:33:50:48:f3:f9:14:d4:
df:cf:67:bd:f4:6c:6c:25:59:8c:24:f5:45:54:79:a1:83:b7:
dd:0f:2d:2b:ee:5b:bc:45:ca:23:d2:8b:3f:55:95:9a:e0:2e:
3d:5e:6b:4a:03:70:cf:db:76:69:4d:97:d2:b1:68:3a:f9:f0:
1c:da:72:4a:1b:21:3f:a0:8d:d7:c4:11:55:ed:c5:32:32:71:
59:4d:53:d1:0a:a0:4c:93:bf:9d:03:8d:8d:a6:37:f6:a7:22:
93:d1:13:c2:d9:86:c5:89:42:a6:82:ad:a1:71:d5:08:36:aa:
ce:cf:5e:2d
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEBnlgvDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NjZkOWQ1MGIzYjg5ZDUxYzhhYTI0OTNlN2VmNDcwMWQ2MjUxZGFkMB4XDTIyMDIw
OTE1MDMxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2E3ZTkyMDk1M2Y5
YTUyNDQ3NjAxNTc5MDM3MjIwMGYwOTUyZmMxNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANX1yBiZtHn187WGlMCoak+iQu8gKAtyvUkze1V3OyVtJWLa
nXmgDcTgf0g+LSazfRi3FH1ZLzJopc0DvM4Li4sQ25ZwsmsErvdtgFxTbixHOWB1
/Zcdtp9i9F7FGserzXoxwlSWhDNdSI5OP+Ie59/VUvba8leQsNXaUQ03uWlYfrXF
5jUnTArTizJSx+a7snkkAZ8ZWjyWFDTGHciCRN6V5uvsFKhMTGc1Bz0iFUmQSL6b
sh5L4uEFPdk6NFJ5pefexo/A3n8YuaUNcQ6AWl4ZcSMfuzQbg+e94VsaRcNNKkG5
HSWjZ71AoEnJUP325afmeoQVDcNElBwmxdBzpqsCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQ6fpIJU/mlJEdgFXkDciAPCVL8FzAfBgNVHSMEGDAWgBTGbZ1Qs7idUciq
JJPn70cB1iUdrTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3htMmRVTE80blZISXFpU1Q1LTlIQWRZbEhhMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTUvNGJiNzRiLThkNmQtNDUxNC1hMzljLWI3YzU3OGI3NGUzNS8x
L09uNlNDVlA1cFNSSFlCVjVBM0lnRHdsU19CYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTUv
NGJiNzRiLThkNmQtNDUxNC1hMzljLWI3YzU3OGI3NGUzNS8xL3htMmRVTE80blZI
SXFpU1Q1LTlIQWRZbEhhMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoN9AcQIzANBgkqhkiG9w0BAQsF
AAOCAQEAMFXjzOc4vj02h1Y+Y5E8Op6BT1gN4fftR0AOIZOlMzObWCL8kMlliPgx
I3rkNq2V/ma+cqh+qnTX9jSGqFLQlRSXso6QnuNcimsxIghqVtEsrsqGdjAl/BH9
SWdcas+/qL4tCoYo+ZUpVVXSRya7+P2iy3k8ld5RPl9NXMqwtxDbp8IDX1brhfQz
UEjz+RTU389nvfRsbCVZjCT1RVR5oYO33Q8tK+5bvEXKI9KLP1WVmuAuPV5rSgNw
z9t2aU2X0rFoOvnwHNpyShshP6CN18QRVe3FMjJxWU1T0QqgTJO/nQONjaY39qci
k9ETwtmGxYlCpoKtoXHVCDaqzs9eLQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:36 2024 by rpki-client on console-ams.rpki-client.org