Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/87KvPbJ910TC_61XotGvS8qGgRw.roa
File: 87KvPbJ910TC_61XotGvS8qGgRw.roa (raw, json)
Hash identifier: ZY5Y7Sz5Nnqd0Frt1YNI/K4t/Zw8ImXnn37p5wqUq4g=
Subject key identifier: F3:B2:AF:3D:B2:7D:D7:44:C2:FF:AD:57:A2:D1:AF:4B:CA:86:81:1C
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 0802C2B7
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/87KvPbJ910TC_61XotGvS8qGgRw.roa
Signing time: Sat 01 Jan 2022 06:55:45 +0000
ROA not before: Sat 01 Jan 2022 06:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50310
IP address blocks: 2a0f:5707:fff7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134398647 (0x802c2b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3b2af3db27dd744c2ffad57a2d1af4bca86811c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:c7:1d:a4:50:61:54:52:71:81:55:8e:c9:b2:
6e:b2:6d:62:32:f0:a8:be:46:94:00:58:79:01:26:
fb:79:17:4f:7a:13:75:6a:9a:9d:f3:27:fa:da:47:
86:d8:ea:67:ee:42:e1:cb:22:b3:96:e3:0a:ef:a6:
64:f5:7d:d4:82:d2:b8:c2:42:48:23:2e:11:07:ee:
29:b7:c0:f4:26:7d:9f:71:0b:f1:cc:67:5c:29:18:
db:19:49:62:39:f0:b2:8a:8c:57:91:dd:c5:4b:0b:
19:b5:cc:0c:f8:1f:32:bf:bd:db:91:1a:cd:cb:c7:
2c:28:84:62:a0:7c:17:ae:a4:9f:34:87:1f:de:bd:
aa:9f:d5:61:b5:91:ea:0f:a8:9c:85:e1:ed:9c:92:
2b:e8:82:57:c6:91:fa:25:67:3c:03:6b:01:f3:59:
9d:90:cc:bb:65:65:48:e5:3e:54:d6:05:b7:3f:f7:
12:f2:55:a0:b4:9a:af:41:80:de:8b:54:88:58:da:
dc:42:2c:4b:a6:96:ba:b6:d2:8b:d7:30:24:03:d7:
a4:c9:ec:03:a1:8f:c8:48:49:80:3e:b6:d4:fa:bd:
ae:17:bb:ac:7d:fb:a8:df:29:f6:a9:08:04:66:09:
bf:49:fd:31:34:7b:cc:39:dd:d5:fb:f8:21:a1:fa:
56:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:B2:AF:3D:B2:7D:D7:44:C2:FF:AD:57:A2:D1:AF:4B:CA:86:81:1C
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/87KvPbJ910TC_61XotGvS8qGgRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:fff7::/48
Signature Algorithm: sha256WithRSAEncryption
87:aa:aa:39:17:2f:d0:5e:43:87:88:72:02:c7:89:9f:ec:21:
47:4c:bb:8d:5b:61:43:a8:92:d5:86:09:1a:dc:14:65:b3:5d:
39:0f:b6:fd:28:fc:18:3a:b7:03:b8:13:ca:ed:05:74:a0:bf:
ab:4d:ec:34:22:37:62:9d:c9:1a:61:3a:71:6c:cb:f5:e3:09:
41:63:b5:38:33:7e:18:05:39:c3:e0:b7:55:4e:ac:0e:54:04:
55:de:ca:81:85:9c:2e:54:34:e7:5e:c6:7c:7c:9a:c8:9b:1f:
93:54:6e:02:26:e2:e6:81:d6:19:b0:8f:03:33:fa:e3:4a:8f:
e7:97:03:d1:6f:cf:68:79:cb:84:4d:cb:29:f6:ce:1b:d5:49:
f2:25:a6:d7:b8:58:34:d4:50:60:d7:ef:01:e9:90:1c:74:e8:
52:9f:94:d7:91:1e:8c:9b:6f:e5:e2:7f:3d:ee:2d:3f:5e:78:
16:82:dd:22:5f:9f:c6:d6:60:d5:64:19:c3:19:73:9f:28:42:
17:9c:8e:77:b3:f7:2b:bc:e6:df:c2:bd:83:e8:bb:91:0c:eb:
a6:7e:e8:99:40:c0:65:af:da:20:af:b4:42:96:ef:dc:aa:e7:
24:7c:36:fd:78:69:8e:c4:42:45:7e:a6:0b:eb:07:44:8d:ea:
13:f3:bc:0e
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECALCtzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YTY0NGMxMTU2ODUxODAzZjM3YWRlZWMwODc2Y2NmOTg5ZDVhZWYwMB4XDTIyMDEw
MTA2NTU0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjNiMmFmM2RiMjdk
ZDc0NGMyZmZhZDU3YTJkMWFmNGJjYTg2ODExYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJHHHaRQYVRScYFVjsmybrJtYjLwqL5GlABYeQEm+3kXT3oT
dWqanfMn+tpHhtjqZ+5C4csis5bjCu+mZPV91ILSuMJCSCMuEQfuKbfA9CZ9n3EL
8cxnXCkY2xlJYjnwsoqMV5HdxUsLGbXMDPgfMr+925EazcvHLCiEYqB8F66knzSH
H969qp/VYbWR6g+onIXh7ZySK+iCV8aR+iVnPANrAfNZnZDMu2VlSOU+VNYFtz/3
EvJVoLSar0GA3otUiFja3EIsS6aWurbSi9cwJAPXpMnsA6GPyEhJgD621Pq9rhe7
rH37qN8p9qkIBGYJv0n9MTR7zDnd1fv4IaH6VtkCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTzsq89sn3XRML/rVei0a9LyoaBHDAfBgNVHSMEGDAWgBRKZEwRVoUYA/N6
3uwIdsz5idWu8DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NtUk1FVmFGR0FQemV0N3NDSGJNLVluVnJ2QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTkvNmIwNzk4LTNkNGYtNDBlNi1iNzM5LWNjMWM5YjVmNjY0MC8x
Lzg3S3ZQYko5MTBUQ182MVhvdEd2UzhxR2dSdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTkv
NmIwNzk4LTNkNGYtNDBlNi1iNzM5LWNjMWM5YjVmNjY0MC8xL1NtUk1FVmFGR0FQ
emV0N3NDSGJNLVluVnJ2QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoPVwf/9zANBgkqhkiG9w0BAQsF
AAOCAQEAh6qqORcv0F5Dh4hyAseJn+whR0y7jVthQ6iS1YYJGtwUZbNdOQ+2/Sj8
GDq3A7gTyu0FdKC/q03sNCI3Yp3JGmE6cWzL9eMJQWO1ODN+GAU5w+C3VU6sDlQE
Vd7KgYWcLlQ0517GfHyayJsfk1RuAibi5oHWGbCPAzP640qP55cD0W/PaHnLhE3L
KfbOG9VJ8iWm17hYNNRQYNfvAemQHHToUp+U15EejJtv5eJ/Pe4tP154FoLdIl+f
xtZg1WQZwxlznyhCF5yOd7P3K7zm38K9g+i7kQzrpn7omUDAZa/aIK+0Qpbv3Krn
JHw2/XhpjsRCRX6mC+sHRI3qE/O8Dg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org