Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/CGfdrlYtUwk5e0_tJPaVjQINlr4.roa
File: CGfdrlYtUwk5e0_tJPaVjQINlr4.roa (raw, json)
Hash identifier: kTtEejX1TsQDvX0Rtnhjrb4sCm7KHOc1mEGjOQKmrd8=
Subject key identifier: 08:67:DD:AE:56:2D:53:09:39:7B:4F:ED:24:F6:95:8D:02:0D:96:BE
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 0183EB36F908686ED615731395357DA0983E
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/CGfdrlYtUwk5e0_tJPaVjQINlr4.roa
Signing time: Tue 18 Oct 2022 13:09:51 +0000
ROA not before: Tue 18 Oct 2022 13:09:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56662
IP address blocks: 2a0f:5707:ba00::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:eb:36:f9:08:68:6e:d6:15:73:13:95:35:7d:a0:98:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Oct 18 13:09:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0867ddae562d5309397b4fed24f6958d020d96be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c9:5a:4e:10:96:ac:3a:ee:a0:37:fc:1d:0e:
b5:e2:4f:8e:81:4f:ff:81:d6:01:24:46:21:6c:47:
c1:00:0d:b7:d0:f7:6f:43:6a:98:a5:84:55:2e:0c:
68:16:e3:7d:37:b8:37:80:6f:35:5c:56:9e:11:c6:
79:1c:08:2a:26:0d:90:87:1a:c3:df:8e:bf:f6:c2:
06:a5:9f:1f:8a:a4:5b:bd:44:fd:2c:34:a6:c7:ed:
21:cc:e1:4a:95:c0:e2:d5:7d:42:75:57:17:91:1f:
b4:0e:a2:df:24:88:31:51:41:e5:7a:3b:a8:e9:77:
8e:d8:09:5d:1d:6c:f3:e1:4c:d5:4c:81:ed:62:c7:
e8:5d:3b:78:8e:e0:ea:1d:8b:49:25:78:6b:a8:03:
71:36:de:f1:8b:f8:4d:6c:92:fc:64:2b:b1:7e:ef:
e9:d1:ac:ee:25:55:e8:85:50:f6:05:81:3c:f7:15:
72:e6:65:4a:96:50:54:46:ac:89:03:e7:e8:f3:28:
a4:6c:d2:9c:f7:fc:c7:15:80:71:bd:67:4e:2b:48:
b3:d8:17:73:02:ea:b1:a9:e2:ca:8c:9c:41:4b:f3:
f0:d6:43:27:0f:3e:27:36:63:95:ff:04:04:84:ef:
e2:19:d6:44:f6:98:f1:4d:1e:97:75:ff:ef:b6:a7:
57:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:67:DD:AE:56:2D:53:09:39:7B:4F:ED:24:F6:95:8D:02:0D:96:BE
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/CGfdrlYtUwk5e0_tJPaVjQINlr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:ba00::/44
Signature Algorithm: sha256WithRSAEncryption
09:d9:eb:15:ba:3b:4b:d8:32:0b:11:12:50:80:8a:ba:d1:4b:
36:08:d6:9c:dc:44:5f:c0:2b:61:83:08:46:b1:da:c1:ae:22:
f4:7d:f1:be:96:03:08:6e:3b:ec:6b:16:58:14:10:74:82:5b:
91:2c:55:6f:33:2c:59:fd:a1:d2:bf:a8:5d:c9:0a:5c:32:7c:
33:6d:52:c2:6d:df:2b:75:7e:65:d7:04:38:3c:a8:af:9f:9f:
d7:c6:aa:f7:86:ed:ef:14:13:d8:c3:13:bc:0f:20:1e:6b:f6:
94:db:f5:22:9f:6e:06:0f:8b:67:0f:eb:ef:af:4b:c4:bb:52:
5b:ca:bd:b7:b2:63:36:bd:22:89:4a:8d:c9:80:ac:90:7d:66:
ec:b5:5e:53:dc:cb:e3:9c:74:01:b5:fd:8f:2d:81:a3:9a:60:
f3:8f:92:85:d1:4d:b3:84:06:01:3b:95:67:3c:71:6b:3e:11:
69:cb:d6:13:60:03:c2:8c:a8:b4:10:92:e4:cd:a2:95:36:77:
77:12:3e:05:8a:85:f5:6d:a5:f7:2a:8a:c1:ca:01:63:a5:1e:
98:10:b6:84:16:62:1c:09:dc:d9:b4:59:ec:79:15:cf:e6:8f:
81:90:32:55:71:f0:b9:a5:59:79:4f:d5:95:1c:9d:f2:34:8c:
38:6a:68:19
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYPrNvkIaG7WFXMTlTV9oJg+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNjQ0YzExNTY4NTE4MDNmMzdhZGVlYzA4NzZjY2Y5ODlk
NWFlZjAwHhcNMjIxMDE4MTMwOTUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODY3ZGRhZTU2MmQ1MzA5Mzk3YjRmZWQyNGY2OTU4ZDAyMGQ5NmJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv8laThCWrDruoDf8HQ614k+OgU//
gdYBJEYhbEfBAA230PdvQ2qYpYRVLgxoFuN9N7g3gG81XFaeEcZ5HAgqJg2QhxrD
346/9sIGpZ8fiqRbvUT9LDSmx+0hzOFKlcDi1X1CdVcXkR+0DqLfJIgxUUHlejuo
6XeO2AldHWzz4UzVTIHtYsfoXTt4juDqHYtJJXhrqANxNt7xi/hNbJL8ZCuxfu/p
0azuJVXohVD2BYE89xVy5mVKllBURqyJA+fo8yikbNKc9/zHFYBxvWdOK0iz2Bdz
AuqxqeLKjJxBS/Pw1kMnDz4nNmOV/wQEhO/iGdZE9pjxTR6Xdf/vtqdXuwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFAhn3a5WLVMJOXtP7ST2lY0CDZa+MB8GA1UdIwQY
MBaAFEpkTBFWhRgD83re7Ah2zPmJ1a7wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3Mzkt
Y2MxYzliNWY2NjQwLzEvQ0dmZHJsWXRVd2s1ZTBfdEpQYVZqUUlObHI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3MzktY2MxYzliNWY2NjQw
LzEvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg9XB7oA
MA0GCSqGSIb3DQEBCwUAA4IBAQAJ2esVujtL2DILERJQgIq60Us2CNac3ERfwCth
gwhGsdrBriL0ffG+lgMIbjvsaxZYFBB0gluRLFVvMyxZ/aHSv6hdyQpcMnwzbVLC
bd8rdX5l1wQ4PKivn5/Xxqr3hu3vFBPYwxO8DyAea/aU2/Uin24GD4tnD+vvr0vE
u1Jbyr23smM2vSKJSo3JgKyQfWbstV5T3MvjnHQBtf2PLYGjmmDzj5KF0U2zhAYB
O5VnPHFrPhFpy9YTYAPCjKi0EJLkzaKVNnd3Ej4FioX1baX3KorBygFjpR6YELaE
FmIcCdzZtFnseRXP5o+BkDJVcfC5pVl5T9WVHJ3yNIw4amgZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org