Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a36dbb-6027-43c4-8194-4a0cb255d73a/1/N8xmiiIKUfVfowOoeHH36qgsGcQ.roa
File: N8xmiiIKUfVfowOoeHH36qgsGcQ.roa (raw, json)
Hash identifier: fXC6zkboNi26Ob2kzwB0RpCTMlxwJ51uOqdvpV+LhMk=
Subject key identifier: 37:CC:66:8A:22:0A:51:F5:5F:A3:03:A8:78:71:F7:EA:A8:2C:19:C4
Certificate issuer: /CN=9ef19871b1759f3237012e4b6dbb6c2fd2be8b4b
Certificate serial: D59216
Authority key identifier: 9E:F1:98:71:B1:75:9F:32:37:01:2E:4B:6D:BB:6C:2F:D2:BE:8B:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nvGYcbF1nzI3AS5LbbtsL9K-i0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a36dbb-6027-43c4-8194-4a0cb255d73a/1/N8xmiiIKUfVfowOoeHH36qgsGcQ.roa
Signing time: Sat 01 Jan 2022 05:53:03 +0000
ROA not before: Sat 01 Jan 2022 05:53:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213152
IP address blocks: 2a0f:b480::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13996566 (0xd59216)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ef19871b1759f3237012e4b6dbb6c2fd2be8b4b
Validity
Not Before: Jan 1 05:53:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37cc668a220a51f55fa303a87871f7eaa82c19c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:05:08:8e:ec:b3:9a:a9:60:69:1a:fc:9c:95:
61:62:86:c2:0e:a8:c1:7b:0f:74:5d:bb:00:2a:1b:
8e:13:7b:fb:f9:dd:79:9f:7b:a7:32:49:ba:7c:81:
85:05:df:57:d5:64:71:09:15:cd:9e:72:6b:82:17:
47:db:ce:7e:ff:0c:3e:76:3c:65:a8:21:23:57:7d:
90:64:9d:e2:06:f4:f1:4a:1a:98:5f:0b:4e:63:2e:
89:91:ac:15:29:89:7d:27:c5:27:21:04:40:ef:6c:
66:9f:71:7f:59:04:46:05:24:87:77:0b:03:77:80:
74:fd:1b:c4:fa:1d:28:05:73:ba:b5:ec:40:57:38:
24:32:7c:09:16:14:4b:57:ea:d0:bb:ad:82:a3:87:
91:0a:d8:a2:93:e5:42:01:5f:8d:e3:ca:e3:d9:b6:
16:82:b9:6f:5a:8f:9f:30:24:b8:8f:59:a4:e7:8c:
82:3a:46:9b:b0:64:e4:61:71:08:98:b4:97:be:03:
3f:72:ee:66:b8:28:bb:5c:ce:cd:03:93:d8:46:b3:
a5:52:e3:b7:80:f9:ed:de:59:f0:ed:0d:29:37:3a:
43:36:12:99:1a:2a:5c:d4:23:af:c9:58:63:16:b7:
23:83:dd:d4:f9:4a:73:07:3d:fc:a9:39:a5:93:05:
c4:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:CC:66:8A:22:0A:51:F5:5F:A3:03:A8:78:71:F7:EA:A8:2C:19:C4
X509v3 Authority Key Identifier:
keyid:9E:F1:98:71:B1:75:9F:32:37:01:2E:4B:6D:BB:6C:2F:D2:BE:8B:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nvGYcbF1nzI3AS5LbbtsL9K-i0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a36dbb-6027-43c4-8194-4a0cb255d73a/1/N8xmiiIKUfVfowOoeHH36qgsGcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a36dbb-6027-43c4-8194-4a0cb255d73a/1/nvGYcbF1nzI3AS5LbbtsL9K-i0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b480::/29
Signature Algorithm: sha256WithRSAEncryption
74:18:ff:ee:84:92:e7:a7:9f:75:0f:7e:8b:8b:38:15:7a:d9:
f1:eb:93:6b:24:dc:2c:c9:0e:03:63:f9:9d:64:57:97:36:48:
81:1c:c3:78:ac:d2:5d:24:1f:04:5d:75:d2:8d:8d:18:be:6d:
9c:1c:c8:c4:54:39:42:5e:b3:cd:49:d9:de:1b:82:e8:c6:c9:
a4:42:ba:70:2f:b0:e5:0b:55:a8:d1:6b:6d:ed:f6:d6:d9:13:
03:92:ef:a3:d6:93:be:14:f9:27:e2:53:6b:43:30:f9:9b:63:
2e:9a:b0:8f:6c:d3:44:fe:42:bf:82:bd:06:3d:1c:42:3c:db:
76:0d:d4:d8:48:92:fb:9a:d8:68:a7:bc:74:7c:7a:dc:84:54:
54:14:dd:cf:fa:ad:ef:67:9c:1a:5d:8d:78:5a:5d:3c:91:75:
a0:39:4f:96:15:46:01:0c:88:27:ea:88:bb:0b:b4:30:ba:76:
93:cb:97:bb:57:38:fb:0c:0f:d3:a5:0b:c2:30:7e:0d:ec:82:
91:25:28:5e:11:94:62:d5:f9:05:be:0b:91:e5:4b:88:01:3a:
36:cc:fe:b6:24:44:d6:aa:59:ec:c3:1f:0e:ea:35:d8:f4:35:
c8:4a:33:a7:f0:01:d7:b4:72:54:4b:7c:ea:cf:32:5b:d2:bc:
38:1f:69:80
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEANWSFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZWYxOTg3MWIxNzU5ZjMyMzcwMTJlNGI2ZGJiNmMyZmQyYmU4YjRiMB4XDTIyMDEw
MTA1NTMwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzdjYzY2OGEyMjBh
NTFmNTVmYTMwM2E4Nzg3MWY3ZWFhODJjMTljNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ0FCI7ss5qpYGka/JyVYWKGwg6owXsPdF27ACobjhN7+/nd
eZ97pzJJunyBhQXfV9VkcQkVzZ5ya4IXR9vOfv8MPnY8ZaghI1d9kGSd4gb08Uoa
mF8LTmMuiZGsFSmJfSfFJyEEQO9sZp9xf1kERgUkh3cLA3eAdP0bxPodKAVzurXs
QFc4JDJ8CRYUS1fq0LutgqOHkQrYopPlQgFfjePK49m2FoK5b1qPnzAkuI9ZpOeM
gjpGm7Bk5GFxCJi0l74DP3LuZrgou1zOzQOT2EazpVLjt4D57d5Z8O0NKTc6QzYS
mRoqXNQjr8lYYxa3I4Pd1PlKcwc9/Kk5pZMFxNMCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBQ3zGaKIgpR9V+jA6h4cffqqCwZxDAfBgNVHSMEGDAWgBSe8ZhxsXWfMjcB
Lkttu2wv0r6LSzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L252R1ljYkYxbnpJM0FTNUxiYnRzTDlLLWkwcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWYvYTM2ZGJiLTYwMjctNDNjNC04MTk0LTRhMGNiMjU1ZDczYS8x
L044eG1paUlLVWZWZm93T29lSEgzNnFnc0djUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWYv
YTM2ZGJiLTYwMjctNDNjNC04MTk0LTRhMGNiMjU1ZDczYS8xL252R1ljYkYxbnpJ
M0FTNUxiYnRzTDlLLWkwcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoPtIAwDQYJKoZIhvcNAQELBQAD
ggEBAHQY/+6Ekuenn3UPfouLOBV62fHrk2sk3CzJDgNj+Z1kV5c2SIEcw3is0l0k
HwRdddKNjRi+bZwcyMRUOUJes81J2d4bgujGyaRCunAvsOULVajRa23t9tbZEwOS
76PWk74U+SfiU2tDMPmbYy6asI9s00T+Qr+CvQY9HEI823YN1NhIkvua2GinvHR8
etyEVFQU3c/6re9nnBpdjXhaXTyRdaA5T5YVRgEMiCfqiLsLtDC6dpPLl7tXOPsM
D9OlC8Iwfg3sgpElKF4RlGLV+QW+C5HlS4gBOjbM/rYkRNaqWezDHw7qNdj0NchK
M6fwAde0clRLfOrPMlvSvDgfaYA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:31 2024 by rpki-client on console-ams.rpki-client.org