Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd0b2c-29e2-4737-9eb7-8cd55b03d22d/1/hDCM_mgcO_SHTjwiko31xPyiORg.roa
File: hDCM_mgcO_SHTjwiko31xPyiORg.roa (raw, json)
Hash identifier: 10+RNPKHuKlHXgSXr3+N3iXFJrtqMh+QQQXC2g6g5qQ=
Subject key identifier: 84:30:8C:FE:68:1C:3B:F4:87:4E:3C:22:92:8D:F5:C4:FC:A2:39:18
Certificate issuer: /CN=cfc7ef2b766594892d78928cbe781779fdce67d0
Certificate serial: 37ECED58
Authority key identifier: CF:C7:EF:2B:76:65:94:89:2D:78:92:8C:BE:78:17:79:FD:CE:67:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z8fvK3ZllIkteJKMvngXef3OZ9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd0b2c-29e2-4737-9eb7-8cd55b03d22d/1/hDCM_mgcO_SHTjwiko31xPyiORg.roa
Signing time: Sat 01 Jan 2022 06:05:20 +0000
ROA not before: Sat 01 Jan 2022 06:05:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8729
IP address blocks: 2a02:6a0:cffe::/48 maxlen: 48
2a02:6a0:cfff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938274136 (0x37eced58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfc7ef2b766594892d78928cbe781779fdce67d0
Validity
Not Before: Jan 1 06:05:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84308cfe681c3bf4874e3c22928df5c4fca23918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b4:ab:d5:16:ea:8f:11:66:b4:a8:20:12:5c:
1d:73:28:17:de:e9:ce:77:a8:ba:31:2c:b6:98:98:
94:38:3d:57:b0:c9:61:b5:f1:80:cf:ad:64:2e:ce:
65:fa:1d:2d:dc:25:56:0f:c3:6a:e1:3a:9f:56:c1:
16:f1:55:d7:c4:b8:8c:c7:02:b3:38:01:66:1a:c3:
84:73:11:1b:25:fa:c4:f2:60:7c:06:6d:dd:be:b9:
ce:f7:72:22:78:4c:ba:e7:e9:62:69:81:63:93:1d:
65:06:eb:bb:ca:5a:eb:c7:95:67:e7:50:01:8b:52:
ff:7c:0f:36:6a:2c:06:c8:8e:05:20:68:6d:54:70:
c4:c1:fc:b0:30:f0:4b:4a:dc:65:37:e9:c8:ef:76:
4d:18:ac:04:79:d8:a2:21:15:c9:39:cc:29:91:98:
e9:ad:f7:85:71:80:d4:48:19:98:fd:2b:0c:02:88:
01:9d:d8:39:fa:3c:f3:d4:a2:37:41:c9:a4:87:77:
25:e5:99:bd:eb:df:17:77:fd:64:cf:d5:1e:14:ea:
66:95:c8:ba:a9:94:f4:fc:64:43:54:a2:c7:68:19:
a8:9f:3e:91:38:19:e1:f7:35:52:34:83:62:c5:5e:
5b:ee:23:37:64:86:04:0f:a5:78:9b:4f:de:4c:64:
2b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:30:8C:FE:68:1C:3B:F4:87:4E:3C:22:92:8D:F5:C4:FC:A2:39:18
X509v3 Authority Key Identifier:
keyid:CF:C7:EF:2B:76:65:94:89:2D:78:92:8C:BE:78:17:79:FD:CE:67:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z8fvK3ZllIkteJKMvngXef3OZ9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd0b2c-29e2-4737-9eb7-8cd55b03d22d/1/hDCM_mgcO_SHTjwiko31xPyiORg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd0b2c-29e2-4737-9eb7-8cd55b03d22d/1/z8fvK3ZllIkteJKMvngXef3OZ9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:6a0:cffe::/47
Signature Algorithm: sha256WithRSAEncryption
69:6b:fe:70:d0:bd:d9:41:38:80:9d:83:27:2a:11:d4:f6:6e:
3a:ba:38:dd:2b:41:ad:78:88:76:fe:d2:0a:d7:95:6f:34:bd:
25:a1:5c:95:f9:a1:b0:9d:52:d2:b2:8d:30:12:e4:b9:8c:74:
9f:3e:64:41:3d:e1:3c:f5:25:e3:e1:9b:a2:66:75:31:31:8d:
c4:14:be:82:f3:ce:bc:66:d1:e1:0e:a6:5c:01:9c:e2:d3:ee:
b8:93:e3:f9:4f:9b:98:98:bc:eb:7e:b1:97:26:42:2f:99:51:
07:68:92:d6:0e:76:57:31:84:74:8c:f7:fb:53:16:19:47:78:
81:b3:12:9b:f4:31:40:d1:4a:79:1a:32:58:75:81:28:ce:f1:
7d:0a:bb:08:da:6c:44:5e:2f:cd:77:cd:1f:40:f8:e3:77:20:
80:35:a9:2c:4e:70:18:23:27:69:96:dd:bd:d8:a7:d9:f5:e9:
1c:6b:60:77:dc:09:2f:ac:cf:53:07:c8:b0:e9:0a:3d:c4:bb:
6a:bb:fe:17:39:94:61:c7:aa:3e:b6:d6:54:f4:07:94:d3:14:
8f:e5:c8:58:6a:2d:f0:96:1a:a2:23:7e:30:f6:06:82:5d:04:
81:92:e0:91:1b:62:7f:0c:1c:d6:9d:10:3d:69:a1:78:80:77:
21:da:6c:3f
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEN+ztWDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZmM3ZWYyYjc2NjU5NDg5MmQ3ODkyOGNiZTc4MTc3OWZkY2U2N2QwMB4XDTIyMDEw
MTA2MDUyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODQzMDhjZmU2ODFj
M2JmNDg3NGUzYzIyOTI4ZGY1YzRmY2EyMzkxODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL60q9UW6o8RZrSoIBJcHXMoF97pzneoujEstpiYlDg9V7DJ
YbXxgM+tZC7OZfodLdwlVg/DauE6n1bBFvFV18S4jMcCszgBZhrDhHMRGyX6xPJg
fAZt3b65zvdyInhMuufpYmmBY5MdZQbru8pa68eVZ+dQAYtS/3wPNmosBsiOBSBo
bVRwxMH8sDDwS0rcZTfpyO92TRisBHnYoiEVyTnMKZGY6a33hXGA1EgZmP0rDAKI
AZ3YOfo889SiN0HJpId3JeWZvevfF3f9ZM/VHhTqZpXIuqmU9PxkQ1Six2gZqJ8+
kTgZ4fc1UjSDYsVeW+4jN2SGBA+leJtP3kxkKxECAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSEMIz+aBw79IdOPCKSjfXE/KI5GDAfBgNVHSMEGDAWgBTPx+8rdmWUiS14
koy+eBd5/c5n0DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3o4ZnZLM1psbElrdGVKS012bmdYZWYzT1o5QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjMvY2QwYjJjLTI5ZTItNDczNy05ZWI3LThjZDU1YjAzZDIyZC8x
L2hEQ01fbWdjT19TSFRqd2lrbzMxeFB5aU9SZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjMv
Y2QwYjJjLTI5ZTItNDczNy05ZWI3LThjZDU1YjAzZDIyZC8xL3o4ZnZLM1psbElr
dGVKS012bmdYZWYzT1o5QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHASoCBqDP/jANBgkqhkiG9w0BAQsF
AAOCAQEAaWv+cNC92UE4gJ2DJyoR1PZuOro43StBrXiIdv7SCteVbzS9JaFclfmh
sJ1S0rKNMBLkuYx0nz5kQT3hPPUl4+GbomZ1MTGNxBS+gvPOvGbR4Q6mXAGc4tPu
uJPj+U+bmJi8636xlyZCL5lRB2iS1g52VzGEdIz3+1MWGUd4gbMSm/QxQNFKeRoy
WHWBKM7xfQq7CNpsRF4vzXfNH0D443cggDWpLE5wGCMnaZbdvdin2fXpHGtgd9wJ
L6zPUwfIsOkKPcS7arv+FzmUYceqPrbWVPQHlNMUj+XIWGot8JYaoiN+MPYGgl0E
gZLgkRtifwwc1p0QPWmheIB3IdpsPw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:33 2024 by rpki-client on console-ams.rpki-client.org