Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/6df8ba-d4cb-4705-bf55-54d162298ffd/1/VcA_BMMdMXGl6LjzZHjaJDuA_kk.roa
File: VcA_BMMdMXGl6LjzZHjaJDuA_kk.roa (raw, json)
Hash identifier: mBB6BiXWhjshZUQZZqg9i34WICw2qTPz89H2CTUN6cg=
Subject key identifier: 55:C0:3F:04:C3:1D:31:71:A5:E8:B8:F3:64:78:DA:24:3B:80:FE:49
Certificate issuer: /CN=f99f65e1be42a65b494cf2642a4dd8e328d0f9ce
Certificate serial: 02821E
Authority key identifier: F9:9F:65:E1:BE:42:A6:5B:49:4C:F2:64:2A:4D:D8:E3:28:D0:F9:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Z9l4b5CpltJTPJkKk3Y4yjQ-c4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/6df8ba-d4cb-4705-bf55-54d162298ffd/1/VcA_BMMdMXGl6LjzZHjaJDuA_kk.roa
Signing time: Thu 07 Apr 2022 22:29:34 +0000
ROA not before: Thu 07 Apr 2022 22:29:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62241
IP address blocks: 2a01:9520::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164382 (0x2821e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f99f65e1be42a65b494cf2642a4dd8e328d0f9ce
Validity
Not Before: Apr 7 22:29:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55c03f04c31d3171a5e8b8f36478da243b80fe49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f0:55:59:56:41:fd:6d:57:e7:15:6a:c6:a9:
09:df:d1:19:4d:d5:ea:61:01:c0:9d:d1:a5:ad:64:
2c:55:f0:65:07:1b:c6:48:14:d7:ae:63:81:01:b8:
1c:c2:4e:e1:84:2a:7b:1c:56:b1:05:b3:33:c9:1d:
04:74:0d:45:40:00:05:fb:33:41:57:8a:b1:a6:a8:
3a:bf:fa:1e:e3:35:5d:53:da:4e:6f:32:e9:74:ba:
30:a8:7e:b6:4a:9f:f1:9c:c9:7a:7a:ea:9d:8b:df:
e6:0b:b0:11:ec:fd:40:41:f0:c1:20:f4:b0:30:e8:
79:46:79:d4:ac:19:6b:24:79:05:fe:76:49:52:ba:
80:26:fe:37:4d:d1:6b:2e:e7:c1:eb:a4:6d:dd:15:
7d:a9:7c:f2:26:aa:46:d8:05:79:bd:bb:9a:1c:a3:
db:0f:55:9b:49:67:0c:30:75:5c:9d:ab:45:77:35:
df:54:f8:56:fe:24:12:2d:a9:85:b9:86:59:c9:af:
0a:a6:bd:b3:72:59:ab:0d:85:3e:cb:94:79:5f:e7:
d0:d5:a3:91:47:be:ae:64:a5:f4:41:eb:02:44:e6:
3c:3b:d5:c5:d8:84:08:8e:c4:9e:1d:d4:2a:fb:01:
30:12:fa:70:27:d8:db:aa:23:53:a3:b1:3e:fa:b9:
78:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:C0:3F:04:C3:1D:31:71:A5:E8:B8:F3:64:78:DA:24:3B:80:FE:49
X509v3 Authority Key Identifier:
keyid:F9:9F:65:E1:BE:42:A6:5B:49:4C:F2:64:2A:4D:D8:E3:28:D0:F9:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Z9l4b5CpltJTPJkKk3Y4yjQ-c4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6df8ba-d4cb-4705-bf55-54d162298ffd/1/VcA_BMMdMXGl6LjzZHjaJDuA_kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6df8ba-d4cb-4705-bf55-54d162298ffd/1/1-Z9l4b5CpltJTPJkKk3Y4yjQ-c4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:9520::/29
Signature Algorithm: sha256WithRSAEncryption
41:21:74:ec:73:16:19:83:8a:8f:b9:9a:d5:6f:f8:11:d6:f1:
c6:2d:17:9d:bf:eb:60:37:53:4f:bd:75:86:74:39:8c:be:59:
5f:fe:b7:c9:9b:0e:da:44:a2:fb:d7:30:d6:62:c5:f2:8b:5f:
1e:2d:04:31:8a:73:5a:77:e4:99:5c:87:88:00:c3:e8:a5:0f:
1f:c5:55:21:c4:49:7a:1a:e3:04:fb:77:76:b4:e3:bf:7e:3d:
76:ea:a5:67:46:a4:f9:d5:ce:a7:5f:3f:cc:e5:50:6b:65:b3:
22:91:eb:c2:2b:c2:ce:ee:8c:64:f3:7d:3e:ca:6d:58:d1:e3:
33:9a:f5:40:34:bf:5a:86:3c:e5:d0:ed:c9:f5:55:da:0c:80:
e5:dc:4a:bc:ec:22:b7:ff:81:f8:00:b8:5d:98:34:d9:df:3f:
e1:16:eb:02:89:99:72:db:57:b8:4c:f3:60:6e:f5:89:c6:14:
a6:47:e3:e8:ae:6b:93:41:53:1e:08:2b:18:d3:e8:02:e6:21:
54:f6:11:07:c8:ac:e6:87:a8:3f:70:05:3a:02:21:bf:47:ac:
47:68:00:ff:d3:a0:7b:5b:1b:35:99:63:e9:de:e1:ef:7c:48:
bc:2c:34:94:76:1b:14:92:13:ce:ca:ec:4a:5a:7b:0c:eb:92:
31:cd:24:ce
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIDAoIeMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGY5
OWY2NWUxYmU0MmE2NWI0OTRjZjI2NDJhNGRkOGUzMjhkMGY5Y2UwHhcNMjIwNDA3
MjIyOTM0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg1NWMwM2YwNGMzMWQz
MTcxYTVlOGI4ZjM2NDc4ZGEyNDNiODBmZTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAy/BVWVZB/W1X5xVqxqkJ39EZTdXqYQHAndGlrWQsVfBlBxvG
SBTXrmOBAbgcwk7hhCp7HFaxBbMzyR0EdA1FQAAF+zNBV4qxpqg6v/oe4zVdU9pO
bzLpdLowqH62Sp/xnMl6euqdi9/mC7AR7P1AQfDBIPSwMOh5RnnUrBlrJHkF/nZJ
UrqAJv43TdFrLufB66Rt3RV9qXzyJqpG2AV5vbuaHKPbD1WbSWcMMHVcnatFdzXf
VPhW/iQSLamFuYZZya8Kpr2zclmrDYU+y5R5X+fQ1aORR76uZKX0QesCROY8O9XF
2IQIjsSeHdQq+wEwEvpwJ9jbqiNTo7E++rl4xwIDAQABo4ICDDCCAggwHQYDVR0O
BBYEFFXAPwTDHTFxpei482R42iQ7gP5JMB8GA1UdIwQYMBaAFPmfZeG+QqZbSUzy
ZCpN2OMo0PnOMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEFBQcBAQRZMFcwVQYIKwYB
BQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
MS1aOWw0YjVDcGx0SlRQSmtLazNZNHlqUS1jNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjYvNmRmOGJhLWQ0Y2ItNDcwNS1iZjU1LTU0ZDE2MjI5OGZmZC8x
L1ZjQV9CTU1kTVhHbDZManpaSGphSkR1QV9ray5yb2EwgYIGA1UdHwR7MHkwd6B1
oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjYv
NmRmOGJhLWQ0Y2ItNDcwNS1iZjU1LTU0ZDE2MjI5OGZmZC8xLzEtWjlsNGI1Q3Bs
dEpUUEprS2szWTR5alEtYzQuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
IAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQMqAZUgMA0GCSqGSIb3DQEBCwUA
A4IBAQBBIXTscxYZg4qPuZrVb/gR1vHGLRedv+tgN1NPvXWGdDmMvllf/rfJmw7a
RKL71zDWYsXyi18eLQQxinNad+SZXIeIAMPopQ8fxVUhxEl6GuME+3d2tOO/fj12
6qVnRqT51c6nXz/M5VBrZbMikevCK8LO7oxk830+ym1Y0eMzmvVANL9ahjzl0O3J
9VXaDIDl3Eq87CK3/4H4ALhdmDTZ3z/hFusCiZly21e4TPNgbvWJxhSmR+PormuT
QVMeCCsY0+gC5iFU9hEHyKzmh6g/cAU6AiG/R6xHaAD/06B7Wxs1mWPp3uHvfEi8
LDSUdhsUkhPOyuxKWnsM65IxzSTO
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-ams.rpki-client.org