Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Q08hP_swdx8if2nItQa66AhMmBQ.roa
File: Q08hP_swdx8if2nItQa66AhMmBQ.roa (raw, json)
Hash identifier: XCT36GnnLOiwI+B75x9R6Bw6Oy7WCExIfn/RXnbO1PE=
Subject key identifier: 43:4F:21:3F:FB:30:77:1F:22:7F:69:C8:B5:06:BA:E8:08:4C:98:14
Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Certificate serial: 393A8DE0
Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Q08hP_swdx8if2nItQa66AhMmBQ.roa
Signing time: Sat 01 Jan 2022 03:52:55 +0000
ROA not before: Sat 01 Jan 2022 03:52:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8248
IP address blocks: 2001:648:3400::/40 maxlen: 40
2001:648:2300::/47 maxlen: 47
2001:648:2302::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 960138720 (0x393a8de0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Validity
Not Before: Jan 1 03:52:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=434f213ffb30771f227f69c8b506bae8084c9814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:1b:49:95:fe:0d:43:d9:d9:64:50:68:a4:61:
d1:0c:6c:a2:8d:c3:a2:b7:19:38:98:ea:1f:e6:96:
c5:37:36:16:6c:27:f3:2b:17:3f:a7:4a:63:f8:19:
64:4f:b0:8b:4e:26:56:b5:99:18:13:67:02:1e:32:
4b:0f:d2:07:c4:9e:a9:35:c0:50:5c:7a:b6:f3:66:
3a:27:28:fd:68:66:2d:81:e7:5e:d5:73:8f:e0:b8:
b7:97:e4:d6:3b:73:08:e5:fe:36:1c:5a:3a:29:6a:
a5:0a:aa:3c:8c:cc:b2:bf:6d:97:8c:82:8e:49:39:
29:8b:19:9c:c7:a9:a7:38:6f:11:21:a8:36:4d:f5:
e8:90:66:32:df:aa:f6:79:e5:ba:a8:d2:cc:c4:86:
a0:ba:fb:6d:a1:4c:9b:6e:f2:ba:0f:f0:c0:36:b0:
6b:64:5e:f2:97:04:df:83:20:49:08:84:77:28:75:
cc:42:04:9a:b3:db:f3:2c:73:5d:00:d8:29:7e:bf:
52:2e:54:d6:ee:65:e8:e5:78:d4:f5:c0:74:24:f7:
da:f4:8c:4a:44:f5:f6:c3:01:cf:8e:e0:24:8e:55:
cb:89:5a:7c:af:e1:e6:38:cf:b4:d0:43:e6:c0:35:
0f:d5:28:6c:32:07:70:4f:6c:09:49:bc:c6:19:0f:
04:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4F:21:3F:FB:30:77:1F:22:7F:69:C8:B5:06:BA:E8:08:4C:98:14
X509v3 Authority Key Identifier:
keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Q08hP_swdx8if2nItQa66AhMmBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:648:2300::-2001:648:2302:ffff:ffff:ffff:ffff:ffff
2001:648:3400::/40
Signature Algorithm: sha256WithRSAEncryption
95:22:b2:14:65:0b:30:8b:cc:64:76:b7:d5:d2:4a:01:0c:89:
f2:cf:fd:05:08:6c:e6:a1:58:63:92:e9:72:a2:ad:b9:4d:b5:
cc:72:0a:da:39:b0:02:81:bf:9a:90:84:51:af:d2:f0:a0:31:
91:df:82:7e:33:09:dd:83:08:fe:bf:39:02:0c:50:9e:48:fc:
d2:20:f7:ac:77:7c:83:20:57:2f:9e:48:81:3b:55:bf:83:6a:
9f:23:d4:41:92:a7:46:65:4d:a1:ef:38:eb:ed:04:f6:70:80:
ba:5a:ca:6f:f0:c1:ea:04:7d:11:ce:cb:97:ec:be:85:ab:00:
c0:36:a7:45:45:3d:2b:78:cc:84:e6:bf:20:d7:f6:38:58:43:
5a:ac:0a:56:1c:33:15:27:af:16:34:fc:b0:2f:07:3e:09:ed:
a3:34:75:11:b6:ed:3c:75:ab:8c:a0:49:0e:9b:cb:38:a6:23:
46:06:23:ee:9f:af:88:a6:cf:f9:d5:e2:76:64:c4:0a:93:08:
6e:bf:7c:53:f3:63:ed:57:7c:7c:73:c6:41:79:19:a7:ae:0a:
2a:46:41:90:d5:a0:9d:9b:68:31:1f:14:4a:04:17:96:14:ed:
aa:7f:34:43:ac:c6:3f:76:2a:20:9d:14:11:6e:57:2f:37:27:
8c:2b:1f:59
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEOTqN4DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YTZmOTI5NTUyMWRmMzBhMTU4ZjUwNmJhN2NiODczYWI5NTI5ZGMzMB4XDTIyMDEw
MTAzNTI1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDM0ZjIxM2ZmYjMw
NzcxZjIyN2Y2OWM4YjUwNmJhZTgwODRjOTgxNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPkbSZX+DUPZ2WRQaKRh0Qxsoo3DorcZOJjqH+aWxTc2Fmwn
8ysXP6dKY/gZZE+wi04mVrWZGBNnAh4ySw/SB8SeqTXAUFx6tvNmOico/WhmLYHn
XtVzj+C4t5fk1jtzCOX+NhxaOilqpQqqPIzMsr9tl4yCjkk5KYsZnMeppzhvESGo
Nk316JBmMt+q9nnluqjSzMSGoLr7baFMm27yug/wwDawa2Re8pcE34MgSQiEdyh1
zEIEmrPb8yxzXQDYKX6/Ui5U1u5l6OV41PXAdCT32vSMSkT19sMBz47gJI5Vy4la
fK/h5jjPtNBD5sA1D9UobDIHcE9sCUm8xhkPBJUCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBRDTyE/+zB3HyJ/aci1BrroCEyYFDAfBgNVHSMEGDAWgBRab5KVUh3zChWP
UGuny4c6uVKdwzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dtLVNsVklkOHdvVmoxQnJwOHVIT3JsU25jTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvYTlmOTNiLWJlMzEtNDVjZi1hYTdlLWFhYTQ1NTNkMmFiZC8x
L1EwOGhQX3N3ZHg4aWYybkl0UWE2NkFoTW1CUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
YTlmOTNiLWJlMzEtNDVjZi1hYTdlLWFhYTQ1NTNkMmFiZC8xL1dtLVNsVklkOHdv
VmoxQnJwOHVIT3JsU25jTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwIQQCAAIwGzARAwYAIAEGSCMDBwAgAQZIIwIDBgAg
AQZINDANBgkqhkiG9w0BAQsFAAOCAQEAlSKyFGULMIvMZHa31dJKAQyJ8s/9BQhs
5qFYY5LpcqKtuU21zHIK2jmwAoG/mpCEUa/S8KAxkd+CfjMJ3YMI/r85AgxQnkj8
0iD3rHd8gyBXL55IgTtVv4NqnyPUQZKnRmVNoe846+0E9nCAulrKb/DB6gR9Ec7L
l+y+hasAwDanRUU9K3jMhOa/INf2OFhDWqwKVhwzFSevFjT8sC8HPgntozR1Ebbt
PHWrjKBJDpvLOKYjRgYj7p+viKbP+dXidmTECpMIbr98U/Nj7Vd8fHPGQXkZp64K
KkZBkNWgnZtoMR8USgQXlhTtqn80Q6zGP3YqIJ0UEW5XLzcnjCsfWQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:49 2024 by rpki-client on console-ams.rpki-client.org