Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/da1OgiNEHxzo30Qm4yo0VmB2kgw.roa
File: da1OgiNEHxzo30Qm4yo0VmB2kgw.roa (raw, json)
Hash identifier: Gj3jhA8S3/U5fg0jbuZePCl+R6bEvft3xOG4f9OuN1I=
Subject key identifier: 75:AD:4E:82:23:44:1F:1C:E8:DF:44:26:E3:2A:34:56:60:76:92:0C
Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Certificate serial: 07905D99
Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/da1OgiNEHxzo30Qm4yo0VmB2kgw.roa
Signing time: Sat 01 Jan 2022 05:52:22 +0000
ROA not before: Sat 01 Jan 2022 05:52:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212534
IP address blocks: 2a0f:607:1200::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126901657 (0x7905d99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Validity
Not Before: Jan 1 05:52:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75ad4e8223441f1ce8df4426e32a34566076920c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:e3:5e:46:eb:20:1f:ad:b2:2a:b8:f8:d0:dc:
9d:e8:b7:e1:bd:8c:c8:68:e6:be:06:dd:77:c0:85:
43:31:24:4e:33:3b:f7:9b:46:20:aa:a8:67:f9:1c:
b2:42:ed:46:f5:17:53:35:10:bf:25:f0:52:9f:24:
de:df:9c:e0:b9:c2:a8:87:67:f5:13:e3:21:03:0e:
a6:9e:17:8a:e9:b3:f2:58:56:31:d3:b0:16:ca:4b:
0a:e7:4a:f1:fd:79:6d:78:c6:9d:dc:bb:f0:11:da:
b7:ae:3b:19:a4:28:3c:0b:f1:4a:c3:08:cd:fb:64:
a0:09:16:48:f7:6e:5b:c7:14:d4:62:24:1e:0d:1b:
22:e8:8e:8d:10:b1:f2:f4:e7:7b:7b:ed:cb:10:29:
85:a8:f7:29:27:2c:fb:f7:fc:0e:2f:18:39:c7:95:
43:b7:5b:18:9f:84:07:ac:f5:e2:2f:99:88:ba:de:
8b:3a:72:6c:dc:88:92:9a:b3:a4:f1:3b:6c:b9:d2:
e6:57:4e:d3:61:8d:70:d8:c5:43:ad:57:70:cf:62:
c8:30:89:48:57:cd:f9:64:27:82:02:f0:5e:d2:ab:
e0:4a:4c:de:cf:6a:f2:97:47:87:15:4e:cb:7c:a9:
39:94:fe:8b:cc:92:da:b6:e5:f0:ec:d5:a3:ff:5a:
77:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AD:4E:82:23:44:1F:1C:E8:DF:44:26:E3:2A:34:56:60:76:92:0C
X509v3 Authority Key Identifier:
keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/da1OgiNEHxzo30Qm4yo0VmB2kgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:607:1200::/44
Signature Algorithm: sha256WithRSAEncryption
42:87:ac:5e:15:66:70:42:60:48:31:b7:ef:5b:bd:dc:4c:71:
55:b0:99:57:55:6e:ce:40:55:ba:78:18:d5:4f:3b:b9:b6:43:
73:c1:39:b5:9a:4d:0e:fc:03:27:05:f8:03:dd:2a:82:d3:04:
40:53:3a:7c:4a:aa:ba:dc:ad:cc:b8:dd:fb:8a:df:46:64:05:
48:08:77:54:a2:dd:b0:b2:ad:a8:08:7b:1e:5d:f8:1a:a0:66:
e0:78:12:df:16:34:90:fd:3f:e4:dc:84:c3:76:e1:8b:43:3d:
45:d4:e3:65:98:4e:a1:2d:b2:86:9c:28:77:88:c6:59:ff:9d:
6f:e7:fb:e1:0e:07:37:de:a5:f1:b5:ca:11:a5:11:20:ba:64:
75:77:2e:c4:0c:27:f4:09:1b:25:6e:a5:d3:c0:e2:63:3b:b8:
b3:e7:7f:f7:fe:d2:f0:8e:88:62:23:3f:61:3a:36:ee:4c:0e:
b9:40:33:2d:33:cc:f0:24:f3:36:b2:18:99:28:2c:e2:f3:52:
a3:0f:24:dd:79:d3:fb:2a:b9:f4:5d:30:a0:ea:73:1a:31:41:
22:2b:d8:52:e2:76:93:f7:b3:a9:7e:51:0d:9a:2e:cb:78:b0:
06:8a:ab:90:bd:b6:d5:d0:86:66:c9:b3:61:60:63:1e:c5:d6:
dd:94:15:5a
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEB5BdmTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YzIxYjkyNWI0YzRiY2MzMGY3N2M5YzQxYmE4ZDA0MGFjOTVkZmM2MB4XDTIyMDEw
MTA1NTIyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzVhZDRlODIyMzQ0
MWYxY2U4ZGY0NDI2ZTMyYTM0NTY2MDc2OTIwYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPHjXkbrIB+tsiq4+NDcnei34b2MyGjmvgbdd8CFQzEkTjM7
95tGIKqoZ/kcskLtRvUXUzUQvyXwUp8k3t+c4LnCqIdn9RPjIQMOpp4Xiumz8lhW
MdOwFspLCudK8f15bXjGndy78BHat647GaQoPAvxSsMIzftkoAkWSPduW8cU1GIk
Hg0bIuiOjRCx8vTne3vtyxAphaj3KScs+/f8Di8YOceVQ7dbGJ+EB6z14i+ZiLre
izpybNyIkpqzpPE7bLnS5ldO02GNcNjFQ61XcM9iyDCJSFfN+WQnggLwXtKr4EpM
3s9q8pdHhxVOy3ypOZT+i8yS2rbl8OzVo/9ad8MCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBR1rU6CI0QfHOjfRCbjKjRWYHaSDDAfBgNVHSMEGDAWgBQMIbkltMS8ww93
ycQbqNBArJXfxjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RDRzVKYlRFdk1NUGQ4bkVHNmpRUUt5VjM4WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDMvYzBiZDY3LWY3ZGQtNGNlMi1hYjdlLWEzNDc1NjQxNThmOC8x
L2RhMU9naU5FSHh6bzMwUW00eW8wVm1CMmtndy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDMv
YzBiZDY3LWY3ZGQtNGNlMi1hYjdlLWEzNDc1NjQxNThmOC8xL0RDRzVKYlRFdk1N
UGQ4bkVHNmpRUUt5VjM4WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoPBgcSADANBgkqhkiG9w0BAQsF
AAOCAQEAQoesXhVmcEJgSDG371u93ExxVbCZV1VuzkBVungY1U87ubZDc8E5tZpN
DvwDJwX4A90qgtMEQFM6fEqqutytzLjd+4rfRmQFSAh3VKLdsLKtqAh7Hl34GqBm
4HgS3xY0kP0/5NyEw3bhi0M9RdTjZZhOoS2yhpwod4jGWf+db+f74Q4HN96l8bXK
EaURILpkdXcuxAwn9AkbJW6l08DiYzu4s+d/9/7S8I6IYiM/YTo27kwOuUAzLTPM
8CTzNrIYmSgs4vNSow8k3XnT+yq59F0woOpzGjFBIivYUuJ2k/ezqX5RDZouy3iw
BoqrkL221dCGZsmzYWBjHsXW3ZQVWg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:22 2023 by rpki-client on console-ams.rpki-client.org