Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/df6e25-923c-4838-864f-d4b37e44ab7c/1/67AKiSw7zGK---KL_gENRe5C3nI.roa
File: 67AKiSw7zGK---KL_gENRe5C3nI.roa (raw, json)
Hash identifier: eDa/vg02JeAy1r/RQnP/naT07b+iPqRjYHZuKYTcj6I=
Subject key identifier: EB:B0:0A:89:2C:3B:CC:62:BE:FB:E2:8B:FE:01:0D:45:EE:42:DE:72
Certificate issuer: /CN=4c39055a6990b82408cf1abf29313780e249a4c9
Certificate serial: 026A24D0
Authority key identifier: 4C:39:05:5A:69:90:B8:24:08:CF:1A:BF:29:31:37:80:E2:49:A4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDkFWmmQuCQIzxq_KTE3gOJJpMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/df6e25-923c-4838-864f-d4b37e44ab7c/1/67AKiSw7zGK---KL_gENRe5C3nI.roa
Signing time: Sat 01 Jan 2022 16:10:47 +0000
ROA not before: Sat 01 Jan 2022 16:10:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26911
IP address blocks: 2a0e:c1c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40510672 (0x26a24d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c39055a6990b82408cf1abf29313780e249a4c9
Validity
Not Before: Jan 1 16:10:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ebb00a892c3bcc62befbe28bfe010d45ee42de72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9e:ca:a6:cc:05:6e:ba:d7:b2:b4:01:bd:80:
c0:26:08:94:02:89:3f:27:48:8d:57:75:8b:9c:75:
9e:8d:26:c3:3a:72:4b:ed:6a:b8:5e:f6:52:60:2b:
aa:a0:43:24:99:73:e0:35:c8:b2:6a:07:57:24:55:
26:fb:86:7e:a3:1a:83:e0:28:53:f4:91:26:28:52:
2c:c9:d8:d5:3f:e0:df:44:40:5b:5b:e6:1b:0f:02:
30:3d:41:2b:c2:a0:13:ee:de:04:9c:a1:b8:2f:9f:
66:74:22:00:3d:47:3a:6c:17:f6:37:5e:59:ff:02:
75:4e:83:98:c5:3a:e5:ce:39:ea:71:4f:36:d0:0d:
4b:70:57:f8:6d:a0:a5:78:cc:13:80:fb:e8:40:34:
6f:72:58:ee:63:40:42:ae:e7:59:a3:8d:01:bc:ac:
f0:a5:8c:ba:32:aa:c4:a2:e4:be:81:35:db:51:f2:
c8:62:58:73:63:20:a0:ad:92:ee:65:d8:18:73:f6:
46:54:3d:1a:e3:99:25:84:fa:f2:9f:7c:d3:86:89:
bf:7e:6a:ea:b6:51:e3:fa:84:7e:a5:b8:71:e0:b3:
53:6b:22:bc:b4:93:96:cb:71:89:18:51:88:f9:71:
e8:6e:68:ea:4b:25:65:55:db:d9:ed:27:69:3c:45:
22:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:B0:0A:89:2C:3B:CC:62:BE:FB:E2:8B:FE:01:0D:45:EE:42:DE:72
X509v3 Authority Key Identifier:
keyid:4C:39:05:5A:69:90:B8:24:08:CF:1A:BF:29:31:37:80:E2:49:A4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDkFWmmQuCQIzxq_KTE3gOJJpMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/df6e25-923c-4838-864f-d4b37e44ab7c/1/67AKiSw7zGK---KL_gENRe5C3nI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/df6e25-923c-4838-864f-d4b37e44ab7c/1/TDkFWmmQuCQIzxq_KTE3gOJJpMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:c1c0::/29
Signature Algorithm: sha256WithRSAEncryption
08:c4:03:ac:50:91:1f:7c:a8:7e:6e:d6:ed:2f:14:86:da:44:
0d:68:05:98:bb:aa:61:2a:c0:1b:51:39:66:81:f9:fc:5e:37:
35:e8:53:74:48:a4:36:c5:5c:20:d7:33:b4:6e:6e:a2:09:55:
26:ac:49:5d:fb:cb:36:db:84:5e:ff:57:f5:b7:30:0c:4c:d7:
5e:84:0d:06:a0:c4:5d:f5:93:69:4d:9d:14:88:15:4a:5e:db:
a2:f2:40:38:d5:5d:a2:dc:b6:cf:11:3a:5c:8b:65:f6:d1:3f:
ce:f4:be:ac:8f:01:c8:d6:17:07:d5:26:2f:1a:6f:7f:9b:b2:
c9:a3:87:65:3e:97:54:fa:ca:ab:be:56:1c:1b:88:b0:9b:05:
c2:d9:89:29:1a:1a:be:ec:45:4f:0d:4e:49:95:75:19:12:93:
61:19:8a:ba:ec:4e:a4:1f:83:cf:38:9d:e7:b6:00:0a:c5:f5:
34:23:db:be:3a:06:c1:7d:03:ea:2d:c8:0b:93:6e:b4:32:5d:
8d:14:34:0f:23:0d:84:c2:6e:ab:83:1a:49:0b:e0:3e:52:a4:
fa:a7:b0:fa:59:fc:ce:b3:7b:c7:fd:59:2f:73:09:82:02:d8:
61:ec:6a:2d:e9:4c:2f:1d:c6:62:29:27:6e:61:40:2b:09:91:
6c:2d:4a:f2
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEAmok0DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YzM5MDU1YTY5OTBiODI0MDhjZjFhYmYyOTMxMzc4MGUyNDlhNGM5MB4XDTIyMDEw
MTE2MTA0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWJiMDBhODkyYzNi
Y2M2MmJlZmJlMjhiZmUwMTBkNDVlZTQyZGU3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJyeyqbMBW6617K0Ab2AwCYIlAKJPydIjVd1i5x1no0mwzpy
S+1quF72UmArqqBDJJlz4DXIsmoHVyRVJvuGfqMag+AoU/SRJihSLMnY1T/g30RA
W1vmGw8CMD1BK8KgE+7eBJyhuC+fZnQiAD1HOmwX9jdeWf8CdU6DmMU65c456nFP
NtANS3BX+G2gpXjME4D76EA0b3JY7mNAQq7nWaONAbys8KWMujKqxKLkvoE121Hy
yGJYc2MgoK2S7mXYGHP2RlQ9GuOZJYT68p9804aJv35q6rZR4/qEfqW4ceCzU2si
vLSTlstxiRhRiPlx6G5o6kslZVXb2e0naTxFIisCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBTrsAqJLDvMYr774ov+AQ1F7kLecjAfBgNVHSMEGDAWgBRMOQVaaZC4JAjP
Gr8pMTeA4kmkyTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1REa0ZXbW1RdUNRSXp4cV9LVEUzZ09KSnBNay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDcvZGY2ZTI1LTkyM2MtNDgzOC04NjRmLWQ0YjM3ZTQ0YWI3Yy8x
LzY3QUtpU3c3ekdLLS0tS0xfZ0VOUmU1QzNuSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDcv
ZGY2ZTI1LTkyM2MtNDgzOC04NjRmLWQ0YjM3ZTQ0YWI3Yy8xL1REa0ZXbW1RdUNR
SXp4cV9LVEUzZ09KSnBNay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoOwcAwDQYJKoZIhvcNAQELBQAD
ggEBAAjEA6xQkR98qH5u1u0vFIbaRA1oBZi7qmEqwBtROWaB+fxeNzXoU3RIpDbF
XCDXM7RubqIJVSasSV37yzbbhF7/V/W3MAxM116EDQagxF31k2lNnRSIFUpe26Ly
QDjVXaLcts8ROlyLZfbRP870vqyPAcjWFwfVJi8ab3+bssmjh2U+l1T6yqu+Vhwb
iLCbBcLZiSkaGr7sRU8NTkmVdRkSk2EZirrsTqQfg884nee2AArF9TQj2746BsF9
A+otyAuTbrQyXY0UNA8jDYTCbquDGkkL4D5SpPqnsPpZ/M6ze8f9WS9zCYIC2GHs
ai3pTC8dxmIpJ25hQCsJkWwtSvI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:42 2024 by rpki-client on console-fra.rpki-client.org