Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/6b87af-a212-480d-a4d4-a3df3b69ce5a/1/m4B6zM5zYuX9tQeKE6eXFwTCCII.roa
File: m4B6zM5zYuX9tQeKE6eXFwTCCII.roa (raw, json)
Hash identifier: izrlxUd3lVdrcHywjBzCnAeLPplnwJYUz+9LU0WM55I=
Subject key identifier: 9B:80:7A:CC:CE:73:62:E5:FD:B5:07:8A:13:A7:97:17:04:C2:08:82
Certificate issuer: /CN=dfb8ff2f3a0bfc41eadc18af9e52acd100524149
Certificate serial: 12707EA8
Authority key identifier: DF:B8:FF:2F:3A:0B:FC:41:EA:DC:18:AF:9E:52:AC:D1:00:52:41:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37j_LzoL_EHq3BivnlKs0QBSQUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/6b87af-a212-480d-a4d4-a3df3b69ce5a/1/m4B6zM5zYuX9tQeKE6eXFwTCCII.roa
Signing time: Sat 01 Jan 2022 10:00:29 +0000
ROA not before: Sat 01 Jan 2022 10:00:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a0a:2b00:20::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 309362344 (0x12707ea8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb8ff2f3a0bfc41eadc18af9e52acd100524149
Validity
Not Before: Jan 1 10:00:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b807accce7362e5fdb5078a13a7971704c20882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ca:07:79:e0:26:9e:36:b2:5f:7b:49:25:b8:
8b:2c:54:d5:01:7f:e1:6a:c5:4e:ce:43:e9:0b:d7:
27:9c:6f:4b:c0:a5:ea:72:d2:f1:cc:a1:96:1a:b0:
02:98:91:c8:03:b6:45:39:02:16:0f:17:4b:e1:0b:
2f:4c:33:18:c9:5e:21:51:e8:c5:08:23:97:f1:9c:
a1:fc:1b:8f:73:47:34:7d:18:ed:13:b2:dd:58:b5:
80:cd:8b:cd:ca:ac:af:60:c8:55:c4:c0:65:31:8e:
25:71:1d:28:39:ce:cd:f0:3f:ef:3d:ed:dc:0e:f7:
9b:1b:74:b7:89:87:db:a9:8b:f6:bc:a9:f7:c8:91:
37:d0:7c:ac:2e:a9:14:94:8c:30:66:c6:70:f5:f7:
b6:3b:26:77:32:65:ef:8a:27:a9:ad:e5:ff:a0:31:
e4:d4:17:3b:9b:07:2e:18:55:40:c6:aa:af:36:94:
55:4d:e9:0d:41:94:e7:08:d8:94:3f:0b:2d:1b:a1:
30:81:7c:86:f0:9a:8e:e1:7d:b0:97:b8:00:2f:d7:
8e:97:f4:e6:a0:5c:04:1f:16:98:9e:92:5e:95:e3:
a8:55:f7:0d:8d:5a:72:d0:b7:d4:a2:01:7a:06:d8:
02:63:79:8c:90:ab:bd:71:f6:87:17:c5:34:44:7d:
be:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:80:7A:CC:CE:73:62:E5:FD:B5:07:8A:13:A7:97:17:04:C2:08:82
X509v3 Authority Key Identifier:
keyid:DF:B8:FF:2F:3A:0B:FC:41:EA:DC:18:AF:9E:52:AC:D1:00:52:41:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37j_LzoL_EHq3BivnlKs0QBSQUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/6b87af-a212-480d-a4d4-a3df3b69ce5a/1/m4B6zM5zYuX9tQeKE6eXFwTCCII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/6b87af-a212-480d-a4d4-a3df3b69ce5a/1/37j_LzoL_EHq3BivnlKs0QBSQUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:2b00:20::/48
Signature Algorithm: sha256WithRSAEncryption
3f:aa:e3:34:ac:a5:8d:24:81:12:64:a8:d8:cd:58:a2:39:f3:
7a:a3:fd:ee:79:90:6a:45:63:b1:f0:0f:4f:b4:44:35:57:0a:
33:4c:3c:c7:2c:9f:82:a2:2f:30:c1:48:06:26:a3:2d:1b:34:
b8:54:16:54:7b:81:52:83:b4:0c:c3:a2:49:7f:b6:15:24:f1:
1a:d3:e8:3f:c8:38:af:06:fe:e1:47:4d:33:05:a3:a0:c3:b7:
fb:3d:50:61:06:86:3e:c0:c9:cf:61:98:74:69:a4:1f:08:bf:
df:62:eb:a0:db:eb:2b:3d:c2:25:d7:38:e6:b6:16:9e:fa:51:
1c:0d:88:44:62:bd:45:f6:ff:b3:ce:38:6b:a3:4f:a7:b5:bf:
2c:7b:0d:89:24:ba:4f:51:69:06:4c:5b:9a:b7:40:1f:94:07:
f9:73:04:87:e3:fc:5a:3f:e0:bb:e8:38:5d:b0:a8:b2:be:c9:
3d:28:59:2c:5e:ce:7d:2c:68:24:2b:20:4e:4a:99:7c:38:38:
ee:d0:c3:1a:b9:d2:f0:fc:19:a9:38:55:0c:71:db:3f:d2:4f:
e0:08:2c:4b:a9:f5:e9:51:e7:a5:a4:e2:de:25:5f:94:3a:52:
17:32:19:8e:5a:65:a3:9e:da:47:a7:7c:7b:01:cf:69:86:aa:
7a:d3:74:42
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEEnB+qDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ZmI4ZmYyZjNhMGJmYzQxZWFkYzE4YWY5ZTUyYWNkMTAwNTI0MTQ5MB4XDTIyMDEw
MTEwMDAyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWI4MDdhY2NjZTcz
NjJlNWZkYjUwNzhhMTNhNzk3MTcwNGMyMDg4MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK3KB3ngJp42sl97SSW4iyxU1QF/4WrFTs5D6QvXJ5xvS8Cl
6nLS8cyhlhqwApiRyAO2RTkCFg8XS+ELL0wzGMleIVHoxQgjl/Gcofwbj3NHNH0Y
7ROy3Vi1gM2Lzcqsr2DIVcTAZTGOJXEdKDnOzfA/7z3t3A73mxt0t4mH26mL9ryp
98iRN9B8rC6pFJSMMGbGcPX3tjsmdzJl74onqa3l/6Ax5NQXO5sHLhhVQMaqrzaU
VU3pDUGU5wjYlD8LLRuhMIF8hvCajuF9sJe4AC/Xjpf05qBcBB8WmJ6SXpXjqFX3
DY1actC31KIBegbYAmN5jJCrvXH2hxfFNER9vmMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSbgHrMznNi5f21B4oTp5cXBMIIgjAfBgNVHSMEGDAWgBTfuP8vOgv8Qerc
GK+eUqzRAFJBSTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzM3al9Mem9MX0VIcTNCaXZubEtzMFFCU1FVay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGQvNmI4N2FmLWEyMTItNDgwZC1hNGQ0LWEzZGYzYjY5Y2U1YS8x
L200QjZ6TTV6WXVYOXRRZUtFNmVYRndUQ0NJSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGQv
NmI4N2FmLWEyMTItNDgwZC1hNGQ0LWEzZGYzYjY5Y2U1YS8xLzM3al9Mem9MX0VI
cTNCaXZubEtzMFFCU1FVay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoKKwAAIDANBgkqhkiG9w0BAQsF
AAOCAQEAP6rjNKyljSSBEmSo2M1YojnzeqP97nmQakVjsfAPT7RENVcKM0w8xyyf
gqIvMMFIBiajLRs0uFQWVHuBUoO0DMOiSX+2FSTxGtPoP8g4rwb+4UdNMwWjoMO3
+z1QYQaGPsDJz2GYdGmkHwi/32LroNvrKz3CJdc45rYWnvpRHA2IRGK9Rfb/s844
a6NPp7W/LHsNiSS6T1FpBkxbmrdAH5QH+XMEh+P8Wj/gu+g4XbCosr7JPShZLF7O
fSxoJCsgTkqZfDg47tDDGrnS8PwZqThVDHHbP9JP4AgsS6n16VHnpaTi3iVflDpS
FzIZjlplo57aR6d8ewHPaYaqetN0Qg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:58 2024 by rpki-client on console-ams.rpki-client.org