Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/Z_CLpD5qufF89saOlxDw__QEksU.roa
File: Z_CLpD5qufF89saOlxDw__QEksU.roa (raw, json)
Hash identifier: FFJ0Il71LB2Yh7W93Qyh+y4ctIPzq5oqz2Ijw0Z2o8s=
Subject key identifier: 67:F0:8B:A4:3E:6A:B9:F1:7C:F6:C6:8E:97:10:F0:FF:F4:04:92:C5
Certificate issuer: /CN=97242dba26ed882b380dabebab3c5f3942006ecc
Certificate serial: 0EBC8C66
Authority key identifier: 97:24:2D:BA:26:ED:88:2B:38:0D:AB:EB:AB:3C:5F:39:42:00:6E:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lyQtuibtiCs4DavrqzxfOUIAbsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/Z_CLpD5qufF89saOlxDw__QEksU.roa
Signing time: Sat 01 Jan 2022 11:56:27 +0000
ROA not before: Sat 01 Jan 2022 11:56:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49283
IP address blocks: 2a00:17b8::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 247237734 (0xebc8c66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97242dba26ed882b380dabebab3c5f3942006ecc
Validity
Not Before: Jan 1 11:56:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67f08ba43e6ab9f17cf6c68e9710f0fff40492c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:90:d1:60:bf:fa:63:a7:c6:9d:d7:7a:63:cd:
20:19:55:6a:93:4a:82:ab:fb:60:70:69:60:c6:49:
50:20:03:e2:36:7f:17:20:39:84:f6:00:b2:fc:d0:
95:c2:20:70:ad:09:57:ca:85:32:5f:e5:49:f2:a1:
c4:c9:aa:25:b4:9a:bf:28:ec:0b:b0:b6:b7:c5:06:
75:b8:06:fc:bf:3a:5e:c6:d2:47:35:cf:44:62:d6:
2c:79:42:e3:d9:76:68:f6:e3:97:cf:70:56:5d:5a:
27:ba:b4:6a:b3:25:d9:d5:40:ac:e6:db:c8:a9:ba:
cc:4e:62:d9:61:d9:a8:36:8e:9c:67:1f:c6:8c:3d:
fb:70:42:db:38:dd:c0:3a:35:81:3e:8a:18:c9:9b:
af:be:14:ab:cf:85:ac:55:cd:b4:ff:d3:55:3b:73:
e8:73:b2:71:17:da:28:79:d2:db:7c:b3:21:25:41:
a0:fe:35:f9:c8:44:ff:66:b4:9e:03:10:ad:14:ab:
7e:d8:bc:75:3e:40:03:18:67:d9:68:d4:3e:e1:ba:
f9:30:d5:21:62:89:91:06:d8:f3:39:b1:50:82:a9:
ad:26:ea:a3:84:18:7c:b2:f5:52:fe:e1:86:db:28:
78:52:06:a3:b6:1d:db:f4:ad:a2:64:78:ba:0f:e8:
80:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:F0:8B:A4:3E:6A:B9:F1:7C:F6:C6:8E:97:10:F0:FF:F4:04:92:C5
X509v3 Authority Key Identifier:
keyid:97:24:2D:BA:26:ED:88:2B:38:0D:AB:EB:AB:3C:5F:39:42:00:6E:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lyQtuibtiCs4DavrqzxfOUIAbsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/Z_CLpD5qufF89saOlxDw__QEksU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/lyQtuibtiCs4DavrqzxfOUIAbsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:17b8::/29
Signature Algorithm: sha256WithRSAEncryption
74:ce:7c:ea:80:a3:a9:5c:92:38:19:55:45:9d:d4:38:67:8d:
db:79:81:53:94:f8:8d:62:ec:aa:66:09:17:d6:48:88:ee:70:
0a:6f:95:92:62:07:2c:82:2b:88:2d:1c:f5:d9:b4:79:50:2e:
59:77:e3:8e:72:27:b6:04:54:fc:93:00:08:bd:d2:72:b1:03:
de:21:7c:fb:53:39:45:8d:f7:ac:6f:e6:9c:41:ab:3c:99:07:
98:4f:55:ed:c7:19:53:44:91:0b:da:7f:72:e6:75:dc:a0:da:
3e:0b:5e:6e:29:19:b5:96:16:6c:42:17:3c:17:fd:1e:d1:cd:
a6:82:f6:e0:6f:0f:77:88:4c:24:98:36:0d:7c:29:b6:16:4a:
e6:e3:f6:0b:fc:d4:c8:04:25:d5:ca:a2:df:62:ab:69:6d:0d:
64:29:d2:f2:de:21:da:e4:5b:90:05:0a:0a:c2:56:6c:f9:aa:
70:64:1c:11:fd:19:b7:b9:ba:da:98:01:a3:64:df:06:f3:6b:
bd:3d:af:fd:d4:e0:bd:ec:ef:19:b1:1b:c9:97:0b:f7:c4:ab:
f2:ef:98:1c:ff:cc:8c:b9:73:f7:3f:43:55:a0:9d:ba:3e:26:
76:9d:ee:a9:99:f9:93:f7:20:b6:28:13:d6:c5:9e:77:38:8f:
89:e3:ca:60
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEDryMZjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NzI0MmRiYTI2ZWQ4ODJiMzgwZGFiZWJhYjNjNWYzOTQyMDA2ZWNjMB4XDTIyMDEw
MTExNTYyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjdmMDhiYTQzZTZh
YjlmMTdjZjZjNjhlOTcxMGYwZmZmNDA0OTJjNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKyQ0WC/+mOnxp3XemPNIBlVapNKgqv7YHBpYMZJUCAD4jZ/
FyA5hPYAsvzQlcIgcK0JV8qFMl/lSfKhxMmqJbSavyjsC7C2t8UGdbgG/L86XsbS
RzXPRGLWLHlC49l2aPbjl89wVl1aJ7q0arMl2dVArObbyKm6zE5i2WHZqDaOnGcf
xow9+3BC2zjdwDo1gT6KGMmbr74Uq8+FrFXNtP/TVTtz6HOycRfaKHnS23yzISVB
oP41+chE/2a0ngMQrRSrfti8dT5AAxhn2WjUPuG6+TDVIWKJkQbY8zmxUIKprSbq
o4QYfLL1Uv7hhtsoeFIGo7Yd2/StomR4ug/ogKcCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBRn8IukPmq58Xz2xo6XEPD/9ASSxTAfBgNVHSMEGDAWgBSXJC26Ju2IKzgN
q+urPF85QgBuzDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2x5UXR1aWJ0aUNzNERhdnJxenhmT1VJQWJzdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjcvNGNiNjg3LTg3ZmQtNGFmMC1hMzZiLTYwNzI3MmQ3MzdjYi8x
L1pfQ0xwRDVxdWZGODlzYU9seER3X19RRWtzVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjcv
NGNiNjg3LTg3ZmQtNGFmMC1hMzZiLTYwNzI3MmQ3MzdjYi8xL2x5UXR1aWJ0aUNz
NERhdnJxenhmT1VJQWJzdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoAF7gwDQYJKoZIhvcNAQELBQAD
ggEBAHTOfOqAo6lckjgZVUWd1Dhnjdt5gVOU+I1i7KpmCRfWSIjucApvlZJiByyC
K4gtHPXZtHlQLll3445yJ7YEVPyTAAi90nKxA94hfPtTOUWN96xv5pxBqzyZB5hP
Ve3HGVNEkQvaf3Lmddyg2j4LXm4pGbWWFmxCFzwX/R7RzaaC9uBvD3eITCSYNg18
KbYWSubj9gv81MgEJdXKot9iq2ltDWQp0vLeIdrkW5AFCgrCVmz5qnBkHBH9Gbe5
utqYAaNk3wbza709r/3U4L3s7xmxG8mXC/fEq/LvmBz/zIy5c/c/Q1Wgnbo+Jnad
7qmZ+ZP3ILYoE9bFnnc4j4njymA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:10 2024 by rpki-client on console-ams.rpki-client.org