Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/dRFMv4X4yxgv1n1x5ysNjed5Feo.roa
File: dRFMv4X4yxgv1n1x5ysNjed5Feo.roa (raw, json)
Hash identifier: wdMt5HGL/d2IpYNFCEVhYz2qnt1jko3H4Q2wt+m4fLI=
Subject key identifier: 75:11:4C:BF:85:F8:CB:18:2F:D6:7D:71:E7:2B:0D:8D:E7:79:15:EA
Certificate issuer: /CN=cddb6f10030e276f8316276f40b3d4a4184d94dd
Certificate serial: F078
Authority key identifier: CD:DB:6F:10:03:0E:27:6F:83:16:27:6F:40:B3:D4:A4:18:4D:94:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zdtvEAMOJ2-DFidvQLPUpBhNlN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/dRFMv4X4yxgv1n1x5ysNjed5Feo.roa
Signing time: Mon 28 Feb 2022 09:45:34 +0000
ROA not before: Mon 28 Feb 2022 09:45:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64445
IP address blocks: 2a00:8c60:c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61560 (0xf078)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cddb6f10030e276f8316276f40b3d4a4184d94dd
Validity
Not Before: Feb 28 09:45:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75114cbf85f8cb182fd67d71e72b0d8de77915ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8e:b9:cd:98:5b:c5:2e:eb:8c:1b:a4:22:b9:
7a:67:76:4f:ff:13:20:10:7d:8a:16:55:35:17:25:
56:33:80:5f:da:1f:d9:42:09:d4:bc:e2:3c:7c:63:
21:b9:a2:71:66:22:e8:bb:23:a0:e1:62:b3:1e:41:
d5:58:cb:ac:03:34:e5:4d:4d:8d:ac:04:ee:d2:c9:
33:de:67:c6:cd:0e:1a:04:33:5d:52:59:84:3b:a1:
c5:5f:31:a7:62:aa:c6:c5:97:41:a6:7c:40:28:27:
89:72:2a:cb:bf:12:f1:ae:16:99:19:e4:d6:f2:96:
7b:2e:4b:91:df:d8:78:b3:af:dd:d8:fd:2a:dd:5b:
9c:c5:54:33:3a:55:16:bf:06:13:bb:26:4c:47:81:
bc:9d:72:f3:2b:97:3d:a5:94:13:b6:ce:b0:3a:f5:
fe:44:9d:9c:34:29:59:02:3d:14:52:7f:3b:d8:af:
43:c6:b2:54:f4:0c:07:ce:a3:ef:24:08:c8:1c:25:
cb:9a:d1:aa:76:cb:a0:dc:48:a9:3f:e4:19:8a:3d:
8e:ca:19:50:2e:21:6b:f2:d5:10:13:64:e1:a5:a7:
ae:f9:a3:9b:3b:f9:2a:b3:d3:6b:30:5c:77:2c:9e:
80:af:84:a3:58:2b:aa:c6:ac:ae:e9:1f:e9:4a:e9:
1d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:11:4C:BF:85:F8:CB:18:2F:D6:7D:71:E7:2B:0D:8D:E7:79:15:EA
X509v3 Authority Key Identifier:
keyid:CD:DB:6F:10:03:0E:27:6F:83:16:27:6F:40:B3:D4:A4:18:4D:94:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdtvEAMOJ2-DFidvQLPUpBhNlN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/dRFMv4X4yxgv1n1x5ysNjed5Feo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/zdtvEAMOJ2-DFidvQLPUpBhNlN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:8c60:c::/48
Signature Algorithm: sha256WithRSAEncryption
82:0a:68:6d:d2:fe:26:13:e7:23:8b:f1:d9:c3:7d:67:9f:2e:
99:35:c7:06:ee:14:ac:f3:48:78:87:11:83:e6:fd:f6:2d:96:
00:bd:21:36:aa:91:ce:1b:de:8f:94:96:6d:17:c1:41:a0:27:
42:c0:d8:2c:b9:ad:9f:f9:5a:a1:67:72:79:bd:1c:69:5e:17:
4b:e4:fe:85:a7:09:ba:60:4d:45:c6:24:e7:9c:f9:19:8c:89:
f8:aa:f8:10:25:47:13:50:4d:e0:d3:df:3a:72:b2:f8:7a:20:
9a:4f:01:e2:8c:bb:e8:91:12:c1:42:04:8c:24:21:35:95:a4:
72:61:78:2d:87:f0:37:18:fe:e3:82:7d:8b:49:c3:4f:04:09:
e0:f3:09:d5:d8:1b:c1:aa:95:ba:10:c2:ba:42:9a:2a:73:11:
51:6e:98:99:dd:aa:0f:dd:9b:33:86:46:98:db:6f:3c:52:7b:
d8:53:ff:0c:1e:46:98:b5:68:1f:6d:56:73:42:67:34:bf:6d:
b9:40:cf:d9:17:82:c2:82:26:5a:d4:f8:cf:1d:0d:5b:c3:b2:
37:2c:42:cf:ed:1c:a9:28:f0:6f:c0:bf:f1:f6:98:62:5b:d9:
2c:e1:28:1d:4e:ca:c6:e0:c8:f0:46:c7:85:fd:53:38:8a:ec:
79:23:11:6b
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIDAPB4MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGNk
ZGI2ZjEwMDMwZTI3NmY4MzE2Mjc2ZjQwYjNkNGE0MTg0ZDk0ZGQwHhcNMjIwMjI4
MDk0NTM0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg3NTExNGNiZjg1Zjhj
YjE4MmZkNjdkNzFlNzJiMGQ4ZGU3NzkxNWVhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAlI65zZhbxS7rjBukIrl6Z3ZP/xMgEH2KFlU1FyVWM4Bf2h/Z
QgnUvOI8fGMhuaJxZiLouyOg4WKzHkHVWMusAzTlTU2NrATu0skz3mfGzQ4aBDNd
UlmEO6HFXzGnYqrGxZdBpnxAKCeJcirLvxLxrhaZGeTW8pZ7LkuR39h4s6/d2P0q
3VucxVQzOlUWvwYTuyZMR4G8nXLzK5c9pZQTts6wOvX+RJ2cNClZAj0UUn872K9D
xrJU9AwHzqPvJAjIHCXLmtGqdsug3EipP+QZij2OyhlQLiFr8tUQE2Thpaeu+aOb
O/kqs9NrMFx3LJ6Ar4SjWCuqxqyu6R/pSukd8wIDAQABo4ICDDCCAggwHQYDVR0O
BBYEFHURTL+F+MsYL9Z9cecrDY3neRXqMB8GA1UdIwQYMBaAFM3bbxADDidvgxYn
b0Cz1KQYTZTdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
emR0dkVBTU9KMi1ERmlkdlFMUFVwQmhObE4wLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mOC9iNWNiMTktYTI3YS00NGE3LWEzM2UtODBiMmQyNWJmOWM4LzEv
ZFJGTXY0WDR5eGd2MW4xeDV5c05qZWQ1RmVvLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9i
NWNiMTktYTI3YS00NGE3LWEzM2UtODBiMmQyNWJmOWM4LzEvemR0dkVBTU9KMi1E
RmlkdlFMUFVwQmhObE4wLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIG
CCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgCMYAAMMA0GCSqGSIb3DQEBCwUA
A4IBAQCCCmht0v4mE+cji/HZw31nny6ZNccG7hSs80h4hxGD5v32LZYAvSE2qpHO
G96PlJZtF8FBoCdCwNgsua2f+VqhZ3J5vRxpXhdL5P6Fpwm6YE1FxiTnnPkZjIn4
qvgQJUcTUE3g0986crL4eiCaTwHijLvokRLBQgSMJCE1laRyYXgth/A3GP7jgn2L
ScNPBAng8wnV2BvBqpW6EMK6QpoqcxFRbpiZ3aoP3ZszhkaY2288UnvYU/8MHkaY
tWgfbVZzQmc0v225QM/ZF4LCgiZa1PjPHQ1bw7I3LELP7RypKPBvwL/x9phiW9ks
4SgdTsrG4MjwRseF/VM4iux5IxFr
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:28 2024 by rpki-client on console-ams.rpki-client.org