Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/TZ2yEznV381BEMbB06QjvMAbXiY.roa
File: TZ2yEznV381BEMbB06QjvMAbXiY.roa (raw, json)
Hash identifier: NgJZ8njIP9PoZPYzyAuOFIhdHJnlaYBnnkmzfvkeak0=
Subject key identifier: 4D:9D:B2:13:39:D5:DF:CD:41:10:C6:C1:D3:A4:23:BC:C0:1B:5E:26
Certificate issuer: /CN=a7ddfaf13b7dbe05daa32b5878b8b68024045971
Certificate serial: 01386F
Authority key identifier: A7:DD:FA:F1:3B:7D:BE:05:DA:A3:2B:58:78:B8:B6:80:24:04:59:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9368Tt9vgXaoytYeLi2gCQEWXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/TZ2yEznV381BEMbB06QjvMAbXiY.roa
Signing time: Wed 02 Mar 2022 18:24:55 +0000
ROA not before: Wed 02 Mar 2022 18:24:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35684
IP address blocks: 2001:67c:74::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79983 (0x1386f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7ddfaf13b7dbe05daa32b5878b8b68024045971
Validity
Not Before: Mar 2 18:24:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d9db21339d5dfcd4110c6c1d3a423bcc01b5e26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7e:30:11:40:0a:2b:d9:eb:d5:8b:09:7f:19:
a5:2a:16:e7:74:1c:10:5c:87:ec:1a:fe:95:6b:26:
08:84:12:77:df:ee:7c:5c:36:96:d4:b4:c8:53:4e:
f1:8f:45:3a:44:ae:f6:88:79:e7:45:ca:5d:ae:23:
e2:42:c2:23:40:5c:a5:02:9e:a6:89:96:9a:91:66:
d0:16:cf:73:a8:d0:24:fa:09:9f:c4:25:c9:83:15:
33:2f:de:fc:e8:ae:d5:8e:b0:96:7d:7d:f1:11:6d:
0d:00:88:87:33:2f:ac:59:0a:c4:72:74:e9:33:87:
37:23:c5:19:be:d3:85:4d:19:b1:69:15:a5:91:fb:
78:76:f8:4a:38:70:ac:77:42:01:93:84:4b:5f:a0:
3a:65:fb:86:83:cc:fc:9b:da:20:2d:51:af:38:c7:
55:ca:a9:07:eb:a9:2e:08:d6:1e:da:97:21:df:3b:
14:df:06:35:0d:cd:e6:2b:da:20:4a:c6:fb:07:de:
5b:11:5c:9d:16:f9:e4:8d:65:66:8e:07:c1:36:5a:
78:67:fc:85:8e:86:43:6f:bf:30:d2:3f:fd:ea:ce:
5d:d7:a8:97:0e:b9:9a:d8:c5:0f:60:95:05:86:c0:
7f:ea:b3:e1:8c:f1:9c:9a:6c:d5:bc:95:77:ca:5b:
5f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:9D:B2:13:39:D5:DF:CD:41:10:C6:C1:D3:A4:23:BC:C0:1B:5E:26
X509v3 Authority Key Identifier:
keyid:A7:DD:FA:F1:3B:7D:BE:05:DA:A3:2B:58:78:B8:B6:80:24:04:59:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9368Tt9vgXaoytYeLi2gCQEWXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/TZ2yEznV381BEMbB06QjvMAbXiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/p9368Tt9vgXaoytYeLi2gCQEWXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:74::/48
Signature Algorithm: sha256WithRSAEncryption
25:57:a2:7e:23:03:85:65:4a:58:63:b5:1e:f0:25:79:f8:b1:
df:99:3a:10:25:53:00:73:3a:ae:b5:3c:99:d1:9e:93:85:57:
8e:f6:20:a7:fd:24:66:a2:9d:f5:f9:87:98:ff:94:bc:e4:e1:
ab:e9:d1:55:15:95:63:f6:45:b2:06:81:aa:59:00:ba:99:e7:
b5:ac:ee:0b:92:5e:26:48:be:ca:c7:0c:c2:ec:dc:ff:f8:69:
4c:9c:74:c7:e2:b1:a3:de:06:96:c6:c5:a8:42:2f:b9:23:77:
9f:2d:e0:b5:1a:e5:22:50:75:0d:c5:05:b0:67:5b:bc:24:6f:
0e:e0:25:1f:59:78:92:1a:17:be:46:49:3f:4d:c2:0d:e7:08:
90:ec:f6:08:9c:7c:78:92:41:a0:91:61:10:ff:d1:99:8e:ce:
7f:77:2b:0d:a1:a2:35:36:3f:01:25:59:c7:02:c1:6a:10:31:
49:2a:a7:05:fd:97:12:6c:00:c8:30:15:24:06:ba:42:36:19:
da:22:e4:9e:cd:3f:1b:3a:00:6e:b9:75:90:c5:be:80:79:a6:
67:1a:62:fa:5d:3d:61:45:02:32:d5:34:72:37:e2:3c:ed:0d:
bf:2c:c9:31:d9:9e:a0:83:a8:67:2f:ba:d2:7b:93:47:bf:df:
3d:88:a4:dc
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIDAThvMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGE3
ZGRmYWYxM2I3ZGJlMDVkYWEzMmI1ODc4YjhiNjgwMjQwNDU5NzEwHhcNMjIwMzAy
MTgyNDU1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0ZDlkYjIxMzM5ZDVk
ZmNkNDExMGM2YzFkM2E0MjNiY2MwMWI1ZTI2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAsH4wEUAKK9nr1YsJfxmlKhbndBwQXIfsGv6VayYIhBJ33+58
XDaW1LTIU07xj0U6RK72iHnnRcpdriPiQsIjQFylAp6miZaakWbQFs9zqNAk+gmf
xCXJgxUzL9786K7VjrCWfX3xEW0NAIiHMy+sWQrEcnTpM4c3I8UZvtOFTRmxaRWl
kft4dvhKOHCsd0IBk4RLX6A6ZfuGg8z8m9ogLVGvOMdVyqkH66kuCNYe2pch3zsU
3wY1Dc3mK9ogSsb7B95bEVydFvnkjWVmjgfBNlp4Z/yFjoZDb78w0j/96s5d16iX
Drma2MUPYJUFhsB/6rPhjPGcmmzVvJV3yltfYQIDAQABo4ICDDCCAggwHQYDVR0O
BBYEFE2dshM51d/NQRDGwdOkI7zAG14mMB8GA1UdIwQYMBaAFKfd+vE7fb4F2qMr
WHi4toAkBFlxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
cDkzNjhUdDl2Z1hhb3l0WWVMaTJnQ1FFV1hFLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84Yi9mMmIwODMtYjNiOS00YWE2LWExNDktZmJiNTUzYjg0NjQxLzEv
VFoyeUV6blYzODFCRU1iQjA2UWp2TUFiWGlZLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9m
MmIwODMtYjNiOS00YWE2LWExNDktZmJiNTUzYjg0NjQxLzEvcDkzNjhUdDl2Z1hh
b3l0WWVMaTJnQ1FFV1hFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIG
CCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAB0MA0GCSqGSIb3DQEBCwUA
A4IBAQAlV6J+IwOFZUpYY7Ue8CV5+LHfmToQJVMAczqutTyZ0Z6ThVeO9iCn/SRm
op31+YeY/5S85OGr6dFVFZVj9kWyBoGqWQC6mee1rO4Lkl4mSL7KxwzC7Nz/+GlM
nHTH4rGj3gaWxsWoQi+5I3efLeC1GuUiUHUNxQWwZ1u8JG8O4CUfWXiSGhe+Rkk/
TcIN5wiQ7PYInHx4kkGgkWEQ/9GZjs5/dysNoaI1Nj8BJVnHAsFqEDFJKqcF/ZcS
bADIMBUkBrpCNhnaIuSezT8bOgBuuXWQxb6AeaZnGmL6XT1hRQIy1TRyN+I87Q2/
LMkx2Z6gg6hnL7rSe5NHv989iKTc
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:45 2023 by rpki-client on console.sobornost.net