Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/q0ceuEVEIS_9SvduNO5idPnR7X4.roa
File: q0ceuEVEIS_9SvduNO5idPnR7X4.roa (raw, json)
Hash identifier: 39niv2FG+YKPu6M7vU+WUB7NOoSNrY7u2FDDswWuVbY=
Subject key identifier: AB:47:1E:B8:45:44:21:2F:FD:4A:F7:6E:34:EE:62:74:F9:D1:ED:7E
Certificate issuer: /CN=91c2c2912e10581587052a5ca770910b26174f14
Certificate serial: 179C074F
Authority key identifier: 91:C2:C2:91:2E:10:58:15:87:05:2A:5C:A7:70:91:0B:26:17:4F:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcLCkS4QWBWHBSpcp3CRCyYXTxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/q0ceuEVEIS_9SvduNO5idPnR7X4.roa
Signing time: Sat 01 Jan 2022 15:07:31 +0000
ROA not before: Sat 01 Jan 2022 15:07:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44901
IP address blocks: 2a05:1700:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396101455 (0x179c074f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c2c2912e10581587052a5ca770910b26174f14
Validity
Not Before: Jan 1 15:07:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab471eb84544212ffd4af76e34ee6274f9d1ed7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:01:38:7d:3a:ce:5a:a4:25:3c:6f:42:ed:c8:
f5:32:d2:99:16:19:26:80:3c:e6:5c:03:d6:dd:3a:
21:75:a2:44:10:95:23:62:11:51:21:12:cf:06:17:
18:cd:71:02:4f:2f:31:6e:20:63:6d:31:e7:d9:53:
f7:34:6a:9b:5f:11:c7:3a:31:ac:dc:03:e1:f9:8d:
2c:20:1b:05:ae:10:9d:fe:39:c2:99:a2:b6:ce:1e:
27:14:9d:3e:02:6a:bf:96:ae:02:e1:6c:db:5a:a5:
e2:0c:a0:74:bd:ba:08:01:8c:ee:eb:e1:72:36:7d:
80:50:2d:fd:3b:36:88:10:24:be:a3:bc:b7:8a:1a:
c7:33:a0:d9:60:f3:98:92:4b:39:5f:cd:80:a6:4b:
90:fd:44:af:ea:fa:a0:bf:22:4f:bf:3e:4b:94:f8:
fb:fd:ab:fa:08:b8:23:f3:ef:25:ba:89:4b:dd:99:
e4:1b:52:15:e7:56:5b:80:6d:87:17:9c:c3:4c:11:
85:b8:e3:8d:7b:0f:32:0f:b0:b5:2d:eb:3b:81:e5:
3e:5d:26:83:5f:cd:d7:f0:01:ba:fd:a2:ba:cf:d3:
ae:67:24:65:51:24:35:a0:5c:b1:52:3d:23:d7:e3:
53:bb:28:e9:57:87:e9:aa:f8:14:e1:03:17:5f:1d:
a7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:47:1E:B8:45:44:21:2F:FD:4A:F7:6E:34:EE:62:74:F9:D1:ED:7E
X509v3 Authority Key Identifier:
keyid:91:C2:C2:91:2E:10:58:15:87:05:2A:5C:A7:70:91:0B:26:17:4F:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcLCkS4QWBWHBSpcp3CRCyYXTxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/q0ceuEVEIS_9SvduNO5idPnR7X4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/kcLCkS4QWBWHBSpcp3CRCyYXTxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:1700:2::/48
Signature Algorithm: sha256WithRSAEncryption
bc:f9:32:a9:3a:d2:6d:4f:62:b1:1f:4f:d9:aa:cc:e0:ca:e2:
17:27:af:db:59:c8:8b:f2:0a:1e:e6:8e:e0:60:a5:e1:dc:88:
0d:eb:94:31:ed:01:2b:65:97:28:18:bb:5c:79:60:4e:b9:3d:
2c:e0:0d:19:9c:05:93:a8:97:62:08:a9:4f:4d:4b:10:44:67:
38:24:88:3f:b3:40:6b:b2:a6:05:8e:9a:94:4f:74:bd:4b:d3:
f9:35:74:04:27:a8:c8:fd:f7:58:67:a3:e8:13:b3:a4:7c:ee:
6c:69:b3:ef:e1:15:cb:04:f7:2c:be:03:b4:f5:02:f3:51:8c:
b4:91:8d:23:68:4f:56:e6:83:43:ea:d5:22:df:7c:bd:28:07:
57:8a:a9:cb:fc:36:c2:4a:de:e1:a7:8f:70:68:94:ab:aa:b5:
a8:9f:22:ca:81:2b:cd:44:9a:cd:7c:76:d7:15:9e:26:a7:bf:
13:e0:fe:85:7d:22:6b:25:34:bb:dc:29:81:ab:5f:59:c3:b1:
6b:79:97:ad:21:c7:26:f7:76:23:61:9d:11:00:d7:02:08:44:
d0:be:f2:a5:0d:dd:82:3d:46:cf:f9:45:c5:91:01:e2:fd:a4:
ed:70:48:a2:1e:ca:d6:df:66:6b:a9:cf:fd:70:b7:65:81:42:
a3:f8:75:fe
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEF5wHTzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MWMyYzI5MTJlMTA1ODE1ODcwNTJhNWNhNzcwOTEwYjI2MTc0ZjE0MB4XDTIyMDEw
MTE1MDczMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWI0NzFlYjg0NTQ0
MjEyZmZkNGFmNzZlMzRlZTYyNzRmOWQxZWQ3ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI4BOH06zlqkJTxvQu3I9TLSmRYZJoA85lwD1t06IXWiRBCV
I2IRUSESzwYXGM1xAk8vMW4gY20x59lT9zRqm18RxzoxrNwD4fmNLCAbBa4Qnf45
wpmits4eJxSdPgJqv5auAuFs21ql4gygdL26CAGM7uvhcjZ9gFAt/Ts2iBAkvqO8
t4oaxzOg2WDzmJJLOV/NgKZLkP1Er+r6oL8iT78+S5T4+/2r+gi4I/PvJbqJS92Z
5BtSFedWW4Bthxecw0wRhbjjjXsPMg+wtS3rO4HlPl0mg1/N1/ABuv2ius/Trmck
ZVEkNaBcsVI9I9fjU7so6VeH6ar4FOEDF18dp1sCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSrRx64RUQhL/1K92407mJ0+dHtfjAfBgNVHSMEGDAWgBSRwsKRLhBYFYcF
KlyncJELJhdPFDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2tjTENrUzRRV0JXSEJTcGNwM0NSQ3lZWFR4US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWIvYjMwYjU3LWU3ZTktNGIyZi05OWI2LTkwZjk3Zjc0NjY3Ni8x
L3EwY2V1RVZFSVNfOVN2ZHVOTzVpZFBuUjdYNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWIv
YjMwYjU3LWU3ZTktNGIyZi05OWI2LTkwZjk3Zjc0NjY3Ni8xL2tjTENrUzRRV0JX
SEJTcGNwM0NSQ3lZWFR4US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoFFwAAAjANBgkqhkiG9w0BAQsF
AAOCAQEAvPkyqTrSbU9isR9P2arM4MriFyev21nIi/IKHuaO4GCl4dyIDeuUMe0B
K2WXKBi7XHlgTrk9LOANGZwFk6iXYgipT01LEERnOCSIP7NAa7KmBY6alE90vUvT
+TV0BCeoyP33WGej6BOzpHzubGmz7+EVywT3LL4DtPUC81GMtJGNI2hPVuaDQ+rV
It98vSgHV4qpy/w2wkre4aePcGiUq6q1qJ8iyoErzUSazXx21xWeJqe/E+D+hX0i
ayU0u9wpgatfWcOxa3mXrSHHJvd2I2GdEQDXAghE0L7ypQ3dgj1Gz/lFxZEB4v2k
7XBIoh7K1t9ma6nP/XC3ZYFCo/h1/g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:26 2024 by rpki-client on console-fra.rpki-client.org