Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/p85i0xro5v1UmTzTMlk3VT7CqXs.roa
File: p85i0xro5v1UmTzTMlk3VT7CqXs.roa (raw, json)
Hash identifier: raXEWoMGwV3Wj3yVZY2tXakwn1JuLLVaBoSzGWhcCJo=
Subject key identifier: A7:CE:62:D3:1A:E8:E6:FD:54:99:3C:D3:32:59:37:55:3E:C2:A9:7B
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 01841DF90943FB9A89BCF44A36CBB07C0496
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/p85i0xro5v1UmTzTMlk3VT7CqXs.roa
Signing time: Fri 28 Oct 2022 09:42:50 +0000
ROA not before: Fri 28 Oct 2022 09:42:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398105
IP address blocks: 2a01:488:bb10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1d:f9:09:43:fb:9a:89:bc:f4:4a:36:cb:b0:7c:04:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Oct 28 09:42:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7ce62d31ae8e6fd54993cd3325937553ec2a97b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:03:da:13:7a:bc:94:d9:b6:c0:15:f5:48:f2:
0d:4a:a8:14:6a:3f:4d:fd:4e:0f:ea:70:78:d6:b2:
03:9b:52:5f:56:87:78:2b:e5:9c:33:3f:53:55:54:
9d:5c:67:b7:9a:96:63:b3:5d:3f:0e:79:4b:44:a2:
c8:57:5b:85:f0:e2:36:2c:59:79:e4:0c:fb:32:bb:
e5:ac:89:be:9a:96:68:fa:d0:56:1f:29:ad:ce:d8:
fd:aa:bf:62:47:42:63:48:81:73:fd:c5:e6:8c:e3:
00:97:be:0f:10:7f:a3:6a:28:e0:d4:50:9c:d3:9d:
7a:11:b8:a5:ef:f1:3d:a5:17:08:ca:a2:bb:ee:3b:
0b:3f:42:db:bc:28:c3:d3:73:21:0b:f8:f2:fd:41:
5e:a5:7b:34:c4:09:75:e1:e8:22:75:28:5a:d1:d8:
69:54:50:1f:1c:14:34:8e:6a:08:a7:44:eb:40:4e:
d5:bd:e5:f8:08:e3:f7:f9:e1:fe:16:77:01:d5:47:
11:d5:d0:ed:29:2b:67:9b:73:66:16:fe:66:fa:6a:
ff:3b:e7:de:6c:d3:67:2e:ff:9c:46:cf:14:53:01:
f7:2a:70:52:83:32:de:8e:f7:98:ee:b3:21:62:ee:
ad:0a:0c:89:86:7e:1c:7c:58:a9:07:6a:b9:09:fd:
71:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:CE:62:D3:1A:E8:E6:FD:54:99:3C:D3:32:59:37:55:3E:C2:A9:7B
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/p85i0xro5v1UmTzTMlk3VT7CqXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:488:bb10::/48
Signature Algorithm: sha256WithRSAEncryption
87:9f:a0:54:b1:d9:35:83:16:d0:95:95:2f:eb:69:92:03:50:
1e:93:9a:c8:6f:8d:88:3a:1c:a0:b4:db:64:60:35:e6:24:10:
64:fd:c8:13:34:0f:99:e7:98:4b:aa:0e:5d:48:1d:c2:0a:7e:
cb:06:c6:63:97:78:fd:9e:a6:fb:94:b9:ec:c9:80:18:05:eb:
52:74:31:e4:55:84:85:f5:a2:21:1e:fd:d3:13:04:0a:cf:31:
e7:0c:09:cc:3a:b8:7c:13:e5:c7:ed:27:4c:de:03:8b:a1:22:
4e:81:b6:1b:8f:f4:aa:71:03:20:bb:a6:10:50:eb:c4:fa:8d:
5f:8c:06:5b:34:05:21:fa:25:16:3d:09:34:02:43:e1:72:ac:
58:bd:51:e1:3f:5e:40:49:ce:06:b3:88:67:03:cf:68:91:87:
df:4f:5e:8b:fe:69:2f:32:fa:23:07:c0:31:7e:1d:05:16:9e:
3f:0a:1b:e6:c9:46:e1:74:26:fd:44:2b:a0:36:53:72:02:dc:
b3:d5:5a:39:9f:9b:d1:43:e1:7c:b8:fa:26:46:6e:1c:80:af:
de:ef:20:46:a2:8f:ed:ed:99:e6:78:9f:cc:f3:bf:e4:8b:c6:
c1:70:32:92:06:91:0a:ee:b0:c2:93:d4:81:eb:b4:f0:e3:ea:
b7:b1:a8:5b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYQd+QlD+5qJvPRKNsuwfASWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNmVkMGZiN2IzMjA4MzJhYzE1ODA1MzRjN2IyNjNmMzA0
ZTk4MWIwHhcNMjIxMDI4MDk0MjUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhN2NlNjJkMzFhZThlNmZkNTQ5OTNjZDMzMjU5Mzc1NTNlYzJhOTdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwPaE3q8lNm2wBX1SPINSqgUaj9N
/U4P6nB41rIDm1JfVod4K+WcMz9TVVSdXGe3mpZjs10/DnlLRKLIV1uF8OI2LFl5
5Az7MrvlrIm+mpZo+tBWHymtztj9qr9iR0JjSIFz/cXmjOMAl74PEH+jaijg1FCc
0516Ebil7/E9pRcIyqK77jsLP0LbvCjD03MhC/jy/UFepXs0xAl14egidSha0dhp
VFAfHBQ0jmoIp0TrQE7VveX4COP3+eH+FncB1UcR1dDtKStnm3NmFv5m+mr/O+fe
bNNnLv+cRs8UUwH3KnBSgzLejveY7rMhYu6tCgyJhn4cfFipB2q5Cf1xjQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKfOYtMa6Ob9VJk80zJZN1U+wql7MB8GA1UdIwQY
MBaAFLpu0Pt7MggyrBWAU0x7Jj8wTpgbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQt
MTYxZjM0MjM4N2QxLzEvcDg1aTB4cm81djFVbVR6VE1sazNWVDdDcVhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQtMTYxZjM0MjM4N2Qx
LzEvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgEEiLsQ
MA0GCSqGSIb3DQEBCwUAA4IBAQCHn6BUsdk1gxbQlZUv62mSA1Aek5rIb42IOhyg
tNtkYDXmJBBk/cgTNA+Z55hLqg5dSB3CCn7LBsZjl3j9nqb7lLnsyYAYBetSdDHk
VYSF9aIhHv3TEwQKzzHnDAnMOrh8E+XH7SdM3gOLoSJOgbYbj/SqcQMgu6YQUOvE
+o1fjAZbNAUh+iUWPQk0AkPhcqxYvVHhP15ASc4Gs4hnA89okYffT16L/mkvMvoj
B8Axfh0FFp4/ChvmyUbhdCb9RCugNlNyAtyz1Vo5n5vRQ+F8uPomRm4cgK/e7yBG
oo/t7ZnmeJ/M87/ki8bBcDKSBpEK7rDCk9SB67Tw4+q3sahb
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:40 2024 by rpki-client on console-ams.rpki-client.org