Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/y1QBQUQZJJVBLk6OMjswielLoso.roa
File: y1QBQUQZJJVBLk6OMjswielLoso.roa (raw, json)
Hash identifier: QZ3RZV2FKXHIMMqHGj3G9BhQ6pkaSpQ8YMyC7zHOCXU=
Subject key identifier: CB:54:01:41:44:19:24:95:41:2E:4E:8E:32:3B:30:89:E9:4B:A2:CA
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 3DA3D10B
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/y1QBQUQZJJVBLk6OMjswielLoso.roa
Signing time: Fri 04 Feb 2022 12:02:39 +0000
ROA not before: Fri 04 Feb 2022 12:02:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34440
IP address blocks: 2a01:488:bb18::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1034146059 (0x3da3d10b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Feb 4 12:02:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb54014144192495412e4e8e323b3089e94ba2ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a2:51:e7:34:35:cf:b0:75:1a:75:d6:0a:2c:
a0:35:d7:ab:bf:21:03:91:d1:04:04:fe:a7:6d:97:
2b:ac:81:7d:f9:79:3f:fe:8d:1f:72:28:8c:dc:01:
e7:99:3a:af:40:fb:49:71:ad:2d:35:19:c9:f5:d4:
ab:48:93:67:36:12:64:ba:09:dd:fa:8a:d8:17:c6:
be:2b:f3:1e:26:c9:b6:3c:e9:0c:a1:b5:1e:8e:c7:
71:f3:5d:c3:15:8c:95:7e:a9:23:d9:eb:ae:0c:b9:
29:dc:5d:d5:56:57:5d:6a:a5:25:96:de:61:91:8c:
7f:d5:63:d2:f9:c4:fd:fd:e2:f2:8f:08:ba:e7:d2:
69:5f:78:39:34:b5:f4:95:fd:e6:f3:01:72:13:0e:
cd:cc:b2:c9:18:06:7d:be:e0:76:3e:91:3c:86:5c:
5d:f0:15:07:5c:8a:d6:dd:ce:d5:fd:1f:08:9e:5a:
82:01:a4:75:81:20:7c:d9:42:66:db:a3:51:3a:48:
48:4d:a4:8f:8b:18:86:15:8c:c5:a4:0c:f2:51:8d:
c0:f5:b4:63:82:3e:9a:18:c5:c6:21:d4:dc:ec:24:
26:81:12:f6:c7:e8:43:3b:47:91:d9:6d:0f:72:11:
06:ce:fb:fc:51:6c:92:e1:77:85:d3:6a:79:c0:c0:
c8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:54:01:41:44:19:24:95:41:2E:4E:8E:32:3B:30:89:E9:4B:A2:CA
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/y1QBQUQZJJVBLk6OMjswielLoso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:488:bb18::/48
Signature Algorithm: sha256WithRSAEncryption
20:54:1d:f2:b9:ef:19:e1:57:98:e6:55:69:83:f5:3f:85:46:
44:84:00:5c:e6:b6:a5:4d:7f:7e:f9:e4:be:44:7c:a2:24:1b:
d8:49:09:ce:0a:df:41:de:3d:e8:02:2c:56:4f:bf:5a:c7:c2:
06:65:6a:9d:b0:fc:1f:6f:c8:7f:f3:de:3b:5c:b6:91:63:08:
75:22:d1:2a:3f:0e:d3:38:d7:80:51:b7:3b:0a:0f:4d:cf:76:
cf:ff:3e:4f:3a:4e:5c:69:33:c3:65:d9:16:df:62:08:a6:98:
2f:86:18:73:09:d8:84:03:d4:cb:a1:4c:f0:b5:14:d6:17:36:
9b:ab:c5:2b:9b:8f:bf:9a:e7:b2:4e:5a:97:1b:e0:1d:40:05:
64:49:d1:f8:ec:f0:7c:8a:19:a9:89:ff:43:88:81:75:99:ae:
73:0d:e3:84:8b:53:bd:b0:f3:a6:86:65:db:30:d7:05:10:78:
a9:3c:48:8e:79:69:85:5b:4b:e7:bc:20:90:5b:5e:0a:ce:04:
37:0c:23:7c:df:82:18:ca:ee:76:49:27:06:5b:0e:39:f3:df:
a5:4c:cd:4a:01:24:7d:cb:02:0f:c2:58:0c:d3:7d:ec:a0:cc:
b0:07:bb:87:4d:29:97:a3:e1:ec:12:37:45:ca:d3:22:be:c6:
bd:11:7c:4f
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEPaPRCzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YTZlZDBmYjdiMzIwODMyYWMxNTgwNTM0YzdiMjYzZjMwNGU5ODFiMB4XDTIyMDIw
NDEyMDIzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2I1NDAxNDE0NDE5
MjQ5NTQxMmU0ZThlMzIzYjMwODllOTRiYTJjYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKSiUec0Nc+wdRp11gosoDXXq78hA5HRBAT+p22XK6yBffl5
P/6NH3IojNwB55k6r0D7SXGtLTUZyfXUq0iTZzYSZLoJ3fqK2BfGvivzHibJtjzp
DKG1Ho7HcfNdwxWMlX6pI9nrrgy5Kdxd1VZXXWqlJZbeYZGMf9Vj0vnE/f3i8o8I
uufSaV94OTS19JX95vMBchMOzcyyyRgGfb7gdj6RPIZcXfAVB1yK1t3O1f0fCJ5a
ggGkdYEgfNlCZtujUTpISE2kj4sYhhWMxaQM8lGNwPW0Y4I+mhjFxiHU3OwkJoES
9sfoQztHkdltD3IRBs77/FFskuF3hdNqecDAyM8CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTLVAFBRBkklUEuTo4yOzCJ6UuiyjAfBgNVHSMEGDAWgBS6btD7ezIIMqwV
gFNMeyY/ME6YGzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VtN1EtM3N5Q0RLc0ZZQlRUSHNtUHpCT21Ccy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjAvNDIwNDFkLTU5MzEtNDgyNC05MjU0LTE2MWYzNDIzODdkMS8x
L3kxUUJRVVFaSkpWQkxrNk9NanN3aWVsTG9zby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjAv
NDIwNDFkLTU5MzEtNDgyNC05MjU0LTE2MWYzNDIzODdkMS8xL3VtN1EtM3N5Q0RL
c0ZZQlRUSHNtUHpCT21Ccy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoBBIi7GDANBgkqhkiG9w0BAQsF
AAOCAQEAIFQd8rnvGeFXmOZVaYP1P4VGRIQAXOa2pU1/fvnkvkR8oiQb2EkJzgrf
Qd496AIsVk+/WsfCBmVqnbD8H2/If/PeO1y2kWMIdSLRKj8O0zjXgFG3OwoPTc92
z/8+TzpOXGkzw2XZFt9iCKaYL4YYcwnYhAPUy6FM8LUU1hc2m6vFK5uPv5rnsk5a
lxvgHUAFZEnR+OzwfIoZqYn/Q4iBdZmucw3jhItTvbDzpoZl2zDXBRB4qTxIjnlp
hVtL57wgkFteCs4ENwwjfN+CGMrudkknBlsOOfPfpUzNSgEkfcsCD8JYDNN97KDM
sAe7h00pl6Ph7BI3RcrTIr7GvRF8Tw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:40 2024 by rpki-client on console-ams.rpki-client.org