Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/NIkl9WXv9xeBcPaOK4tUOvO5Wmg.roa
File: NIkl9WXv9xeBcPaOK4tUOvO5Wmg.roa (raw, json)
Hash identifier: iSvcQrp0UD3hP8rhH2zIpARji0Gi6Kkx16g1yOQTorg=
Subject key identifier: 34:89:25:F5:65:EF:F7:17:81:70:F6:8E:2B:8B:54:3A:F3:B9:5A:68
Certificate issuer: /CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Certificate serial: 16EDC768
Authority key identifier: E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/NIkl9WXv9xeBcPaOK4tUOvO5Wmg.roa
Signing time: Sat 01 Jan 2022 05:55:01 +0000
ROA not before: Sat 01 Jan 2022 05:55:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a04:e4c4:5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 384681832 (0x16edc768)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Validity
Not Before: Jan 1 05:55:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=348925f565eff7178170f68e2b8b543af3b95a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ca:ad:5e:f1:60:09:9b:a4:38:cf:bb:42:8e:
bf:a4:93:80:b6:f7:58:13:6b:67:77:d2:9d:8c:60:
f6:dc:24:01:16:6f:aa:e4:9c:e5:c7:59:34:58:69:
08:eb:02:b0:17:1d:51:58:e3:f8:ff:7d:99:55:1f:
5d:a0:8b:8b:2e:48:6b:bf:4d:e4:47:4d:92:5d:a1:
9d:6a:e7:6a:38:4d:dc:41:1a:a3:6c:e1:c2:70:61:
f9:e3:f8:8a:06:67:56:45:f6:42:f3:ea:4d:89:71:
8f:56:cd:78:6f:a8:0e:f0:22:72:50:02:c3:7d:50:
ae:4d:fd:4d:b6:d7:06:1c:7a:63:fa:2a:1c:c8:ae:
df:1e:88:1f:b2:95:c5:68:87:19:4d:5b:36:e1:57:
b7:1c:23:f1:2d:28:03:67:d0:eb:95:0d:af:00:50:
73:58:29:35:01:b3:b2:36:fb:88:82:99:0f:74:39:
88:a3:3b:3c:86:b8:d7:e2:f9:c8:7f:c5:f6:77:65:
b8:04:59:07:da:a1:2e:2f:9a:43:fa:b6:a4:1d:25:
84:d0:9b:bc:ae:7f:45:a4:36:a8:6f:6e:dc:3b:c4:
d6:1f:bd:70:aa:fe:a4:96:7b:bf:b6:07:b1:7f:8a:
9f:d1:3a:56:0c:18:74:82:1d:48:cd:b4:ab:0a:16:
00:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:89:25:F5:65:EF:F7:17:81:70:F6:8E:2B:8B:54:3A:F3:B9:5A:68
X509v3 Authority Key Identifier:
keyid:E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/NIkl9WXv9xeBcPaOK4tUOvO5Wmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/5xM9yvKx6_Xa3lozqhsvuZ0mibo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:e4c4:5::/48
Signature Algorithm: sha256WithRSAEncryption
4c:5d:aa:f3:7e:25:05:4c:50:0f:66:93:98:8b:d8:74:95:13:
0a:14:b5:35:74:b5:ee:ab:f7:53:2d:9f:58:2e:5c:af:82:54:
f0:15:11:de:51:8b:38:5c:bc:07:b0:92:00:3a:a7:cd:ef:07:
24:f8:4c:c3:d0:8f:1e:65:a2:ca:ec:c4:77:22:4b:41:ed:6a:
4f:7b:45:10:05:13:28:85:95:eb:b8:8e:39:20:80:25:15:c9:
35:5e:28:34:e2:0b:63:54:cd:d0:67:60:70:be:9e:68:7d:e5:
a6:ca:fc:e8:88:3f:77:4f:b3:6f:a2:cd:1c:3b:99:53:28:8d:
8e:b3:ec:cb:11:a4:74:be:2e:70:d0:9c:9b:c8:94:5d:c7:bd:
c0:45:a3:9a:eb:68:93:75:c3:12:7b:fa:a6:a8:bd:6a:ec:44:
7e:df:5b:72:31:2b:b7:9c:91:22:4f:7b:27:e8:9d:e8:a9:b9:
4e:42:1c:22:c9:a1:37:b8:0d:e7:eb:18:73:6e:32:92:1f:e1:
20:c0:a8:55:a8:5e:fa:09:a4:f3:eb:e4:72:4a:91:b5:03:a4:
2c:d2:07:01:d8:0a:cc:24:24:a3:cd:5c:6d:28:f2:c0:3e:a7:
a7:89:5d:ae:fa:01:6c:96:4a:c0:7f:f2:f8:2d:ea:8c:91:a4:
0b:80:be:8d
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEFu3HaDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NzEzM2RjYWYyYjFlYmY1ZGFkZTVhMzNhYTFiMmZiOTlkMjY4OWJhMB4XDTIyMDEw
MTA1NTUwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzQ4OTI1ZjU2NWVm
ZjcxNzgxNzBmNjhlMmI4YjU0M2FmM2I5NWE2ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJzKrV7xYAmbpDjPu0KOv6STgLb3WBNrZ3fSnYxg9twkARZv
quSc5cdZNFhpCOsCsBcdUVjj+P99mVUfXaCLiy5Ia79N5EdNkl2hnWrnajhN3EEa
o2zhwnBh+eP4igZnVkX2QvPqTYlxj1bNeG+oDvAiclACw31Qrk39TbbXBhx6Y/oq
HMiu3x6IH7KVxWiHGU1bNuFXtxwj8S0oA2fQ65UNrwBQc1gpNQGzsjb7iIKZD3Q5
iKM7PIa41+L5yH/F9ndluARZB9qhLi+aQ/q2pB0lhNCbvK5/RaQ2qG9u3DvE1h+9
cKr+pJZ7v7YHsX+Kn9E6VgwYdIIdSM20qwoWAKECAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQ0iSX1Ze/3F4Fw9o4ri1Q687laaDAfBgNVHSMEGDAWgBTnEz3K8rHr9dre
WjOqGy+5nSaJujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzV4TTl5dkt4Nl9YYTNsb3pxaHN2dVowbWliby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzIvNWU0ZGY4LWFlOGMtNDRhNy1iZDZlLTE5Y2U0NmE0MmZhNC8x
L05Ja2w5V1h2OXhlQmNQYU9LNHRVT3ZPNVdtZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzIv
NWU0ZGY4LWFlOGMtNDRhNy1iZDZlLTE5Y2U0NmE0MmZhNC8xLzV4TTl5dkt4Nl9Y
YTNsb3pxaHN2dVowbWliby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoE5MQABTANBgkqhkiG9w0BAQsF
AAOCAQEATF2q834lBUxQD2aTmIvYdJUTChS1NXS17qv3Uy2fWC5cr4JU8BUR3lGL
OFy8B7CSADqnze8HJPhMw9CPHmWiyuzEdyJLQe1qT3tFEAUTKIWV67iOOSCAJRXJ
NV4oNOILY1TN0GdgcL6eaH3lpsr86Ig/d0+zb6LNHDuZUyiNjrPsyxGkdL4ucNCc
m8iUXce9wEWjmutok3XDEnv6pqi9auxEft9bcjErt5yRIk97J+id6Km5TkIcIsmh
N7gN5+sYc24ykh/hIMCoVahe+gmk8+vkckqRtQOkLNIHAdgKzCQko81cbSjywD6n
p4ldrvoBbJZKwH/y+C3qjJGkC4C+jQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:55 2024 by rpki-client on console-ams.rpki-client.org