Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/vS1Tqr_fVQuTQsZXFfurYehKXiw.roa
File: vS1Tqr_fVQuTQsZXFfurYehKXiw.roa (raw, json)
Hash identifier: KDSdydsanSGBTYmu3asCZLLkstWSM7RdV9/TFYQrj/0=
Subject key identifier: BD:2D:53:AA:BF:DF:55:0B:93:42:C6:57:15:FB:AB:61:E8:4A:5E:2C
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 0B1E0EE7
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/vS1Tqr_fVQuTQsZXFfurYehKXiw.roa
Signing time: Mon 25 Apr 2022 20:29:21 +0000
ROA not before: Mon 25 Apr 2022 20:29:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39702
IP address blocks: 2a0d:2146:bf00::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186519271 (0xb1e0ee7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Apr 25 20:29:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd2d53aabfdf550b9342c65715fbab61e84a5e2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5b:ad:48:6e:fe:2e:7f:5a:50:34:dd:03:c0:
9d:82:37:03:d9:27:98:d2:75:33:cf:14:54:5c:c1:
40:b8:b7:fb:81:2c:64:35:54:04:ba:f9:34:11:f1:
fa:c7:44:6c:8b:05:8d:6b:b4:7e:a1:c4:6a:6e:84:
94:59:64:51:88:15:42:53:23:95:5e:8d:65:5a:31:
69:dd:67:e3:d9:ec:5f:8e:d9:44:aa:17:81:ef:31:
af:5f:b0:3d:ac:9c:3c:71:75:e0:de:31:60:e7:b1:
48:2b:55:c8:e0:63:ba:0a:ff:e4:22:98:48:58:fe:
b9:3d:3b:fd:71:76:3d:c1:6f:ec:90:f9:9b:4c:bf:
f6:f1:59:97:2e:00:87:b8:21:58:e5:b5:c1:3c:3f:
62:ab:02:98:a2:e5:30:5c:db:73:0e:94:7b:7e:40:
81:4f:9d:9f:65:14:dd:7e:00:25:83:2c:59:9e:b6:
a9:0c:76:16:cb:00:1d:5a:ae:00:bc:43:c3:3e:a6:
2d:fd:81:57:2c:21:35:c9:09:57:21:d3:7f:8d:57:
9c:56:1b:39:c0:b1:2e:68:93:8a:ee:af:a0:d5:79:
2c:2b:47:99:86:c1:37:bc:ae:50:d2:cb:f0:a9:fc:
37:f4:54:91:ff:72:2b:40:f2:af:78:06:9a:b6:8d:
a9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:2D:53:AA:BF:DF:55:0B:93:42:C6:57:15:FB:AB:61:E8:4A:5E:2C
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/vS1Tqr_fVQuTQsZXFfurYehKXiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2146:bf00::/40
Signature Algorithm: sha256WithRSAEncryption
22:52:1c:9a:37:e0:89:b3:01:fb:d5:9b:3a:39:a4:7e:18:84:
38:6b:d8:e9:37:d9:29:d0:e1:b1:12:03:83:e1:19:2c:68:94:
15:d2:fa:3f:3a:2b:25:f1:fb:d0:8b:b7:ac:c8:84:9c:fb:ce:
f5:7d:29:7e:70:a2:6b:3c:0d:1a:03:81:8b:0b:5f:83:01:da:
2f:a8:0c:e3:95:31:99:ba:d8:b6:6f:4b:d8:b8:0b:cd:30:d0:
5a:94:a8:e8:0f:b2:b0:e4:7f:0d:62:f7:4c:e1:33:f3:7e:8e:
9b:9f:f5:91:e2:21:1b:d3:e0:db:bd:90:19:3d:fd:64:80:d7:
7e:ee:27:41:1c:6f:b9:7c:af:23:f9:c6:d1:3e:2c:e3:b4:0b:
5a:16:94:f2:74:96:39:c2:0f:2b:5d:90:e2:ca:d0:7c:a6:a3:
ab:24:60:92:8c:c2:2b:ec:99:c7:93:29:f7:a8:37:f1:62:b5:
6e:d0:12:7f:eb:e9:60:d8:81:c5:90:6e:ad:3f:78:fb:53:7d:
f0:20:4a:92:27:3f:1c:82:69:85:a4:07:ee:16:13:76:ac:c8:
1c:31:9d:f7:e3:ab:66:ab:2d:e3:65:b9:29:38:3f:c4:22:7f:
9b:33:66:5d:d8:5d:e2:2f:c4:1a:23:b9:31:4b:a1:75:a4:6c:
71:f9:3e:fe
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIECx4O5zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MTRhYzYxMTYxNGRkMTY1ZDk0NTU3Mjk2ZWQ3ZWQ0NmM4ZmMwMjVmMB4XDTIyMDQy
NTIwMjkyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmQyZDUzYWFiZmRm
NTUwYjkzNDJjNjU3MTVmYmFiNjFlODRhNWUyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALRbrUhu/i5/WlA03QPAnYI3A9knmNJ1M88UVFzBQLi3+4Es
ZDVUBLr5NBHx+sdEbIsFjWu0fqHEam6ElFlkUYgVQlMjlV6NZVoxad1n49nsX47Z
RKoXge8xr1+wPaycPHF14N4xYOexSCtVyOBjugr/5CKYSFj+uT07/XF2PcFv7JD5
m0y/9vFZly4Ah7ghWOW1wTw/YqsCmKLlMFzbcw6Ue35AgU+dn2UU3X4AJYMsWZ62
qQx2FssAHVquALxDwz6mLf2BVywhNckJVyHTf41XnFYbOcCxLmiTiu6voNV5LCtH
mYbBN7yuUNLL8Kn8N/RUkf9yK0Dyr3gGmraNqVcCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBS9LVOqv99VC5NCxlcV+6th6EpeLDAfBgNVHSMEGDAWgBThSsYRYU3RZdlF
Vylu1+1GyPwCXzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRVckdFV0ZOMFdYWlJWY3BidGZ0UnNqOEFsOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvNmU3OWI4LTJiOGYtNGVjYy05YTZlLTcwZTg5OGJiMzhkZC8x
L3ZTMVRxcl9mVlF1VFFzWlhGZnVyWWVoS1hpdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
NmU3OWI4LTJiOGYtNGVjYy05YTZlLTcwZTg5OGJiMzhkZC8xLzRVckdFV0ZOMFdY
WlJWY3BidGZ0UnNqOEFsOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoNIUa/MA0GCSqGSIb3DQEBCwUA
A4IBAQAiUhyaN+CJswH71Zs6OaR+GIQ4a9jpN9kp0OGxEgOD4RksaJQV0vo/Oisl
8fvQi7esyISc+871fSl+cKJrPA0aA4GLC1+DAdovqAzjlTGZuti2b0vYuAvNMNBa
lKjoD7Kw5H8NYvdM4TPzfo6bn/WR4iEb0+DbvZAZPf1kgNd+7idBHG+5fK8j+cbR
PizjtAtaFpTydJY5wg8rXZDiytB8pqOrJGCSjMIr7JnHkyn3qDfxYrVu0BJ/6+lg
2IHFkG6tP3j7U33wIEqSJz8cgmmFpAfuFhN2rMgcMZ3346tmqy3jZbkpOD/EIn+b
M2Zd2F3iL8QaI7kxS6F1pGxx+T7+
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:39 2024 by rpki-client on console-ams.rpki-client.org