Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/xa4LZOwr1OSmvn6zKH6Nw275Uso.roa
File: xa4LZOwr1OSmvn6zKH6Nw275Uso.roa (raw, json)
Hash identifier: 5pWqTTjADQImcIWqz8emVOqxHLiu1mgAqf9+1Uo1ku0=
Subject key identifier: C5:AE:0B:64:EC:2B:D4:E4:A6:BE:7E:B3:28:7E:8D:C3:6E:F9:52:CA
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 0A0BF060
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/xa4LZOwr1OSmvn6zKH6Nw275Uso.roa
Signing time: Sat 01 Jan 2022 05:03:30 +0000
ROA not before: Sat 01 Jan 2022 05:03:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210285
IP address blocks: 2a0d:2146:8460::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168554592 (0xa0bf060)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Jan 1 05:03:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5ae0b64ec2bd4e4a6be7eb3287e8dc36ef952ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:28:52:bf:ff:23:57:e3:cc:f6:65:0d:ce:98:
19:11:af:9b:ac:f3:a5:45:07:a6:16:b9:cc:4c:32:
49:64:fe:16:9d:45:4a:e8:47:6d:c3:00:90:51:85:
9a:a7:00:bd:20:6d:8a:41:5b:94:e8:9d:db:63:b3:
65:1c:f4:96:bc:10:bf:4b:fb:6b:c8:59:14:19:ac:
d6:ab:b9:29:1d:88:f4:c6:d7:42:12:7a:50:4a:0b:
2a:6a:43:5e:8b:9a:c9:08:d9:b6:69:26:b7:d5:64:
60:9f:f0:69:c8:8c:fb:06:bc:60:78:8c:5a:cd:0e:
dd:2d:ba:90:95:02:b1:ab:7b:9a:98:fb:e0:e4:e0:
ce:4c:45:ca:c1:93:b6:8e:6b:9f:8c:f3:8b:31:4a:
cf:d0:0e:0d:84:db:61:61:46:1a:99:b2:62:98:2f:
38:1f:06:21:9e:85:d1:b0:d4:5c:d4:a3:e3:18:2e:
f5:fa:16:47:00:bd:4a:f3:0e:00:2d:4e:cc:9b:20:
93:d3:28:95:2f:65:ba:35:3d:75:8f:d0:7f:a1:17:
6a:9a:75:62:81:59:52:46:0a:76:8d:ae:ca:12:72:
a0:2d:39:85:2f:99:ff:b2:56:b0:dc:4b:bc:66:e6:
e7:a2:17:a4:7c:d0:bf:60:b5:9d:23:5d:f6:ec:52:
40:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:AE:0B:64:EC:2B:D4:E4:A6:BE:7E:B3:28:7E:8D:C3:6E:F9:52:CA
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/xa4LZOwr1OSmvn6zKH6Nw275Uso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2146:8460::/44
Signature Algorithm: sha256WithRSAEncryption
37:30:a1:68:3c:82:ef:88:0d:f6:07:8d:a2:d7:99:c9:75:da:
19:94:20:d7:9c:e4:5c:ee:13:3a:8d:84:ce:c3:eb:26:0d:5a:
a6:b5:04:9b:39:5d:b3:1e:da:db:48:5c:c9:c0:ff:96:b5:42:
c2:83:d9:b3:9e:54:fe:4c:da:3d:60:d1:13:f5:f7:88:45:00:
ee:f8:0d:50:c3:03:81:c6:3f:b8:59:aa:bd:3b:5d:4c:7c:4e:
f3:af:54:6d:76:cc:79:a2:ef:ec:d3:92:09:66:66:ed:85:0a:
f9:88:e5:48:60:6e:5b:f8:45:ce:c2:8f:8a:6f:25:a0:ab:d1:
b0:ce:db:df:cb:4b:9f:7f:e6:0c:46:64:a3:59:0f:a1:ea:1f:
77:83:02:2d:2b:9c:e0:da:05:55:37:71:52:e8:a9:d2:4b:ad:
41:ce:ee:80:c6:b3:04:bd:2d:03:11:40:17:04:9d:46:69:99:
69:0e:16:b4:2b:e8:eb:de:6e:55:1c:d3:35:46:69:a8:4a:c2:
eb:53:f1:80:99:a8:e5:6b:18:5c:ec:50:3c:8b:b8:07:c1:60:
ba:e9:c7:aa:0d:80:7f:3e:6d:a4:4a:cb:0e:9f:ec:7c:dc:4b:
b8:b9:8e:3e:47:d4:c7:30:1a:c3:9a:1a:b8:9c:dd:2a:e2:2f:
92:e0:23:98
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECgvwYDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MTRhYzYxMTYxNGRkMTY1ZDk0NTU3Mjk2ZWQ3ZWQ0NmM4ZmMwMjVmMB4XDTIyMDEw
MTA1MDMzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzVhZTBiNjRlYzJi
ZDRlNGE2YmU3ZWIzMjg3ZThkYzM2ZWY5NTJjYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJooUr//I1fjzPZlDc6YGRGvm6zzpUUHpha5zEwySWT+Fp1F
SuhHbcMAkFGFmqcAvSBtikFblOid22OzZRz0lrwQv0v7a8hZFBms1qu5KR2I9MbX
QhJ6UEoLKmpDXouayQjZtmkmt9VkYJ/waciM+wa8YHiMWs0O3S26kJUCsat7mpj7
4OTgzkxFysGTto5rn4zzizFKz9AODYTbYWFGGpmyYpgvOB8GIZ6F0bDUXNSj4xgu
9foWRwC9SvMOAC1OzJsgk9MolS9lujU9dY/Qf6EXapp1YoFZUkYKdo2uyhJyoC05
hS+Z/7JWsNxLvGbm56IXpHzQv2C1nSNd9uxSQM0CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTFrgtk7CvU5Ka+frMofo3DbvlSyjAfBgNVHSMEGDAWgBThSsYRYU3RZdlF
Vylu1+1GyPwCXzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRVckdFV0ZOMFdYWlJWY3BidGZ0UnNqOEFsOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvNmU3OWI4LTJiOGYtNGVjYy05YTZlLTcwZTg5OGJiMzhkZC8x
L3hhNExaT3dyMU9TbXZuNnpLSDZOdzI3NVVzby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
NmU3OWI4LTJiOGYtNGVjYy05YTZlLTcwZTg5OGJiMzhkZC8xLzRVckdFV0ZOMFdY
WlJWY3BidGZ0UnNqOEFsOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoNIUaEYDANBgkqhkiG9w0BAQsF
AAOCAQEANzChaDyC74gN9geNoteZyXXaGZQg15zkXO4TOo2EzsPrJg1aprUEmzld
sx7a20hcycD/lrVCwoPZs55U/kzaPWDRE/X3iEUA7vgNUMMDgcY/uFmqvTtdTHxO
869UbXbMeaLv7NOSCWZm7YUK+YjlSGBuW/hFzsKPim8loKvRsM7b38tLn3/mDEZk
o1kPoeofd4MCLSuc4NoFVTdxUuip0kutQc7ugMazBL0tAxFAFwSdRmmZaQ4WtCvo
695uVRzTNUZpqErC61PxgJmo5WsYXOxQPIu4B8FguunHqg2Afz5tpErLDp/sfNxL
uLmOPkfUxzAaw5oauJzdKuIvkuAjmA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:59 2024 by rpki-client on console-fra.rpki-client.org