Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/F-TpkZEFykdjdKhsJ1kTNfPCVEk.roa
File: F-TpkZEFykdjdKhsJ1kTNfPCVEk.roa (raw, json)
Hash identifier: qqvQsfyVQ+NmG2/sthAkMPtzqXJ/EejsRNjrHLvINxk=
Subject key identifier: 17:E4:E9:91:91:05:CA:47:63:74:A8:6C:27:59:13:35:F3:C2:54:49
Certificate issuer: /CN=ee31367df6d1861071c92bae726523326f45ba2a
Certificate serial: 082B2ECF
Authority key identifier: EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/F-TpkZEFykdjdKhsJ1kTNfPCVEk.roa
Signing time: Sat 01 Jan 2022 05:06:13 +0000
ROA not before: Sat 01 Jan 2022 05:06:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133480
IP address blocks: 2a0e:1cc0:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137047759 (0x82b2ecf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee31367df6d1861071c92bae726523326f45ba2a
Validity
Not Before: Jan 1 05:06:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17e4e9919105ca476374a86c27591335f3c25449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0c:1d:81:78:a6:f7:a3:fd:83:ff:e0:27:ad:
e8:1f:39:b2:8f:07:5f:f9:cf:73:40:ed:76:39:49:
47:08:7b:75:e1:f6:ac:ac:bf:16:1d:ef:ce:fd:f0:
8f:67:f2:69:e5:8e:0c:8f:66:93:d9:26:4f:99:38:
a4:40:73:3d:5c:58:58:39:1a:93:14:33:b2:53:73:
b9:f0:70:bc:38:b3:78:23:a6:42:b2:94:77:7e:7b:
7d:78:b7:af:bd:3b:46:2f:b6:ad:3e:59:43:d3:4c:
2a:4c:cb:ad:3a:2a:6f:b6:40:92:13:d9:47:a2:7c:
53:1c:51:8a:3f:15:dd:6f:ab:6e:19:de:03:d4:eb:
d8:29:84:f1:53:4e:94:68:ad:1b:22:c8:28:05:24:
1b:52:da:9a:74:7a:14:d3:17:08:1a:8d:a0:15:5d:
d5:f5:e0:df:29:ca:f2:08:6d:c4:a3:17:3e:c2:b2:
58:18:86:3d:4a:21:2d:83:c0:3b:f7:d7:3b:7b:dd:
f2:2c:44:2c:c8:73:f9:9f:15:c3:77:cd:d7:68:8f:
22:db:a8:97:b5:9e:57:27:e5:7c:5a:33:c6:50:07:
9c:da:50:91:cd:e1:16:7d:04:a6:83:60:9d:78:7d:
a1:1f:9e:26:32:b2:d1:a2:b3:d8:66:c5:f6:e0:4f:
0e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:E4:E9:91:91:05:CA:47:63:74:A8:6C:27:59:13:35:F3:C2:54:49
X509v3 Authority Key Identifier:
keyid:EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/F-TpkZEFykdjdKhsJ1kTNfPCVEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1cc0:2::/48
Signature Algorithm: sha256WithRSAEncryption
cb:6f:d2:4c:34:78:e8:63:a6:e3:c9:4c:1f:e1:83:06:8e:78:
87:e7:6c:1a:44:dd:8c:cf:d4:1d:25:da:4a:3e:bc:64:e9:5f:
d0:9e:5b:6a:22:2e:9d:1a:53:30:28:5b:e2:07:8f:39:47:d8:
1d:5a:17:a8:97:58:42:59:ed:93:a6:b5:ed:7d:48:3a:f3:7d:
48:89:4e:43:0e:54:ee:68:3b:c3:61:57:61:b8:62:a4:1f:88:
e2:16:79:e3:ed:18:fd:d1:57:82:ad:b7:5b:2b:49:b3:8c:29:
34:f4:ce:b4:57:8a:97:b9:f9:15:e4:3d:28:c8:1b:24:d3:07:
53:46:f1:c5:80:a8:c8:6e:86:2c:f3:c5:a3:b8:6b:d0:00:1c:
eb:ad:38:58:e6:2f:9d:7b:ec:e6:39:02:0e:e6:34:fb:09:9a:
3e:b6:60:f2:8c:3e:b4:d8:61:7d:3f:ba:d8:f3:83:cf:85:6c:
66:54:77:23:1a:8f:9f:93:0d:be:92:67:7e:99:2f:ce:4d:6a:
29:9b:a8:e7:46:98:47:fa:1d:5c:8f:df:c5:bd:14:9f:3b:16:
e6:80:a0:ef:c2:7a:f0:6b:8f:30:98:62:aa:95:d6:c4:6b:65:
52:e9:14:fe:73:0a:b3:94:0d:60:5a:62:4a:77:6a:c8:e8:2d:
f6:08:d8:76
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECCsuzzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ZTMxMzY3ZGY2ZDE4NjEwNzFjOTJiYWU3MjY1MjMzMjZmNDViYTJhMB4XDTIyMDEw
MTA1MDYxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTdlNGU5OTE5MTA1
Y2E0NzYzNzRhODZjMjc1OTEzMzVmM2MyNTQ0OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALEMHYF4pvej/YP/4Cet6B85so8HX/nPc0DtdjlJRwh7deH2
rKy/Fh3vzv3wj2fyaeWODI9mk9kmT5k4pEBzPVxYWDkakxQzslNzufBwvDizeCOm
QrKUd357fXi3r707Ri+2rT5ZQ9NMKkzLrToqb7ZAkhPZR6J8UxxRij8V3W+rbhne
A9Tr2CmE8VNOlGitGyLIKAUkG1LamnR6FNMXCBqNoBVd1fXg3ynK8ghtxKMXPsKy
WBiGPUohLYPAO/fXO3vd8ixELMhz+Z8Vw3fN12iPItuol7WeVyflfFozxlAHnNpQ
kc3hFn0EpoNgnXh9oR+eJjKy0aKz2GbF9uBPDosCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQX5OmRkQXKR2N0qGwnWRM188JUSTAfBgNVHSMEGDAWgBTuMTZ99tGGEHHJ
K65yZSMyb0W6KjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzdqRTJmZmJSaGhCeHlTdXVjbVVqTW05RnVpby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODEvMWJiNGRkLWU5YzQtNGQzZC05YTNiLTExNTlkYmZiZWQ1NC8x
L0YtVHBrWkVGeWtkamRLaHNKMWtUTmZQQ1ZFay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEv
MWJiNGRkLWU5YzQtNGQzZC05YTNiLTExNTlkYmZiZWQ1NC8xLzdqRTJmZmJSaGhC
eHlTdXVjbVVqTW05RnVpby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOHMAAAjANBgkqhkiG9w0BAQsF
AAOCAQEAy2/STDR46GOm48lMH+GDBo54h+dsGkTdjM/UHSXaSj68ZOlf0J5baiIu
nRpTMChb4gePOUfYHVoXqJdYQlntk6a17X1IOvN9SIlOQw5U7mg7w2FXYbhipB+I
4hZ54+0Y/dFXgq23WytJs4wpNPTOtFeKl7n5FeQ9KMgbJNMHU0bxxYCoyG6GLPPF
o7hr0AAc6604WOYvnXvs5jkCDuY0+wmaPrZg8ow+tNhhfT+62PODz4VsZlR3IxqP
n5MNvpJnfpkvzk1qKZuo50aYR/odXI/fxb0UnzsW5oCg78J68GuPMJhiqpXWxGtl
UukU/nMKs5QNYFpiSndqyOgt9gjYdg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org