Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/Sb5kBX87z59Gck1yuLOLzY_lKTs.roa
File: Sb5kBX87z59Gck1yuLOLzY_lKTs.roa (raw, json)
Hash identifier: 9FavTfiN6H67XEb+K71ghvJiCZlcnafKhjeKuquLeZc=
Subject key identifier: 49:BE:64:05:7F:3B:CF:9F:46:72:4D:72:B8:B3:8B:CD:8F:E5:29:3B
Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Certificate serial: 018356E71DEFC79277F7DCA1A2830425857C
Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/Sb5kBX87z59Gck1yuLOLzY_lKTs.roa
Signing time: Mon 19 Sep 2022 17:58:50 +0000
ROA not before: Mon 19 Sep 2022 17:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198814
IP address blocks: 2a02:17a6::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:56:e7:1d:ef:c7:92:77:f7:dc:a1:a2:83:04:25:85:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Validity
Not Before: Sep 19 17:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49be64057f3bcf9f46724d72b8b38bcd8fe5293b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fb:72:ac:27:a1:de:09:1f:b7:30:a5:c0:be:
fa:f2:74:a3:00:47:49:01:c1:6a:39:2d:44:6d:87:
4e:d0:cf:20:de:4e:84:e6:47:53:4b:9c:b8:36:c6:
2b:a4:ac:8f:0b:76:a9:c9:ca:52:8a:4b:65:74:7b:
08:68:b1:e0:de:1a:fb:f6:7b:bb:73:68:ad:9a:fd:
e3:a0:e8:ed:09:7d:6b:cf:57:0f:e7:1b:d7:f4:f9:
ac:80:f2:4f:6f:11:d3:4e:47:6d:f6:ac:ff:21:5c:
48:ef:1a:1e:32:19:75:43:82:d7:bd:cc:22:1f:29:
da:87:66:28:6b:06:57:39:4a:de:7e:fd:18:ab:b7:
bc:ed:e4:63:27:47:76:60:9a:c4:33:a7:4f:73:47:
1f:a9:5a:46:e2:83:c9:62:b0:b0:07:ab:e4:dc:da:
86:97:4e:64:7e:01:e0:1d:d1:3e:d2:fa:2a:7a:88:
f7:11:f9:0f:c1:aa:65:32:2d:11:63:5e:43:7b:66:
93:25:5e:b9:e5:44:0a:bd:45:70:76:47:2d:67:0f:
49:32:88:4a:49:79:a9:73:2c:0c:0e:be:39:ac:86:
97:19:03:d8:0d:15:8c:07:c1:ef:7b:ee:da:65:28:
d4:35:5a:3e:b6:7c:ed:24:74:15:3c:8f:b5:6b:7f:
9c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:BE:64:05:7F:3B:CF:9F:46:72:4D:72:B8:B3:8B:CD:8F:E5:29:3B
X509v3 Authority Key Identifier:
keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/Sb5kBX87z59Gck1yuLOLzY_lKTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:17a6::/32
Signature Algorithm: sha256WithRSAEncryption
9a:9c:02:92:97:7c:98:06:0b:c8:89:11:07:96:68:03:f8:4c:
d0:b4:85:8a:e0:a0:c4:cd:47:21:77:b9:ce:01:2f:2b:e6:72:
6d:c9:39:cc:f7:21:b4:a1:dd:1a:82:bb:db:8e:a0:bc:96:a3:
d1:d9:a2:2a:d3:2d:3c:4c:b8:d1:a1:64:d6:25:4a:eb:54:30:
ba:df:55:37:b3:f6:d2:6e:e1:ab:67:01:f5:97:16:98:fe:e8:
b3:f7:d2:0f:d3:c7:d8:ce:4e:1a:e2:8e:ec:dc:02:5c:7c:42:
48:73:e8:0c:4e:4f:1e:57:68:5d:64:db:bf:c1:99:d4:c2:c8:
bb:f0:27:98:83:29:1e:5e:c0:69:40:01:32:a2:71:e3:d4:82:
2b:f2:0e:f1:d4:1f:95:35:c4:85:40:39:f5:b7:b4:35:12:b0:
69:70:1a:7c:27:0f:c6:61:41:06:40:71:ae:15:55:9e:5b:9b:
fe:6c:ec:e2:dd:9b:fa:2b:c1:ab:f6:54:90:99:e7:ba:cf:74:
4e:d1:b2:6c:27:f4:f8:f0:71:f9:06:9a:e7:98:4a:80:d6:4d:
60:85:15:73:9a:c5:cc:1f:a5:43:1e:80:dc:ca:c5:4c:42:07:
2b:29:36:e0:30:ad:d5:b0:92:78:d8:df:c5:c4:e2:74:2e:d5:
68:05:fd:40
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYNW5x3vx5J399yhooMEJYV8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1OWYwZjVmZjYyMGUwZGI1MzExZjY0NzM2OTA5OTczYWM2
MGY2ZjMwHhcNMjIwOTE5MTc1ODUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OWJlNjQwNTdmM2JjZjlmNDY3MjRkNzJiOGIzOGJjZDhmZTUyOTNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlvtyrCeh3gkftzClwL768nSjAEdJ
AcFqOS1EbYdO0M8g3k6E5kdTS5y4NsYrpKyPC3apycpSiktldHsIaLHg3hr79nu7
c2itmv3joOjtCX1rz1cP5xvX9PmsgPJPbxHTTkdt9qz/IVxI7xoeMhl1Q4LXvcwi
Hynah2YoawZXOUrefv0Yq7e87eRjJ0d2YJrEM6dPc0cfqVpG4oPJYrCwB6vk3NqG
l05kfgHgHdE+0voqeoj3EfkPwaplMi0RY15De2aTJV655UQKvUVwdkctZw9JMohK
SXmpcywMDr45rIaXGQPYDRWMB8Hve+7aZSjUNVo+tnztJHQVPI+1a3+cbQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFEm+ZAV/O8+fRnJNcrizi82P5Sk7MB8GA1UdIwQY
MBaAFDWfD1/2IODbUxH2RzaQmXOsYPbzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlo4UFhfWWc0TnRURWZaSE5wQ1pjNnhnOXZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS80MGQ5YTUtMjU2Ni00OWUxLWE1N2It
ZDFhYmY0ZWUzMmNiLzEvU2I1a0JYODd6NTlHY2sxeXVMT0x6WV9sS1RzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS80MGQ5YTUtMjU2Ni00OWUxLWE1N2ItZDFhYmY0ZWUzMmNi
LzEvTlo4UFhfWWc0TnRURWZaSE5wQ1pjNnhnOXZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgIXpjAN
BgkqhkiG9w0BAQsFAAOCAQEAmpwCkpd8mAYLyIkRB5ZoA/hM0LSFiuCgxM1HIXe5
zgEvK+Zybck5zPchtKHdGoK7246gvJaj0dmiKtMtPEy40aFk1iVK61Qwut9VN7P2
0m7hq2cB9ZcWmP7os/fSD9PH2M5OGuKO7NwCXHxCSHPoDE5PHldoXWTbv8GZ1MLI
u/AnmIMpHl7AaUABMqJx49SCK/IO8dQflTXEhUA59be0NRKwaXAafCcPxmFBBkBx
rhVVnlub/mzs4t2b+ivBq/ZUkJnnus90TtGybCf0+PBx+Qaa55hKgNZNYIUVc5rF
zB+lQx6A3MrFTEIHKyk24DCt1bCSeNjfxcTidC7VaAX9QA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:32 2024 by rpki-client on console-fra.rpki-client.org