Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/0rPRtxcHvtpUG-OLElVaexYrNVo.roa
File: 0rPRtxcHvtpUG-OLElVaexYrNVo.roa (raw, json)
Hash identifier: nfDSSwMgiVqeg/bFuQYG8MrU6Aj9cVlFFgfF6iZh9Fs=
Subject key identifier: D2:B3:D1:B7:17:07:BE:DA:54:1B:E3:8B:12:55:5A:7B:16:2B:35:5A
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 4200C2F9
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/0rPRtxcHvtpUG-OLElVaexYrNVo.roa
Signing time: Sat 01 Jan 2022 16:11:20 +0000
ROA not before: Sat 01 Jan 2022 16:11:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29014
IP address blocks: 2a0b:2a40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1107346169 (0x4200c2f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Jan 1 16:11:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2b3d1b71707beda541be38b12555a7b162b355a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:cf:5f:4a:1a:dd:0d:8f:c0:b1:c3:50:52:af:
d0:9e:c6:c3:d0:34:84:13:dd:cc:5b:c0:67:4d:90:
f9:b0:6e:0a:d2:3c:d9:33:a4:95:5c:16:85:ae:14:
96:36:0d:86:79:fa:9b:5d:97:10:f5:f6:1c:d4:49:
78:9c:16:27:0a:0d:b3:68:05:fa:94:d4:32:c7:6d:
55:da:27:07:ea:00:a7:98:d6:8c:06:70:69:44:6b:
b9:39:40:a7:75:e2:14:66:e7:2d:72:89:51:8a:1c:
a0:be:5c:ab:8f:1c:07:1f:a7:c3:96:32:a5:e7:98:
51:08:d4:e4:19:78:16:d1:ee:16:b0:db:98:a2:58:
cc:80:8b:e0:d1:12:4e:4a:d2:e2:f1:31:b0:a8:1f:
4b:cf:bb:2d:7e:cf:69:7b:dd:50:21:e8:3b:ee:a9:
b7:ba:26:67:1c:63:4f:79:7c:10:11:bf:30:21:57:
7b:ad:10:54:60:3a:d5:8e:57:8e:57:8c:3b:ba:e5:
a4:92:cd:67:c0:8d:ea:bc:88:63:a3:77:ba:fa:0b:
ef:50:51:28:69:34:b5:3e:0a:af:a4:2e:58:ae:6e:
7a:2c:00:bf:e7:fc:68:b1:f7:25:f6:93:bd:82:66:
7b:8d:42:10:02:40:5b:e5:37:ff:f6:b5:cf:f4:62:
ec:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B3:D1:B7:17:07:BE:DA:54:1B:E3:8B:12:55:5A:7B:16:2B:35:5A
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/0rPRtxcHvtpUG-OLElVaexYrNVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:2a40::/29
Signature Algorithm: sha256WithRSAEncryption
2c:aa:59:5e:aa:29:de:e7:ea:36:a3:ae:30:9b:9c:99:a0:0b:
6f:ff:e9:85:00:a5:9d:f9:d1:b2:f7:7a:7d:e6:8e:25:2c:90:
71:16:cd:e6:1c:58:fa:b8:b1:f3:6b:13:c7:50:30:f3:88:7a:
8e:51:49:46:82:c5:95:58:9b:66:23:12:6c:4e:0f:60:37:ad:
70:72:b4:fe:fc:80:6e:d4:4e:db:1b:5b:59:4c:90:a1:20:b4:
41:58:32:9e:7e:fa:08:d1:c6:de:51:b1:36:18:1f:02:59:ab:
4f:56:95:11:39:46:9e:8f:6a:a9:01:a6:24:03:fd:74:35:4e:
29:11:58:d5:fc:2e:f2:dc:2c:a4:2d:9c:4d:f6:e1:f3:c7:28:
bb:85:17:44:06:7c:2b:37:1e:09:49:44:14:32:a3:b2:79:e2:
e2:7f:83:03:db:c2:d3:5e:86:93:a1:df:75:70:0f:02:92:48:
ee:b4:fe:3a:99:71:9e:86:9d:86:dc:ca:b1:a6:59:4b:67:bb:
d5:dc:ad:d5:4a:7e:6d:94:af:4d:16:f5:92:33:aa:d7:c8:70:
b8:64:81:fa:1f:c1:ab:da:0f:52:15:b5:30:81:4c:a1:cd:df:
62:ad:ea:7e:6c:43:62:37:21:fa:da:12:2d:e3:c9:11:58:38:
de:50:3e:03
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEQgDC+TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NDI3MDhkZjkzOTU0YWFjNjAxYWVmMTgzNWJkNWQ2OTI0NWZiMDJmMB4XDTIyMDEw
MTE2MTEyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDJiM2QxYjcxNzA3
YmVkYTU0MWJlMzhiMTI1NTVhN2IxNjJiMzU1YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJHPX0oa3Q2PwLHDUFKv0J7Gw9A0hBPdzFvAZ02Q+bBuCtI8
2TOklVwWha4UljYNhnn6m12XEPX2HNRJeJwWJwoNs2gF+pTUMsdtVdonB+oAp5jW
jAZwaURruTlAp3XiFGbnLXKJUYocoL5cq48cBx+nw5YypeeYUQjU5Bl4FtHuFrDb
mKJYzICL4NESTkrS4vExsKgfS8+7LX7PaXvdUCHoO+6pt7omZxxjT3l8EBG/MCFX
e60QVGA61Y5XjleMO7rlpJLNZ8CN6ryIY6N3uvoL71BRKGk0tT4Kr6QuWK5ueiwA
v+f8aLH3JfaTvYJme41CEAJAW+U3//a1z/Ri7HcCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBTSs9G3Fwe+2lQb44sSVVp7Fis1WjAfBgNVHSMEGDAWgBTEJwjfk5VKrGAa
7xg1vV1pJF+wLzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hDY0kzNU9WU3F4Z0d1OFlOYjFkYVNSZnNDOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjQvZjYxN2E1LTMyNDAtNDhjNC1iNzE2LTc0MWMxZDhkZWEyYi8x
LzByUFJ0eGNIdnRwVUctT0xFbFZhZXhZck5Wby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjQv
ZjYxN2E1LTMyNDAtNDhjNC1iNzE2LTc0MWMxZDhkZWEyYi8xL3hDY0kzNU9WU3F4
Z0d1OFlOYjFkYVNSZnNDOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoLKkAwDQYJKoZIhvcNAQELBQAD
ggEBACyqWV6qKd7n6jajrjCbnJmgC2//6YUApZ350bL3en3mjiUskHEWzeYcWPq4
sfNrE8dQMPOIeo5RSUaCxZVYm2YjEmxOD2A3rXBytP78gG7UTtsbW1lMkKEgtEFY
Mp5++gjRxt5RsTYYHwJZq09WlRE5Rp6PaqkBpiQD/XQ1TikRWNX8LvLcLKQtnE32
4fPHKLuFF0QGfCs3HglJRBQyo7J54uJ/gwPbwtNehpOh33VwDwKSSO60/jqZcZ6G
nYbcyrGmWUtnu9XcrdVKfm2Ur00W9ZIzqtfIcLhkgfofwavaD1IVtTCBTKHN32Kt
6n5sQ2I3IfraEi3jyRFYON5QPgM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:44 2024 by rpki-client on console-ams.rpki-client.org