Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/e92666-4526-47c1-b2ba-63728b0fa108/1/hjeE7kQcMax44_aaU2jk_fhcnaI.roa
File: hjeE7kQcMax44_aaU2jk_fhcnaI.roa (raw, json)
Hash identifier: YzD2UCoKe3b7DESdgyyjsSdfafGhHkzX8aMmqYjuFAM=
Subject key identifier: 86:37:84:EE:44:1C:31:AC:78:E3:F6:9A:53:68:E4:FD:F8:5C:9D:A2
Certificate issuer: /CN=c53b229e73ce6bb196d65c0bef119560657a3720
Certificate serial: 0184C29FC237E4A023986274BCDAE6604A6E
Authority key identifier: C5:3B:22:9E:73:CE:6B:B1:96:D6:5C:0B:EF:11:95:60:65:7A:37:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xTsinnPOa7GW1lwL7xGVYGV6NyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/e92666-4526-47c1-b2ba-63728b0fa108/1/hjeE7kQcMax44_aaU2jk_fhcnaI.roa
Signing time: Tue 29 Nov 2022 09:02:40 +0000
ROA not before: Tue 29 Nov 2022 09:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201545
IP address blocks: 2a05:2340::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c2:9f:c2:37:e4:a0:23:98:62:74:bc:da:e6:60:4a:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c53b229e73ce6bb196d65c0bef119560657a3720
Validity
Not Before: Nov 29 09:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=863784ee441c31ac78e3f69a5368e4fdf85c9da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:db:6c:de:3d:5d:d9:11:30:c9:d9:6a:d5:9c:
13:f9:f3:df:9e:8a:38:01:48:88:be:62:3e:74:55:
8c:97:83:d7:cb:77:c6:90:e9:3e:a2:fa:8c:52:81:
03:0f:c1:86:d6:dd:ca:50:3c:c9:ef:f1:6e:56:bc:
47:81:7e:17:da:8f:03:26:76:83:38:d6:0c:32:4b:
b4:10:7c:4d:3e:a9:64:d0:0a:12:a6:f7:a8:43:cd:
0b:58:cb:59:1e:a5:a2:57:24:d3:75:fa:64:74:45:
f6:84:58:53:da:d7:e3:25:b7:15:da:1f:f0:3c:2d:
f9:4d:e4:5a:3a:96:05:04:04:22:7b:1b:3b:a7:b2:
1a:1c:70:cd:db:e6:3e:a3:e9:59:1d:54:92:f2:25:
10:fc:65:d2:9c:dc:b9:cd:54:3c:a5:fd:4a:13:ef:
ec:59:77:e7:aa:03:d1:9c:7c:b5:0c:5c:5c:a6:33:
9d:51:b7:19:85:a3:03:1b:27:c8:19:38:a6:ce:05:
7f:1a:26:81:46:c2:1c:75:b9:64:52:28:c2:02:d7:
58:ab:4f:5f:2e:b8:08:cc:3a:c2:64:d3:05:7a:c2:
7e:44:64:ea:ef:30:cd:97:65:a4:92:15:46:28:0f:
d4:dd:90:e7:83:2a:83:db:7d:49:95:0f:29:f5:e4:
20:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:37:84:EE:44:1C:31:AC:78:E3:F6:9A:53:68:E4:FD:F8:5C:9D:A2
X509v3 Authority Key Identifier:
keyid:C5:3B:22:9E:73:CE:6B:B1:96:D6:5C:0B:EF:11:95:60:65:7A:37:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xTsinnPOa7GW1lwL7xGVYGV6NyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e92666-4526-47c1-b2ba-63728b0fa108/1/hjeE7kQcMax44_aaU2jk_fhcnaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e92666-4526-47c1-b2ba-63728b0fa108/1/xTsinnPOa7GW1lwL7xGVYGV6NyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:2340::/32
Signature Algorithm: sha256WithRSAEncryption
43:90:71:8b:5b:6a:53:d0:6f:72:5b:b8:e2:26:09:d8:a1:00:
5a:65:90:8a:89:ef:d0:db:48:b7:67:f5:76:7e:5c:88:9f:05:
63:04:94:d6:eb:88:13:b5:fc:c9:ce:54:5e:b8:40:41:1b:96:
0c:ed:18:72:ad:71:e4:c2:2b:56:d2:b0:c2:34:8a:fe:a7:47:
15:a2:9b:c6:71:22:27:f3:3e:96:77:18:c4:68:3e:e9:84:ef:
f8:00:44:df:0e:5e:d5:08:6e:5e:00:dc:ce:96:76:fc:e0:52:
e1:18:63:71:aa:38:99:bd:c2:d8:91:48:57:ca:4c:ae:e8:53:
62:6b:cd:95:8e:e0:12:a9:74:6b:ab:fe:e4:49:05:31:95:e4:
e8:1f:f1:f2:de:ea:8c:be:99:f9:09:83:c1:c3:94:7d:5b:62:
b5:5d:5d:4a:08:a6:74:f1:6c:3d:e9:39:8b:38:1a:d6:84:43:
d2:66:e7:8b:4f:53:74:33:30:6d:69:18:56:c6:3e:af:19:8c:
e6:33:be:74:5e:af:22:c1:02:9a:c4:23:15:5a:27:4d:3a:d6:
02:68:1c:d8:55:2b:6a:03:90:f8:b7:af:b0:ef:88:d2:12:c1:
03:7f:01:0c:60:fa:f5:63:8b:18:46:73:d6:22:35:ed:df:67:
69:d9:61:89
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYTCn8I35KAjmGJ0vNrmYEpuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1M2IyMjllNzNjZTZiYjE5NmQ2NWMwYmVmMTE5NTYwNjU3
YTM3MjAwHhcNMjIxMTI5MDkwMjQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjM3ODRlZTQ0MWMzMWFjNzhlM2Y2OWE1MzY4ZTRmZGY4NWM5ZGEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAldts3j1d2REwydlq1ZwT+fPfnoo4
AUiIvmI+dFWMl4PXy3fGkOk+ovqMUoEDD8GG1t3KUDzJ7/FuVrxHgX4X2o8DJnaD
ONYMMku0EHxNPqlk0AoSpveoQ80LWMtZHqWiVyTTdfpkdEX2hFhT2tfjJbcV2h/w
PC35TeRaOpYFBAQiexs7p7IaHHDN2+Y+o+lZHVSS8iUQ/GXSnNy5zVQ8pf1KE+/s
WXfnqgPRnHy1DFxcpjOdUbcZhaMDGyfIGTimzgV/GiaBRsIcdblkUijCAtdYq09f
LrgIzDrCZNMFesJ+RGTq7zDNl2WkkhVGKA/U3ZDngyqD231JlQ8p9eQgcQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFIY3hO5EHDGseOP2mlNo5P34XJ2iMB8GA1UdIwQY
MBaAFMU7Ip5zzmuxltZcC+8RlWBlejcgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFRzaW5uUE9hN0dXMWx3TDd4R1ZZR1Y2TnlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9lOTI2NjYtNDUyNi00N2MxLWIyYmEt
NjM3MjhiMGZhMTA4LzEvaGplRTdrUWNNYXg0NF9hYVUyamtfZmhjbmFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS9lOTI2NjYtNDUyNi00N2MxLWIyYmEtNjM3MjhiMGZhMTA4
LzEveFRzaW5uUE9hN0dXMWx3TDd4R1ZZR1Y2TnlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgUjQDAN
BgkqhkiG9w0BAQsFAAOCAQEAQ5Bxi1tqU9Bvclu44iYJ2KEAWmWQionv0NtIt2f1
dn5ciJ8FYwSU1uuIE7X8yc5UXrhAQRuWDO0Ycq1x5MIrVtKwwjSK/qdHFaKbxnEi
J/M+lncYxGg+6YTv+ABE3w5e1QhuXgDczpZ2/OBS4Rhjcao4mb3C2JFIV8pMruhT
YmvNlY7gEql0a6v+5EkFMZXk6B/x8t7qjL6Z+QmDwcOUfVtitV1dSgimdPFsPek5
izga1oRD0mbni09TdDMwbWkYVsY+rxmM5jO+dF6vIsECmsQjFVonTTrWAmgc2FUr
agOQ+LevsO+I0hLBA38BDGD69WOLGEZz1iI17d9nadlhiQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:56 2024 by rpki-client on console-fra.rpki-client.org