Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/lPe-lr_0GujLidm-Q2CKB4XzUH8.roa
File: lPe-lr_0GujLidm-Q2CKB4XzUH8.roa (raw, json)
Hash identifier: hf2pYfLaOVAJW5DHscGxHwjuZQ1BIo7yD3mS1ybqzko=
Subject key identifier: 94:F7:BE:96:BF:F4:1A:E8:CB:89:D9:BE:43:60:8A:07:85:F3:50:7F
Certificate issuer: /CN=4722aea0ef4c0667db819f5d5a3daea6399f038c
Certificate serial: 0EF4FBB6
Authority key identifier: 47:22:AE:A0:EF:4C:06:67:DB:81:9F:5D:5A:3D:AE:A6:39:9F:03:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyKuoO9MBmfbgZ9dWj2upjmfA4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/lPe-lr_0GujLidm-Q2CKB4XzUH8.roa
Signing time: Sat 01 Jan 2022 09:53:45 +0000
ROA not before: Sat 01 Jan 2022 09:53:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47343
IP address blocks: 2a07:c281::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250936246 (0xef4fbb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4722aea0ef4c0667db819f5d5a3daea6399f038c
Validity
Not Before: Jan 1 09:53:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94f7be96bff41ae8cb89d9be43608a0785f3507f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:91:65:fc:51:2f:81:99:ba:11:69:6c:19:37:
af:52:1c:ea:62:47:03:b5:36:07:b3:40:40:c6:a7:
3b:17:5f:5b:74:7d:9d:f3:bd:55:c9:d0:a8:86:a2:
00:b6:e7:c1:cd:9f:e0:56:13:ce:96:8d:6e:3c:86:
13:40:4e:a5:0b:f7:dd:88:48:95:4f:c7:d3:1c:5c:
7e:2a:c5:2d:ae:58:26:90:76:3e:f5:22:59:81:39:
ac:e0:85:6e:7b:54:6e:85:3d:f9:e3:8f:14:e7:14:
72:0e:60:de:84:b5:30:7e:54:79:6b:2b:e3:0d:f5:
3c:a9:5d:df:33:b0:db:38:f6:68:3d:14:26:96:70:
ce:5d:66:6e:ee:d6:6e:c3:29:d7:da:99:d0:d8:dc:
8c:cb:59:53:04:8c:8b:22:ab:45:ca:c1:9e:e7:1c:
9d:2d:58:4f:12:4b:e2:9e:ce:c6:37:56:ed:d0:d5:
cc:37:0e:60:92:2a:76:9e:fb:ee:6c:a8:95:fa:26:
e5:43:89:8d:d9:93:a6:c9:d5:46:44:b0:fd:14:d2:
33:e1:01:e4:35:d4:87:65:eb:6c:5e:c5:0e:ab:9e:
2e:3d:b8:8d:ba:86:ae:1a:25:6b:82:33:4a:29:61:
a0:cb:65:07:b9:d1:0b:cf:4b:46:a8:38:dd:cc:c4:
b1:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:F7:BE:96:BF:F4:1A:E8:CB:89:D9:BE:43:60:8A:07:85:F3:50:7F
X509v3 Authority Key Identifier:
keyid:47:22:AE:A0:EF:4C:06:67:DB:81:9F:5D:5A:3D:AE:A6:39:9F:03:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyKuoO9MBmfbgZ9dWj2upjmfA4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/lPe-lr_0GujLidm-Q2CKB4XzUH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/RyKuoO9MBmfbgZ9dWj2upjmfA4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:c281::/32
Signature Algorithm: sha256WithRSAEncryption
30:d9:11:0f:c4:9d:56:69:d7:7b:92:02:fb:26:f2:eb:21:af:
5e:11:17:4a:c3:04:24:23:da:bf:f6:34:ae:fc:5a:f6:ce:a4:
53:5c:c1:21:4d:f7:fb:68:e2:6c:2e:2c:af:d4:6a:d2:40:0e:
22:8b:26:26:8b:a8:f9:c1:a5:8c:69:c5:0a:3d:93:8a:92:55:
a9:60:6c:bd:90:75:40:bc:4a:75:c6:61:9f:40:6e:5a:62:26:
77:2a:d2:c5:9d:d3:d9:45:7b:92:d1:2b:46:f9:29:d0:96:7b:
61:e9:84:74:32:d9:5b:7e:56:7c:a4:9d:3b:55:2d:1c:ac:33:
fe:98:29:67:aa:55:21:d7:c7:40:85:2f:6b:57:20:b4:49:64:
1a:76:f2:a0:65:87:83:82:03:61:6f:73:fe:cc:da:5a:4e:c9:
8c:3d:f2:46:46:41:f9:45:cf:b9:ee:2d:19:b0:b6:59:3b:cd:
3d:7b:69:fa:37:cb:f6:28:68:60:1c:40:94:2f:7c:4e:b2:52:
89:13:0d:d1:38:4a:ca:8b:27:10:19:26:47:13:88:c8:4a:bd:
fd:ae:cc:8e:a0:f8:7c:40:ec:ff:36:d6:52:cc:55:5f:a2:f8:
56:cd:21:30:13:b0:7f:b0:b4:5c:1a:4a:ec:5c:1e:02:69:4d:
e2:9d:8d:92
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEDvT7tjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NzIyYWVhMGVmNGMwNjY3ZGI4MTlmNWQ1YTNkYWVhNjM5OWYwMzhjMB4XDTIyMDEw
MTA5NTM0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTRmN2JlOTZiZmY0
MWFlOGNiODlkOWJlNDM2MDhhMDc4NWYzNTA3ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKKRZfxRL4GZuhFpbBk3r1Ic6mJHA7U2B7NAQManOxdfW3R9
nfO9VcnQqIaiALbnwc2f4FYTzpaNbjyGE0BOpQv33YhIlU/H0xxcfirFLa5YJpB2
PvUiWYE5rOCFbntUboU9+eOPFOcUcg5g3oS1MH5UeWsr4w31PKld3zOw2zj2aD0U
JpZwzl1mbu7WbsMp19qZ0NjcjMtZUwSMiyKrRcrBnuccnS1YTxJL4p7OxjdW7dDV
zDcOYJIqdp777myolfom5UOJjdmTpsnVRkSw/RTSM+EB5DXUh2XrbF7FDqueLj24
jbqGrhola4IzSilhoMtlB7nRC89LRqg43czEsUkCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBSU976Wv/Qa6MuJ2b5DYIoHhfNQfzAfBgNVHSMEGDAWgBRHIq6g70wGZ9uB
n11aPa6mOZ8DjDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1J5S3VvTzlNQm1mYmdaOWRXajJ1cGptZkE0dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGIvODBjMzg3LWIyMGItNDMwYS1hNWU2LTZlMzA3NGM2YzY2My8x
L2xQZS1scl8wR3VqTGlkbS1RMkNLQjRYelVIOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGIv
ODBjMzg3LWIyMGItNDMwYS1hNWU2LTZlMzA3NGM2YzY2My8xL1J5S3VvTzlNQm1m
YmdaOWRXajJ1cGptZkE0dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoHwoEwDQYJKoZIhvcNAQELBQAD
ggEBADDZEQ/EnVZp13uSAvsm8ushr14RF0rDBCQj2r/2NK78WvbOpFNcwSFN9/to
4mwuLK/UatJADiKLJiaLqPnBpYxpxQo9k4qSValgbL2QdUC8SnXGYZ9AblpiJncq
0sWd09lFe5LRK0b5KdCWe2HphHQy2Vt+VnyknTtVLRysM/6YKWeqVSHXx0CFL2tX
ILRJZBp28qBlh4OCA2Fvc/7M2lpOyYw98kZGQflFz7nuLRmwtlk7zT17afo3y/Yo
aGAcQJQvfE6yUokTDdE4SsqLJxAZJkcTiMhKvf2uzI6g+HxA7P821lLMVV+i+FbN
ITATsH+wtFwaSuxcHgJpTeKdjZI=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:33 2025 by rpki-client