Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/s2rmKjFFPUizeVLRDbC4-eN3Fss.roa
File: s2rmKjFFPUizeVLRDbC4-eN3Fss.roa (raw, json)
Hash identifier: 1fnWs//j3Gc5ZlaceyNnoTKJREcAQA5tEdLT7J8CI84=
Subject key identifier: B3:6A:E6:2A:31:45:3D:48:B3:79:52:D1:0D:B0:B8:F9:E3:77:16:CB
Certificate issuer: /CN=97893182b16718983bc008c8d087f8ddca3d8614
Certificate serial: 094A907D
Authority key identifier: 97:89:31:82:B1:67:18:98:3B:C0:08:C8:D0:87:F8:DD:CA:3D:86:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l4kxgrFnGJg7wAjI0If43co9hhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/s2rmKjFFPUizeVLRDbC4-eN3Fss.roa
Signing time: Sat 01 Jan 2022 13:56:31 +0000
ROA not before: Sat 01 Jan 2022 13:56:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29018
IP address blocks: 2a0b:1306:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155881597 (0x94a907d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97893182b16718983bc008c8d087f8ddca3d8614
Validity
Not Before: Jan 1 13:56:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b36ae62a31453d48b37952d10db0b8f9e37716cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:78:0d:da:c6:c7:11:b0:d1:7f:9a:7d:ed:b8:
86:7a:3f:f3:85:c2:f4:eb:66:65:1d:d7:5b:46:63:
48:14:d5:4a:e6:ef:93:ce:d8:e3:16:a7:8e:1d:d5:
a9:94:d4:9c:0d:3e:eb:cb:0d:f4:e1:99:7f:7c:0e:
26:bd:ed:49:d4:17:53:a0:a8:82:8c:48:4e:23:22:
05:ec:d1:e3:7b:69:fe:a7:b4:4d:5a:70:dc:cf:da:
f1:89:5e:3c:b4:6f:1e:5e:9b:0e:a7:08:b3:98:a5:
77:02:57:6b:c5:30:85:07:02:23:79:49:3a:ec:44:
a3:18:07:e4:c0:8c:06:8d:36:dc:b1:60:65:c7:67:
a8:5a:e7:0a:97:24:53:38:96:58:22:ab:1c:b1:8e:
80:37:4b:cb:2b:e1:cc:bb:e9:39:65:ec:7d:a7:bc:
34:1d:cd:55:44:16:ae:78:b5:ea:15:d3:d1:f2:be:
e4:61:6f:49:e4:a8:07:30:ab:73:de:b1:ac:c3:52:
cc:2f:f7:26:c9:a6:bb:bb:88:69:5a:7c:7f:f0:b6:
86:fb:28:96:bd:7e:2d:1c:c7:cf:fe:03:82:d4:9a:
ba:91:40:fc:0f:bb:2c:d0:94:47:c1:c7:9a:0e:de:
62:97:1f:0b:5d:96:33:01:81:31:b4:56:77:fa:16:
90:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:6A:E6:2A:31:45:3D:48:B3:79:52:D1:0D:B0:B8:F9:E3:77:16:CB
X509v3 Authority Key Identifier:
keyid:97:89:31:82:B1:67:18:98:3B:C0:08:C8:D0:87:F8:DD:CA:3D:86:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l4kxgrFnGJg7wAjI0If43co9hhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/s2rmKjFFPUizeVLRDbC4-eN3Fss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/120043-1733-4c72-ad47-bc0e511c20ce/1/l4kxgrFnGJg7wAjI0If43co9hhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:1306:3::/48
Signature Algorithm: sha256WithRSAEncryption
05:60:25:10:31:f7:74:41:d9:70:4a:c7:53:a0:7c:ad:59:7d:
94:38:25:dc:c9:ef:73:40:50:82:43:80:dd:2d:ed:4b:49:2c:
74:c2:28:14:8d:84:c1:16:0b:d1:a5:31:f6:1a:97:70:f8:85:
b0:18:e2:e9:d9:94:bc:3c:6b:11:f9:30:89:9a:60:4e:7b:7d:
6e:cb:97:28:ad:67:2d:15:7b:00:41:89:89:0f:69:d8:6b:9e:
7a:df:44:cd:35:7d:ef:48:a0:da:ad:c0:12:c4:9d:95:c9:9b:
69:e5:2a:d8:33:42:30:ac:ed:6f:aa:9c:e7:ae:a9:e1:97:02:
61:5c:47:2f:d3:ef:da:15:b7:fc:9a:b4:90:b5:be:da:f6:01:
14:09:ba:6b:15:54:89:c8:8c:59:d4:66:1f:7d:68:c4:c0:6f:
c5:a8:c2:1b:a9:a4:a5:45:f5:15:3b:ee:3a:65:6b:d5:4b:36:
a8:35:e7:a0:6d:d9:92:c2:8b:1d:e8:64:80:ed:42:22:39:87:
86:fe:3f:ef:ae:6a:58:c0:59:b3:da:8a:c0:bb:30:09:f0:44:
52:4a:88:86:5e:89:42:88:0c:b2:fe:82:6c:6d:5f:f0:ad:50:
bc:a4:d1:c1:e2:62:f5:19:37:c8:df:4f:6c:da:16:8f:8d:8c:
a1:95:09:fc
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECUqQfTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
Nzg5MzE4MmIxNjcxODk4M2JjMDA4YzhkMDg3ZjhkZGNhM2Q4NjE0MB4XDTIyMDEw
MTEzNTYzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjM2YWU2MmEzMTQ1
M2Q0OGIzNzk1MmQxMGRiMGI4ZjllMzc3MTZjYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKl4DdrGxxGw0X+afe24hno/84XC9OtmZR3XW0ZjSBTVSubv
k87Y4xanjh3VqZTUnA0+68sN9OGZf3wOJr3tSdQXU6CogoxITiMiBezR43tp/qe0
TVpw3M/a8YlePLRvHl6bDqcIs5ildwJXa8UwhQcCI3lJOuxEoxgH5MCMBo023LFg
ZcdnqFrnCpckUziWWCKrHLGOgDdLyyvhzLvpOWXsfae8NB3NVUQWrni16hXT0fK+
5GFvSeSoBzCrc96xrMNSzC/3Jsmmu7uIaVp8f/C2hvsolr1+LRzHz/4DgtSaupFA
/A+7LNCUR8HHmg7eYpcfC12WMwGBMbRWd/oWkOsCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSzauYqMUU9SLN5UtENsLj543cWyzAfBgNVHSMEGDAWgBSXiTGCsWcYmDvA
CMjQh/jdyj2GFDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2w0a3hnckZuR0pnN3dBakkwSWY0M2NvOWhoUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTUvMTIwMDQzLTE3MzMtNGM3Mi1hZDQ3LWJjMGU1MTFjMjBjZS8x
L3Mycm1LakZGUFVpemVWTFJEYkM0LWVOM0Zzcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTUv
MTIwMDQzLTE3MzMtNGM3Mi1hZDQ3LWJjMGU1MTFjMjBjZS8xL2w0a3hnckZuR0pn
N3dBakkwSWY0M2NvOWhoUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoLEwYAAzANBgkqhkiG9w0BAQsF
AAOCAQEABWAlEDH3dEHZcErHU6B8rVl9lDgl3Mnvc0BQgkOA3S3tS0ksdMIoFI2E
wRYL0aUx9hqXcPiFsBji6dmUvDxrEfkwiZpgTnt9bsuXKK1nLRV7AEGJiQ9p2Gue
et9EzTV970ig2q3AEsSdlcmbaeUq2DNCMKztb6qc566p4ZcCYVxHL9Pv2hW3/Jq0
kLW+2vYBFAm6axVUiciMWdRmH31oxMBvxajCG6mkpUX1FTvuOmVr1Us2qDXnoG3Z
ksKLHehkgO1CIjmHhv4/765qWMBZs9qKwLswCfBEUkqIhl6JQogMsv6CbG1f8K1Q
vKTRweJi9Rk3yN9PbNoWj42MoZUJ/A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:19 2024 by rpki-client on console-fra.rpki-client.org