Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/BzK5tNvdatexkEgPf-R0bnzmpbA.roa
File: BzK5tNvdatexkEgPf-R0bnzmpbA.roa (raw, json)
Hash identifier: JIFZd59hOspr6Uk8AcRtBwO8mdunySH1TcQ82kPeDpw=
Subject key identifier: 07:32:B9:B4:DB:DD:6A:D7:B1:90:48:0F:7F:E4:74:6E:7C:E6:A5:B0
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 038697A3
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/BzK5tNvdatexkEgPf-R0bnzmpbA.roa
Signing time: Fri 06 May 2022 12:04:20 +0000
ROA not before: Fri 06 May 2022 12:04:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211604
IP address blocks: 2a05:4140:375::/48 maxlen: 48
2a05:4140:335::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59152291 (0x38697a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: May 6 12:04:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0732b9b4dbdd6ad7b190480f7fe4746e7ce6a5b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5f:50:cd:26:cc:35:74:09:f0:46:e3:16:6d:
b8:49:fb:59:73:76:13:d0:5e:44:75:0e:05:f5:63:
fc:8a:9e:db:eb:b7:e6:63:e7:f7:35:b0:bf:e5:60:
bd:27:e0:74:0f:7a:ef:37:e5:9d:3b:d4:39:b6:99:
6f:b4:e5:3d:a1:58:5e:46:a4:0e:50:32:51:1f:81:
6b:a4:79:f9:e7:b8:90:44:3d:72:bb:2a:d9:3e:25:
e4:1e:2f:86:11:6f:48:60:2c:d1:fc:fb:80:0d:a9:
38:df:5c:a9:00:e2:34:f5:65:d1:36:f6:bb:8e:71:
1d:9e:86:33:b1:a4:9c:ea:13:be:24:e1:fd:dc:9d:
c8:ce:0f:ca:ce:86:cd:0a:05:95:e3:ab:37:ee:16:
24:47:22:cd:0d:79:5e:28:80:a3:4a:f7:8b:be:4b:
6a:6b:ca:29:4d:86:67:e0:b6:a0:f4:ec:48:cb:fb:
72:3a:70:f7:c0:6f:91:cf:d2:b0:c6:f9:63:4e:31:
f9:f7:53:e1:6d:5e:51:a9:af:ab:b9:29:74:6d:6f:
86:88:54:16:6c:70:00:ce:28:ac:3e:a4:30:4c:72:
c8:38:15:4e:ba:f1:25:0a:40:04:0a:ae:f1:74:b5:
a8:ee:1b:15:6f:d1:7e:af:9a:4d:f7:94:56:89:cb:
d1:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:32:B9:B4:DB:DD:6A:D7:B1:90:48:0F:7F:E4:74:6E:7C:E6:A5:B0
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/BzK5tNvdatexkEgPf-R0bnzmpbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140:335::/48
2a05:4140:375::/48
Signature Algorithm: sha256WithRSAEncryption
91:6a:4a:ee:0a:94:c4:9f:24:59:8d:ca:a7:75:ae:1d:53:91:
84:bb:c3:10:73:88:69:5e:cc:ad:ba:4d:0a:95:c8:0c:29:dd:
b3:10:bf:ee:c2:c5:5c:cf:68:a3:c7:74:3f:8a:a1:24:dc:44:
f6:9d:43:d4:9d:c6:9b:5a:d7:f5:1a:59:b9:41:d9:b8:2d:c1:
99:13:e9:e6:80:a9:eb:55:40:c6:8e:6b:5d:4b:8c:20:87:87:
d6:09:ed:f2:88:88:24:73:92:7a:62:6b:b9:71:25:1e:c7:f4:
a7:45:70:64:a5:9d:09:eb:e5:02:fc:f6:86:51:cc:4c:a2:d7:
10:c3:50:8a:10:77:42:1c:39:28:94:9d:a6:7a:48:a2:f3:92:
96:06:e9:4c:54:35:37:ce:a4:33:f4:bf:89:76:68:8d:4d:28:
f8:9c:08:e3:3c:ad:26:c0:a6:f9:69:1e:62:52:69:21:41:5b:
a3:10:42:13:3e:d8:7d:22:69:a1:a9:31:ea:01:1e:39:b5:db:
56:ac:7f:d8:65:ca:37:b0:1a:1b:28:7b:49:44:0d:c9:94:6c:
13:77:58:c7:23:f8:41:49:41:4d:07:13:9f:42:9b:1b:cb:06:
f1:25:f4:14:5a:e1:3e:d6:b3:0c:db:dc:fa:2f:b7:1e:00:a6:
9f:6f:e9:69
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEA4aXozANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NzRjNjBhZGViMGNkNTc2OGNmNzU2ZjU2MmIxYjVjYzViOWMxODBhMB4XDTIyMDUw
NjEyMDQyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDczMmI5YjRkYmRk
NmFkN2IxOTA0ODBmN2ZlNDc0NmU3Y2U2YTViMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM5fUM0mzDV0CfBG4xZtuEn7WXN2E9BeRHUOBfVj/Iqe2+u3
5mPn9zWwv+VgvSfgdA967zflnTvUObaZb7TlPaFYXkakDlAyUR+Ba6R5+ee4kEQ9
crsq2T4l5B4vhhFvSGAs0fz7gA2pON9cqQDiNPVl0Tb2u45xHZ6GM7GknOoTviTh
/dydyM4Pys6GzQoFleOrN+4WJEcizQ15XiiAo0r3i75LamvKKU2GZ+C2oPTsSMv7
cjpw98Bvkc/SsMb5Y04x+fdT4W1eUamvq7kpdG1vhohUFmxwAM4orD6kMExyyDgV
TrrxJQpABAqu8XS1qO4bFW/Rfq+aTfeUVonL0Y0CAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBQHMrm0291q17GQSA9/5HRufOalsDAfBgNVHSMEGDAWgBTHTGCt6wzVdoz3
VvVisbXMW5wYCjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3gweGdyZXNNMVhhTTkxYjFZckcxekZ1Y0dBby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWYvYWRiNjVjLWY2ZjctNDQ5NS1iYTIzLTg4NWU4NGU3NTEyZS8x
L0J6SzV0TnZkYXRleGtFZ1BmLVIwYm56bXBiQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWYv
YWRiNjVjLWY2ZjctNDQ5NS1iYTIzLTg4NWU4NGU3NTEyZS8xL3gweGdyZXNNMVhh
TTkxYjFZckcxekZ1Y0dBby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAIwEgMHACoFQUADNQMHACoFQUADdTANBgkq
hkiG9w0BAQsFAAOCAQEAkWpK7gqUxJ8kWY3Kp3WuHVORhLvDEHOIaV7MrbpNCpXI
DCndsxC/7sLFXM9oo8d0P4qhJNxE9p1D1J3Gm1rX9RpZuUHZuC3BmRPp5oCp61VA
xo5rXUuMIIeH1gnt8oiIJHOSemJruXElHsf0p0VwZKWdCevlAvz2hlHMTKLXEMNQ
ihB3Qhw5KJSdpnpIovOSlgbpTFQ1N86kM/S/iXZojU0o+JwI4zytJsCm+WkeYlJp
IUFboxBCEz7YfSJpoakx6gEeObXbVqx/2GXKN7AaGyh7SUQNyZRsE3dYxyP4QUlB
TQcTn0KbG8sG8SX0FFrhPtazDNvc+i+3HgCmn2/paQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:53 2023 by rpki-client on console-ams.rpki-client.org