Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/bl8LUaD7hOyNRUdFfypE2-wb5X0.roa
File: bl8LUaD7hOyNRUdFfypE2-wb5X0.roa (raw, json)
Hash identifier: +iaEV32bSA5ija14flzD4m689b0sMBRUM5phRgHNA2A=
Subject key identifier: 6E:5F:0B:51:A0:FB:84:EC:8D:45:47:45:7F:2A:44:DB:EC:1B:E5:7D
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 0183760BA395D4B89039C6BAB62C3D3558C4
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/bl8LUaD7hOyNRUdFfypE2-wb5X0.roa
Signing time: Sun 25 Sep 2022 19:06:57 +0000
ROA not before: Sun 25 Sep 2022 19:06:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202827
IP address blocks: 2a05:4140:1000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:76:0b:a3:95:d4:b8:90:39:c6:ba:b6:2c:3d:35:58:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Sep 25 19:06:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e5f0b51a0fb84ec8d4547457f2a44dbec1be57d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4e:5d:f1:58:b6:f0:02:aa:d2:2b:85:9a:c8:
36:8f:c2:68:ab:33:07:78:48:fb:5a:d8:84:92:61:
a8:8a:d6:c5:2a:b4:b4:94:3c:ec:5a:ca:76:58:b2:
2d:0b:8f:ed:f2:1e:f4:e9:01:07:c7:e3:c0:fd:dd:
c5:21:05:b0:6c:b9:a5:f5:fa:67:31:ab:17:69:64:
53:f1:92:34:f3:b1:46:39:03:3d:52:6f:f4:42:3f:
2a:24:d3:54:0b:40:fc:1a:fe:7a:c6:f3:ed:c7:f4:
a7:53:4e:f4:5c:f5:d4:fb:70:29:64:0f:82:82:d5:
83:63:d1:84:c5:ba:a1:cb:31:be:7d:64:44:b2:7f:
ab:6d:87:f1:a1:5f:67:b0:09:d2:92:f0:3b:af:74:
be:b8:1e:82:7d:ca:64:ba:b8:01:1f:2a:dd:bb:3f:
56:5c:73:17:f7:e8:72:99:6e:9e:1f:b0:90:a2:f4:
39:39:0c:01:4a:ec:46:70:37:5f:ef:3e:45:1f:3f:
2e:d5:82:28:03:b8:03:eb:de:42:ae:1c:ca:77:79:
0f:23:d2:59:7e:46:e6:e2:ce:e5:25:17:d3:ff:a2:
9a:b8:b0:a9:44:81:15:55:93:7c:5b:d7:e8:e5:66:
0c:f2:6b:ed:67:79:c3:3d:6c:45:b5:bc:10:91:c7:
83:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:5F:0B:51:A0:FB:84:EC:8D:45:47:45:7F:2A:44:DB:EC:1B:E5:7D
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/bl8LUaD7hOyNRUdFfypE2-wb5X0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140:1000::/36
Signature Algorithm: sha256WithRSAEncryption
6f:85:02:37:b1:a8:d0:7f:42:e7:e6:95:a7:55:8c:97:2d:89:
21:58:1f:c1:27:f3:0d:62:ae:3f:f4:b6:59:15:63:5d:5f:7c:
62:3d:f4:b4:3d:1c:41:77:af:d7:d7:07:63:c2:65:0b:a1:cd:
f4:d1:2e:e6:f3:11:9d:6a:0b:1b:30:ea:2b:f6:2e:99:24:70:
d5:15:86:77:bb:6d:17:38:35:56:6d:95:54:2f:c5:3e:a5:93:
bf:7f:1e:20:cb:2a:8c:7a:1f:c2:4f:49:80:86:0e:38:ad:b3:
f5:d5:d5:c6:91:57:d5:88:4d:c4:f2:c2:2b:f6:07:c1:e9:37:
3b:60:ab:e3:5a:34:25:0b:ec:58:90:b0:3d:e8:a4:91:9c:ef:
9e:1f:09:51:5e:d9:4b:fd:67:ff:5e:14:36:15:36:f7:89:d7:
9c:f6:e6:fa:b8:c0:c3:87:7f:9c:6e:9b:fe:4f:f1:c4:4f:2a:
78:f0:c7:24:54:fc:54:ad:55:de:fc:3c:24:0d:dd:89:34:1e:
fa:5a:30:15:24:16:02:98:37:2e:2a:d4:b5:b0:4d:49:63:39:
e1:5e:31:07:eb:1d:31:04:54:10:a4:57:07:2d:51:54:2e:e1:
86:0f:cc:4f:84:75:66:be:e6:b2:7f:52:c1:41:b2:89:fe:e2:
4c:ae:2f:95
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYN2C6OV1LiQOca6tiw9NVjEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3NGM2MGFkZWIwY2Q1NzY4Y2Y3NTZmNTYyYjFiNWNjNWI5
YzE4MGEwHhcNMjIwOTI1MTkwNjU3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTVmMGI1MWEwZmI4NGVjOGQ0NTQ3NDU3ZjJhNDRkYmVjMWJlNTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxU5d8Vi28AKq0iuFmsg2j8JoqzMH
eEj7WtiEkmGoitbFKrS0lDzsWsp2WLItC4/t8h706QEHx+PA/d3FIQWwbLml9fpn
MasXaWRT8ZI087FGOQM9Um/0Qj8qJNNUC0D8Gv56xvPtx/SnU070XPXU+3ApZA+C
gtWDY9GExbqhyzG+fWREsn+rbYfxoV9nsAnSkvA7r3S+uB6CfcpkurgBHyrduz9W
XHMX9+hymW6eH7CQovQ5OQwBSuxGcDdf7z5FHz8u1YIoA7gD695CrhzKd3kPI9JZ
fkbm4s7lJRfT/6KauLCpRIEVVZN8W9fo5WYM8mvtZ3nDPWxFtbwQkceDOQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFG5fC1Gg+4TsjUVHRX8qRNvsG+V9MB8GA1UdIwQY
MBaAFMdMYK3rDNV2jPdW9WKxtcxbnBgKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDB4Z3Jlc00xWGFNOTFiMVlyRzF6RnVjR0FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9hZGI2NWMtZjZmNy00NDk1LWJhMjMt
ODg1ZTg0ZTc1MTJlLzEvYmw4TFVhRDdoT3lOUlVkRmZ5cEUyLXdiNVgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi9hZGI2NWMtZjZmNy00NDk1LWJhMjMtODg1ZTg0ZTc1MTJl
LzEveDB4Z3Jlc00xWGFNOTFiMVlyRzF6RnVjR0FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKgVBQBAw
DQYJKoZIhvcNAQELBQADggEBAG+FAjexqNB/QufmladVjJctiSFYH8En8w1irj/0
tlkVY11ffGI99LQ9HEF3r9fXB2PCZQuhzfTRLubzEZ1qCxsw6iv2LpkkcNUVhne7
bRc4NVZtlVQvxT6lk79/HiDLKox6H8JPSYCGDjits/XV1caRV9WITcTywiv2B8Hp
Nztgq+NaNCUL7FiQsD3opJGc754fCVFe2Uv9Z/9eFDYVNveJ15z25vq4wMOHf5xu
m/5P8cRPKnjwxyRU/FStVd78PCQN3Yk0HvpaMBUkFgKYNy4q1LWwTUljOeFeMQfr
HTEEVBCkVwctUVQu4YYPzE+EdWa+5rJ/UsFBson+4kyuL5U=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:06 2023 by rpki-client on console-fra.rpki-client.org