Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/S18lbpEtfV1pB8fZpu-nvbU9hZM.roa
File: S18lbpEtfV1pB8fZpu-nvbU9hZM.roa (raw, json)
Hash identifier: cjCZ5vGIqrhHIoGGukqWGPhi8DfsVJR/z/rCpyIq27A=
Subject key identifier: 4B:5F:25:6E:91:2D:7D:5D:69:07:C7:D9:A6:EF:A7:BD:B5:3D:85:93
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08DFB09F
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/S18lbpEtfV1pB8fZpu-nvbU9hZM.roa
Signing time: Fri 07 Jan 2022 20:18:13 +0000
ROA not before: Fri 07 Jan 2022 20:18:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49192
IP address blocks: 2a0e:8f02:f030::/48 maxlen: 48
2a0e:8f02:f02f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148877471 (0x8dfb09f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 7 20:18:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b5f256e912d7d5d6907c7d9a6efa7bdb53d8593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:31:7d:11:bb:3d:37:2e:8c:24:a7:2a:09:e0:
b3:48:e9:95:fc:1c:7d:bf:99:e6:7c:f2:a9:5f:38:
2e:7b:7e:4f:22:ae:89:ae:6a:78:c9:29:8d:34:de:
71:df:49:de:eb:14:c3:d9:b6:29:ae:c7:ef:36:6f:
59:17:37:82:a7:a6:5e:98:67:08:76:bf:0d:52:b7:
d8:61:6e:4a:5c:94:ba:aa:a3:25:b5:ee:79:30:23:
4b:7a:85:96:da:ad:61:75:49:f4:0d:0a:1b:bc:5e:
12:f9:14:6a:77:03:8c:e6:fc:34:3e:c0:5c:4e:39:
a1:e2:fe:38:b9:0f:05:7b:70:ea:7d:75:d5:6b:ff:
a0:f7:51:1d:5e:dc:ba:56:b3:50:54:37:97:47:80:
dc:32:66:50:b6:d0:c8:bf:a1:9f:84:f3:5f:d5:80:
bd:66:af:cc:7d:e7:4c:50:57:e1:f2:1b:af:e1:c2:
4b:42:c8:a3:eb:c2:a8:4c:4d:c8:36:81:3f:e7:03:
fc:6f:12:2c:9a:35:8b:14:71:90:b0:b6:b0:da:81:
88:7b:94:b2:70:20:4a:33:cb:86:db:6d:37:db:6e:
02:71:a1:94:bf:76:b4:8e:78:d7:c8:94:ee:f4:2f:
e0:ea:3d:8a:41:1a:0f:d9:b2:78:6a:73:5d:bb:8a:
29:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:5F:25:6E:91:2D:7D:5D:69:07:C7:D9:A6:EF:A7:BD:B5:3D:85:93
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/S18lbpEtfV1pB8fZpu-nvbU9hZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f02f::-2a0e:8f02:f030:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
57:c8:22:ee:89:63:69:77:90:7f:94:1b:dd:65:c7:2f:6e:e8:
d5:b0:7c:35:d9:91:67:41:49:d4:c1:d3:2a:e4:92:96:cb:b4:
b1:97:e2:94:36:27:9b:7a:bd:ca:da:67:db:da:d3:4e:61:b9:
04:04:a8:e8:2e:b9:d1:b6:e1:28:2d:37:01:1f:89:d3:dd:60:
af:8e:76:a1:20:36:5f:d5:2e:da:01:55:f0:33:39:d3:78:cc:
ea:99:4b:a4:7d:7c:21:b1:03:92:4c:94:ec:d3:cc:8b:fc:bf:
c3:ce:86:ea:7e:74:dc:99:c9:46:8d:ba:be:5b:58:a0:90:c5:
7a:53:ed:bd:6b:16:28:02:80:cd:72:32:0c:91:98:5c:62:2b:
25:82:69:9d:18:a9:ad:81:f8:94:f0:12:3c:e1:8b:fb:e9:09:
82:4a:5b:ad:db:23:8d:68:8c:58:8c:f2:b1:a0:3d:6d:cd:8b:
70:bc:2a:af:57:70:83:a4:60:92:c9:a4:76:9e:0f:44:b9:06:
27:f8:8c:8f:e0:08:e5:e3:d9:ca:fe:93:0e:d9:c9:98:16:15:
d0:c2:04:3d:53:f3:44:6a:e8:e0:a4:6e:70:b5:42:76:00:f5:
a1:e7:a8:60:7b:ff:a8:4d:dc:02:41:d8:46:50:97:a7:ee:fe:
c9:50:df:1d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIECN+wnzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NTZlZjQ4ZWQ2MTU1ZGQ3ODQzZWVkMzYzMjQ2OWFiYWEzMTAwYmYzMB4XDTIyMDEw
NzIwMTgxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGI1ZjI1NmU5MTJk
N2Q1ZDY5MDdjN2Q5YTZlZmE3YmRiNTNkODU5MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI8xfRG7PTcujCSnKgngs0jplfwcfb+Z5nzyqV84Lnt+TyKu
ia5qeMkpjTTecd9J3usUw9m2Ka7H7zZvWRc3gqemXphnCHa/DVK32GFuSlyUuqqj
JbXueTAjS3qFltqtYXVJ9A0KG7xeEvkUancDjOb8ND7AXE45oeL+OLkPBXtw6n11
1Wv/oPdRHV7culazUFQ3l0eA3DJmULbQyL+hn4TzX9WAvWavzH3nTFBX4fIbr+HC
S0LIo+vCqExNyDaBP+cD/G8SLJo1ixRxkLC2sNqBiHuUsnAgSjPLhtttN9tuAnGh
lL92tI5418iU7vQv4Oo9ikEaD9myeGpzXbuKKTsCAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBRLXyVukS19XWkHx9mm76e9tT2FkzAfBgNVHSMEGDAWgBTVbvSO1hVd14Q+
7TYyRpq6oxAL8zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFXNzBqdFlWWGRlRVB1MDJNa2FhdXFNUUNfTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjUvNThmZjU0LTM0MTAtNGU0Mi1hYWI4LWQyZDdmMmJiNjRkZi8x
L1MxOGxicEV0ZlYxcEI4ZlpwdS1udmJVOWhaTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjUv
NThmZjU0LTM0MTAtNGU0Mi1hYWI4LWQyZDdmMmJiNjRkZi8xLzFXNzBqdFlWWGRl
RVB1MDJNa2FhdXFNUUNfTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAt
BggrBgEFBQcBBwEB/wQeMBwwGgQCAAIwFDASAwcAKg6PAvAvAwcAKg6PAvAwMA0G
CSqGSIb3DQEBCwUAA4IBAQBXyCLuiWNpd5B/lBvdZccvbujVsHw12ZFnQUnUwdMq
5JKWy7Sxl+KUNieber3K2mfb2tNOYbkEBKjoLrnRtuEoLTcBH4nT3WCvjnahIDZf
1S7aAVXwMznTeMzqmUukfXwhsQOSTJTs08yL/L/DzobqfnTcmclGjbq+W1igkMV6
U+29axYoAoDNcjIMkZhcYislgmmdGKmtgfiU8BI84Yv76QmCSlut2yONaIxYjPKx
oD1tzYtwvCqvV3CDpGCSyaR2ng9EuQYn+IyP4Ajl49nK/pMO2cmYFhXQwgQ9U/NE
aujgpG5wtUJ2APWh56hge/+oTdwCQdhGUJen7v7JUN8d
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-fra.rpki-client.org