Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1ipwAUyX2jGMrMQ5JlVw9Bidt5Y.roa
File: 1ipwAUyX2jGMrMQ5JlVw9Bidt5Y.roa (raw, json)
Hash identifier: PrwYemC/JlvJE/9z0PsP5gmVZ1vgprx2oJpV5HZgUxU=
Subject key identifier: D6:2A:70:01:4C:97:DA:31:8C:AC:C4:39:26:55:70:F4:18:9D:B7:96
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 015D9DB3
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1ipwAUyX2jGMrMQ5JlVw9Bidt5Y.roa
Signing time: Sat 01 Jan 2022 01:00:31 +0000
ROA not before: Sat 01 Jan 2022 01:00:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213219
IP address blocks: 2a0c:b641:6d0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22912435 (0x15d9db3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d62a70014c97da318cacc439265570f4189db796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d7:21:25:d5:63:7e:8a:43:d7:6e:84:d0:9e:
36:86:1a:26:90:25:d8:2b:7d:9e:5f:24:b6:29:2e:
0a:83:c2:9d:48:3d:67:66:00:61:32:4d:a3:ec:b7:
43:95:1c:27:24:d7:37:f2:15:89:d4:e2:79:d4:71:
d4:23:1b:56:90:9a:03:51:38:ba:2b:7a:bb:9c:90:
44:c2:60:68:d3:9d:c5:1b:1e:eb:f0:23:27:e0:6f:
56:6d:72:b8:9d:a4:29:b4:65:01:4b:38:dc:7b:89:
03:4d:d5:03:5f:03:5b:a1:4b:9e:c2:0a:6c:cc:3a:
73:a0:39:4b:b1:32:6a:64:b4:c9:9e:d0:98:dd:9c:
ef:f4:db:0f:75:ca:67:3b:4c:87:8d:ca:10:3c:5a:
9f:81:51:05:29:03:38:f8:c9:fb:c3:e5:de:b7:49:
af:c1:89:ea:70:73:a7:26:38:7e:71:cb:11:23:7f:
f2:9d:af:35:f9:d8:d3:2b:89:aa:3d:41:dd:8e:44:
b5:f4:06:cd:88:6d:96:94:bf:0b:5d:6e:0d:e7:75:
bc:89:ca:81:71:3c:72:6a:ea:1c:f3:cb:2c:36:2d:
d9:79:bb:f2:39:fd:0f:66:45:a3:e4:8f:17:fa:41:
55:f8:6a:2f:9b:63:fd:10:72:b4:ad:ad:ec:46:77:
45:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:2A:70:01:4C:97:DA:31:8C:AC:C4:39:26:55:70:F4:18:9D:B7:96
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/1ipwAUyX2jGMrMQ5JlVw9Bidt5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:6d0::/44
Signature Algorithm: sha256WithRSAEncryption
27:46:a5:6e:e1:42:85:12:2b:e2:d6:9e:74:ae:0b:7d:53:0d:
b3:04:a7:f0:b2:8c:9c:2d:9e:1c:09:9c:e3:c3:8e:dc:ce:f5:
3d:ca:92:70:80:77:7a:ce:34:a2:45:4a:00:b6:af:13:5b:ca:
66:e9:1b:7b:ac:1f:eb:3a:f6:27:5a:8e:d0:c6:1d:1f:ec:df:
3b:39:6e:97:ec:8b:a1:89:e0:19:81:67:e3:a8:91:ab:74:31:
93:73:2f:28:7f:65:cc:3b:59:e1:5d:66:cc:b7:5b:ad:8b:dc:
67:f4:be:49:d3:f8:61:55:5a:65:f7:72:11:d3:77:69:e7:a8:
38:aa:91:fa:8d:72:1f:18:a9:09:d0:80:d7:d5:a9:12:27:3b:
9f:62:69:05:22:67:da:6d:64:71:f0:6c:91:2f:99:5e:92:fc:
07:62:90:fa:b6:39:e6:67:e0:4b:a2:b7:fa:4a:31:22:d3:76:
30:48:e9:e6:3e:49:b5:f1:b2:e2:7f:b3:a1:81:15:be:8c:d9:
0c:84:80:0b:84:ec:f2:7e:16:f9:87:87:21:1f:85:41:26:9a:
cd:0b:81:49:18:75:91:d1:ae:10:a8:39:42:cb:87:3c:6f:af:
2b:af:93:ac:06:cf:97:f9:a9:23:2a:90:15:e8:9b:14:20:48:
5f:08:9d:af
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEAV2dszANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTk3NjgwMTM2M2QzNzU3ODYxNTJlNGQwNjFlNzVjOGJlYjM1MDU4MB4XDTIyMDEw
MTAxMDAzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDYyYTcwMDE0Yzk3
ZGEzMThjYWNjNDM5MjY1NTcwZjQxODlkYjc5NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANzXISXVY36KQ9duhNCeNoYaJpAl2Ct9nl8ktikuCoPCnUg9
Z2YAYTJNo+y3Q5UcJyTXN/IVidTiedRx1CMbVpCaA1E4uit6u5yQRMJgaNOdxRse
6/AjJ+BvVm1yuJ2kKbRlAUs43HuJA03VA18DW6FLnsIKbMw6c6A5S7EyamS0yZ7Q
mN2c7/TbD3XKZztMh43KEDxan4FRBSkDOPjJ+8Pl3rdJr8GJ6nBzpyY4fnHLESN/
8p2vNfnY0yuJqj1B3Y5EtfQGzYhtlpS/C11uDed1vInKgXE8cmrqHPPLLDYt2Xm7
8jn9D2ZFo+SPF/pBVfhqL5tj/RBytK2t7EZ3RQMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTWKnABTJfaMYysxDkmVXD0GJ23ljAfBgNVHSMEGDAWgBQFl2gBNj03V4YV
Lk0GHnXIvrNQWDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JaZG9BVFk5TjFlR0ZTNU5CaDUxeUw2elVGZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvMmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8x
LzFpcHdBVXlYMmpHTXJNUTVKbFZ3OUJpZHQ1WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
MmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8xL0JaZG9BVFk5TjFl
R0ZTNU5CaDUxeUw2elVGZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoMtkEG0DANBgkqhkiG9w0BAQsF
AAOCAQEAJ0albuFChRIr4taedK4LfVMNswSn8LKMnC2eHAmc48OO3M71PcqScIB3
es40okVKALavE1vKZukbe6wf6zr2J1qO0MYdH+zfOzlul+yLoYngGYFn46iRq3Qx
k3MvKH9lzDtZ4V1mzLdbrYvcZ/S+SdP4YVVaZfdyEdN3aeeoOKqR+o1yHxipCdCA
19WpEic7n2JpBSJn2m1kcfBskS+ZXpL8B2KQ+rY55mfgS6K3+koxItN2MEjp5j5J
tfGy4n+zoYEVvozZDISAC4Ts8n4W+YeHIR+FQSaazQuBSRh1kdGuEKg5QsuHPG+v
K6+TrAbPl/mpIyqQFeibFCBIXwidrw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:37 2024 by rpki-client on console-ams.rpki-client.org