Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/3lyGJA5EdhFq7klNOhUy8x2hy3k.roa
File: 3lyGJA5EdhFq7klNOhUy8x2hy3k.roa (raw, json)
Hash identifier: rgwx23HZaBuhcpvHxxyxSCc9tufVlNr89Li8hQJKvPU=
Subject key identifier: DE:5C:86:24:0E:44:76:11:6A:EE:49:4D:3A:15:32:F3:1D:A1:CB:79
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: FB2920
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/3lyGJA5EdhFq7klNOhUy8x2hy3k.roa
Signing time: Sat 01 Jan 2022 00:59:23 +0000
ROA not before: Sat 01 Jan 2022 00:59:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 2a0c:b641:130::/44 maxlen: 48
2a0c:b641:160::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16460064 (0xfb2920)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de5c86240e4476116aee494d3a1532f31da1cb79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2c:e4:a8:08:72:5f:e0:37:c0:29:8a:8b:52:
6b:5d:0d:f1:1a:40:90:eb:7b:9a:53:56:90:3c:cb:
c0:19:c1:fc:22:3f:45:e0:98:11:49:e2:a3:6d:e2:
15:de:50:ac:30:de:cc:91:3a:44:7b:0a:88:dc:7a:
7a:44:4b:80:86:b3:93:5f:41:1d:e0:6e:df:19:85:
eb:3d:ac:82:09:5d:a8:70:5f:7a:31:8b:84:24:46:
0c:18:2e:3c:ed:a0:73:6d:3d:fd:d8:e6:fc:4b:9a:
8b:03:7c:8d:9f:5e:5a:a7:45:70:ed:22:06:02:f2:
c8:e3:d4:03:8c:2c:83:02:d4:2a:23:b1:94:32:73:
bf:cc:0b:fa:65:d6:24:b9:cd:28:58:19:61:00:c6:
f1:bf:b2:6a:4c:af:ca:b8:e9:19:25:28:4e:90:05:
48:4e:03:65:1e:18:47:c4:01:c6:a5:31:b2:bb:b1:
dc:6e:ea:83:e1:52:c2:82:7f:72:33:50:81:1c:73:
0d:09:36:9a:40:d6:8f:ff:1e:5e:07:65:ea:83:10:
ca:69:1b:00:0b:ce:7e:d7:19:df:2a:b2:6e:51:14:
18:26:17:54:ec:30:2b:81:1b:ac:a1:d6:40:fe:be:
eb:5f:1a:75:8f:9a:de:07:6c:33:33:8b:8a:86:86:
f2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:5C:86:24:0E:44:76:11:6A:EE:49:4D:3A:15:32:F3:1D:A1:CB:79
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/3lyGJA5EdhFq7klNOhUy8x2hy3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:130::/44
2a0c:b641:160::/44
Signature Algorithm: sha256WithRSAEncryption
93:83:0c:ef:17:e4:3c:e1:9f:67:9e:f1:47:24:3e:e1:d9:ee:
e4:3b:f9:d6:f6:80:e7:b2:35:17:f7:14:18:e4:ce:c1:b6:b9:
0d:bb:7b:d0:b6:a9:07:4f:4e:c1:25:02:9b:bf:87:b5:2a:36:
99:83:00:67:1d:d9:f0:2c:d3:6d:5f:74:b2:32:00:df:b0:30:
57:d7:58:2b:23:5b:29:cb:c4:dc:ff:30:25:5f:31:e3:43:1c:
88:1b:cd:f0:ad:de:9c:e1:a1:a6:62:ca:7f:8b:29:d8:32:9f:
19:0d:85:cf:e1:9d:a6:b2:7d:bf:cb:12:2b:c3:f6:06:57:a2:
a4:4d:87:10:66:12:6a:d9:9e:44:94:7c:c8:86:2c:22:b7:69:
78:ea:1b:cc:51:79:82:f2:32:48:ca:f2:8b:5d:72:c7:01:12:
2a:28:af:d0:ef:dc:42:8e:bb:d7:fb:93:f6:fc:39:b7:5a:db:
41:9a:8c:0c:9d:75:f6:19:8e:af:ad:8e:0d:4d:0c:92:66:45:
3b:31:b7:79:7e:8d:86:57:41:43:07:24:45:fc:e4:5d:a0:81:
77:07:18:8d:73:08:ac:a9:fa:b6:d3:00:9a:b1:85:f5:4e:7b:
f2:00:b4:6e:4d:41:fd:94:a7:bc:93:07:13:67:f8:6d:29:21:
40:b1:1e:38
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEAPspIDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTk3NjgwMTM2M2QzNzU3ODYxNTJlNGQwNjFlNzVjOGJlYjM1MDU4MB4XDTIyMDEw
MTAwNTkyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGU1Yzg2MjQwZTQ0
NzYxMTZhZWU0OTRkM2ExNTMyZjMxZGExY2I3OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALks5KgIcl/gN8ApiotSa10N8RpAkOt7mlNWkDzLwBnB/CI/
ReCYEUnio23iFd5QrDDezJE6RHsKiNx6ekRLgIazk19BHeBu3xmF6z2sggldqHBf
ejGLhCRGDBguPO2gc209/djm/EuaiwN8jZ9eWqdFcO0iBgLyyOPUA4wsgwLUKiOx
lDJzv8wL+mXWJLnNKFgZYQDG8b+yakyvyrjpGSUoTpAFSE4DZR4YR8QBxqUxsrux
3G7qg+FSwoJ/cjNQgRxzDQk2mkDWj/8eXgdl6oMQymkbAAvOftcZ3yqyblEUGCYX
VOwwK4EbrKHWQP6+618adY+a3gdsMzOLioaG8i8CAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBTeXIYkDkR2EWruSU06FTLzHaHLeTAfBgNVHSMEGDAWgBQFl2gBNj03V4YV
Lk0GHnXIvrNQWDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JaZG9BVFk5TjFlR0ZTNU5CaDUxeUw2elVGZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvMmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8x
LzNseUdKQTVFZGhGcTdrbE5PaFV5OHgyaHkzay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
MmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8xL0JaZG9BVFk5TjFl
R0ZTNU5CaDUxeUw2elVGZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAIwEgMHBCoMtkEBMAMHBCoMtkEBYDANBgkq
hkiG9w0BAQsFAAOCAQEAk4MM7xfkPOGfZ57xRyQ+4dnu5Dv51vaA57I1F/cUGOTO
wba5Dbt70LapB09OwSUCm7+HtSo2mYMAZx3Z8CzTbV90sjIA37AwV9dYKyNbKcvE
3P8wJV8x40MciBvN8K3enOGhpmLKf4sp2DKfGQ2Fz+GdprJ9v8sSK8P2BleipE2H
EGYSatmeRJR8yIYsIrdpeOobzFF5gvIySMryi11yxwESKiiv0O/cQo671/uT9vw5
t1rbQZqMDJ119hmOr62ODU0MkmZFOzG3eX6NhldBQwckRfzkXaCBdwcYjXMIrKn6
ttMAmrGF9U578gC0bk1B/ZSnvJMHE2f4bSkhQLEeOA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org