Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/U5DUqc1TrSeVONmREq3SpQ40IDQ.roa
File: U5DUqc1TrSeVONmREq3SpQ40IDQ.roa (raw, json)
Hash identifier: z4S+UJyb6yUwN/QnYoW6llxDxJdDDqlhkZam6Se0s+Q=
Subject key identifier: 53:90:D4:A9:CD:53:AD:27:95:38:D9:91:12:AD:D2:A5:0E:34:20:34
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01312A04
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/U5DUqc1TrSeVONmREq3SpQ40IDQ.roa
Signing time: Sat 01 Jan 2022 00:59:51 +0000
ROA not before: Sat 01 Jan 2022 00:59:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209710
IP address blocks: 2a0c:b641:200::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19999236 (0x1312a04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5390d4a9cd53ad279538d99112add2a50e342034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:98:e0:b2:60:c7:91:15:ae:98:28:40:2e:fb:
4c:5b:d7:3f:b6:40:e0:10:d6:35:2e:19:e0:0c:05:
2f:1d:17:d0:72:ce:aa:2a:e9:62:16:2b:42:5d:da:
bc:83:22:ab:fa:2a:e7:ac:fc:68:20:fe:cb:3f:5d:
d5:fa:a5:69:ff:0f:fe:93:d8:c9:dd:20:01:2b:2b:
00:8a:5d:7c:2e:e7:aa:99:dc:a6:e5:38:18:cc:1c:
ac:0d:cb:fe:df:19:15:3d:48:ff:54:e2:b7:5c:27:
b7:fa:21:97:55:a5:23:79:5b:d4:3c:db:d9:48:df:
71:a8:72:7a:1b:de:49:c2:7c:71:5a:73:54:5e:73:
24:7d:a5:a1:e7:cf:48:a6:64:4c:f0:33:7c:44:9c:
10:cd:e3:82:c1:0a:ba:bd:15:ea:8a:be:83:99:23:
d9:cc:2c:2e:32:c6:bd:43:b3:f3:5e:c1:ed:8f:06:
db:03:30:36:f7:3e:30:bd:c8:69:f9:c9:f8:46:96:
ed:6e:ac:2c:7d:04:dc:c8:15:44:9c:80:20:c1:cb:
06:9e:9e:5f:20:cf:b4:79:c7:2a:8b:63:88:e1:6b:
aa:b9:62:21:60:62:fc:65:43:9c:bf:66:c9:22:77:
e5:d0:b5:92:49:7c:bb:38:4b:4b:8b:cd:12:54:7e:
dc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:90:D4:A9:CD:53:AD:27:95:38:D9:91:12:AD:D2:A5:0E:34:20:34
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/U5DUqc1TrSeVONmREq3SpQ40IDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:200::/44
Signature Algorithm: sha256WithRSAEncryption
66:ec:eb:e3:6e:92:82:6a:88:76:c6:f7:45:da:ed:59:eb:2e:
31:df:37:32:59:50:2c:9c:0c:ff:95:b8:d8:78:b3:4f:4e:b2:
6a:02:4d:d5:b5:61:56:d0:d8:0a:4a:d1:b9:8d:94:cc:12:5f:
df:ff:59:ef:92:19:59:33:d5:ec:2a:6d:91:68:55:b3:4f:8b:
65:80:c4:11:2a:c5:5f:52:41:ee:a2:65:63:8c:e2:c4:ab:60:
38:27:3e:2f:d9:cd:70:f5:3a:27:40:e3:47:c7:18:55:14:a3:
47:77:53:16:e7:c0:21:3a:ef:0d:92:4a:de:07:11:1e:3a:e8:
9d:eb:dd:a8:36:d5:f1:0e:cd:6b:bc:03:92:7b:4e:94:a3:a0:
22:2d:2c:ad:90:9c:a1:a5:14:fb:82:ed:e3:9e:46:e9:48:b5:
9d:88:e5:e1:de:ec:f0:68:4d:b3:9c:0c:5a:ae:1e:2a:8d:e1:
4f:21:27:61:54:10:67:5d:fc:9a:eb:97:3e:f6:02:1e:ae:3f:
85:9c:8d:55:e3:f7:d8:d4:d0:79:e4:41:72:21:5c:64:cf:0a:
86:a9:54:ac:87:c1:55:43:00:09:ae:04:d1:72:43:32:4b:53:
85:cb:83:f3:24:10:dd:80:bf:56:b2:ce:89:70:30:74:44:b7:
16:4f:92:f3
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEATEqBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTk3NjgwMTM2M2QzNzU3ODYxNTJlNGQwNjFlNzVjOGJlYjM1MDU4MB4XDTIyMDEw
MTAwNTk1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTM5MGQ0YTljZDUz
YWQyNzk1MzhkOTkxMTJhZGQyYTUwZTM0MjAzNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN6Y4LJgx5EVrpgoQC77TFvXP7ZA4BDWNS4Z4AwFLx0X0HLO
qirpYhYrQl3avIMiq/oq56z8aCD+yz9d1fqlaf8P/pPYyd0gASsrAIpdfC7nqpnc
puU4GMwcrA3L/t8ZFT1I/1Tit1wnt/ohl1WlI3lb1Dzb2UjfcahyehveScJ8cVpz
VF5zJH2loefPSKZkTPAzfEScEM3jgsEKur0V6oq+g5kj2cwsLjLGvUOz817B7Y8G
2wMwNvc+ML3IafnJ+EaW7W6sLH0E3MgVRJyAIMHLBp6eXyDPtHnHKotjiOFrqrli
IWBi/GVDnL9mySJ35dC1kkl8uzhLS4vNElR+3G8CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRTkNSpzVOtJ5U42ZESrdKlDjQgNDAfBgNVHSMEGDAWgBQFl2gBNj03V4YV
Lk0GHnXIvrNQWDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JaZG9BVFk5TjFlR0ZTNU5CaDUxeUw2elVGZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvMmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8x
L1U1RFVxYzFUclNlVk9ObVJFcTNTcFE0MElEUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
MmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8xL0JaZG9BVFk5TjFl
R0ZTNU5CaDUxeUw2elVGZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoMtkECADANBgkqhkiG9w0BAQsF
AAOCAQEAZuzr426SgmqIdsb3RdrtWesuMd83MllQLJwM/5W42HizT06yagJN1bVh
VtDYCkrRuY2UzBJf3/9Z75IZWTPV7CptkWhVs0+LZYDEESrFX1JB7qJlY4zixKtg
OCc+L9nNcPU6J0DjR8cYVRSjR3dTFufAITrvDZJK3gcRHjronevdqDbV8Q7Na7wD
kntOlKOgIi0srZCcoaUU+4Lt455G6Ui1nYjl4d7s8GhNs5wMWq4eKo3hTyEnYVQQ
Z138muuXPvYCHq4/hZyNVeP32NTQeeRBciFcZM8KhqlUrIfBVUMACa4E0XJDMktT
hcuD8yQQ3YC/VrLOiXAwdES3Fk+S8w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org