Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/UWoCQNwMzh0y1NlPvUWbpzUU8HU.roa
File: UWoCQNwMzh0y1NlPvUWbpzUU8HU.roa (raw, json)
Hash identifier: 3mDJ8qYSUyv7t0SS66+hzjCheYuNrJTZlzrwiczn4bI=
Subject key identifier: 51:6A:02:40:DC:0C:CE:1D:32:D4:D9:4F:BD:45:9B:A7:35:14:F0:75
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 013F9780
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/UWoCQNwMzh0y1NlPvUWbpzUU8HU.roa
Signing time: Sat 01 Jan 2022 01:00:13 +0000
ROA not before: Sat 01 Jan 2022 01:00:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210956
IP address blocks: 2a0c:b641:70::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20944768 (0x13f9780)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=516a0240dc0cce1d32d4d94fbd459ba73514f075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:44:56:2b:83:0d:23:93:98:bb:e2:8f:e2:6f:
46:aa:77:6f:d6:95:40:d6:fb:0a:59:6a:d6:fe:53:
dc:d3:fb:c8:a2:f7:69:67:37:b4:0c:5e:e9:f8:24:
00:d9:0f:32:34:a1:bd:15:c9:e5:a4:34:f4:43:5f:
d6:0d:35:ba:49:11:b9:c3:a4:6b:5b:00:97:51:45:
5d:4c:0e:ef:da:86:1f:7e:cf:6e:38:73:a1:5e:6f:
19:0a:48:22:f0:16:ec:fb:0f:f5:ce:d0:e8:0e:f0:
47:d3:d4:d7:07:bb:4d:89:dc:9d:f4:33:81:b3:39:
17:5a:87:83:12:dd:5e:d1:48:a8:70:20:0f:d6:89:
4b:a7:0e:92:af:3a:fd:d8:96:5b:29:14:3f:5f:58:
1b:c4:9b:db:76:50:a1:6b:d4:bd:d4:73:f8:ec:75:
15:4f:30:e0:be:c8:a7:8f:ef:00:87:d1:da:33:4f:
ba:7e:a1:e3:93:77:6f:e0:f5:00:8c:64:40:f3:69:
68:62:5d:39:db:4c:36:64:d5:99:a0:5d:b4:c3:30:
13:63:cf:d2:26:ea:bd:0c:55:ca:d5:d5:79:3d:17:
14:69:e7:44:85:fa:fd:38:df:35:fe:9f:a2:7c:dc:
62:91:31:f1:c7:b7:c0:72:7b:d1:fc:b5:e4:9b:94:
9d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:6A:02:40:DC:0C:CE:1D:32:D4:D9:4F:BD:45:9B:A7:35:14:F0:75
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/UWoCQNwMzh0y1NlPvUWbpzUU8HU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:70::/44
Signature Algorithm: sha256WithRSAEncryption
49:97:ad:3d:24:81:c8:fa:dd:08:3f:73:87:de:eb:bd:25:b5:
e4:f5:01:0c:ab:7f:4f:af:0b:68:b5:78:9c:20:d4:5f:00:c4:
9e:1b:76:33:a6:e2:03:de:84:7c:d8:6e:ef:ef:1b:0a:a8:fc:
73:61:3d:fe:78:22:bb:76:8e:61:0e:c0:ec:86:1c:4a:a9:3c:
da:3d:05:d3:6b:13:a1:4a:64:b0:9d:ce:24:cd:97:70:28:fc:
2a:30:64:db:13:97:f6:b7:a4:fa:cd:1b:0a:06:69:d1:d6:21:
95:b5:e2:5a:04:c8:f3:f7:f1:7c:e3:f5:68:5a:55:4e:75:3d:
cf:5c:ad:0b:16:c2:e7:18:87:47:9e:07:c9:96:b3:33:9c:fd:
57:35:8b:de:4c:1c:a1:db:33:39:64:09:1a:c8:8a:12:8e:01:
87:83:c4:21:f1:96:8c:b3:62:35:41:cf:2f:9d:1d:a5:26:75:
1c:80:80:54:50:49:3e:8e:fb:5a:26:1d:b2:63:13:43:d1:a3:
de:7a:54:f8:c7:fe:dc:43:15:45:a3:ea:5b:97:91:41:d7:f5:
d2:75:f3:e2:92:8e:3c:33:5d:45:53:0c:34:17:e3:6e:e7:c3:
cb:53:2b:14:ac:f9:bc:24:04:94:de:a1:cd:33:23:6f:16:c5:
42:0c:97:fb
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEAT+XgDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTk3NjgwMTM2M2QzNzU3ODYxNTJlNGQwNjFlNzVjOGJlYjM1MDU4MB4XDTIyMDEw
MTAxMDAxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTE2YTAyNDBkYzBj
Y2UxZDMyZDRkOTRmYmQ0NTliYTczNTE0ZjA3NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANFEViuDDSOTmLvij+JvRqp3b9aVQNb7Cllq1v5T3NP7yKL3
aWc3tAxe6fgkANkPMjShvRXJ5aQ09ENf1g01ukkRucOka1sAl1FFXUwO79qGH37P
bjhzoV5vGQpIIvAW7PsP9c7Q6A7wR9PU1we7TYncnfQzgbM5F1qHgxLdXtFIqHAg
D9aJS6cOkq86/diWWykUP19YG8Sb23ZQoWvUvdRz+Ox1FU8w4L7Ip4/vAIfR2jNP
un6h45N3b+D1AIxkQPNpaGJdOdtMNmTVmaBdtMMwE2PP0ibqvQxVytXVeT0XFGnn
RIX6/TjfNf6fonzcYpEx8ce3wHJ70fy15JuUnZ8CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRRagJA3AzOHTLU2U+9RZunNRTwdTAfBgNVHSMEGDAWgBQFl2gBNj03V4YV
Lk0GHnXIvrNQWDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JaZG9BVFk5TjFlR0ZTNU5CaDUxeUw2elVGZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvMmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8x
L1VXb0NRTndNemgweTFObFB2VVdicHpVVThIVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
MmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8xL0JaZG9BVFk5TjFl
R0ZTNU5CaDUxeUw2elVGZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoMtkEAcDANBgkqhkiG9w0BAQsF
AAOCAQEASZetPSSByPrdCD9zh97rvSW15PUBDKt/T68LaLV4nCDUXwDEnht2M6bi
A96EfNhu7+8bCqj8c2E9/ngiu3aOYQ7A7IYcSqk82j0F02sToUpksJ3OJM2XcCj8
KjBk2xOX9rek+s0bCgZp0dYhlbXiWgTI8/fxfOP1aFpVTnU9z1ytCxbC5xiHR54H
yZazM5z9VzWL3kwcodszOWQJGsiKEo4Bh4PEIfGWjLNiNUHPL50dpSZ1HICAVFBJ
Po77WiYdsmMTQ9Gj3npU+Mf+3EMVRaPqW5eRQdf10nXz4pKOPDNdRVMMNBfjbufD
y1MrFKz5vCQElN6hzTMjbxbFQgyX+w==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:25 2023 by rpki-client on console-ams.rpki-client.org