Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/c0JXeUIMVsrDh77kW98KD0reoBo.roa
File: c0JXeUIMVsrDh77kW98KD0reoBo.roa (raw, json)
Hash identifier: ZQi+p8WzFt0xyzWWIlifA76gUPkwqrsiyfK1/Z33pxc=
Subject key identifier: 73:42:57:79:42:0C:56:CA:C3:87:BE:E4:5B:DF:0A:0F:4A:DE:A0:1A
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 018291B5B998B2957CE17924821D9479D0BB
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/c0JXeUIMVsrDh77kW98KD0reoBo.roa
Signing time: Fri 12 Aug 2022 10:59:42 +0000
ROA not before: Fri 12 Aug 2022 10:59:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 2a0c:b641:150::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:91:b5:b9:98:b2:95:7c:e1:79:24:82:1d:94:79:d0:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Aug 12 10:59:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73425779420c56cac387bee45bdf0a0f4adea01a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f6:98:ec:b7:3a:77:c6:ec:9f:21:39:ef:2e:
6e:a1:20:dd:f3:05:7d:11:a5:da:b8:57:81:26:7d:
48:b2:78:9a:b8:97:0f:44:57:6c:ab:75:43:05:c2:
db:56:87:6e:94:8a:b8:e4:f5:f7:c9:76:7f:57:d4:
61:9b:22:1c:10:fb:ff:5e:6c:3b:5d:cb:86:2d:c7:
de:28:72:b8:ef:cb:b3:0e:b3:fe:9b:c1:6b:bf:56:
de:34:d3:9b:57:82:99:1c:6c:ec:86:81:9e:46:96:
73:e6:c2:17:d9:f5:a5:e2:94:73:4b:5b:b1:32:3e:
88:40:d7:e7:f0:da:5c:49:a2:34:33:54:5a:36:99:
8d:0e:a7:e9:aa:e3:6f:86:87:b6:6f:39:4a:ee:d6:
e3:7a:6a:18:32:56:b8:da:a9:48:d2:13:10:bf:48:
65:00:4d:52:51:a1:60:ce:ae:93:0a:f7:0f:ec:d6:
76:07:24:ea:af:04:fb:31:ff:15:ff:14:f7:fa:eb:
fd:ea:13:8e:cc:ab:06:ab:c1:8a:4b:d0:e2:f6:0a:
78:3f:f4:23:fb:86:f5:5a:ef:8f:8b:80:76:4f:15:
3c:2e:19:df:92:9f:08:81:2f:95:6f:6a:49:97:d1:
7e:14:b5:9f:40:bb:f8:3d:5c:e5:a2:c9:90:37:f3:
13:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:42:57:79:42:0C:56:CA:C3:87:BE:E4:5B:DF:0A:0F:4A:DE:A0:1A
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/c0JXeUIMVsrDh77kW98KD0reoBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:150::/44
Signature Algorithm: sha256WithRSAEncryption
53:b6:13:cc:5b:b1:bf:3f:a3:d0:8d:fb:27:8c:63:31:fd:b8:
d1:35:ce:a4:3b:5d:f9:2f:33:b1:ad:57:88:d6:0e:d9:75:87:
cf:c1:6c:e2:9b:ec:2f:31:c7:6e:c3:2c:e1:76:d1:dc:d0:01:
d3:e7:b9:dc:8c:70:f8:ca:22:cd:cd:bf:99:38:e6:b7:8e:b3:
22:f3:d3:71:53:7e:65:56:8b:9a:93:c1:da:e7:88:4e:90:ee:
49:4a:14:df:cd:33:50:84:b7:c3:3a:9c:a4:cd:f5:86:2f:7b:
65:21:42:1d:ae:1d:a0:72:d9:b2:cb:0d:e2:14:8a:a7:65:5f:
3b:29:ea:69:56:28:b5:cf:f6:11:32:91:c8:cc:1d:34:ea:ab:
fd:a2:e2:80:cd:2d:09:48:2d:e1:23:a8:c4:11:f9:fc:e0:44:
ac:99:96:e5:96:84:32:5b:96:df:00:e8:59:45:cb:11:61:30:
8c:7d:2d:a7:2a:5f:26:39:ca:48:c3:7b:1e:f3:e8:6c:4f:bb:
64:91:b8:65:12:c2:89:5f:9f:b9:1b:a7:e4:fe:ab:71:82:e5:
9c:72:49:95:5b:00:5a:4b:fb:f6:5e:28:00:79:bc:7b:67:9d:
28:f4:ac:46:7f:7e:cf:fe:50:f8:e9:00:b5:8c:9f:4a:4a:0d:
1d:c9:6e:0b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYKRtbmYspV84Xkkgh2UedC7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjIwODEyMTA1OTQyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MzQyNTc3OTQyMGM1NmNhYzM4N2JlZTQ1YmRmMGEwZjRhZGVhMDFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsPaY7Lc6d8bsnyE57y5uoSDd8wV9
EaXauFeBJn1IsniauJcPRFdsq3VDBcLbVodulIq45PX3yXZ/V9RhmyIcEPv/Xmw7
XcuGLcfeKHK478uzDrP+m8Frv1beNNObV4KZHGzshoGeRpZz5sIX2fWl4pRzS1ux
Mj6IQNfn8NpcSaI0M1RaNpmNDqfpquNvhoe2bzlK7tbjemoYMla42qlI0hMQv0hl
AE1SUaFgzq6TCvcP7NZ2ByTqrwT7Mf8V/xT3+uv96hOOzKsGq8GKS9Di9gp4P/Qj
+4b1Wu+Pi4B2TxU8Lhnfkp8IgS+Vb2pJl9F+FLWfQLv4PVzlosmQN/MTKQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFHNCV3lCDFbKw4e+5FvfCg9K3qAaMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvYzBKWGVVSU1Wc3JEaDc3a1c5OEtEMHJlb0JvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQFQ
MA0GCSqGSIb3DQEBCwUAA4IBAQBTthPMW7G/P6PQjfsnjGMx/bjRNc6kO135LzOx
rVeI1g7ZdYfPwWzim+wvMcduwyzhdtHc0AHT57ncjHD4yiLNzb+ZOOa3jrMi89Nx
U35lVouak8Ha54hOkO5JShTfzTNQhLfDOpykzfWGL3tlIUIdrh2gctmyyw3iFIqn
ZV87KeppVii1z/YRMpHIzB006qv9ouKAzS0JSC3hI6jEEfn84ESsmZblloQyW5bf
AOhZRcsRYTCMfS2nKl8mOcpIw3se8+hsT7tkkbhlEsKJX5+5G6fk/qtxguWcckmV
WwBaS/v2XigAebx7Z50o9KxGf37P/lD46QC1jJ9KSg0dyW4L
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:16:13 2025 by rpki-client