Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/g08dMpOzLNwM2xKzWleKhsliBrs.roa
File: g08dMpOzLNwM2xKzWleKhsliBrs.roa (raw, json)
Hash identifier: MV3mfzV+UwjWvveYKywRnluc1Z9gsgZEKEGCFnoLJ8I=
Subject key identifier: 83:4F:1D:32:93:B3:2C:DC:0C:DB:12:B3:5A:57:8A:86:C9:62:06:BB
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: F91A83
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/g08dMpOzLNwM2xKzWleKhsliBrs.roa
Signing time: Sat 01 Jan 2022 00:59:21 +0000
ROA not before: Sat 01 Jan 2022 00:59:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2a0c:b641:160::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16325251 (0xf91a83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=834f1d3293b32cdc0cdb12b35a578a86c96206bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f5:bf:53:f5:ff:44:cf:11:dc:11:84:27:7a:
e0:65:23:ae:b5:a3:d7:9f:05:ab:67:99:62:a8:6e:
00:be:2f:b1:69:c1:34:69:e7:d1:27:00:9b:94:02:
74:97:84:3e:e8:5c:e0:ed:2e:c8:a5:69:ee:f5:55:
ef:aa:29:d5:c8:4b:0f:7a:13:de:2b:f8:14:89:98:
a4:32:63:48:79:d0:21:e5:79:59:17:29:e7:a5:65:
9c:6d:a3:90:57:b4:75:0e:c4:58:b8:f5:81:7e:b7:
57:5c:42:b9:6f:d7:5a:28:54:f5:32:84:8b:78:f9:
84:cc:94:fa:77:fc:4c:1b:07:83:15:df:28:a7:86:
2e:18:be:56:83:69:1a:c0:d0:5e:54:2d:ae:5c:86:
15:9d:de:3b:a9:e5:fc:08:dd:f1:ef:3d:5b:1a:24:
3e:d7:45:c7:ca:fd:00:c7:78:16:38:22:65:f8:07:
53:0d:3d:a9:3b:2a:d6:4d:de:87:8f:90:9a:63:9b:
4c:53:f3:99:3b:4d:1e:f2:f5:0a:7e:d1:e8:d4:78:
ba:4c:c4:30:03:53:2e:8a:de:08:b9:3f:fd:27:74:
2c:91:c5:fb:72:d0:75:ff:9d:2e:6f:b4:fa:be:b5:
f7:84:8e:23:a6:d9:8a:c8:9b:fb:71:ad:c1:bb:6d:
8a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:4F:1D:32:93:B3:2C:DC:0C:DB:12:B3:5A:57:8A:86:C9:62:06:BB
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/g08dMpOzLNwM2xKzWleKhsliBrs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:160::/44
Signature Algorithm: sha256WithRSAEncryption
71:4f:7a:ce:91:b0:01:95:95:21:f6:f5:49:24:56:60:dd:5c:
2c:b9:fe:c4:5d:1e:92:9b:1e:1a:18:16:86:c3:9b:5b:f2:54:
06:5f:14:b8:1c:f6:b4:4d:9a:6e:98:1e:70:f6:e7:c4:56:01:
aa:bd:96:cd:2f:c5:69:7a:8b:1c:62:ca:13:b5:00:95:ba:f9:
56:2a:51:10:97:2e:b1:ed:c7:9a:5d:7b:37:46:bf:75:4b:a3:
96:8f:3b:34:02:6d:af:5f:b4:f0:72:ac:79:b2:94:44:fe:d3:
70:f1:54:de:ea:3b:c3:6e:e9:2d:39:61:be:97:f7:88:95:42:
b7:62:c1:dd:33:72:33:be:53:c3:7c:26:83:c6:a0:18:8f:13:
5a:0c:e1:c8:5f:55:99:5b:d0:f1:57:65:b7:e4:13:42:d4:44:
71:27:b6:47:e8:52:0a:56:4c:72:9b:e4:8d:e9:2a:59:7a:45:
fc:ae:48:de:20:d4:9f:0f:a8:56:81:94:1d:31:0b:57:7c:ca:
23:17:5a:d4:d9:b0:2b:af:42:09:30:8d:f4:0b:e9:6f:9d:23:
dd:48:ac:88:3f:26:72:a0:58:b0:81:ba:85:45:32:ad:83:e1:
98:92:95:39:6a:e8:66:ca:3f:0e:33:56:02:b7:61:7e:3c:54:
90:01:6c:9b
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEAPkagzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTk3NjgwMTM2M2QzNzU3ODYxNTJlNGQwNjFlNzVjOGJlYjM1MDU4MB4XDTIyMDEw
MTAwNTkyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODM0ZjFkMzI5M2Iz
MmNkYzBjZGIxMmIzNWE1NzhhODZjOTYyMDZiYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKX1v1P1/0TPEdwRhCd64GUjrrWj158Fq2eZYqhuAL4vsWnB
NGnn0ScAm5QCdJeEPuhc4O0uyKVp7vVV76op1chLD3oT3iv4FImYpDJjSHnQIeV5
WRcp56VlnG2jkFe0dQ7EWLj1gX63V1xCuW/XWihU9TKEi3j5hMyU+nf8TBsHgxXf
KKeGLhi+VoNpGsDQXlQtrlyGFZ3eO6nl/Ajd8e89WxokPtdFx8r9AMd4FjgiZfgH
Uw09qTsq1k3eh4+QmmObTFPzmTtNHvL1Cn7R6NR4ukzEMANTLoreCLk//Sd0LJHF
+3LQdf+dLm+0+r6194SOI6bZisib+3GtwbttitECAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSDTx0yk7Ms3AzbErNaV4qGyWIGuzAfBgNVHSMEGDAWgBQFl2gBNj03V4YV
Lk0GHnXIvrNQWDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JaZG9BVFk5TjFlR0ZTNU5CaDUxeUw2elVGZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvMmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8x
L2cwOGRNcE96TE53TTJ4S3pXbGVLaHNsaUJycy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
MmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8xL0JaZG9BVFk5TjFl
R0ZTNU5CaDUxeUw2elVGZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoMtkEBYDANBgkqhkiG9w0BAQsF
AAOCAQEAcU96zpGwAZWVIfb1SSRWYN1cLLn+xF0ekpseGhgWhsObW/JUBl8UuBz2
tE2abpgecPbnxFYBqr2WzS/FaXqLHGLKE7UAlbr5VipREJcuse3Hml17N0a/dUuj
lo87NAJtr1+08HKsebKURP7TcPFU3uo7w27pLTlhvpf3iJVCt2LB3TNyM75Tw3wm
g8agGI8TWgzhyF9VmVvQ8Vdlt+QTQtREcSe2R+hSClZMcpvkjekqWXpF/K5I3iDU
nw+oVoGUHTELV3zKIxda1NmwK69CCTCN9Avpb50j3UisiD8mcqBYsIG6hUUyrYPh
mJKVOWroZso/DjNWArdhfjxUkAFsmw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:25 2023 by rpki-client on console-ams.rpki-client.org