Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/oQ4SROO9DQgDDjDw9afYIk6Xzw8.roa
File: oQ4SROO9DQgDDjDw9afYIk6Xzw8.roa (raw, json)
Hash identifier: tSFq91hG5VTPDyBLFrDYe8MqmnWRpEkAeNx19n8m968=
Subject key identifier: A1:0E:12:44:E3:BD:0D:08:03:0E:30:F0:F5:A7:D8:22:4E:97:CF:0F
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 013A8D9E
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/oQ4SROO9DQgDDjDw9afYIk6Xzw8.roa
Signing time: Sat 01 Jan 2022 01:00:00 +0000
ROA not before: Sat 01 Jan 2022 01:00:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210481
IP address blocks: 2a0c:b641:560::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20614558 (0x13a8d9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a10e1244e3bd0d08030e30f0f5a7d8224e97cf0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:bc:ba:7c:ad:8f:e7:90:4d:64:25:0c:37:f9:
ad:45:c9:d1:29:49:3c:a4:31:56:16:30:b4:3d:f3:
33:18:49:73:d7:5f:a9:c2:1e:cc:f8:a9:8c:f4:d5:
55:83:08:09:1c:df:49:f3:04:1d:2f:65:d3:ff:08:
93:c3:cb:b6:88:cf:29:55:90:30:e0:0d:8c:c4:82:
8a:d9:1d:86:d7:b2:38:37:4d:7d:65:ca:77:74:0f:
ae:0c:a3:0e:c8:be:08:12:72:e0:09:d1:8a:51:ae:
ad:57:d4:fc:6c:9e:43:b3:aa:a9:ae:20:fd:01:cf:
b8:4a:5f:0a:20:79:bd:91:a5:cf:10:ad:22:81:7e:
54:8f:54:11:f8:e4:43:ed:d1:d0:59:e6:71:c4:88:
1f:01:71:7f:c8:e9:5d:a7:09:bc:c1:52:d3:b2:62:
ed:db:cc:88:12:f9:a3:d8:38:fb:1f:22:5f:67:fa:
8a:2a:24:34:82:43:47:b4:38:e9:2b:ad:84:78:84:
ba:e0:9d:48:74:47:18:a3:9e:99:89:30:28:4f:c8:
7f:7b:a8:30:5a:bf:66:81:62:1e:e8:49:0f:94:ba:
9c:37:81:76:34:66:07:67:6c:33:3a:67:34:72:76:
ae:b2:34:80:a1:6e:1c:91:91:0f:1e:32:d0:2a:c1:
4e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:0E:12:44:E3:BD:0D:08:03:0E:30:F0:F5:A7:D8:22:4E:97:CF:0F
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/oQ4SROO9DQgDDjDw9afYIk6Xzw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:560::/44
Signature Algorithm: sha256WithRSAEncryption
59:e4:22:ec:b3:2f:e7:31:5b:06:f4:2c:f6:5e:33:c1:bf:5c:
12:dd:bc:33:38:3e:99:4c:eb:1a:ce:0a:0e:ff:bc:80:43:f7:
c8:ea:ad:01:4a:71:22:ad:00:c8:8b:1e:df:b2:c5:94:c6:31:
80:9a:d6:de:84:84:25:0e:fd:2b:0f:cf:6a:d0:1a:c3:c3:1e:
39:1a:a6:3a:b3:f4:19:ff:17:b2:a2:32:ec:85:16:ae:5f:55:
92:e3:5f:2b:fa:40:17:4c:b7:53:20:97:f2:6c:f4:41:28:78:
cd:3b:b3:ab:46:9a:f2:d4:c3:68:5b:ff:ce:3c:28:db:ed:68:
c5:02:5b:26:8f:83:de:5a:e1:79:a7:85:6f:a3:4f:fd:c1:e5:
b7:b4:fe:e6:ae:c3:80:5d:93:7c:74:02:ea:05:f7:81:87:e5:
90:7b:e6:a5:f6:72:37:32:66:fe:57:5f:f0:fa:5c:01:d2:f7:
e7:30:e6:61:d3:03:d4:0f:0c:f7:3e:2c:42:12:be:41:22:db:
89:68:7c:a0:92:79:d2:01:06:37:76:ea:27:39:18:13:59:9e:
15:e4:00:1e:ea:90:17:e6:ee:b6:f8:bf:90:dc:b5:a7:ab:6d:
93:26:20:bd:51:ea:dd:ab:76:30:cc:fb:bc:df:18:fe:b5:d0:
98:33:e8:ab
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEATqNnjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTk3NjgwMTM2M2QzNzU3ODYxNTJlNGQwNjFlNzVjOGJlYjM1MDU4MB4XDTIyMDEw
MTAxMDAwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTEwZTEyNDRlM2Jk
MGQwODAzMGUzMGYwZjVhN2Q4MjI0ZTk3Y2YwZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN68unytj+eQTWQlDDf5rUXJ0SlJPKQxVhYwtD3zMxhJc9df
qcIezPipjPTVVYMICRzfSfMEHS9l0/8Ik8PLtojPKVWQMOANjMSCitkdhteyODdN
fWXKd3QPrgyjDsi+CBJy4AnRilGurVfU/GyeQ7Oqqa4g/QHPuEpfCiB5vZGlzxCt
IoF+VI9UEfjkQ+3R0FnmccSIHwFxf8jpXacJvMFS07Ji7dvMiBL5o9g4+x8iX2f6
iiokNIJDR7Q46SuthHiEuuCdSHRHGKOemYkwKE/If3uoMFq/ZoFiHuhJD5S6nDeB
djRmB2dsMzpnNHJ2rrI0gKFuHJGRDx4y0CrBTjcCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBShDhJE470NCAMOMPD1p9giTpfPDzAfBgNVHSMEGDAWgBQFl2gBNj03V4YV
Lk0GHnXIvrNQWDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JaZG9BVFk5TjFlR0ZTNU5CaDUxeUw2elVGZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvMmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8x
L29RNFNST085RFFnRERqRHc5YWZZSWs2WHp3OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
MmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8xL0JaZG9BVFk5TjFl
R0ZTNU5CaDUxeUw2elVGZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoMtkEFYDANBgkqhkiG9w0BAQsF
AAOCAQEAWeQi7LMv5zFbBvQs9l4zwb9cEt28Mzg+mUzrGs4KDv+8gEP3yOqtAUpx
Iq0AyIse37LFlMYxgJrW3oSEJQ79Kw/PatAaw8MeORqmOrP0Gf8XsqIy7IUWrl9V
kuNfK/pAF0y3UyCX8mz0QSh4zTuzq0aa8tTDaFv/zjwo2+1oxQJbJo+D3lrheaeF
b6NP/cHlt7T+5q7DgF2TfHQC6gX3gYflkHvmpfZyNzJm/ldf8PpcAdL35zDmYdMD
1A8M9z4sQhK+QSLbiWh8oJJ50gEGN3bqJzkYE1meFeQAHuqQF+butvi/kNy1p6tt
kyYgvVHq3at2MMz7vN8Y/rXQmDPoqw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org