Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/tE40ukb34xG4kGoCG9viBslKfIU.roa
File: tE40ukb34xG4kGoCG9viBslKfIU.roa (raw, json)
Hash identifier: B2V+JOlDCyXnaJOao88Xac8SAuBFL4WIpjKkZeABujY=
Subject key identifier: B4:4E:34:BA:46:F7:E3:11:B8:90:6A:02:1B:DB:E2:06:C9:4A:7C:85
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 013E73AE
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/tE40ukb34xG4kGoCG9viBslKfIU.roa
Signing time: Sat 01 Jan 2022 01:00:12 +0000
ROA not before: Sat 01 Jan 2022 01:00:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210821
IP address blocks: 2a0c:b641:250::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20870062 (0x13e73ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b44e34ba46f7e311b8906a021bdbe206c94a7c85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ef:d0:3d:b0:45:c3:8d:4d:15:37:b0:21:cc:
30:b8:d5:09:6e:94:69:3f:09:7f:fb:b8:ae:54:b0:
dc:f6:6f:72:f3:94:b5:31:41:8c:e2:e6:be:75:90:
3c:b4:0a:24:45:3f:d8:f5:41:84:53:61:aa:73:30:
8c:80:1d:12:b0:3d:b6:3e:ba:64:0f:66:8b:1b:e8:
30:3e:d0:08:b7:07:e7:f0:88:34:3f:34:93:77:e7:
cc:ec:26:74:14:fb:56:ca:ad:6f:f5:19:cd:28:24:
a9:dc:0e:d6:ac:a5:07:38:b9:e3:4c:08:00:72:c6:
3d:77:f1:ac:4a:81:e8:90:d8:7e:8d:ba:ea:61:fd:
2e:5e:98:cf:a3:5e:6e:e5:a6:65:68:87:38:5e:4a:
55:85:48:cc:e4:61:e6:41:04:58:5f:06:bb:ea:38:
31:5f:be:eb:e5:12:91:a9:50:3c:d9:6f:5f:95:95:
c4:04:56:ab:c2:42:4c:0b:f4:2f:fd:68:78:ec:aa:
52:0b:81:cd:14:4d:fb:02:f3:41:c7:cd:c6:4f:a9:
0c:17:91:9b:0b:55:7d:33:cd:d1:6f:e2:a8:89:5c:
fa:bb:99:d9:e5:ff:a1:d2:eb:ec:58:47:9d:c8:be:
1c:17:ec:44:35:3f:bc:e5:fd:4a:ff:04:ef:e6:85:
fc:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:4E:34:BA:46:F7:E3:11:B8:90:6A:02:1B:DB:E2:06:C9:4A:7C:85
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/tE40ukb34xG4kGoCG9viBslKfIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:250::/44
Signature Algorithm: sha256WithRSAEncryption
0b:37:62:e8:d7:0f:87:fa:59:7b:89:46:0c:86:46:fe:3f:bc:
f6:37:d8:9e:54:1d:a1:57:94:35:ce:32:e1:5a:4d:b8:94:b6:
f3:96:e9:5e:bd:17:3b:da:29:4b:61:52:ab:1c:41:2a:6a:b7:
31:c6:12:fd:74:05:41:6e:ab:bb:79:61:fc:11:f3:39:5e:e3:
07:ad:8f:55:ff:59:93:84:e2:ed:9a:98:40:02:cc:4b:e1:3c:
2f:af:56:bb:15:3d:bd:38:64:8e:5f:91:5c:86:03:e3:f2:c6:
ba:10:61:43:c5:2a:ff:41:2e:3b:33:ab:91:3f:95:49:7f:02:
77:7f:ad:46:dd:d9:f3:d8:3f:ee:25:47:2e:c9:76:7d:89:7d:
a8:2d:4a:2c:f7:a4:20:ac:cf:7c:d2:59:45:df:7b:4d:e3:5e:
9b:02:65:a5:ac:a0:c5:da:2a:0b:63:89:f3:c9:a3:eb:8d:74:
16:83:da:16:db:72:71:0c:70:55:0c:37:4e:db:06:54:6c:15:
e8:85:5d:ad:1e:ac:55:33:55:ae:55:46:ab:97:d7:c4:87:b3:
6e:a2:53:79:4a:81:c2:cb:b8:77:42:2c:73:db:d2:5a:1a:e0:
42:41:fb:e7:0b:51:4b:4f:02:b6:61:47:96:1e:c8:f8:f3:3f:
57:0b:dc:91
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEAT5zrjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTk3NjgwMTM2M2QzNzU3ODYxNTJlNGQwNjFlNzVjOGJlYjM1MDU4MB4XDTIyMDEw
MTAxMDAxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjQ0ZTM0YmE0NmY3
ZTMxMWI4OTA2YTAyMWJkYmUyMDZjOTRhN2M4NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALPv0D2wRcONTRU3sCHMMLjVCW6UaT8Jf/u4rlSw3PZvcvOU
tTFBjOLmvnWQPLQKJEU/2PVBhFNhqnMwjIAdErA9tj66ZA9mixvoMD7QCLcH5/CI
ND80k3fnzOwmdBT7Vsqtb/UZzSgkqdwO1qylBzi540wIAHLGPXfxrEqB6JDYfo26
6mH9Ll6Yz6NebuWmZWiHOF5KVYVIzORh5kEEWF8Gu+o4MV++6+USkalQPNlvX5WV
xARWq8JCTAv0L/1oeOyqUguBzRRN+wLzQcfNxk+pDBeRmwtVfTPN0W/iqIlc+ruZ
2eX/odLr7FhHnci+HBfsRDU/vOX9Sv8E7+aF/CsCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBS0TjS6RvfjEbiQagIb2+IGyUp8hTAfBgNVHSMEGDAWgBQFl2gBNj03V4YV
Lk0GHnXIvrNQWDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JaZG9BVFk5TjFlR0ZTNU5CaDUxeUw2elVGZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvMmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8x
L3RFNDB1a2IzNHhHNGtHb0NHOXZpQnNsS2ZJVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
MmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8xL0JaZG9BVFk5TjFl
R0ZTNU5CaDUxeUw2elVGZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoMtkECUDANBgkqhkiG9w0BAQsF
AAOCAQEACzdi6NcPh/pZe4lGDIZG/j+89jfYnlQdoVeUNc4y4VpNuJS285bpXr0X
O9opS2FSqxxBKmq3McYS/XQFQW6ru3lh/BHzOV7jB62PVf9Zk4Ti7ZqYQALMS+E8
L69WuxU9vThkjl+RXIYD4/LGuhBhQ8Uq/0EuOzOrkT+VSX8Cd3+tRt3Z89g/7iVH
Lsl2fYl9qC1KLPekIKzPfNJZRd97TeNemwJlpaygxdoqC2OJ88mj6410FoPaFtty
cQxwVQw3TtsGVGwV6IVdrR6sVTNVrlVGq5fXxIezbqJTeUqBwsu4d0Isc9vSWhrg
QkH75wtRS08CtmFHlh7I+PM/VwvckQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:16 2024 by rpki-client on console-fra.rpki-client.org