Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/cF5p8uqqmldPM2bVq7rrcuf7J7g.roa
File: cF5p8uqqmldPM2bVq7rrcuf7J7g.roa (raw, json)
Hash identifier: dHJ2jtVVLWEfp58SjFRxyo5g8RyaDH/Cdmca9VWLsHc=
Subject key identifier: 70:5E:69:F2:EA:AA:9A:57:4F:33:66:D5:AB:BA:EB:72:E7:FB:27:B8
Certificate issuer: /CN=e9aab1446100a8fce03df19d755e06329ee24713
Certificate serial: 1854A71A
Authority key identifier: E9:AA:B1:44:61:00:A8:FC:E0:3D:F1:9D:75:5E:06:32:9E:E2:47:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6aqxRGEAqPzgPfGddV4GMp7iRxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/cF5p8uqqmldPM2bVq7rrcuf7J7g.roa
Signing time: Sat 01 Jan 2022 15:59:30 +0000
ROA not before: Sat 01 Jan 2022 15:59:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63473
IP address blocks: 2a00:1a28:1157::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 408200986 (0x1854a71a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9aab1446100a8fce03df19d755e06329ee24713
Validity
Not Before: Jan 1 15:59:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=705e69f2eaaa9a574f3366d5abbaeb72e7fb27b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:96:0e:31:8f:52:6f:29:7d:8d:51:f4:fd:81:
21:ee:40:8a:f2:38:5d:80:d3:42:30:ec:23:99:50:
1f:a4:76:2f:18:28:b0:03:97:df:6a:2a:ec:4e:d4:
29:2d:ff:51:23:66:74:fe:a1:77:16:53:80:81:b3:
0e:8a:26:18:96:c7:78:2c:a2:b6:af:ce:74:3b:a0:
1b:93:81:2c:fd:5e:17:41:47:54:1b:f7:2c:b8:17:
cd:8b:18:5b:c4:7f:53:59:fe:46:b1:01:18:1b:8c:
61:3a:24:03:76:84:42:4c:58:43:3b:f4:ca:70:5d:
31:b9:4e:b2:d1:00:6b:69:5f:07:e1:a7:1a:c9:02:
83:5b:3d:4d:f7:3e:9f:43:ce:5f:db:34:6d:a7:26:
87:e6:02:8a:6f:a7:18:5b:75:2b:07:05:ea:c9:14:
a7:a9:2d:ae:53:d4:b7:a5:81:14:79:a9:56:b7:b5:
fb:db:32:a0:99:e7:a4:ee:9c:db:a8:cc:20:ca:54:
cc:b6:5d:42:d8:f6:4f:51:67:af:a6:3d:52:7b:0c:
71:a2:b4:75:bb:8d:da:6f:cd:cb:2a:df:ce:92:13:
a4:e6:1d:e8:c3:63:f7:8b:6b:4d:a4:9f:c6:f4:da:
b7:dd:5f:81:ab:37:b2:bc:d3:94:51:74:7a:27:2b:
bb:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:5E:69:F2:EA:AA:9A:57:4F:33:66:D5:AB:BA:EB:72:E7:FB:27:B8
X509v3 Authority Key Identifier:
keyid:E9:AA:B1:44:61:00:A8:FC:E0:3D:F1:9D:75:5E:06:32:9E:E2:47:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6aqxRGEAqPzgPfGddV4GMp7iRxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/cF5p8uqqmldPM2bVq7rrcuf7J7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/6aqxRGEAqPzgPfGddV4GMp7iRxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1a28:1157::/48
Signature Algorithm: sha256WithRSAEncryption
23:fc:1f:52:3a:73:ef:7f:f8:69:35:88:a0:2b:d8:0b:9b:3b:
b6:2a:79:90:20:d8:59:48:48:d2:5e:28:45:35:0a:a7:cc:70:
d0:b0:7d:5a:92:6f:2c:4e:39:c3:0c:2c:11:5f:cb:b5:79:ff:
6e:a6:bc:a0:c0:8b:95:72:09:05:f1:e2:cd:2d:f6:87:a6:d0:
fa:4f:4c:cb:02:b8:57:88:76:0e:59:e6:ba:61:6f:43:d7:31:
c8:a0:e4:80:4e:a4:ba:d8:ba:fc:1a:2a:83:1a:70:4a:2c:60:
be:e3:b0:1e:5d:39:81:f0:84:74:0f:25:a8:1f:4c:92:97:69:
93:24:23:82:15:5e:76:c9:6a:5f:9b:d1:f9:d4:b1:df:a7:69:
2a:0d:ee:f5:53:4b:fa:0a:59:7a:ab:a6:e3:b7:b8:8f:de:9b:
3e:ac:4c:75:02:ef:05:8b:54:e1:2d:33:ff:4b:7c:93:45:84:
0a:68:15:28:ad:a6:e1:e8:f6:73:6f:5e:13:11:5a:26:a2:7b:
9f:42:39:5b:bb:42:d2:58:2f:38:ba:cd:42:0b:83:fc:f8:70:
db:e7:6a:3e:6a:31:4b:e7:3e:67:48:d4:ee:95:fd:77:29:a2:
52:8f:cb:3b:d2:f4:4b:66:0b:cf:a4:14:0a:61:62:81:88:27:
bb:e5:d0:06
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEGFSnGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
OWFhYjE0NDYxMDBhOGZjZTAzZGYxOWQ3NTVlMDYzMjllZTI0NzEzMB4XDTIyMDEw
MTE1NTkzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzA1ZTY5ZjJlYWFh
OWE1NzRmMzM2NmQ1YWJiYWViNzJlN2ZiMjdiODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMiWDjGPUm8pfY1R9P2BIe5AivI4XYDTQjDsI5lQH6R2Lxgo
sAOX32oq7E7UKS3/USNmdP6hdxZTgIGzDoomGJbHeCyitq/OdDugG5OBLP1eF0FH
VBv3LLgXzYsYW8R/U1n+RrEBGBuMYTokA3aEQkxYQzv0ynBdMblOstEAa2lfB+Gn
GskCg1s9Tfc+n0POX9s0bacmh+YCim+nGFt1KwcF6skUp6ktrlPUt6WBFHmpVre1
+9syoJnnpO6c26jMIMpUzLZdQtj2T1Fnr6Y9UnsMcaK0dbuN2m/NyyrfzpITpOYd
6MNj94trTaSfxvTat91fgas3srzTlFF0eicruwUCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRwXmny6qqaV08zZtWruuty5/snuDAfBgNVHSMEGDAWgBTpqrFEYQCo/OA9
8Z11XgYynuJHEzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZhcXhSR0VBcVB6Z1BmR2RkVjRHTXA3aVJ4TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvNzFlMDljLTI4ZjMtNDgyNS04MDZmLWEwZGMzNTRmNGNhMy8x
L2NGNXA4dXFxbWxkUE0yYlZxN3JyY3VmN0o3Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
NzFlMDljLTI4ZjMtNDgyNS04MDZmLWEwZGMzNTRmNGNhMy8xLzZhcXhSR0VBcVB6
Z1BmR2RkVjRHTXA3aVJ4TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoAGigRVzANBgkqhkiG9w0BAQsF
AAOCAQEAI/wfUjpz73/4aTWIoCvYC5s7tip5kCDYWUhI0l4oRTUKp8xw0LB9WpJv
LE45wwwsEV/LtXn/bqa8oMCLlXIJBfHizS32h6bQ+k9MywK4V4h2DlnmumFvQ9cx
yKDkgE6kuti6/BoqgxpwSixgvuOwHl05gfCEdA8lqB9MkpdpkyQjghVedslqX5vR
+dSx36dpKg3u9VNL+gpZequm47e4j96bPqxMdQLvBYtU4S0z/0t8k0WECmgVKK2m
4ej2c29eExFaJqJ7n0I5W7tC0lgvOLrNQguD/Phw2+dqPmoxS+c+Z0jU7pX9dymi
Uo/LO9L0S2YLz6QUCmFigYgnu+XQBg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:17 2024 by rpki-client on console-fra.rpki-client.org