Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/uE4h64iQ47NHSxIAj5-xO5SYaDM.roa
File: uE4h64iQ47NHSxIAj5-xO5SYaDM.roa (raw, json)
Hash identifier: 74iOs5uEyxooqgBxVIiIkIKOvnYHc4q+E0fgZIcPF4M=
Subject key identifier: B8:4E:21:EB:88:90:E3:B3:47:4B:12:00:8F:9F:B1:3B:94:98:68:33
Certificate issuer: /CN=4eaf14b67e051cfbd5e1b1d51693d44682392792
Certificate serial: 0838C3C2
Authority key identifier: 4E:AF:14:B6:7E:05:1C:FB:D5:E1:B1:D5:16:93:D4:46:82:39:27:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tq8Utn4FHPvV4bHVFpPURoI5J5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/uE4h64iQ47NHSxIAj5-xO5SYaDM.roa
Signing time: Sun 22 May 2022 17:53:29 +0000
ROA not before: Sun 22 May 2022 17:53:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209718
IP address blocks: 2001:678:c44::/48 maxlen: 48
2001:678:c6c::/48 maxlen: 48
2001:67c:2ea8::/48 maxlen: 48
2001:67c:2908::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137937858 (0x838c3c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eaf14b67e051cfbd5e1b1d51693d44682392792
Validity
Not Before: May 22 17:53:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b84e21eb8890e3b3474b12008f9fb13b94986833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c3:31:22:e2:f6:01:80:a5:c3:9b:24:5a:39:
f0:06:1a:a3:a4:0a:6b:b5:5e:85:1e:62:5b:bf:dc:
6f:da:55:e1:7d:63:c6:a2:28:67:30:ea:ff:0f:d0:
72:d5:8e:1c:41:16:d6:47:ac:45:ad:a9:cf:50:11:
ce:3c:13:8e:be:0a:7b:64:d9:f9:27:28:23:e2:25:
05:4f:12:36:ca:69:e2:43:eb:46:b5:a4:b5:37:fb:
75:40:bd:d9:c0:bb:19:1e:f0:16:e0:ce:14:50:9e:
75:b5:e5:a3:49:67:be:b1:32:5e:19:38:df:44:a5:
d7:44:ba:22:2b:55:02:ad:0e:83:42:a8:1d:c5:6c:
73:c1:86:c9:b7:12:5c:fd:17:33:51:2b:34:cd:b4:
19:1c:3e:41:19:bd:36:f5:71:35:ef:b3:e9:ed:a6:
99:a8:c0:82:e7:2f:91:5f:2e:0b:0b:66:2a:ab:1a:
a8:c4:27:0c:ad:f2:fe:e6:ce:02:6d:0f:1f:a7:c8:
55:cb:eb:13:1f:61:e1:75:22:a0:ae:b2:96:d1:6f:
7e:69:e7:79:f5:e6:27:9a:3f:2a:41:0f:b2:09:ea:
d3:d0:77:6a:24:37:eb:26:dd:c4:84:8f:09:07:ea:
ae:b4:14:a3:a1:07:a8:7a:8e:fb:39:22:4a:47:ab:
7d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:4E:21:EB:88:90:E3:B3:47:4B:12:00:8F:9F:B1:3B:94:98:68:33
X509v3 Authority Key Identifier:
keyid:4E:AF:14:B6:7E:05:1C:FB:D5:E1:B1:D5:16:93:D4:46:82:39:27:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tq8Utn4FHPvV4bHVFpPURoI5J5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/uE4h64iQ47NHSxIAj5-xO5SYaDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c44::/48
2001:678:c6c::/48
2001:67c:2908::/48
2001:67c:2ea8::/48
Signature Algorithm: sha256WithRSAEncryption
52:60:65:a7:77:63:fb:b7:6c:5d:95:26:05:43:9f:0e:37:f6:
a3:a8:f8:c7:c0:e9:f5:a2:50:fd:3c:f2:59:8d:6b:89:87:dc:
fe:90:85:92:1b:a6:3e:b3:a1:aa:d6:dd:51:64:4d:66:70:dc:
e8:cc:0f:9c:af:3e:0f:9d:88:29:fb:62:dd:df:34:d4:10:4f:
ae:76:a1:d2:4a:77:86:28:0e:5c:7c:3a:f2:15:3b:ff:91:8c:
36:62:69:90:2b:74:14:70:23:0b:83:8f:ef:ad:32:05:5b:79:
a1:1e:b6:09:fb:77:7c:3f:62:5b:7e:08:67:0a:f2:21:91:f2:
4f:ca:bb:74:bb:6e:3d:7e:1b:3b:5a:d3:19:1d:94:85:0c:4a:
62:96:8a:4a:00:74:e3:d5:24:bf:9a:11:cf:23:34:29:5d:26:
f1:32:48:4e:94:c5:26:5d:a5:52:c3:de:70:c1:66:cb:cd:68:
ec:db:4d:00:41:5b:43:74:f5:cc:c3:d7:32:27:6d:81:5e:2a:
69:a2:3e:6c:39:a1:0a:23:da:10:65:8c:35:db:89:da:c5:99:
ce:48:e7:55:72:04:9c:f9:16:6a:e7:81:44:f5:f6:32:69:ff:
fa:2c:c8:f5:8d:00:6e:16:cc:11:94:ed:db:de:d0:3c:41:f0:
fe:df:f1:42
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgIECDjDwjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZWFmMTRiNjdlMDUxY2ZiZDVlMWIxZDUxNjkzZDQ0NjgyMzkyNzkyMB4XDTIyMDUy
MjE3NTMyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjg0ZTIxZWI4ODkw
ZTNiMzQ3NGIxMjAwOGY5ZmIxM2I5NDk4NjgzMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANrDMSLi9gGApcObJFo58AYao6QKa7VehR5iW7/cb9pV4X1j
xqIoZzDq/w/QctWOHEEW1kesRa2pz1ARzjwTjr4Ke2TZ+ScoI+IlBU8SNspp4kPr
RrWktTf7dUC92cC7GR7wFuDOFFCedbXlo0lnvrEyXhk430Sl10S6IitVAq0Og0Ko
HcVsc8GGybcSXP0XM1ErNM20GRw+QRm9NvVxNe+z6e2mmajAgucvkV8uCwtmKqsa
qMQnDK3y/ubOAm0PH6fIVcvrEx9h4XUioK6yltFvfmnnefXmJ5o/KkEPsgnq09B3
aiQ36ybdxISPCQfqrrQUo6EHqHqO+zkiSkerfb8CAwEAAaOCAicwggIjMB0GA1Ud
DgQWBBS4TiHriJDjs0dLEgCPn7E7lJhoMzAfBgNVHSMEGDAWgBROrxS2fgUc+9Xh
sdUWk9RGgjknkjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RxOFV0bjRGSFB2VjRiSFZGcFBVUm9JNUo1SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvOGNmNTFjLTU0ZDctNGMzYS05MGM0LWJkNTEyZWQ1OGY3OC8x
L3VFNGg2NGlRNDdOSFN4SUFqNS14TzVTWWFETS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
OGNmNTFjLTU0ZDctNGMzYS05MGM0LWJkNTEyZWQ1OGY3OC8xL1RxOFV0bjRGSFB2
VjRiSFZGcFBVUm9JNUo1SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA9
BggrBgEFBQcBBwEB/wQuMCwwKgQCAAIwJAMHACABBngMRAMHACABBngMbAMHACAB
BnwpCAMHACABBnwuqDANBgkqhkiG9w0BAQsFAAOCAQEAUmBlp3dj+7dsXZUmBUOf
Djf2o6j4x8Dp9aJQ/TzyWY1riYfc/pCFkhumPrOhqtbdUWRNZnDc6MwPnK8+D52I
Kfti3d801BBPrnah0kp3higOXHw68hU7/5GMNmJpkCt0FHAjC4OP760yBVt5oR62
Cft3fD9iW34IZwryIZHyT8q7dLtuPX4bO1rTGR2UhQxKYpaKSgB049Ukv5oRzyM0
KV0m8TJITpTFJl2lUsPecMFmy81o7NtNAEFbQ3T1zMPXMidtgV4qaaI+bDmhCiPa
EGWMNduJ2sWZzkjnVXIEnPkWaueBRPX2Mmn/+izI9Y0AbhbMEZTt297QPEHw/t/x
Qg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:42 2024 by rpki-client on console-ams.rpki-client.org