Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/50248d-825c-45e1-b5ff-b29a2cbc3580/1/vLYcvk3OHmxUpJgVMpLCITF-Ip8.roa
File: vLYcvk3OHmxUpJgVMpLCITF-Ip8.roa (raw, json)
Hash identifier: mSVub4K4keeiaCx1W/BXlGoG9/ewEPU1VHoCg3v+lQo=
Subject key identifier: BC:B6:1C:BE:4D:CE:1E:6C:54:A4:98:15:32:92:C2:21:31:7E:22:9F
Certificate issuer: /CN=5417e3db0d1c2cfc22b4be874e2598dd099294ed
Certificate serial: 15EC8796
Authority key identifier: 54:17:E3:DB:0D:1C:2C:FC:22:B4:BE:87:4E:25:98:DD:09:92:94:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VBfj2w0cLPwitL6HTiWY3QmSlO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/50248d-825c-45e1-b5ff-b29a2cbc3580/1/vLYcvk3OHmxUpJgVMpLCITF-Ip8.roa
Signing time: Sat 01 Jan 2022 16:11:01 +0000
ROA not before: Sat 01 Jan 2022 16:11:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30892
IP address blocks: 2a02:aa8::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 367822742 (0x15ec8796)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5417e3db0d1c2cfc22b4be874e2598dd099294ed
Validity
Not Before: Jan 1 16:11:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcb61cbe4dce1e6c54a498153292c221317e229f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9c:72:c6:ea:29:db:e6:66:43:fb:f4:56:d7:
ae:63:dc:16:5f:fe:7e:ce:07:b5:52:65:ce:b0:a8:
d4:c6:c7:56:1a:af:86:73:7b:d0:d7:94:12:ab:db:
7a:09:1a:c2:af:e3:cd:5b:0a:79:3f:39:a9:af:16:
1a:c3:5d:c0:4b:46:41:10:43:e6:3a:e8:21:0e:97:
84:38:7d:92:6c:c9:f8:60:91:6b:1d:61:9b:27:5c:
8e:07:b7:ce:9c:d3:5b:0d:ce:46:3e:54:8b:45:26:
78:52:10:67:7b:bb:e3:21:41:90:04:ec:d9:5a:40:
0d:6b:fe:ad:4b:5e:28:05:51:4b:75:b4:9a:05:ef:
3d:5c:e9:eb:38:cf:a1:69:4e:f7:76:7a:1d:ad:49:
ef:1e:79:a2:54:ed:f6:9d:e3:41:21:d4:1a:90:56:
97:a8:0b:1e:c2:a1:3f:62:67:f1:55:41:54:2d:12:
58:23:f5:06:dd:93:92:1e:b8:ce:81:56:73:e3:e9:
fb:ce:d3:06:41:04:b8:e8:25:9a:de:9a:52:03:86:
50:bf:b6:f8:b9:17:66:dc:2a:8e:81:6f:35:f1:40:
5d:84:41:d8:e0:ff:f7:d2:66:16:57:b5:b3:bb:c5:
da:5d:1f:fa:18:a8:11:0f:fa:63:2c:0d:a8:b1:95:
07:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:B6:1C:BE:4D:CE:1E:6C:54:A4:98:15:32:92:C2:21:31:7E:22:9F
X509v3 Authority Key Identifier:
keyid:54:17:E3:DB:0D:1C:2C:FC:22:B4:BE:87:4E:25:98:DD:09:92:94:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VBfj2w0cLPwitL6HTiWY3QmSlO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/50248d-825c-45e1-b5ff-b29a2cbc3580/1/vLYcvk3OHmxUpJgVMpLCITF-Ip8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/50248d-825c-45e1-b5ff-b29a2cbc3580/1/VBfj2w0cLPwitL6HTiWY3QmSlO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:aa8::/29
Signature Algorithm: sha256WithRSAEncryption
6b:6c:c0:83:9d:f4:aa:86:7a:7d:29:2e:fa:9a:79:64:b2:3e:
5f:54:e8:1a:bb:19:31:6f:bc:52:17:7a:31:94:81:2a:d4:c8:
79:1d:a7:aa:80:dd:0f:74:71:a9:50:5e:f4:41:ae:c9:aa:49:
c7:f3:3f:68:0a:00:05:14:f3:a0:80:00:d6:8d:58:78:c4:39:
f5:c8:3f:57:f8:cc:2d:70:45:c1:3f:08:b2:6f:4d:7a:70:a5:
f4:da:b3:be:ac:db:fc:0b:1c:e5:b0:aa:bf:ba:17:16:26:6b:
ad:3a:2a:3d:a0:48:f1:af:27:b7:37:0b:ca:ce:c4:9a:5c:76:
5e:a0:da:20:aa:8a:a4:c0:1a:85:84:67:74:c0:a3:e6:36:e0:
80:47:f4:60:e1:b5:02:d0:ab:20:a3:e6:80:48:63:a2:0b:bf:
72:3f:a5:75:05:33:88:70:3e:58:b5:62:cb:fe:b8:15:c2:77:
fb:96:ad:a7:30:98:c5:0c:ea:58:0b:9c:a0:07:97:b3:63:ee:
78:37:d6:88:66:d9:c3:b2:07:50:9b:40:66:89:8c:ce:6b:97:
dc:11:ca:a1:f4:82:57:0f:11:e2:7d:76:cd:66:b0:bf:87:d4:
00:1a:42:f1:62:ee:4a:b0:93:de:c3:48:bc:9f:9c:12:15:37:
0b:dc:21:30
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEFeyHljANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDE3ZTNkYjBkMWMyY2ZjMjJiNGJlODc0ZTI1OThkZDA5OTI5NGVkMB4XDTIyMDEw
MTE2MTEwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmNiNjFjYmU0ZGNl
MWU2YzU0YTQ5ODE1MzI5MmMyMjEzMTdlMjI5ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ2ccsbqKdvmZkP79FbXrmPcFl/+fs4HtVJlzrCo1MbHVhqv
hnN70NeUEqvbegkawq/jzVsKeT85qa8WGsNdwEtGQRBD5jroIQ6XhDh9kmzJ+GCR
ax1hmydcjge3zpzTWw3ORj5Ui0UmeFIQZ3u74yFBkATs2VpADWv+rUteKAVRS3W0
mgXvPVzp6zjPoWlO93Z6Ha1J7x55olTt9p3jQSHUGpBWl6gLHsKhP2Jn8VVBVC0S
WCP1Bt2Tkh64zoFWc+Pp+87TBkEEuOglmt6aUgOGUL+2+LkXZtwqjoFvNfFAXYRB
2OD/99JmFle1s7vF2l0f+hioEQ/6YywNqLGVB68CAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBS8thy+Tc4ebFSkmBUyksIhMX4inzAfBgNVHSMEGDAWgBRUF+PbDRws/CK0
vodOJZjdCZKU7TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZCZmoydzBjTFB3aXRMNkhUaVdZM1FtU2xPMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzgvNTAyNDhkLTgyNWMtNDVlMS1iNWZmLWIyOWEyY2JjMzU4MC8x
L3ZMWWN2azNPSG14VXBKZ1ZNcExDSVRGLUlwOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzgv
NTAyNDhkLTgyNWMtNDVlMS1iNWZmLWIyOWEyY2JjMzU4MC8xL1ZCZmoydzBjTFB3
aXRMNkhUaVdZM1FtU2xPMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoCCqgwDQYJKoZIhvcNAQELBQAD
ggEBAGtswIOd9KqGen0pLvqaeWSyPl9U6Bq7GTFvvFIXejGUgSrUyHkdp6qA3Q90
calQXvRBrsmqScfzP2gKAAUU86CAANaNWHjEOfXIP1f4zC1wRcE/CLJvTXpwpfTa
s76s2/wLHOWwqr+6FxYma606Kj2gSPGvJ7c3C8rOxJpcdl6g2iCqiqTAGoWEZ3TA
o+Y24IBH9GDhtQLQqyCj5oBIY6ILv3I/pXUFM4hwPli1Ysv+uBXCd/uWracwmMUM
6lgLnKAHl7Nj7ng31ohm2cOyB1CbQGaJjM5rl9wRyqH0glcPEeJ9ds1msL+H1AAa
QvFi7kqwk97DSLyfnBIVNwvcITA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:38 2024 by rpki-client on console-fra.rpki-client.org