Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/360ef9-ec20-4e13-9647-ddfeb424adf5/1/zkEBmrE6IiOmWk2gpKBFYY3PNUg.roa
File: zkEBmrE6IiOmWk2gpKBFYY3PNUg.roa (raw, json)
Hash identifier: 6Euh6j3myK6mVHxngvFEL0MgSC8gObArWddrHEo5Xks=
Subject key identifier: CE:41:01:9A:B1:3A:22:23:A6:5A:4D:A0:A4:A0:45:61:8D:CF:35:48
Certificate issuer: /CN=b9ab361394683e4f24397cfc8f23eab2c6828dea
Certificate serial: 01F0CE
Authority key identifier: B9:AB:36:13:94:68:3E:4F:24:39:7C:FC:8F:23:EA:B2:C6:82:8D:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uas2E5RoPk8kOXz8jyPqssaCjeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/360ef9-ec20-4e13-9647-ddfeb424adf5/1/zkEBmrE6IiOmWk2gpKBFYY3PNUg.roa
Signing time: Fri 17 Jun 2022 15:17:49 +0000
ROA not before: Fri 17 Jun 2022 15:17:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2a13:2e00::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127182 (0x1f0ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ab361394683e4f24397cfc8f23eab2c6828dea
Validity
Not Before: Jun 17 15:17:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce41019ab13a2223a65a4da0a4a045618dcf3548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0b:81:6e:cc:e5:f6:9c:0e:70:50:90:5b:b2:
07:c9:83:58:3d:92:3c:5c:ec:42:a4:b1:ae:7c:b7:
51:7e:82:ea:7b:14:69:93:5e:5e:1f:63:0f:b1:86:
04:9d:84:4b:ba:16:68:17:f7:50:b7:74:90:31:d4:
12:be:e2:46:89:9c:a7:21:17:b7:0b:41:b6:58:53:
c8:50:24:f9:b2:a1:7c:5b:ce:21:bf:77:d5:b6:7a:
f1:be:d3:61:87:0a:4a:60:a2:f9:43:a9:c0:98:db:
8e:68:56:61:21:01:8a:ff:e6:47:a4:46:56:f7:54:
1f:84:5b:f8:7d:16:d6:b1:93:35:e3:f6:52:c0:d5:
87:10:dc:5b:67:f1:b1:75:bd:b4:53:e7:6a:68:0b:
d7:87:b4:b6:4a:28:50:d0:fc:63:fe:ef:c3:4c:49:
9d:77:fc:59:02:03:01:f4:a4:1a:20:a2:b8:db:98:
62:87:ff:14:02:ec:e2:6d:22:c3:68:ff:f5:e7:15:
0d:3a:3b:32:ee:d4:74:d3:1d:1b:b9:cb:87:fa:8b:
3c:ae:8c:06:73:a1:6a:29:09:e2:4a:1d:76:1f:a3:
92:f3:42:97:8e:c0:3f:c8:fe:63:73:23:39:c8:f5:
60:63:9e:02:b8:c8:2c:93:82:14:b3:c3:4a:34:98:
5f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:41:01:9A:B1:3A:22:23:A6:5A:4D:A0:A4:A0:45:61:8D:CF:35:48
X509v3 Authority Key Identifier:
keyid:B9:AB:36:13:94:68:3E:4F:24:39:7C:FC:8F:23:EA:B2:C6:82:8D:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uas2E5RoPk8kOXz8jyPqssaCjeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/360ef9-ec20-4e13-9647-ddfeb424adf5/1/zkEBmrE6IiOmWk2gpKBFYY3PNUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/360ef9-ec20-4e13-9647-ddfeb424adf5/1/uas2E5RoPk8kOXz8jyPqssaCjeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2e00::/36
Signature Algorithm: sha256WithRSAEncryption
89:15:9f:ae:c5:af:63:63:6d:2f:eb:04:3e:cf:d4:8d:a6:78:
9b:46:83:ce:39:52:52:9c:79:cd:72:bf:ad:f1:36:f1:4c:73:
db:31:9f:05:6a:2e:2b:59:c8:b0:7f:90:ef:6b:5e:60:b9:02:
3c:ed:0d:e2:de:8c:5e:2a:a7:9e:30:73:23:31:03:68:49:15:
ec:04:eb:19:1d:3e:c9:d7:eb:38:45:ff:82:f5:37:62:87:87:
39:be:1f:6a:94:9d:bb:2b:b9:57:76:c0:42:76:71:f9:77:62:
54:a7:fc:98:59:59:f0:24:34:b2:2a:13:2d:3f:d3:9c:b6:40:
28:11:1f:13:a5:1e:ec:aa:87:c6:6d:11:07:f4:df:96:8b:5a:
cc:85:32:c7:6e:80:58:00:30:eb:15:f5:d2:73:22:2e:f3:73:
a4:eb:0d:51:2e:ab:e0:c2:00:de:93:a8:7c:dd:48:3a:12:6f:
5f:89:92:8d:d3:26:f0:a3:cc:2e:53:5c:a8:61:b5:52:22:bc:
8d:9f:ae:7c:b2:ae:c1:57:57:db:90:c5:f5:2b:74:0f:58:5a:
45:97:a5:92:11:d2:74:1c:3f:f6:48:54:0a:31:c6:0b:6d:87:
29:35:6e:c5:4f:00:1c:a2:1d:df:d2:75:5b:dd:98:38:6a:1d:
17:7d:de:5c
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIDAfDOMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGI5
YWIzNjEzOTQ2ODNlNGYyNDM5N2NmYzhmMjNlYWIyYzY4MjhkZWEwHhcNMjIwNjE3
MTUxNzQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhjZTQxMDE5YWIxM2Ey
MjIzYTY1YTRkYTBhNGEwNDU2MThkY2YzNTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA1AuBbszl9pwOcFCQW7IHyYNYPZI8XOxCpLGufLdRfoLqexRp
k15eH2MPsYYEnYRLuhZoF/dQt3SQMdQSvuJGiZynIRe3C0G2WFPIUCT5sqF8W84h
v3fVtnrxvtNhhwpKYKL5Q6nAmNuOaFZhIQGK/+ZHpEZW91QfhFv4fRbWsZM14/ZS
wNWHENxbZ/Gxdb20U+dqaAvXh7S2SihQ0Pxj/u/DTEmdd/xZAgMB9KQaIKK425hi
h/8UAuzibSLDaP/15xUNOjsy7tR00x0bucuH+os8rowGc6FqKQniSh12H6OS80KX
jsA/yP5jcyM5yPVgY54CuMgsk4IUs8NKNJhfQwIDAQABo4ICCzCCAgcwHQYDVR0O
BBYEFM5BAZqxOiIjplpNoKSgRWGNzzVIMB8GA1UdIwQYMBaAFLmrNhOUaD5PJDl8
/I8j6rLGgo3qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
dWFzMkU1Um9QazhrT1h6OGp5UHFzc2FDamVvLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8zZi8zNjBlZjktZWMyMC00ZTEzLTk2NDctZGRmZWI0MjRhZGY1LzEv
emtFQm1yRTZJaU9tV2syZ3BLQkZZWTNQTlVnLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8z
NjBlZjktZWMyMC00ZTEzLTk2NDctZGRmZWI0MjRhZGY1LzEvdWFzMkU1Um9Qazhr
T1h6OGp5UHFzc2FDamVvLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEG
CCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKhMuAAAwDQYJKoZIhvcNAQELBQAD
ggEBAIkVn67Fr2NjbS/rBD7P1I2meJtGg845UlKcec1yv63xNvFMc9sxnwVqLitZ
yLB/kO9rXmC5AjztDeLejF4qp54wcyMxA2hJFewE6xkdPsnX6zhF/4L1N2KHhzm+
H2qUnbsruVd2wEJ2cfl3YlSn/JhZWfAkNLIqEy0/05y2QCgRHxOlHuyqh8ZtEQf0
35aLWsyFMsdugFgAMOsV9dJzIi7zc6TrDVEuq+DCAN6TqHzdSDoSb1+Jko3TJvCj
zC5TXKhhtVIivI2frnyyrsFXV9uQxfUrdA9YWkWXpZIR0nQcP/ZIVAoxxgtthyk1
bsVPAByiHd/SdVvdmDhqHRd93lw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:35 2024 by rpki-client on console-fra.rpki-client.org