Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/Unqm1mXaeRepenVnUm9sBc673sY.roa
File: Unqm1mXaeRepenVnUm9sBc673sY.roa (raw, json)
Hash identifier: ZlO+eNYJ/UEMVI3qv6ABB9/hgNH3a3pINCob+UYpm7Q=
Subject key identifier: 52:7A:A6:D6:65:DA:79:17:A9:7A:75:67:52:6F:6C:05:CE:BB:DE:C6
Certificate issuer: /CN=1e45cc69b4d1ee151b5027442fbba944c274df97
Certificate serial: 05A4FABC
Authority key identifier: 1E:45:CC:69:B4:D1:EE:15:1B:50:27:44:2F:BB:A9:44:C2:74:DF:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/Unqm1mXaeRepenVnUm9sBc673sY.roa
Signing time: Sat 01 Jan 2022 12:58:23 +0000
ROA not before: Sat 01 Jan 2022 12:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213376
IP address blocks: 2001:678:d08::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94698172 (0x5a4fabc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e45cc69b4d1ee151b5027442fbba944c274df97
Validity
Not Before: Jan 1 12:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=527aa6d665da7917a97a7567526f6c05cebbdec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ca:60:e8:7a:aa:dc:1d:88:86:c4:91:3f:1a:
23:7c:89:df:01:18:3f:c2:97:82:74:fe:57:a2:db:
7f:56:b6:98:58:72:5e:1e:3c:e4:09:6f:aa:7c:1c:
d3:91:25:4d:76:7c:da:41:30:fc:a1:25:95:a3:3a:
95:a6:df:d1:98:c1:c8:96:6d:ce:38:a4:f1:e7:a2:
81:10:2e:44:36:ba:26:9b:99:f0:d0:90:36:16:63:
78:f2:9e:87:d9:ba:6d:06:e4:e0:ba:86:ff:3b:27:
70:9d:6a:f9:95:1d:10:dd:28:aa:20:3c:c4:45:e2:
53:4f:18:fd:30:9d:3e:c3:59:44:f2:50:54:2d:3d:
90:84:9d:50:d0:5f:b9:e1:e3:d4:ef:e2:6c:36:be:
e3:0f:d6:97:93:44:46:17:bd:04:c2:42:19:d2:cf:
3a:d4:ed:01:f9:fe:38:91:61:76:6a:19:6f:90:e7:
be:e6:f8:a7:9c:7a:ae:65:fc:28:8e:82:e9:43:29:
1c:09:ee:61:5c:cf:d9:e6:3f:7e:7d:a0:84:a7:c4:
12:f4:9b:87:05:34:9c:7c:76:ee:ae:c2:88:5a:e2:
14:0c:1c:3e:b8:00:b0:05:0e:24:dc:e2:4f:27:e8:
75:ac:48:49:b5:48:e6:91:92:47:9f:3f:7a:f9:23:
2e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:7A:A6:D6:65:DA:79:17:A9:7A:75:67:52:6F:6C:05:CE:BB:DE:C6
X509v3 Authority Key Identifier:
keyid:1E:45:CC:69:B4:D1:EE:15:1B:50:27:44:2F:BB:A9:44:C2:74:DF:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/Unqm1mXaeRepenVnUm9sBc673sY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d08::/48
Signature Algorithm: sha256WithRSAEncryption
87:85:96:63:f8:a3:80:30:a8:bd:df:28:e3:12:02:22:56:60:
6a:7d:43:47:55:c3:fc:50:f4:91:f9:5c:aa:c1:ea:d5:4b:97:
66:b7:f9:65:e8:51:35:63:66:4d:f3:c3:aa:ee:ed:e1:84:9f:
4d:9e:eb:af:ec:d5:73:d5:3b:06:d6:66:8e:f8:26:4e:40:a0:
35:a9:9c:90:f8:2c:c1:ab:35:cf:2d:0c:88:4d:2e:f9:6e:7f:
de:c9:74:21:0f:22:5b:cc:2a:2e:39:87:d3:56:58:0b:c5:08:
93:b5:6e:3d:7a:fa:21:d5:21:6f:b6:04:17:cb:d2:20:2e:fd:
04:ee:8b:97:c2:9a:4b:6f:f3:23:db:14:c3:19:a7:3f:d8:5b:
7b:53:ac:93:8d:7c:22:38:d4:e9:11:88:a4:d6:fd:9b:90:4b:
3e:2f:3a:80:73:a1:9c:6d:a2:d7:bc:c8:11:9e:eb:36:2e:7a:
a9:ee:bd:88:30:5c:dc:54:e2:fc:a9:17:58:ca:55:c4:62:22:
5e:2c:2d:8e:48:54:20:a0:80:9d:97:b5:ce:0e:93:89:17:f7:
98:84:fc:9e:a6:00:e3:f9:e0:72:26:7c:4c:f4:b1:04:98:8f:
10:ca:c7:47:47:4d:bb:8a:7b:36:07:99:d2:a1:a7:6d:e9:a4:
64:4f:4e:be
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEBaT6vDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZTQ1Y2M2OWI0ZDFlZTE1MWI1MDI3NDQyZmJiYTk0NGMyNzRkZjk3MB4XDTIyMDEw
MTEyNTgyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTI3YWE2ZDY2NWRh
NzkxN2E5N2E3NTY3NTI2ZjZjMDVjZWJiZGVjNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKfKYOh6qtwdiIbEkT8aI3yJ3wEYP8KXgnT+V6Lbf1a2mFhy
Xh485Alvqnwc05ElTXZ82kEw/KEllaM6labf0ZjByJZtzjik8eeigRAuRDa6JpuZ
8NCQNhZjePKeh9m6bQbk4LqG/zsncJ1q+ZUdEN0oqiA8xEXiU08Y/TCdPsNZRPJQ
VC09kISdUNBfueHj1O/ibDa+4w/Wl5NERhe9BMJCGdLPOtTtAfn+OJFhdmoZb5Dn
vub4p5x6rmX8KI6C6UMpHAnuYVzP2eY/fn2ghKfEEvSbhwU0nHx27q7CiFriFAwc
PrgAsAUOJNziTyfodaxISbVI5pGSR58/evkjLmMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRSeqbWZdp5F6l6dWdSb2wFzrvexjAfBgNVHSMEGDAWgBQeRcxptNHuFRtQ
J0Qvu6lEwnTflzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hrWE1hYlRSN2hVYlVDZEVMN3VwUk1KMDM1Yy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvZDQ5NTI4LTJhYTQtNGE3ZC05ODQ1LWMyNDQzYWE1NDdlMi8x
L1VucW0xbVhhZVJlcGVuVm5VbTlzQmM2NzNzWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
ZDQ5NTI4LTJhYTQtNGE3ZC05ODQ1LWMyNDQzYWE1NDdlMi8xL0hrWE1hYlRSN2hV
YlVDZEVMN3VwUk1KMDM1Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBngNCDANBgkqhkiG9w0BAQsF
AAOCAQEAh4WWY/ijgDCovd8o4xICIlZgan1DR1XD/FD0kflcqsHq1UuXZrf5ZehR
NWNmTfPDqu7t4YSfTZ7rr+zVc9U7BtZmjvgmTkCgNamckPgswas1zy0MiE0u+W5/
3sl0IQ8iW8wqLjmH01ZYC8UIk7VuPXr6IdUhb7YEF8vSIC79BO6Ll8KaS2/zI9sU
wxmnP9hbe1Osk418IjjU6RGIpNb9m5BLPi86gHOhnG2i17zIEZ7rNi56qe69iDBc
3FTi/KkXWMpVxGIiXiwtjkhUIKCAnZe1zg6TiRf3mIT8nqYA4/ngciZ8TPSxBJiP
EMrHR0dNu4p7NgeZ0qGnbemkZE9Ovg==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:43:51 2025 by rpki-client