Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/CRiAFQKzIl_NfBXiVvFAh9cjRX4.roa
File: CRiAFQKzIl_NfBXiVvFAh9cjRX4.roa (raw, json)
Hash identifier: qBNVhErp7oGdSt5wMZtB1OkJaZTrI2ceZdduueP2XSo=
Subject key identifier: 09:18:80:15:02:B3:22:5F:CD:7C:15:E2:56:F1:40:87:D7:23:45:7E
Certificate issuer: /CN=473163527e83542dce693b16d0aedcd126d3319a
Certificate serial: 160BA518
Authority key identifier: 47:31:63:52:7E:83:54:2D:CE:69:3B:16:D0:AE:DC:D1:26:D3:31:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzFjUn6DVC3OaTsW0K7c0SbTMZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/CRiAFQKzIl_NfBXiVvFAh9cjRX4.roa
Signing time: Sat 01 Jan 2022 06:01:25 +0000
ROA not before: Sat 01 Jan 2022 06:01:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31479
IP address blocks: 2a04:d700::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 369861912 (0x160ba518)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473163527e83542dce693b16d0aedcd126d3319a
Validity
Not Before: Jan 1 06:01:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0918801502b3225fcd7c15e256f14087d723457e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:79:66:18:9c:7f:7b:94:3e:d6:02:f6:4b:44:
25:56:e8:1d:c3:aa:78:1e:0d:2e:85:0b:b9:77:26:
7f:f8:16:ab:b9:20:85:f1:77:93:e2:31:4c:be:46:
8a:51:a6:1d:85:26:33:f7:81:b2:71:f9:4c:a2:e5:
b8:99:72:36:c5:f3:23:39:bd:50:54:ce:f7:88:f1:
7b:7c:43:2c:27:47:c0:da:39:34:e1:6d:e4:a6:1c:
86:37:66:28:64:6f:8d:81:95:56:5d:2b:78:60:46:
33:63:13:52:c0:f0:f9:fb:ef:f6:c2:80:5a:b7:33:
b7:0b:aa:35:84:25:89:9a:52:7d:cc:f0:3f:b0:9a:
2d:a3:23:5d:47:a2:68:55:ec:3e:3e:dc:25:5a:4b:
66:5b:c3:69:42:a4:a3:35:b6:4b:55:d8:7e:cb:c1:
9d:1e:f9:e7:9e:66:08:ce:92:32:3f:65:1a:59:ba:
09:5c:37:5e:4a:32:0a:98:c2:f1:5b:e9:de:9f:bc:
40:a5:bf:57:9f:05:ad:14:65:35:1b:e1:22:27:ad:
0a:55:f3:eb:62:5d:a9:d1:9c:08:34:ff:72:11:a5:
48:5e:c3:0d:10:bb:38:ec:44:fb:ae:5b:7e:93:d6:
9c:fb:c0:44:8b:fd:71:c8:4e:1d:2e:b8:e5:d9:b2:
09:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:18:80:15:02:B3:22:5F:CD:7C:15:E2:56:F1:40:87:D7:23:45:7E
X509v3 Authority Key Identifier:
keyid:47:31:63:52:7E:83:54:2D:CE:69:3B:16:D0:AE:DC:D1:26:D3:31:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzFjUn6DVC3OaTsW0K7c0SbTMZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/CRiAFQKzIl_NfBXiVvFAh9cjRX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/RzFjUn6DVC3OaTsW0K7c0SbTMZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:d700::/29
Signature Algorithm: sha256WithRSAEncryption
16:d1:be:e5:e0:1f:c4:69:b8:c8:1c:8e:35:15:2a:62:40:64:
bd:b9:b3:03:1f:23:00:8d:5f:36:60:c0:39:49:c9:6a:ee:0b:
65:b5:16:5d:14:77:43:da:26:f6:d3:e4:e3:98:c4:ff:d1:07:
f2:cf:f9:a0:12:3c:f5:d6:50:60:f3:46:68:aa:53:75:fb:52:
2b:64:75:70:bc:aa:da:f4:19:12:05:a2:a8:e4:6e:4a:9a:77:
9f:dc:a9:7d:ed:c3:ac:63:d0:c3:c0:e5:a7:17:98:f6:f1:78:
0f:e5:75:b6:c7:cb:83:63:14:3c:2f:05:02:8b:c2:cb:c1:74:
2d:3e:a2:ff:4d:5e:dd:50:54:71:3a:81:d8:68:c7:c6:54:45:
1c:6d:c3:50:96:e5:22:7b:44:70:8f:ce:7e:d5:6b:06:83:10:
95:11:8a:8e:86:53:c9:a3:e2:22:1d:81:98:3d:93:81:66:2d:
cd:c9:d4:6c:23:9e:47:50:ab:a8:e3:a8:77:14:cc:36:29:10:
55:62:72:b7:ee:82:bd:0e:9d:8a:79:5c:0c:24:2c:82:49:31:
e1:76:21:43:97:1c:08:30:af:50:49:c8:46:18:e7:23:1d:29:
78:ea:8e:71:d7:2f:be:01:0d:19:dd:48:13:cc:dc:af:af:74:
d8:b9:f3:19
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEFgulGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
NzMxNjM1MjdlODM1NDJkY2U2OTNiMTZkMGFlZGNkMTI2ZDMzMTlhMB4XDTIyMDEw
MTA2MDEyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDkxODgwMTUwMmIz
MjI1ZmNkN2MxNWUyNTZmMTQwODdkNzIzNDU3ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKl5Zhicf3uUPtYC9ktEJVboHcOqeB4NLoULuXcmf/gWq7kg
hfF3k+IxTL5GilGmHYUmM/eBsnH5TKLluJlyNsXzIzm9UFTO94jxe3xDLCdHwNo5
NOFt5KYchjdmKGRvjYGVVl0reGBGM2MTUsDw+fvv9sKAWrcztwuqNYQliZpSfczw
P7CaLaMjXUeiaFXsPj7cJVpLZlvDaUKkozW2S1XYfsvBnR75555mCM6SMj9lGlm6
CVw3XkoyCpjC8Vvp3p+8QKW/V58FrRRlNRvhIietClXz62JdqdGcCDT/chGlSF7D
DRC7OOxE+65bfpPWnPvARIv9cchOHS645dmyCTMCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBQJGIAVArMiX818FeJW8UCH1yNFfjAfBgNVHSMEGDAWgBRHMWNSfoNULc5p
OxbQrtzRJtMxmjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1J6RmpVbjZEVkMzT2FUc1cwSzdjMFNiVE1aby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTcvYWIyMzg5LThkMzYtNDNmZS1hZjQyLTlhMzg0MTk2NzE4MS8x
L0NSaUFGUUt6SWxfTmZCWGlWdkZBaDljalJYNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTcv
YWIyMzg5LThkMzYtNDNmZS1hZjQyLTlhMzg0MTk2NzE4MS8xL1J6RmpVbjZEVkMz
T2FUc1cwSzdjMFNiVE1aby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoE1wAwDQYJKoZIhvcNAQELBQAD
ggEBABbRvuXgH8RpuMgcjjUVKmJAZL25swMfIwCNXzZgwDlJyWruC2W1Fl0Ud0Pa
JvbT5OOYxP/RB/LP+aASPPXWUGDzRmiqU3X7UitkdXC8qtr0GRIFoqjkbkqad5/c
qX3tw6xj0MPA5acXmPbxeA/ldbbHy4NjFDwvBQKLwsvBdC0+ov9NXt1QVHE6gdho
x8ZURRxtw1CW5SJ7RHCPzn7VawaDEJURio6GU8mj4iIdgZg9k4FmLc3J1GwjnkdQ
q6jjqHcUzDYpEFVicrfugr0OnYp5XAwkLIJJMeF2IUOXHAgwr1BJyEYY5yMdKXjq
jnHXL74BDRndSBPM3K+vdNi58xk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:32 2024 by rpki-client on console-fra.rpki-client.org