Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/7HUtvmo1mXlVqoPtSqfaO1dqAbM.roa
File: 7HUtvmo1mXlVqoPtSqfaO1dqAbM.roa (raw, json)
Hash identifier: FssBhSP9NdsSlKD3rrf/cLL9pmTesoaql6kGrKLuqbc=
Subject key identifier: EC:75:2D:BE:6A:35:99:79:55:AA:83:ED:4A:A7:DA:3B:57:6A:01:B3
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 0A0894F2
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/7HUtvmo1mXlVqoPtSqfaO1dqAbM.roa
Signing time: Sat 01 Jan 2022 05:03:28 +0000
ROA not before: Sat 01 Jan 2022 05:03:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56894
IP address blocks: 2a0d:2146:9900::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168334578 (0xa0894f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Jan 1 05:03:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec752dbe6a35997955aa83ed4aa7da3b576a01b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f7:89:63:2a:c4:b6:c3:b1:08:5e:8c:31:dc:
05:06:f1:b8:dc:93:e1:1e:b7:13:d1:95:e6:57:7b:
6f:3f:8c:3e:fb:e0:38:4e:64:51:bd:ca:7f:23:68:
87:c9:31:62:5c:3d:36:c3:49:78:bf:3a:38:50:8b:
82:ba:a5:dc:4f:ca:19:08:90:59:c0:18:05:26:43:
fe:72:6c:cf:44:20:8d:88:f3:ba:aa:20:bc:cf:3d:
60:a5:49:73:b3:ab:10:07:58:ea:25:17:36:3b:3d:
42:ad:66:a6:b5:8d:c8:6c:24:8b:62:08:e5:5c:b1:
13:5b:53:25:34:7c:33:64:90:a3:3f:e1:86:44:80:
db:95:51:82:7f:f0:24:c0:08:c1:4e:27:67:b1:5a:
0c:4e:87:90:7e:39:5e:6a:aa:47:6c:fe:e3:04:d7:
7b:9d:1a:75:50:ec:9b:55:92:f6:24:10:84:30:0c:
2b:2e:e4:ab:3d:66:fc:47:70:66:a5:8f:b1:17:8e:
bd:54:1e:c4:52:0e:89:8a:9a:26:86:79:cf:e5:15:
92:4a:47:bf:b1:11:6c:8b:7c:d7:c9:4a:d0:45:cd:
f2:72:62:51:11:d6:2c:c8:84:15:14:cc:45:9d:08:
6d:2d:f1:fc:fe:ee:dd:3e:fe:01:f3:cc:41:ea:ed:
fa:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:75:2D:BE:6A:35:99:79:55:AA:83:ED:4A:A7:DA:3B:57:6A:01:B3
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/7HUtvmo1mXlVqoPtSqfaO1dqAbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2146:9900::/40
Signature Algorithm: sha256WithRSAEncryption
4a:70:99:71:0f:9a:7c:29:59:c8:37:98:35:b6:c0:bc:5f:a2:
88:e8:c8:86:26:16:a3:40:4d:69:d6:1f:f5:f7:5f:9e:0d:a5:
1a:b5:d3:7e:24:fd:a8:4b:42:80:75:88:5d:6c:77:cc:ca:9c:
b1:d7:42:6f:ec:2c:7c:c7:eb:d5:c4:e9:e8:e1:9c:3b:62:9b:
51:28:f4:0f:3d:c6:d0:d3:0b:b5:34:0d:27:21:90:ad:89:52:
e9:2c:a7:1e:d7:97:d1:0f:35:5c:7d:5d:11:40:36:56:fb:64:
ff:44:4b:28:13:c7:d1:e8:bb:f3:16:93:d2:3b:df:29:eb:be:
ab:39:5b:33:a5:26:b6:eb:f0:c0:6f:ed:b2:82:34:bb:4a:8a:
3e:53:8c:e4:c2:fb:e7:0c:88:10:f6:03:cd:b1:ae:6b:19:db:
b1:0f:fd:34:05:a0:a5:c6:eb:60:b9:04:ee:8f:47:96:be:4a:
cf:24:3d:bc:c9:c9:3b:64:ab:c5:05:b1:2d:9a:9e:ee:02:38:
81:68:91:1a:f7:6b:35:9b:1f:0f:27:01:31:57:cf:57:b0:70:
a9:8c:b2:f8:44:4b:68:5a:68:68:73:7e:30:3a:09:7b:39:af:
56:a6:a0:70:ce:db:06:27:fe:91:e2:d2:c2:30:8c:58:d4:17:
7b:6c:84:e8
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIECgiU8jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MTRhYzYxMTYxNGRkMTY1ZDk0NTU3Mjk2ZWQ3ZWQ0NmM4ZmMwMjVmMB4XDTIyMDEw
MTA1MDMyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWM3NTJkYmU2YTM1
OTk3OTU1YWE4M2VkNGFhN2RhM2I1NzZhMDFiMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJL3iWMqxLbDsQhejDHcBQbxuNyT4R63E9GV5ld7bz+MPvvg
OE5kUb3KfyNoh8kxYlw9NsNJeL86OFCLgrql3E/KGQiQWcAYBSZD/nJsz0QgjYjz
uqogvM89YKVJc7OrEAdY6iUXNjs9Qq1mprWNyGwki2II5VyxE1tTJTR8M2SQoz/h
hkSA25VRgn/wJMAIwU4nZ7FaDE6HkH45XmqqR2z+4wTXe50adVDsm1WS9iQQhDAM
Ky7kqz1m/EdwZqWPsReOvVQexFIOiYqaJoZ5z+UVkkpHv7ERbIt818lK0EXN8nJi
URHWLMiEFRTMRZ0IbS3x/P7u3T7+AfPMQert+hsCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBTsdS2+ajWZeVWqg+1Kp9o7V2oBszAfBgNVHSMEGDAWgBThSsYRYU3RZdlF
Vylu1+1GyPwCXzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRVckdFV0ZOMFdYWlJWY3BidGZ0UnNqOEFsOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvNmU3OWI4LTJiOGYtNGVjYy05YTZlLTcwZTg5OGJiMzhkZC8x
LzdIVXR2bW8xbVhsVnFvUHRTcWZhTzFkcUFiTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
NmU3OWI4LTJiOGYtNGVjYy05YTZlLTcwZTg5OGJiMzhkZC8xLzRVckdFV0ZOMFdY
WlJWY3BidGZ0UnNqOEFsOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoNIUaZMA0GCSqGSIb3DQEBCwUA
A4IBAQBKcJlxD5p8KVnIN5g1tsC8X6KI6MiGJhajQE1p1h/191+eDaUatdN+JP2o
S0KAdYhdbHfMypyx10Jv7Cx8x+vVxOno4Zw7YptRKPQPPcbQ0wu1NA0nIZCtiVLp
LKce15fRDzVcfV0RQDZW+2T/REsoE8fR6LvzFpPSO98p676rOVszpSa26/DAb+2y
gjS7Soo+U4zkwvvnDIgQ9gPNsa5rGduxD/00BaClxutguQTuj0eWvkrPJD28yck7
ZKvFBbEtmp7uAjiBaJEa92s1mx8PJwExV89XsHCpjLL4REtoWmhoc34wOgl7Oa9W
pqBwztsGJ/6R4tLCMIxY1Bd7bITo
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:39 2024 by rpki-client on console-ams.rpki-client.org