Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/179bd8-fc68-4f76-86ff-68f316607376/1/qh4KpqgXWBMMzsbICNObguAkI98.roa
File: qh4KpqgXWBMMzsbICNObguAkI98.roa (raw, json)
Hash identifier: 3Ml7uJ4Kne1xkdPsf7rWcLnTeYwEVs3tFd/5YrRzbsA=
Subject key identifier: AA:1E:0A:A6:A8:17:58:13:0C:CE:C6:C8:08:D3:9B:82:E0:24:23:DF
Certificate issuer: /CN=5a3b1dddab33e45506ad977040924720417d5688
Certificate serial: 018340CC548F3680E5E20373392797A89924
Authority key identifier: 5A:3B:1D:DD:AB:33:E4:55:06:AD:97:70:40:92:47:20:41:7D:56:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wjsd3asz5FUGrZdwQJJHIEF9Vog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/179bd8-fc68-4f76-86ff-68f316607376/1/qh4KpqgXWBMMzsbICNObguAkI98.roa
Signing time: Thu 15 Sep 2022 10:57:55 +0000
ROA not before: Thu 15 Sep 2022 10:57:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200915
IP address blocks: 2a05:eb40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:40:cc:54:8f:36:80:e5:e2:03:73:39:27:97:a8:99:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a3b1dddab33e45506ad977040924720417d5688
Validity
Not Before: Sep 15 10:57:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa1e0aa6a81758130ccec6c808d39b82e02423df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6a:a2:be:e5:2f:87:04:43:c5:96:3e:b9:71:
6c:04:34:7a:78:3e:00:e0:ee:af:c7:a0:08:ea:0a:
c9:0e:6f:a8:02:96:13:2e:b0:ce:f6:90:8b:b4:93:
1b:0c:89:20:99:0d:e3:40:ce:70:3f:1d:b4:24:1f:
c2:3f:0b:52:53:aa:33:f4:2c:70:50:2f:b9:a7:8c:
69:b0:02:b3:79:4f:3b:38:b6:14:0a:34:e4:d7:03:
77:13:5b:4c:f9:5b:9c:4a:c3:d6:54:72:32:5f:03:
4b:8d:6b:fd:ea:dc:59:43:2a:11:bf:4c:7f:82:33:
a1:cd:7d:7d:38:9d:21:fc:2d:a5:34:55:ad:f8:26:
51:b1:a8:47:77:61:d2:c6:62:1b:3c:f0:fa:df:8b:
98:a3:ea:bf:3b:da:61:14:92:ce:10:f8:ef:35:c0:
18:a4:16:fa:9d:98:50:89:77:03:19:d8:2d:e9:01:
40:9b:55:15:ed:8d:ea:3a:f8:ec:17:14:76:6f:a7:
c3:c5:95:04:af:6a:4b:9e:19:21:0a:44:81:e6:57:
04:d2:b4:88:df:c2:ac:ed:e3:0d:e2:30:e4:71:e7:
10:4f:62:a7:0f:6b:57:06:d5:43:6e:81:73:0d:71:
46:43:d8:50:79:ed:ff:6b:f9:01:27:16:2b:ff:e8:
57:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:1E:0A:A6:A8:17:58:13:0C:CE:C6:C8:08:D3:9B:82:E0:24:23:DF
X509v3 Authority Key Identifier:
keyid:5A:3B:1D:DD:AB:33:E4:55:06:AD:97:70:40:92:47:20:41:7D:56:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wjsd3asz5FUGrZdwQJJHIEF9Vog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/179bd8-fc68-4f76-86ff-68f316607376/1/qh4KpqgXWBMMzsbICNObguAkI98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/179bd8-fc68-4f76-86ff-68f316607376/1/Wjsd3asz5FUGrZdwQJJHIEF9Vog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:eb40::/29
Signature Algorithm: sha256WithRSAEncryption
9e:57:3b:3c:95:ff:36:18:9c:d4:41:be:cc:04:12:f6:06:0b:
03:54:f5:3f:cc:1b:09:b6:15:56:ca:b8:db:12:85:f6:b5:6c:
3f:e1:90:78:70:c5:4d:c0:94:07:82:ba:db:03:f3:2f:84:e0:
9b:55:ab:f7:6c:ba:91:b1:aa:cf:d3:d5:ad:b3:10:21:b7:72:
5a:f3:0f:60:e5:24:c2:0f:ed:a9:11:2d:47:66:57:49:61:64:
41:87:82:f6:0a:9b:89:be:63:cd:45:7c:26:3c:79:b9:eb:2b:
5c:e4:a5:31:cd:d7:81:9d:cc:76:03:78:a0:10:c9:a1:32:b7:
6b:46:b6:44:27:f6:a8:f5:2f:3c:9e:2c:fe:79:cc:f8:88:4e:
8d:55:cc:1a:8c:18:f7:52:d6:77:0f:a7:08:c7:80:04:83:be:
3f:24:17:20:e0:b2:c1:c6:19:58:c9:55:2d:27:d9:04:7e:96:
93:86:bd:c1:f2:0c:4d:a1:66:20:40:49:80:3b:bb:32:2a:97:
2e:6b:4f:d2:14:4b:06:bc:32:00:30:85:26:45:1f:89:69:59:
2f:ea:ac:e0:ec:1c:58:9a:00:24:ce:bb:81:08:7b:22:7d:9a:
cf:ff:37:31:f9:b2:c6:84:b0:6f:96:5f:e2:e4:c4:65:90:b4:
e9:e4:7d:9a
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYNAzFSPNoDl4gNzOSeXqJkkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhM2IxZGRkYWIzM2U0NTUwNmFkOTc3MDQwOTI0NzIwNDE3
ZDU2ODgwHhcNMjIwOTE1MTA1NzU1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYTFlMGFhNmE4MTc1ODEzMGNjZWM2YzgwOGQzOWI4MmUwMjQyM2RmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwmqivuUvhwRDxZY+uXFsBDR6eD4A
4O6vx6AI6grJDm+oApYTLrDO9pCLtJMbDIkgmQ3jQM5wPx20JB/CPwtSU6oz9Cxw
UC+5p4xpsAKzeU87OLYUCjTk1wN3E1tM+VucSsPWVHIyXwNLjWv96txZQyoRv0x/
gjOhzX19OJ0h/C2lNFWt+CZRsahHd2HSxmIbPPD634uYo+q/O9phFJLOEPjvNcAY
pBb6nZhQiXcDGdgt6QFAm1UV7Y3qOvjsFxR2b6fDxZUEr2pLnhkhCkSB5lcE0rSI
38Ks7eMN4jDkcecQT2KnD2tXBtVDboFzDXFGQ9hQee3/a/kBJxYr/+hXOwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFKoeCqaoF1gTDM7GyAjTm4LgJCPfMB8GA1UdIwQY
MBaAFFo7Hd2rM+RVBq2XcECSRyBBfVaIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV2pzZDNhc3o1RlVHclpkd1FKSkhJRUY5Vm9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8xNzliZDgtZmM2OC00Zjc2LTg2ZmYt
NjhmMzE2NjA3Mzc2LzEvcWg0S3BxZ1hXQk1NenNiSUNOT2JndUFrSTk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8xNzliZDgtZmM2OC00Zjc2LTg2ZmYtNjhmMzE2NjA3Mzc2
LzEvV2pzZDNhc3o1RlVHclpkd1FKSkhJRUY5Vm9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgXrQDAN
BgkqhkiG9w0BAQsFAAOCAQEAnlc7PJX/Nhic1EG+zAQS9gYLA1T1P8wbCbYVVsq4
2xKF9rVsP+GQeHDFTcCUB4K62wPzL4Tgm1Wr92y6kbGqz9PVrbMQIbdyWvMPYOUk
wg/tqREtR2ZXSWFkQYeC9gqbib5jzUV8Jjx5uesrXOSlMc3XgZ3MdgN4oBDJoTK3
a0a2RCf2qPUvPJ4s/nnM+IhOjVXMGowY91LWdw+nCMeABIO+PyQXIOCywcYZWMlV
LSfZBH6Wk4a9wfIMTaFmIEBJgDu7MiqXLmtP0hRLBrwyADCFJkUfiWlZL+qs4Owc
WJoAJM67gQh7In2az/83MfmyxoSwb5Zf4uTEZZC06eR9mg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:59 2024 by rpki-client on console-ams.rpki-client.org