Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/SiBwuXH89dH_hSaM8hcNiIIwvow.roa
File: SiBwuXH89dH_hSaM8hcNiIIwvow.roa (raw, json)
Hash identifier: JBqzEwARyFz07L4pXCa10846Ly9/YmhyI0ktlkXno8M=
Subject key identifier: 4A:20:70:B9:71:FC:F5:D1:FF:85:26:8C:F2:17:0D:88:82:30:BE:8C
Certificate issuer: /CN=67ce179cbe13ddb14012985a067100ef98a55601
Certificate serial: 0184BE5520FD923052A854B621CD75F62E61
Authority key identifier: 67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/SiBwuXH89dH_hSaM8hcNiIIwvow.roa
Signing time: Mon 28 Nov 2022 13:02:40 +0000
ROA not before: Mon 28 Nov 2022 13:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51345
IP address blocks: 2a13:1c46::/32 maxlen: 64
2a13:1c40::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:be:55:20:fd:92:30:52:a8:54:b6:21:cd:75:f6:2e:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67ce179cbe13ddb14012985a067100ef98a55601
Validity
Not Before: Nov 28 13:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a2070b971fcf5d1ff85268cf2170d888230be8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f5:8b:11:c4:68:73:46:5c:3e:c8:a1:d9:68:
6d:50:16:46:62:e9:91:e8:e3:d1:97:ad:cd:af:dd:
b2:00:58:27:cf:bc:ee:39:03:9d:01:a7:08:21:fa:
c2:a1:4e:4e:d4:f0:b7:b6:9b:8d:df:89:fd:a0:bf:
11:0e:08:6c:01:a9:2b:dc:c6:39:fa:32:0f:dd:bc:
1b:5d:bc:26:9c:cc:59:bd:4e:82:40:ab:67:35:2f:
c4:ea:61:cb:90:e6:8c:36:91:68:c3:49:bf:67:ad:
f3:bf:11:4b:71:28:3b:3a:ae:6d:d4:d0:0f:cf:12:
f8:b7:ca:c7:b8:79:5c:c3:54:4d:0d:9a:de:6e:81:
dc:94:4b:3d:0c:8b:f2:8a:43:57:e9:3a:23:96:ba:
d8:7a:8f:78:f0:ed:a9:de:4b:fb:94:ac:36:4b:c6:
ca:a4:e1:a3:1e:ee:db:d6:71:c7:91:05:12:bf:f9:
4b:c6:f2:7e:1b:b8:d8:e6:24:cc:df:9c:7b:fa:9d:
32:60:f4:9b:39:60:8c:68:17:fe:8f:f0:09:28:91:
1c:39:8d:39:14:ca:94:3d:3f:1f:56:a6:84:db:21:
3c:da:f3:4c:a0:ca:11:42:65:08:55:82:2d:76:34:
08:98:7c:f8:37:fd:c4:68:b5:be:17:6e:e9:f5:99:
9f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:20:70:B9:71:FC:F5:D1:FF:85:26:8C:F2:17:0D:88:82:30:BE:8C
X509v3 Authority Key Identifier:
keyid:67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/SiBwuXH89dH_hSaM8hcNiIIwvow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Z84XnL4T3bFAEphaBnEA75ilVgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1c40::/29
Signature Algorithm: sha256WithRSAEncryption
05:d6:34:9e:2c:11:aa:f9:17:99:70:23:5a:96:2e:15:3a:75:
ab:b1:f6:fc:a7:9d:b5:42:88:e5:af:68:94:79:85:37:84:12:
3f:7b:7c:6d:27:f8:7d:09:04:f2:b4:2d:3c:e0:7f:ba:49:9a:
ab:68:90:78:ee:f9:e4:87:71:c2:34:d9:42:2e:9b:c8:81:f1:
eb:3e:8e:e9:8a:61:79:d8:19:43:c6:31:1b:87:e9:87:76:d8:
6b:cc:1a:77:4a:aa:2f:4b:04:79:d1:99:93:80:65:c5:3b:56:
b8:54:a6:56:0c:fb:f5:98:26:7f:50:bd:61:6f:15:3b:74:e1:
28:f4:fa:b3:1d:0a:4a:c6:24:ef:aa:22:82:a5:56:83:9d:86:
65:42:de:10:e2:bc:76:2a:33:64:57:e2:8b:12:42:fe:77:a8:
6d:fe:4f:f4:d6:55:af:7f:c9:7d:90:86:9d:1f:1d:ef:fc:8f:
85:00:c7:a6:01:79:e7:b2:63:29:27:61:7d:bb:f7:1b:f8:fb:
b3:5e:1e:ec:4b:04:62:c8:fb:ce:4e:ac:a8:da:66:a0:a0:93:
a3:f2:91:5f:c4:91:a0:0d:a6:94:ad:87:14:2d:7a:96:16:2d:
a4:bc:83:3e:51:0a:60:87:75:6b:ce:7d:e9:7e:98:00:94:08:
99:1b:66:7c
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYS+VSD9kjBSqFS2Ic119i5hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3Y2UxNzljYmUxM2RkYjE0MDEyOTg1YTA2NzEwMGVmOThh
NTU2MDEwHhcNMjIxMTI4MTMwMjQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YTIwNzBiOTcxZmNmNWQxZmY4NTI2OGNmMjE3MGQ4ODgyMzBiZThjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufWLEcRoc0ZcPsih2WhtUBZGYumR
6OPRl63Nr92yAFgnz7zuOQOdAacIIfrCoU5O1PC3tpuN34n9oL8RDghsAakr3MY5
+jIP3bwbXbwmnMxZvU6CQKtnNS/E6mHLkOaMNpFow0m/Z63zvxFLcSg7Oq5t1NAP
zxL4t8rHuHlcw1RNDZreboHclEs9DIvyikNX6TojlrrYeo948O2p3kv7lKw2S8bK
pOGjHu7b1nHHkQUSv/lLxvJ+G7jY5iTM35x7+p0yYPSbOWCMaBf+j/AJKJEcOY05
FMqUPT8fVqaE2yE82vNMoMoRQmUIVYItdjQImHz4N/3EaLW+F27p9ZmfqwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFEogcLlx/PXR/4UmjPIXDYiCML6MMB8GA1UdIwQY
MBaAFGfOF5y+E92xQBKYWgZxAO+YpVYBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjg0WG5MNFQzYkZBRXBoYUJuRUE3NWlsVmdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS81ZDcxOTItYTcxOS00Y2Q3LTk5NGEt
NjJjMDFkYzY5Y2NhLzEvU2lCd3VYSDg5ZEhfaFNhTThoY05pSUl3dm93LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS81ZDcxOTItYTcxOS00Y2Q3LTk5NGEtNjJjMDFkYzY5Y2Nh
LzEvWjg0WG5MNFQzYkZBRXBoYUJuRUE3NWlsVmdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhMcQDAN
BgkqhkiG9w0BAQsFAAOCAQEABdY0niwRqvkXmXAjWpYuFTp1q7H2/KedtUKI5a9o
lHmFN4QSP3t8bSf4fQkE8rQtPOB/ukmaq2iQeO755IdxwjTZQi6byIHx6z6O6Yph
edgZQ8YxG4fph3bYa8wad0qqL0sEedGZk4BlxTtWuFSmVgz79Zgmf1C9YW8VO3Th
KPT6sx0KSsYk76oigqVWg52GZULeEOK8diozZFfiixJC/neobf5P9NZVr3/JfZCG
nR8d7/yPhQDHpgF557JjKSdhfbv3G/j7s14e7EsEYsj7zk6sqNpmoKCTo/KRX8SR
oA2mlK2HFC16lhYtpLyDPlEKYId1a8596X6YAJQImRtmfA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org