Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/i0G9Ada5yR1LA9d0hQruasQU-rk.roa
File: i0G9Ada5yR1LA9d0hQruasQU-rk.roa (raw, json)
Hash identifier: DWSUQoWG2aRFOf3DU5o88m+A3g2AYcDsi6gGBkRnpw4=
Subject key identifier: 8B:41:BD:01:D6:B9:C9:1D:4B:03:D7:74:85:0A:EE:6A:C4:14:FA:B9
Certificate issuer: /CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606
Certificate serial: 0BF39268
Authority key identifier: EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/i0G9Ada5yR1LA9d0hQruasQU-rk.roa
Signing time: Mon 20 Jun 2022 15:36:45 +0000
ROA not before: Mon 20 Jun 2022 15:36:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 131642
IP address blocks: 2a13:2200::/47 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200512104 (0xbf39268)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606
Validity
Not Before: Jun 20 15:36:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b41bd01d6b9c91d4b03d774850aee6ac414fab9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c5:36:1f:99:5e:b9:f6:74:75:b8:30:18:da:
d3:c0:7c:48:b9:34:97:75:57:9c:70:44:b9:3a:8d:
50:90:6e:ee:98:ea:f0:03:de:fa:09:4f:31:33:37:
da:09:91:e6:c2:05:de:7f:c4:6d:5e:ec:6c:b4:08:
04:47:27:16:16:62:1d:1a:a6:b2:b9:b3:cc:57:34:
e1:02:d6:a5:33:ef:31:94:62:3b:1e:05:9e:fe:f5:
e6:44:d2:6c:e7:3f:04:ed:36:5a:2d:8a:28:4f:7c:
18:2e:b7:d7:e6:07:39:f8:38:44:eb:c2:a8:b8:af:
cc:c4:7f:29:2c:8d:50:af:0a:3f:02:f8:eb:20:bf:
18:3f:49:05:e9:54:07:a9:fa:d8:e1:2e:59:b9:f2:
52:6c:9d:37:66:f6:a7:8c:ac:5b:6c:55:7e:f6:24:
c2:b8:30:38:19:75:00:41:08:a0:bd:4e:da:80:ea:
41:15:5a:53:74:4c:05:d3:5f:b5:80:f8:f8:d6:52:
82:3c:5f:0f:59:32:50:d2:70:1f:83:77:fe:9e:ff:
ac:d1:89:90:88:dd:e3:b6:e0:c1:0e:19:ee:c4:fb:
b9:67:3f:57:1b:62:ee:87:b7:c1:08:68:ec:6d:a8:
9e:17:9f:5f:2e:87:2d:7e:4e:d2:66:38:25:a7:8f:
b9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:41:BD:01:D6:B9:C9:1D:4B:03:D7:74:85:0A:EE:6A:C4:14:FA:B9
X509v3 Authority Key Identifier:
keyid:EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/i0G9Ada5yR1LA9d0hQruasQU-rk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/6i0QK2ESsNmouO66xLl8gZ-XxgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2200::/47
Signature Algorithm: sha256WithRSAEncryption
0e:72:1e:b5:d7:84:18:36:1e:13:42:d0:a1:77:9f:15:3f:e7:
d1:c1:9a:8c:2c:8a:c4:4c:46:93:08:77:b0:ca:ce:92:9c:c0:
37:00:41:07:d2:92:ef:55:c7:85:da:65:11:b8:a5:9b:1d:a0:
d4:1d:f5:7e:70:84:bb:44:f0:86:70:f8:76:fa:9f:05:7d:54:
69:05:9b:d6:9c:5d:d8:6b:65:8a:96:4f:b5:6d:cd:01:8e:bd:
89:e7:97:44:ce:da:09:48:4b:3d:72:bf:7d:43:a5:b8:b6:98:
2e:0f:e1:20:29:1e:ad:3c:4b:36:56:cf:3a:e5:c6:0a:f6:69:
da:a3:27:e8:94:14:90:c1:72:af:ab:1e:e9:79:0a:d5:cf:df:
56:e5:fe:23:b1:d5:35:78:a3:2a:0f:12:88:28:c1:4d:5f:c2:
99:12:e7:62:d2:6e:21:4f:d7:62:43:96:eb:f2:d9:6b:24:d7:
de:01:9e:c4:5d:ac:e4:ef:e1:e8:a1:8c:81:3d:37:81:e6:d1:
c4:aa:de:c9:8c:3f:ee:6f:42:b2:64:86:a7:b5:16:24:2d:d7:
0b:17:10:e6:7d:d8:3d:97:73:f0:3c:9d:31:ed:c2:36:3c:33:
ef:bc:d6:22:9a:32:b6:1a:e1:8e:41:39:4c:a9:a7:0f:f7:2e:
ee:ae:7c:44
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEC/OSaDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YTJkMTAyYjYxMTJiMGQ5YThiOGVlYmFjNGI5N2M4MTlmOTdjNjA2MB4XDTIyMDYy
MDE1MzY0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGI0MWJkMDFkNmI5
YzkxZDRiMDNkNzc0ODUwYWVlNmFjNDE0ZmFiOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJrFNh+ZXrn2dHW4MBja08B8SLk0l3VXnHBEuTqNUJBu7pjq
8APe+glPMTM32gmR5sIF3n/EbV7sbLQIBEcnFhZiHRqmsrmzzFc04QLWpTPvMZRi
Ox4Fnv715kTSbOc/BO02Wi2KKE98GC631+YHOfg4ROvCqLivzMR/KSyNUK8KPwL4
6yC/GD9JBelUB6n62OEuWbnyUmydN2b2p4ysW2xVfvYkwrgwOBl1AEEIoL1O2oDq
QRVaU3RMBdNftYD4+NZSgjxfD1kyUNJwH4N3/p7/rNGJkIjd47bgwQ4Z7sT7uWc/
Vxti7oe3wQho7G2onhefXy6HLX5O0mY4JaePuRsCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSLQb0B1rnJHUsD13SFCu5qxBT6uTAfBgNVHSMEGDAWgBTqLRArYRKw2ai4
7rrEuXyBn5fGBjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZpMFFLMkVTc05tb3VPNjZ4TGw4Z1otWHhnWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvNGNkZWZhLTVlZTItNDcxOS1hN2UxLWI4MjljYzQwMTAzMS8x
L2kwRzlBZGE1eVIxTEE5ZDBoUXJ1YXNRVS1yay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAv
NGNkZWZhLTVlZTItNDcxOS1hN2UxLWI4MjljYzQwMTAzMS8xLzZpMFFLMkVTc05t
b3VPNjZ4TGw4Z1otWHhnWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHASoTIgAAADANBgkqhkiG9w0BAQsF
AAOCAQEADnIetdeEGDYeE0LQoXefFT/n0cGajCyKxExGkwh3sMrOkpzANwBBB9KS
71XHhdplEbilmx2g1B31fnCEu0TwhnD4dvqfBX1UaQWb1pxd2GtlipZPtW3NAY69
ieeXRM7aCUhLPXK/fUOluLaYLg/hICkerTxLNlbPOuXGCvZp2qMn6JQUkMFyr6se
6XkK1c/fVuX+I7HVNXijKg8SiCjBTV/CmRLnYtJuIU/XYkOW6/LZayTX3gGexF2s
5O/h6KGMgT03gebRxKreyYw/7m9CsmSGp7UWJC3XCxcQ5n3YPZdz8DydMe3CNjwz
77zWIpoythrhjkE5TKmnD/cu7q58RA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:45 2023 by rpki-client on console-fra.rpki-client.org