Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/tBzVaaOGWmOgVK1LQwNMp5Rc6dw.roa
File: tBzVaaOGWmOgVK1LQwNMp5Rc6dw.roa (raw, json)
Hash identifier: BUXDhyGZzXjVohquR5f2Ufx+9zP7HYk6HPVbY16ORNY=
Subject key identifier: B4:1C:D5:69:A3:86:5A:63:A0:54:AD:4B:43:03:4C:A7:94:5C:E9:DC
Certificate issuer: /CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606
Certificate serial: 0BF223E4
Authority key identifier: EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/tBzVaaOGWmOgVK1LQwNMp5Rc6dw.roa
Signing time: Mon 20 Jun 2022 15:36:44 +0000
ROA not before: Mon 20 Jun 2022 15:36:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18178
IP address blocks: 2a13:2200::/47 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200418276 (0xbf223e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606
Validity
Not Before: Jun 20 15:36:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b41cd569a3865a63a054ad4b43034ca7945ce9dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e2:78:c6:72:56:dc:4d:c5:16:0e:d9:07:59:
3d:09:40:a6:a0:c1:07:89:28:65:f9:22:dc:f8:9b:
04:7f:5a:86:b2:87:c1:32:d7:4b:a1:e3:18:82:88:
bb:d3:c2:26:ae:82:e1:54:6a:d4:c8:85:34:6c:12:
25:41:5b:92:24:ce:7b:d9:f7:c7:43:31:de:72:dd:
30:a4:3b:53:e6:57:68:a1:f4:33:fa:23:b5:01:83:
31:9a:cc:48:47:f8:88:9c:83:27:e9:c7:e6:17:eb:
4d:8a:56:d5:75:ce:c6:d5:60:e7:89:4a:f6:96:d6:
b3:d1:2f:e1:30:ee:ba:ac:db:e3:20:76:bd:85:7c:
e3:b9:99:81:7b:74:80:c2:62:a7:1a:4f:07:43:35:
ac:41:de:d3:2e:0a:fa:7b:0c:90:2c:2f:3a:34:a3:
cf:1d:31:31:ed:1e:38:ab:d6:83:14:26:43:25:9e:
2f:4e:b7:12:73:91:c9:aa:63:6f:e2:2c:16:32:d3:
5e:74:e3:48:bd:fe:6e:e8:5c:b9:25:15:a0:70:e0:
35:0d:c9:c3:71:f7:ef:a7:a3:72:03:ff:d5:c3:de:
77:c7:e7:f5:b5:d4:61:97:4d:a5:88:e1:93:ab:7f:
cc:e4:54:92:c0:4e:4a:c4:8f:f7:61:46:d0:18:54:
13:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:1C:D5:69:A3:86:5A:63:A0:54:AD:4B:43:03:4C:A7:94:5C:E9:DC
X509v3 Authority Key Identifier:
keyid:EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/tBzVaaOGWmOgVK1LQwNMp5Rc6dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/6i0QK2ESsNmouO66xLl8gZ-XxgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2200::/47
Signature Algorithm: sha256WithRSAEncryption
16:3e:1e:14:cf:88:8b:78:31:be:65:70:57:de:d9:bf:0a:da:
7f:c8:b7:d9:ce:3f:f1:67:5a:ea:5d:58:56:04:18:b2:f9:2f:
b4:f7:27:b6:ce:31:1e:7d:4f:07:4d:16:6e:29:05:4a:9c:70:
7a:59:e5:c9:dc:f0:5f:c1:91:9a:56:48:44:f4:8b:5f:b9:f1:
0f:53:f9:ab:6e:95:8c:f8:03:b1:70:36:c5:64:71:60:49:76:
47:76:e7:7c:b0:d3:1d:4d:66:07:5b:e0:77:e2:ce:8f:18:c6:
2b:b6:7d:12:60:75:06:f7:be:c0:ca:db:c0:e8:b8:be:0f:da:
64:d1:a2:2b:5b:34:d2:34:66:71:4f:96:c8:52:5d:27:2b:77:
45:ab:39:59:92:79:81:b1:c3:92:33:48:b1:20:43:5f:78:dc:
38:0f:56:70:16:37:d2:c7:c6:c1:ce:ac:db:73:8e:32:41:30:
80:56:0d:42:29:a3:84:37:94:c5:b5:79:cf:0a:13:3c:05:30:
77:bc:85:58:a1:88:ed:e8:59:9a:13:d2:83:c7:4c:fa:fd:6c:
f4:9d:37:9a:5b:bf:aa:83:59:01:90:e9:f5:d2:de:63:b8:3d:
78:36:e6:bc:fd:f2:79:07:c9:0a:32:2a:05:2c:49:00:95:c1:
0c:0a:3b:d4
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEC/Ij5DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YTJkMTAyYjYxMTJiMGQ5YThiOGVlYmFjNGI5N2M4MTlmOTdjNjA2MB4XDTIyMDYy
MDE1MzY0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjQxY2Q1NjlhMzg2
NWE2M2EwNTRhZDRiNDMwMzRjYTc5NDVjZTlkYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMjieMZyVtxNxRYO2QdZPQlApqDBB4koZfki3PibBH9ahrKH
wTLXS6HjGIKIu9PCJq6C4VRq1MiFNGwSJUFbkiTOe9n3x0Mx3nLdMKQ7U+ZXaKH0
M/ojtQGDMZrMSEf4iJyDJ+nH5hfrTYpW1XXOxtVg54lK9pbWs9Ev4TDuuqzb4yB2
vYV847mZgXt0gMJipxpPB0M1rEHe0y4K+nsMkCwvOjSjzx0xMe0eOKvWgxQmQyWe
L063EnORyapjb+IsFjLTXnTjSL3+buhcuSUVoHDgNQ3Jw3H376ejcgP/1cPed8fn
9bXUYZdNpYjhk6t/zORUksBOSsSP92FG0BhUE2kCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBS0HNVpo4ZaY6BUrUtDA0ynlFzp3DAfBgNVHSMEGDAWgBTqLRArYRKw2ai4
7rrEuXyBn5fGBjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZpMFFLMkVTc05tb3VPNjZ4TGw4Z1otWHhnWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvNGNkZWZhLTVlZTItNDcxOS1hN2UxLWI4MjljYzQwMTAzMS8x
L3RCelZhYU9HV21PZ1ZLMUxRd05NcDVSYzZkdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAv
NGNkZWZhLTVlZTItNDcxOS1hN2UxLWI4MjljYzQwMTAzMS8xLzZpMFFLMkVTc05t
b3VPNjZ4TGw4Z1otWHhnWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHASoTIgAAADANBgkqhkiG9w0BAQsF
AAOCAQEAFj4eFM+Ii3gxvmVwV97Zvwraf8i32c4/8Wda6l1YVgQYsvkvtPcnts4x
Hn1PB00WbikFSpxwelnlydzwX8GRmlZIRPSLX7nxD1P5q26VjPgDsXA2xWRxYEl2
R3bnfLDTHU1mB1vgd+LOjxjGK7Z9EmB1Bve+wMrbwOi4vg/aZNGiK1s00jRmcU+W
yFJdJyt3Ras5WZJ5gbHDkjNIsSBDX3jcOA9WcBY30sfGwc6s23OOMkEwgFYNQimj
hDeUxbV5zwoTPAUwd7yFWKGI7ehZmhPSg8dM+v1s9J03mlu/qoNZAZDp9dLeY7g9
eDbmvP3yeQfJCjIqBSxJAJXBDAo71A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:17 2024 by rpki-client on console-ams.rpki-client.org