Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/hRQPmCsfM5VzrR2dnfaZsvNCJFw.roa
File: hRQPmCsfM5VzrR2dnfaZsvNCJFw.roa (raw, json)
Hash identifier: N+SkFPAhhuzMDvnknp3Z6ZPIcGotznXIL6efG4LO564=
Subject key identifier: 85:14:0F:98:2B:1F:33:95:73:AD:1D:9D:9D:F6:99:B2:F3:42:24:5C
Certificate issuer: /CN=9d5de490ff874e9689cecf726cbb4e2f51f6c731
Certificate serial: 2D996A12
Authority key identifier: 9D:5D:E4:90:FF:87:4E:96:89:CE:CF:72:6C:BB:4E:2F:51:F6:C7:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nV3kkP-HTpaJzs9ybLtOL1H2xzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/hRQPmCsfM5VzrR2dnfaZsvNCJFw.roa
Signing time: Sat 01 Jan 2022 04:59:20 +0000
ROA not before: Sat 01 Jan 2022 04:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21150
IP address blocks: 2a01:8180:1000::/36 maxlen: 42
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 765028882 (0x2d996a12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d5de490ff874e9689cecf726cbb4e2f51f6c731
Validity
Not Before: Jan 1 04:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85140f982b1f339573ad1d9d9df699b2f342245c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7d:97:11:d1:1d:41:36:4f:49:aa:27:39:1a:
57:f5:2a:1f:64:3b:fd:e0:64:8d:fb:41:7d:0d:76:
f9:06:92:84:12:33:61:49:f3:06:78:54:81:4f:8c:
90:e3:2d:33:88:ca:75:57:0b:bb:18:4f:bb:60:8c:
87:46:db:ce:f3:ad:7d:b7:f1:ec:36:bf:45:c9:2a:
57:36:49:55:a7:24:b9:d1:86:0e:db:1e:f6:a0:70:
b4:d4:4d:62:39:3b:6e:47:4c:b9:27:4a:fb:ac:e2:
f0:e4:05:97:f1:1d:dd:61:56:2c:5c:54:88:4b:78:
96:89:c2:84:1f:47:6d:b5:4c:83:43:e6:54:30:23:
f3:5e:95:45:33:0f:0f:57:48:8a:5d:14:f4:e0:6d:
6a:33:2f:7b:84:fc:5d:dd:b2:2c:f3:ce:ef:75:5d:
fa:ed:94:df:bf:ac:b7:11:a1:9d:1d:42:11:5e:8d:
5d:5d:5b:56:06:b0:56:0d:d5:3a:8c:fb:1d:e4:f2:
b4:03:f3:5d:2a:64:02:a8:8b:e5:9b:c0:fd:2c:81:
11:46:41:f9:2d:3c:22:fa:30:cb:07:56:6b:f9:32:
32:c6:cf:c9:2a:09:22:d5:63:b3:a9:0f:47:f9:ac:
f9:21:df:d4:f2:c7:e4:69:a8:f4:74:a8:fa:e6:3f:
99:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:14:0F:98:2B:1F:33:95:73:AD:1D:9D:9D:F6:99:B2:F3:42:24:5C
X509v3 Authority Key Identifier:
keyid:9D:5D:E4:90:FF:87:4E:96:89:CE:CF:72:6C:BB:4E:2F:51:F6:C7:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nV3kkP-HTpaJzs9ybLtOL1H2xzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/hRQPmCsfM5VzrR2dnfaZsvNCJFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/nV3kkP-HTpaJzs9ybLtOL1H2xzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:8180:1000::/36
Signature Algorithm: sha256WithRSAEncryption
11:52:24:a3:a9:80:08:f6:27:d6:83:8e:fd:58:3b:00:29:f9:
18:72:0b:36:a7:46:47:12:12:e4:83:da:49:f6:55:d3:08:bd:
6b:c5:75:83:f4:a3:7e:d2:61:59:8c:0e:bb:cc:e3:5a:6a:e3:
d2:87:41:0b:80:1b:42:75:6c:c2:3b:cd:51:82:b6:da:e1:56:
92:ac:25:68:ce:8f:b1:a7:b1:78:a5:3f:13:3e:67:db:ca:a8:
1c:a0:f3:7c:b4:fb:c0:91:3b:1e:5b:32:ef:ab:ff:78:55:64:
02:6f:0c:fe:28:3b:41:d9:b7:50:45:da:6b:d6:d3:af:34:ab:
63:65:fd:ed:46:4a:4a:fb:f5:be:f6:87:88:ae:f9:31:67:fd:
48:bf:4c:1b:8a:ed:fb:3f:1b:13:5d:8e:2e:a0:a4:c6:c1:ff:
af:00:b6:d2:6e:07:0f:c4:0a:d0:5a:14:a0:43:2c:28:90:ef:
93:74:91:94:37:d5:ed:04:49:4d:1f:f0:03:f8:93:5d:4b:9c:
b4:d9:b0:05:30:3c:9a:bc:8c:60:41:56:ef:dd:c1:b0:6b:74:
b4:4f:5c:fe:6b:3f:83:03:1b:9a:5f:cb:39:5e:4f:10:cb:f5:
21:7b:45:91:1f:77:79:ec:d8:1a:2e:1e:46:28:c8:ff:9c:36:
b7:b2:b5:8f
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIELZlqEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZDVkZTQ5MGZmODc0ZTk2ODljZWNmNzI2Y2JiNGUyZjUxZjZjNzMxMB4XDTIyMDEw
MTA0NTkyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODUxNDBmOTgyYjFm
MzM5NTczYWQxZDlkOWRmNjk5YjJmMzQyMjQ1YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM99lxHRHUE2T0mqJzkaV/UqH2Q7/eBkjftBfQ12+QaShBIz
YUnzBnhUgU+MkOMtM4jKdVcLuxhPu2CMh0bbzvOtfbfx7Da/RckqVzZJVackudGG
Dtse9qBwtNRNYjk7bkdMuSdK+6zi8OQFl/Ed3WFWLFxUiEt4lonChB9HbbVMg0Pm
VDAj816VRTMPD1dIil0U9OBtajMve4T8Xd2yLPPO73Vd+u2U37+stxGhnR1CEV6N
XV1bVgawVg3VOoz7HeTytAPzXSpkAqiL5ZvA/SyBEUZB+S08IvowywdWa/kyMsbP
ySoJItVjs6kPR/ms+SHf1PLH5Gmo9HSo+uY/mZECAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBSFFA+YKx8zlXOtHZ2d9pmy80IkXDAfBgNVHSMEGDAWgBSdXeSQ/4dOlonO
z3Jsu04vUfbHMTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25WM2trUC1IVHBhSnpzOXliTHRPTDFIMnh6RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvNzQ1YmRiLTEwNGItNDljNy05OWQ1LWNlYzMzYmExYmRmNS8x
L2hSUVBtQ3NmTTVWenJSMmRuZmFac3ZOQ0pGdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAv
NzQ1YmRiLTEwNGItNDljNy05OWQ1LWNlYzMzYmExYmRmNS8xL25WM2trUC1IVHBh
SnpzOXliTHRPTDFIMnh6RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoBgYAQMA0GCSqGSIb3DQEBCwUA
A4IBAQARUiSjqYAI9ifWg479WDsAKfkYcgs2p0ZHEhLkg9pJ9lXTCL1rxXWD9KN+
0mFZjA67zONaauPSh0ELgBtCdWzCO81Rgrba4VaSrCVozo+xp7F4pT8TPmfbyqgc
oPN8tPvAkTseWzLvq/94VWQCbwz+KDtB2bdQRdpr1tOvNKtjZf3tRkpK+/W+9oeI
rvkxZ/1Iv0wbiu37PxsTXY4uoKTGwf+vALbSbgcPxArQWhSgQywokO+TdJGUN9Xt
BElNH/AD+JNdS5y02bAFMDyavIxgQVbv3cGwa3S0T1z+az+DAxuaX8s5Xk8Qy/Uh
e0WRH3d57NgaLh5GKMj/nDa3srWP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:37 2024 by rpki-client on console-fra.rpki-client.org