Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/4f0335-e860-4619-9380-e341b0f915d3/1/mdNpH8tyvOu3KHURfkjfOE8niKo.roa
File: mdNpH8tyvOu3KHURfkjfOE8niKo.roa (raw, json)
Hash identifier: elFMge32ZJDCXlv7S80YPbA5w3xgpblJa5Pm6LbF0yU=
Subject key identifier: 99:D3:69:1F:CB:72:BC:EB:B7:28:75:11:7E:48:DF:38:4F:27:88:AA
Certificate issuer: /CN=4a63dc6753a8cbd74b74452c1536f37d9c4dc70c
Certificate serial: 0184AE9108A8E01B6D04104E4CEFB740C40C
Authority key identifier: 4A:63:DC:67:53:A8:CB:D7:4B:74:45:2C:15:36:F3:7D:9C:4D:C7:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmPcZ1Ooy9dLdEUsFTbzfZxNxww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/4f0335-e860-4619-9380-e341b0f915d3/1/mdNpH8tyvOu3KHURfkjfOE8niKo.roa
Signing time: Fri 25 Nov 2022 11:34:11 +0000
ROA not before: Fri 25 Nov 2022 11:34:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13046
IP address blocks: 2a13:16c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ae:91:08:a8:e0:1b:6d:04:10:4e:4c:ef:b7:40:c4:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a63dc6753a8cbd74b74452c1536f37d9c4dc70c
Validity
Not Before: Nov 25 11:34:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99d3691fcb72bcebb72875117e48df384f2788aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:81:f2:ea:5b:99:5b:6c:24:3d:d7:97:50:91:
eb:8e:cf:2c:59:85:bc:21:09:4c:e5:4a:8c:83:cc:
fd:14:53:26:5b:44:07:43:6d:39:ec:6f:a4:ef:a0:
58:d9:dd:f6:31:5e:08:08:fe:70:36:da:ea:49:84:
07:b6:6c:d2:6a:a9:5e:77:dd:d5:39:e9:06:88:4b:
c9:a3:30:a1:47:fc:9d:2c:f0:b4:67:b2:b9:95:ec:
d4:f3:46:f8:c4:5a:ad:05:5a:a6:a5:58:6e:69:7c:
db:b0:32:e3:5c:9b:52:e5:da:40:a8:3c:af:b6:95:
54:2b:9d:0f:a5:64:0c:5d:cc:de:59:3e:38:ee:6d:
be:26:db:b5:23:57:30:67:1c:99:7d:b5:2e:2d:99:
cb:9a:18:2a:9c:3f:d4:5d:c7:6c:21:92:c3:92:af:
56:cf:0f:da:88:54:18:ce:5c:16:88:68:20:36:85:
e6:19:79:31:cc:d2:98:fc:05:e1:9c:ca:db:a0:0f:
bb:23:9f:65:0c:fe:df:c6:f0:df:4e:2d:96:0c:4f:
24:88:19:5f:44:d8:54:cb:5d:0e:21:ee:f0:a3:14:
a4:5d:06:29:c5:e0:ab:30:54:3d:98:a0:91:a8:68:
fa:39:1e:05:1f:0e:c8:77:6f:c6:55:c1:7c:8c:83:
4f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D3:69:1F:CB:72:BC:EB:B7:28:75:11:7E:48:DF:38:4F:27:88:AA
X509v3 Authority Key Identifier:
keyid:4A:63:DC:67:53:A8:CB:D7:4B:74:45:2C:15:36:F3:7D:9C:4D:C7:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmPcZ1Ooy9dLdEUsFTbzfZxNxww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4f0335-e860-4619-9380-e341b0f915d3/1/mdNpH8tyvOu3KHURfkjfOE8niKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4f0335-e860-4619-9380-e341b0f915d3/1/SmPcZ1Ooy9dLdEUsFTbzfZxNxww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:16c0::/29
Signature Algorithm: sha256WithRSAEncryption
69:a1:a4:4e:ef:e4:2d:cf:92:89:51:43:f1:fb:b0:7e:74:ea:
f0:39:fc:14:1a:54:69:93:c4:be:da:44:da:2a:e9:d6:5b:ae:
ad:24:69:8c:07:34:e1:11:2b:d0:c1:63:16:16:9c:8c:1e:b7:
d0:ab:a7:60:25:ff:90:d9:79:2d:93:44:54:ba:0f:fc:8b:1c:
1b:09:aa:5d:d8:0f:f8:6b:83:b1:db:04:6b:71:e2:f3:d1:a6:
b1:b7:6e:32:28:e5:65:fc:f1:a4:a2:07:d7:48:4e:58:f8:3e:
d3:44:e7:31:33:4c:ee:7f:d4:fb:1c:87:0c:c3:43:38:cd:e3:
88:1b:9b:06:14:3a:a3:ff:0c:f1:ec:0c:ae:6d:a2:ef:b4:ff:
c6:bc:cd:bb:7b:f8:9f:08:f7:e1:58:c6:e0:4d:fb:77:03:20:
53:05:21:67:4d:af:1b:e0:ac:c2:bf:eb:28:3c:8e:1c:d2:b2:
d8:ba:e4:7b:b1:1f:67:9b:06:3a:45:10:2e:a1:72:19:b2:cf:
8b:a2:4f:46:66:4c:63:6c:27:bf:c2:72:c4:72:29:fe:4a:c8:
34:77:24:c6:76:4c:e7:fa:dc:d9:77:83:74:73:54:79:9d:79:
79:94:51:c0:ea:46:db:e6:5a:f0:4a:5b:a9:95:03:84:9e:0b:
02:62:b1:3e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYSukQio4BttBBBOTO+3QMQMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNjNkYzY3NTNhOGNiZDc0Yjc0NDUyYzE1MzZmMzdkOWM0
ZGM3MGMwHhcNMjIxMTI1MTEzNDExWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OWQzNjkxZmNiNzJiY2ViYjcyODc1MTE3ZTQ4ZGYzODRmMjc4OGFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgoHy6luZW2wkPdeXUJHrjs8sWYW8
IQlM5UqMg8z9FFMmW0QHQ2057G+k76BY2d32MV4ICP5wNtrqSYQHtmzSaqled93V
OekGiEvJozChR/ydLPC0Z7K5lezU80b4xFqtBVqmpVhuaXzbsDLjXJtS5dpAqDyv
tpVUK50PpWQMXczeWT447m2+Jtu1I1cwZxyZfbUuLZnLmhgqnD/UXcdsIZLDkq9W
zw/aiFQYzlwWiGggNoXmGXkxzNKY/AXhnMrboA+7I59lDP7fxvDfTi2WDE8kiBlf
RNhUy10OIe7woxSkXQYpxeCrMFQ9mKCRqGj6OR4FHw7Id2/GVcF8jINPOQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFJnTaR/Lcrzrtyh1EX5I3zhPJ4iqMB8GA1UdIwQY
MBaAFEpj3GdTqMvXS3RFLBU2832cTccMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU21QY1oxT295OWRMZEVVc0ZUYnpmWnhOeHd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni80ZjAzMzUtZTg2MC00NjE5LTkzODAt
ZTM0MWIwZjkxNWQzLzEvbWROcEg4dHl2T3UzS0hVUmZramZPRThuaUtvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni80ZjAzMzUtZTg2MC00NjE5LTkzODAtZTM0MWIwZjkxNWQz
LzEvU21QY1oxT295OWRMZEVVc0ZUYnpmWnhOeHd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhMWwDAN
BgkqhkiG9w0BAQsFAAOCAQEAaaGkTu/kLc+SiVFD8fuwfnTq8Dn8FBpUaZPEvtpE
2irp1luurSRpjAc04REr0MFjFhacjB630KunYCX/kNl5LZNEVLoP/IscGwmqXdgP
+GuDsdsEa3Hi89GmsbduMijlZfzxpKIH10hOWPg+00TnMTNM7n/U+xyHDMNDOM3j
iBubBhQ6o/8M8ewMrm2i77T/xrzNu3v4nwj34VjG4E37dwMgUwUhZ02vG+Cswr/r
KDyOHNKy2Lrke7EfZ5sGOkUQLqFyGbLPi6JPRmZMY2wnv8JyxHIp/krINHckxnZM
5/rc2XeDdHNUeZ15eZRRwOpG2+Za8EpbqZUDhJ4LAmKxPg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:20 2024 by rpki-client on console-fra.rpki-client.org