Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/B5hU-2Ac4RLeZPdYpK-CubGRq5s.roa
File: B5hU-2Ac4RLeZPdYpK-CubGRq5s.roa (raw, json)
Hash identifier: dzrMsJMB2KmIs4LLh9fWdTQ7Yu3oiQdoyn7GCsIKzBI=
Subject key identifier: 07:98:54:FB:60:1C:E1:12:DE:64:F7:58:A4:AF:82:B9:B1:91:AB:9B
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 018322712418C9978A6AE92B1FD9B9568531
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/B5hU-2Ac4RLeZPdYpK-CubGRq5s.roa
Signing time: Fri 09 Sep 2022 13:29:43 +0000
ROA not before: Fri 09 Sep 2022 13:29:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203314
IP address blocks: 2a0d:2587:8800::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:22:71:24:18:c9:97:8a:6a:e9:2b:1f:d9:b9:56:85:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Sep 9 13:29:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=079854fb601ce112de64f758a4af82b9b191ab9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:cc:25:d6:59:c8:4c:f1:50:4a:79:f9:b9:32:
22:b4:00:3b:1e:58:2c:74:ef:f6:3d:3f:53:f1:e1:
82:1e:46:94:46:7c:33:d8:cd:d0:0d:ff:ac:66:9c:
0b:18:9c:3a:ec:a9:7c:88:c3:16:f0:91:46:9d:42:
a5:e0:2a:5b:c3:8a:ff:12:d5:c8:c0:8c:33:a1:75:
2e:b7:9f:87:d0:cf:11:25:5a:9d:b4:e9:4e:bb:4e:
d6:2e:ca:36:54:1d:06:03:ad:22:16:1c:bb:18:4e:
48:a7:d1:3f:5f:2a:5d:27:ea:0c:6c:bc:57:97:17:
79:4c:b8:b2:0e:5c:ca:e9:a3:72:6e:47:80:97:6c:
c2:6c:62:cd:77:ef:04:17:5c:fd:6a:db:9b:2b:19:
22:a3:ec:d9:b0:91:7b:69:77:9b:56:33:0e:c7:2f:
08:95:60:0c:60:74:f6:77:1e:98:d0:55:4c:cc:7a:
46:d4:90:18:b7:b8:2d:07:c4:5e:aa:a5:c5:d6:08:
08:1b:93:4b:b5:ec:85:68:ff:80:ae:97:08:6d:af:
78:f3:e1:30:47:89:b2:95:7f:99:b3:9a:50:f2:08:
0e:50:e1:3d:6d:e6:7b:b4:8c:3e:13:93:9d:86:c3:
f5:43:42:50:42:2b:fc:b5:32:2c:45:ea:63:9b:b8:
ce:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:98:54:FB:60:1C:E1:12:DE:64:F7:58:A4:AF:82:B9:B1:91:AB:9B
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/B5hU-2Ac4RLeZPdYpK-CubGRq5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2587:8800::/40
Signature Algorithm: sha256WithRSAEncryption
c3:97:8f:de:8b:27:0c:8e:1d:72:59:18:e0:75:05:b7:89:05:
f6:fb:d8:db:bf:51:a4:e6:28:cd:40:9a:7f:57:18:23:cc:bd:
9d:4a:52:34:ce:73:92:8c:d0:12:c7:f1:4d:19:ed:fa:f8:3a:
e8:97:73:1f:f2:f8:18:b9:db:16:d2:43:1d:27:15:7f:86:24:
ac:fe:4b:28:a7:79:b7:d2:d8:89:6d:97:a7:7d:79:32:da:c4:
70:cd:4b:24:83:4e:b0:40:af:fd:33:3d:30:61:cd:4d:8b:ad:
04:a7:04:be:24:a7:76:92:d1:52:5e:5b:56:b2:db:49:9f:2d:
c7:14:0b:98:83:85:7e:ce:31:46:91:6a:2c:74:4d:b4:7e:8a:
5b:58:c9:57:fe:0d:20:76:f9:2c:c7:34:ac:4b:fa:8b:8f:af:
f2:ed:b6:5e:e0:ee:68:3c:3a:6e:54:21:50:86:e6:d8:61:be:
b5:4b:32:9b:4c:6f:81:a9:39:f3:ce:04:ae:54:88:64:2c:7a:
69:0c:9e:e8:aa:6e:d1:b7:77:81:b1:db:90:82:87:2e:7e:3c:
9c:49:f1:eb:31:07:bd:70:bf:33:8f:52:a9:c7:6f:49:48:ba:
4a:34:c6:c7:03:3c:b9:06:8b:12:0a:8f:c8:08:3b:b2:6e:ac:
09:60:ec:bb
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYMicSQYyZeKaukrH9m5VoUxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczYzY5ZDA0NTgzNTAwYzVlZjgxMTM2ODMxMjM3NTkzZTBi
Yjg2Y2UwHhcNMjIwOTA5MTMyOTQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzk4NTRmYjYwMWNlMTEyZGU2NGY3NThhNGFmODJiOWIxOTFhYjliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi8wl1lnITPFQSnn5uTIitAA7Hlgs
dO/2PT9T8eGCHkaURnwz2M3QDf+sZpwLGJw67Kl8iMMW8JFGnUKl4Cpbw4r/EtXI
wIwzoXUut5+H0M8RJVqdtOlOu07WLso2VB0GA60iFhy7GE5Ip9E/XypdJ+oMbLxX
lxd5TLiyDlzK6aNybkeAl2zCbGLNd+8EF1z9atubKxkio+zZsJF7aXebVjMOxy8I
lWAMYHT2dx6Y0FVMzHpG1JAYt7gtB8ReqqXF1ggIG5NLteyFaP+ArpcIba948+Ew
R4mylX+Zs5pQ8ggOUOE9beZ7tIw+E5OdhsP1Q0JQQiv8tTIsRepjm7jOwQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFAeYVPtgHOES3mT3WKSvgrmxkaubMB8GA1UdIwQY
MBaAFHPGnQRYNQDF74ETaDEjdZPgu4bOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQt
ZjljYjBhN2IyMDZjLzEvQjVoVS0yQWM0UkxlWlBkWXBLLUN1YkdScTVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQtZjljYjBhN2IyMDZj
LzEvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKg0lh4gw
DQYJKoZIhvcNAQELBQADggEBAMOXj96LJwyOHXJZGOB1BbeJBfb72Nu/UaTmKM1A
mn9XGCPMvZ1KUjTOc5KM0BLH8U0Z7fr4OuiXcx/y+Bi52xbSQx0nFX+GJKz+Syin
ebfS2Iltl6d9eTLaxHDNSySDTrBAr/0zPTBhzU2LrQSnBL4kp3aS0VJeW1ay20mf
LccUC5iDhX7OMUaRaix0TbR+iltYyVf+DSB2+SzHNKxL+ouPr/Lttl7g7mg8Om5U
IVCG5thhvrVLMptMb4GpOfPOBK5UiGQsemkMnuiqbtG3d4Gx25CChy5+PJxJ8esx
B71wvzOPUqnHb0lIuko0xscDPLkGixIKj8gIO7JurAlg7Ls=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:48 2024 by rpki-client on console-ams.rpki-client.org