Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/ec0981-d682-4f7b-b210-5c2d265705e0/1/S0NKdzYZEPx-JoFsvHrYgMFx8qU.roa
File: S0NKdzYZEPx-JoFsvHrYgMFx8qU.roa (raw, json)
Hash identifier: Hco4NbxYL2X8iFU1nEiyklqbVJM1pPvSKjoRsIb8S04=
Subject key identifier: 4B:43:4A:77:36:19:10:FC:7E:26:81:6C:BC:7A:D8:80:C1:71:F2:A5
Certificate issuer: /CN=882fa01902f4e8c347f2116e4645da1a6b4e0962
Certificate serial: 018A65F064D1C1B95AE4B3C05831368932B6
Authority key identifier: 88:2F:A0:19:02:F4:E8:C3:47:F2:11:6E:46:45:DA:1A:6B:4E:09:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iC-gGQL06MNH8hFuRkXaGmtOCWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/ec0981-d682-4f7b-b210-5c2d265705e0/1/S0NKdzYZEPx-JoFsvHrYgMFx8qU.roa
Signing time: Tue 05 Sep 2023 15:22:47 +0000
ROA not before: Tue 05 Sep 2023 15:22:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216348
IP address blocks: 2a0a:9740:dead::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:65:f0:64:d1:c1:b9:5a:e4:b3:c0:58:31:36:89:32:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=882fa01902f4e8c347f2116e4645da1a6b4e0962
Validity
Not Before: Sep 5 15:22:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b434a77361910fc7e26816cbc7ad880c171f2a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:63:c8:4d:2b:2d:5d:93:81:bb:4c:19:3e:bc:
4b:41:a0:fc:4c:d0:49:70:0c:c8:be:3c:03:5f:c3:
61:fe:b7:8d:39:9f:de:52:5e:84:1d:fd:86:5c:dd:
eb:eb:0e:d3:29:ca:37:18:4f:55:47:73:e9:8f:95:
02:8e:63:b3:0c:c6:8d:51:d9:6a:3a:cf:a0:4c:ac:
ed:89:6c:21:4f:b1:d7:9e:22:cd:c5:64:59:7e:82:
58:e6:bf:cf:d5:7a:8b:41:e8:e5:a2:23:81:fa:50:
89:f1:a6:a4:2d:af:2f:07:35:c3:25:79:c2:3d:1a:
e2:90:c8:d6:6b:2b:cf:99:bc:e2:65:d7:db:3a:45:
a3:f8:b3:75:5a:ec:b0:0b:21:57:5c:40:89:87:99:
c0:2a:d1:af:b9:90:57:e8:8e:d7:b7:f1:d5:86:70:
b3:65:6c:fe:0a:74:b1:b7:5a:c4:67:91:f6:4d:6a:
3c:12:ff:2d:40:95:f2:74:cc:c7:27:a8:d5:ef:0f:
96:81:73:7f:96:48:f2:15:11:9b:68:49:91:5c:3f:
80:8d:07:96:13:86:9f:c1:7d:5c:f7:25:1a:99:ed:
38:14:71:e9:4c:45:57:c9:a7:38:e0:3f:57:d9:33:
98:28:af:09:15:8b:08:2f:57:fb:61:c0:67:63:aa:
74:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:43:4A:77:36:19:10:FC:7E:26:81:6C:BC:7A:D8:80:C1:71:F2:A5
X509v3 Authority Key Identifier:
keyid:88:2F:A0:19:02:F4:E8:C3:47:F2:11:6E:46:45:DA:1A:6B:4E:09:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iC-gGQL06MNH8hFuRkXaGmtOCWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/ec0981-d682-4f7b-b210-5c2d265705e0/1/S0NKdzYZEPx-JoFsvHrYgMFx8qU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/ec0981-d682-4f7b-b210-5c2d265705e0/1/iC-gGQL06MNH8hFuRkXaGmtOCWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:9740:dead::/48
Signature Algorithm: sha256WithRSAEncryption
93:41:f8:75:c8:23:6f:91:25:76:02:bc:e2:33:17:dc:0f:61:
b9:a4:1f:71:e1:47:54:12:be:91:33:09:9f:6a:77:b1:de:8d:
6a:65:86:dd:40:b9:24:19:7a:c8:f4:2b:bd:57:38:4b:f3:a4:
aa:65:b2:55:9a:ee:38:90:53:d4:b8:7c:5e:cf:1b:d9:83:ae:
18:6e:f9:d9:62:38:58:71:47:3c:6b:b9:42:90:1e:0e:c2:36:
14:b2:13:5d:1d:b5:51:ac:99:9f:87:d1:78:14:07:b3:f9:c6:
83:83:a5:da:43:d4:8b:8a:c4:5f:67:72:9d:83:3d:cc:52:a3:
9c:c7:2e:52:ab:9c:32:60:60:06:22:d9:3b:e4:68:e8:88:df:
08:9c:61:88:ef:cb:76:a2:20:32:7d:9b:d2:4a:08:1f:41:39:
89:b9:b5:07:f8:87:08:d4:c4:29:a7:75:36:26:15:b1:ad:a4:
64:5e:60:af:03:e6:49:3b:1f:b3:eb:b2:3d:75:c8:ab:6f:6d:
a4:94:c7:29:5a:ec:95:c5:0e:07:7b:2f:5b:8c:9d:52:37:97:
fb:bf:af:de:4b:4a:a8:9c:1b:9a:49:69:1c:4d:6d:04:07:6b:
3d:fc:b7:c7:43:ad:cc:9f:ef:0a:2a:a5:dc:7a:2e:4a:ff:04:
44:59:14:2e
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYpl8GTRwbla5LPAWDE2iTK2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MmZhMDE5MDJmNGU4YzM0N2YyMTE2ZTQ2NDVkYTFhNmI0
ZTA5NjIwHhcNMjMwOTA1MTUyMjQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YjQzNGE3NzM2MTkxMGZjN2UyNjgxNmNiYzdhZDg4MGMxNzFmMmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh2PITSstXZOBu0wZPrxLQaD8TNBJ
cAzIvjwDX8Nh/reNOZ/eUl6EHf2GXN3r6w7TKco3GE9VR3Ppj5UCjmOzDMaNUdlq
Os+gTKztiWwhT7HXniLNxWRZfoJY5r/P1XqLQejloiOB+lCJ8aakLa8vBzXDJXnC
PRrikMjWayvPmbziZdfbOkWj+LN1WuywCyFXXECJh5nAKtGvuZBX6I7Xt/HVhnCz
ZWz+CnSxt1rEZ5H2TWo8Ev8tQJXydMzHJ6jV7w+WgXN/lkjyFRGbaEmRXD+AjQeW
E4afwX1c9yUame04FHHpTEVXyac44D9X2TOYKK8JFYsIL1f7YcBnY6p06QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFEtDSnc2GRD8fiaBbLx62IDBcfKlMB8GA1UdIwQY
MBaAFIgvoBkC9OjDR/IRbkZF2hprTgliMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUMtZ0dRTDA2TU5IOGhGdVJrWGFHbXRPQ1dJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9lYzA5ODEtZDY4Mi00ZjdiLWIyMTAt
NWMyZDI2NTcwNWUwLzEvUzBOS2R6WVpFUHgtSm9Gc3ZIcllnTUZ4OHFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC9lYzA5ODEtZDY4Mi00ZjdiLWIyMTAtNWMyZDI2NTcwNWUw
LzEvaUMtZ0dRTDA2TU5IOGhGdVJrWGFHbXRPQ1dJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgqXQN6t
MA0GCSqGSIb3DQEBCwUAA4IBAQCTQfh1yCNvkSV2ArziMxfcD2G5pB9x4UdUEr6R
Mwmfanex3o1qZYbdQLkkGXrI9Cu9VzhL86SqZbJVmu44kFPUuHxezxvZg64YbvnZ
YjhYcUc8a7lCkB4OwjYUshNdHbVRrJmfh9F4FAez+caDg6XaQ9SLisRfZ3Kdgz3M
UqOcxy5Sq5wyYGAGItk75GjoiN8InGGI78t2oiAyfZvSSggfQTmJubUH+IcI1MQp
p3U2JhWxraRkXmCvA+ZJOx+z67I9dcirb22klMcpWuyVxQ4Hey9bjJ1SN5f7v6/e
S0qonBuaSWkcTW0EB2s9/LfHQ63Mn+8KKqXcei5K/wREWRQu
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:17 2025 by rpki-client