Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Lozs15peo3P9DnNlDEz1itXnSKQ.roa
File: Lozs15peo3P9DnNlDEz1itXnSKQ.roa (raw, json)
Hash identifier: AvgTez++tTMv0l7x124J1dv6dvXVHxRVv0T/E4N6e6g=
Subject key identifier: 2E:8C:EC:D7:9A:5E:A3:73:FD:0E:73:65:0C:4C:F5:8A:D5:E7:48:A4
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0ADDF782
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Lozs15peo3P9DnNlDEz1itXnSKQ.roa
Signing time: Wed 25 May 2022 19:27:58 +0000
ROA not before: Wed 25 May 2022 19:27:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 2a0e:aa02::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182318978 (0xaddf782)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: May 25 19:27:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e8cecd79a5ea373fd0e73650c4cf58ad5e748a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3b:d4:9d:30:b1:3e:eb:f3:0d:33:bb:fe:50:
84:20:56:83:7b:57:e7:e2:dd:a8:d6:7d:4b:a7:59:
19:cf:3e:35:d0:9b:f4:cd:8e:9d:2d:7f:fc:b6:9d:
2e:2d:1b:54:56:c5:dc:2c:db:83:15:9d:a3:f4:61:
a5:61:66:09:2c:68:60:76:eb:9f:a5:a9:ae:29:23:
45:b9:a0:92:68:9e:c7:9d:b4:16:98:33:b7:b3:e9:
f5:ca:6d:a8:9f:a2:a7:14:a0:eb:9a:ca:d1:20:0c:
33:ba:de:5c:c6:7c:49:da:5b:cd:ab:7c:2a:19:16:
c9:89:3f:93:2e:99:f1:8b:8d:a3:34:85:7c:34:a9:
e2:53:e7:46:25:98:c8:3c:d3:32:f9:97:53:e9:4d:
8d:4d:6f:b1:f8:92:88:68:e8:91:50:61:1e:9e:b8:
24:92:97:cb:e4:1e:b7:a7:00:6a:d0:72:b5:c1:be:
69:ce:36:96:3e:a0:ea:04:6f:84:c5:36:c3:48:40:
49:e5:44:5c:f7:b9:63:02:96:ae:f2:92:77:a5:00:
35:45:25:b9:a4:19:65:53:21:fa:e4:77:83:20:1a:
bd:36:e6:dc:02:a6:b7:78:74:43:69:90:1b:43:c2:
f9:4b:3a:20:1c:f2:a8:f2:21:c7:75:ca:fb:12:94:
52:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:8C:EC:D7:9A:5E:A3:73:FD:0E:73:65:0C:4C:F5:8A:D5:E7:48:A4
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Lozs15peo3P9DnNlDEz1itXnSKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa02::/40
Signature Algorithm: sha256WithRSAEncryption
85:84:65:3f:e1:a6:fd:1f:3e:50:c2:c6:d2:2c:93:04:c7:7d:
d1:dd:ce:fd:e4:86:ee:ff:2f:86:d8:21:10:e6:49:63:26:98:
a3:89:33:59:dd:5b:b9:d4:62:93:d5:74:30:d8:c7:06:17:86:
a5:63:c3:84:5f:71:6a:64:d6:f8:e3:50:34:14:c0:db:a7:71:
ae:d8:89:3e:85:05:37:84:81:ff:3b:e2:2c:28:9a:5f:40:32:
97:84:6c:a4:99:e1:b2:f6:eb:54:ad:57:97:a9:32:ca:47:d5:
89:e3:ca:8c:c7:c4:82:eb:b3:2a:88:30:42:f6:57:b9:d0:37:
2a:46:32:3b:89:01:6b:17:ec:f9:a3:e8:0a:7b:57:42:7a:4d:
fc:42:ed:4f:89:95:28:7e:b8:91:52:aa:ea:18:99:cc:a2:cc:
c6:a4:3b:e5:df:53:d4:e7:03:4c:97:ce:5d:ff:04:e6:3d:7a:
c2:43:01:aa:d2:91:dd:61:c6:4c:6f:e7:9d:b5:3c:08:97:47:
b2:d8:43:18:1e:cf:ab:60:a2:6b:a4:4d:67:a9:1a:ee:0d:ee:
c4:11:d7:bf:48:b6:b5:73:b2:3c:41:83:d2:7f:12:3e:67:7f:
69:73:8b:a7:19:39:8c:73:49:37:a3:9d:d3:6e:48:ef:d5:5d:
cb:35:97:ef
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIECt33gjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzYxYjVjZDY5NjgyNWI3NGZjY2JhN2Q5N2MzZDBhMjcyNGVmM2FhMB4XDTIyMDUy
NTE5Mjc1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmU4Y2VjZDc5YTVl
YTM3M2ZkMGU3MzY1MGM0Y2Y1OGFkNWU3NDhhNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKA71J0wsT7r8w0zu/5QhCBWg3tX5+LdqNZ9S6dZGc8+NdCb
9M2OnS1//LadLi0bVFbF3CzbgxWdo/RhpWFmCSxoYHbrn6WprikjRbmgkmiex520
Fpgzt7Pp9cptqJ+ipxSg65rK0SAMM7reXMZ8Sdpbzat8KhkWyYk/ky6Z8YuNozSF
fDSp4lPnRiWYyDzTMvmXU+lNjU1vsfiSiGjokVBhHp64JJKXy+Qet6cAatBytcG+
ac42lj6g6gRvhMU2w0hASeVEXPe5YwKWrvKSd6UANUUluaQZZVMh+uR3gyAavTbm
3AKmt3h0Q2mQG0PC+Us6IBzyqPIhx3XK+xKUUpkCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBQujOzXml6jc/0Oc2UMTPWK1edIpDAfBgNVHSMEGDAWgBSTYbXNaWglt0/M
un2Xw9Cick7zqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syRzF6V2xvSmJkUHpMcDlsOFBRb25KTzg2by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2YvNzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8x
L0xvenMxNXBlbzNQOURuTmxERXoxaXRYblNLUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Yv
NzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8xL2syRzF6V2xvSmJk
UHpMcDlsOFBRb25KTzg2by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoOqgIAMA0GCSqGSIb3DQEBCwUA
A4IBAQCFhGU/4ab9Hz5QwsbSLJMEx33R3c795Ibu/y+G2CEQ5kljJpijiTNZ3Vu5
1GKT1XQw2McGF4alY8OEX3FqZNb441A0FMDbp3Gu2Ik+hQU3hIH/O+IsKJpfQDKX
hGykmeGy9utUrVeXqTLKR9WJ48qMx8SC67MqiDBC9le50DcqRjI7iQFrF+z5o+gK
e1dCek38Qu1PiZUofriRUqrqGJnMoszGpDvl31PU5wNMl85d/wTmPXrCQwGq0pHd
YcZMb+edtTwIl0ey2EMYHs+rYKJrpE1nqRruDe7EEde/SLa1c7I8QYPSfxI+Z39p
c4unGTmMc0k3o53Tbkjv1V3LNZfv
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org