Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Qr5txKfvNDzMETrhmVgKALH56Eg.roa
File: Qr5txKfvNDzMETrhmVgKALH56Eg.roa (raw, json)
Hash identifier: pe9MRZ2ffFv3XwDx7ywPQaZJYQ8G39XVHLs5lRKSCmU=
Subject key identifier: 42:BE:6D:C4:A7:EF:34:3C:CC:11:3A:E1:99:58:0A:00:B1:F9:E8:48
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0B241386
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Qr5txKfvNDzMETrhmVgKALH56Eg.roa
Signing time: Tue 28 Jun 2022 07:51:02 +0000
ROA not before: Tue 28 Jun 2022 07:51:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60326
IP address blocks: 2a0e:aa07:f080::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186913670 (0xb241386)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jun 28 07:51:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42be6dc4a7ef343ccc113ae199580a00b1f9e848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:94:e6:69:10:3c:68:dd:f5:c1:bb:1b:2a:4d:
79:4f:75:53:02:26:03:50:f6:08:29:b5:cc:8d:3b:
26:7e:27:c2:5e:85:36:e2:d5:6b:95:50:18:71:75:
83:36:52:47:66:4a:7e:b5:e0:db:52:3a:56:67:c1:
5f:96:65:1a:a3:ad:fb:24:5c:07:75:44:8f:67:42:
09:46:2e:08:66:0c:0c:83:68:6a:32:5f:9c:6c:81:
00:a8:21:55:65:3b:70:80:08:33:a5:7b:0f:06:5c:
bd:96:ab:9a:6f:72:ce:4c:81:d5:02:0d:18:d8:9b:
ab:c1:c3:54:0b:c9:b3:dd:a8:58:6e:9b:5c:18:dc:
d2:f6:a1:83:c6:9f:2d:58:b8:80:68:d7:db:03:f9:
1f:07:2d:dd:48:df:c8:88:62:09:df:ce:a0:1d:68:
39:a8:bd:9f:fa:8a:e6:e4:9e:16:4a:8e:d4:5b:ea:
d3:1f:1c:92:d0:e5:22:8c:d1:e9:10:0d:2a:2a:b6:
ed:b2:9b:d9:49:ef:4f:05:22:ed:a4:53:29:bf:90:
18:0b:b7:96:1f:67:f8:46:d9:f9:4f:f3:d5:89:6a:
56:a1:5f:de:05:46:2e:f5:c4:e7:50:71:c6:3a:b4:
56:b6:22:6c:97:c7:48:1c:50:56:7d:89:a4:1c:46:
20:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:BE:6D:C4:A7:EF:34:3C:CC:11:3A:E1:99:58:0A:00:B1:F9:E8:48
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/Qr5txKfvNDzMETrhmVgKALH56Eg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:f080::/44
Signature Algorithm: sha256WithRSAEncryption
94:23:20:72:28:11:a3:2f:2b:63:15:5a:bd:59:ac:ca:8c:15:
12:eb:1a:10:94:40:00:6d:60:ae:3a:05:56:b4:8a:8e:f2:97:
c9:24:96:02:e0:8b:09:34:5a:56:13:a9:30:3f:c9:10:e1:64:
50:59:00:19:c9:ac:02:7a:1c:fd:3e:3b:cb:b5:69:7e:f8:d1:
02:08:40:ee:4d:6f:a8:83:c7:40:f5:55:6c:3b:73:63:a6:09:
68:5e:33:c5:dc:1f:0e:af:52:07:d0:f7:80:0a:8e:8f:84:1b:
f5:26:f9:69:e7:1b:12:1c:53:c5:74:5e:85:4a:45:08:a1:23:
89:01:dc:00:0a:d5:43:41:97:d7:60:f7:52:32:da:9c:fc:73:
e9:75:94:2a:51:50:6f:fc:70:c2:8c:06:01:e5:a2:02:16:35:
49:b0:fb:ae:56:ea:11:5f:93:9f:10:49:98:c8:14:cf:35:c2:
6d:9a:3c:e2:dc:17:fa:c4:30:3e:62:31:dc:40:6c:e9:65:24:
53:e9:eb:c5:8c:ae:8a:9c:ad:4d:7c:3f:78:ad:0b:56:48:43:
18:dc:9c:96:c3:6c:66:d6:73:31:0b:10:eb:96:72:ad:b6:f9:
79:4f:ed:53:72:58:40:df:cd:0d:9e:d9:e7:4e:c6:cc:35:db:
f3:a5:dc:fd
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECyQThjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzYxYjVjZDY5NjgyNWI3NGZjY2JhN2Q5N2MzZDBhMjcyNGVmM2FhMB4XDTIyMDYy
ODA3NTEwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDJiZTZkYzRhN2Vm
MzQzY2NjMTEzYWUxOTk1ODBhMDBiMWY5ZTg0ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJmU5mkQPGjd9cG7GypNeU91UwImA1D2CCm1zI07Jn4nwl6F
NuLVa5VQGHF1gzZSR2ZKfrXg21I6VmfBX5ZlGqOt+yRcB3VEj2dCCUYuCGYMDINo
ajJfnGyBAKghVWU7cIAIM6V7DwZcvZarmm9yzkyB1QINGNibq8HDVAvJs92oWG6b
XBjc0vahg8afLVi4gGjX2wP5Hwct3UjfyIhiCd/OoB1oOai9n/qK5uSeFkqO1Fvq
0x8cktDlIozR6RANKiq27bKb2UnvTwUi7aRTKb+QGAu3lh9n+EbZ+U/z1YlqVqFf
3gVGLvXE51Bxxjq0VrYibJfHSBxQVn2JpBxGIHECAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRCvm3Ep+80PMwROuGZWAoAsfnoSDAfBgNVHSMEGDAWgBSTYbXNaWglt0/M
un2Xw9Cick7zqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syRzF6V2xvSmJkUHpMcDlsOFBRb25KTzg2by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2YvNzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8x
L1FyNXR4S2Z2TkR6TUVUcmhtVmdLQUxINTZFZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Yv
NzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8xL2syRzF6V2xvSmJk
UHpMcDlsOFBRb25KTzg2by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoOqgfwgDANBgkqhkiG9w0BAQsF
AAOCAQEAlCMgcigRoy8rYxVavVmsyowVEusaEJRAAG1grjoFVrSKjvKXySSWAuCL
CTRaVhOpMD/JEOFkUFkAGcmsAnoc/T47y7VpfvjRAghA7k1vqIPHQPVVbDtzY6YJ
aF4zxdwfDq9SB9D3gAqOj4Qb9Sb5aecbEhxTxXRehUpFCKEjiQHcAArVQ0GX12D3
UjLanPxz6XWUKlFQb/xwwowGAeWiAhY1SbD7rlbqEV+TnxBJmMgUzzXCbZo84twX
+sQwPmIx3EBs6WUkU+nrxYyuipytTXw/eK0LVkhDGNyclsNsZtZzMQsQ65Zyrbb5
eU/tU3JYQN/NDZ7Z507GzDXb86Xc/Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org