Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/hlZgeMT4UWOWE6EanjeHTVI2zJg.roa
File: hlZgeMT4UWOWE6EanjeHTVI2zJg.roa (raw, json)
Hash identifier: UoQG+FD3peZAO/Q6ruRHY1jmx7NciuhuJL8Zq1ZepPk=
Subject key identifier: 86:56:60:78:C4:F8:51:63:96:13:A1:1A:9E:37:87:4D:52:36:CC:98
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0978E263
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/hlZgeMT4UWOWE6EanjeHTVI2zJg.roa
Signing time: Sat 01 Jan 2022 09:04:04 +0000
ROA not before: Sat 01 Jan 2022 09:04:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210370
IP address blocks: 2a0e:aa07:e02c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158917219 (0x978e263)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 09:04:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86566078c4f851639613a11a9e37874d5236cc98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:cd:0f:1a:e9:62:81:c2:d9:f4:a8:ba:3f:69:
af:a5:df:f3:00:56:b0:1b:7c:73:2b:51:55:a4:4e:
21:dd:05:86:3a:46:06:71:57:8c:d2:64:93:ee:82:
71:27:74:a9:67:55:33:86:4b:2c:27:c6:f5:e6:64:
c5:e1:af:54:8c:44:75:71:7e:30:bb:92:b6:49:3c:
43:35:c8:f4:34:b5:f9:f0:10:7a:e0:3c:7d:59:d8:
4a:d2:a5:cb:52:7d:20:9f:94:f8:d8:75:6c:8a:7d:
7f:f4:f4:c4:85:67:a2:3a:81:55:82:23:d0:ba:8d:
2b:fd:51:93:2c:b8:1e:7b:2d:9a:81:c4:3b:be:ee:
64:79:a4:d9:bb:d0:cd:c5:5c:cf:e6:fe:34:70:72:
9b:72:50:2e:c0:e8:91:da:0c:dc:e7:84:d7:9e:37:
43:11:e5:6f:4b:a8:00:80:f4:f7:b4:23:35:9c:45:
33:b5:39:09:da:ae:5b:08:86:f8:0a:90:d6:a3:ed:
21:56:33:28:87:c2:7b:66:e4:f9:74:d1:b0:c3:25:
7a:dd:ae:25:78:82:23:36:f2:7b:d1:35:1f:ea:29:
14:90:36:b5:0b:90:ad:aa:8f:6f:68:cb:02:29:b8:
ae:0a:68:aa:2b:4c:92:0e:a9:e2:39:53:3f:6e:0f:
91:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:56:60:78:C4:F8:51:63:96:13:A1:1A:9E:37:87:4D:52:36:CC:98
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/hlZgeMT4UWOWE6EanjeHTVI2zJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e02c::/48
Signature Algorithm: sha256WithRSAEncryption
b5:fa:34:f4:68:33:96:83:55:ab:b3:12:b7:ed:1e:25:a1:e8:
dd:ae:15:c0:eb:42:35:47:70:8b:15:9a:da:f0:08:26:22:c6:
8f:8c:36:f7:42:4d:34:79:3d:c7:2f:30:f7:19:6a:be:cb:ad:
bd:f0:d5:d6:a9:5f:3b:b3:15:71:6f:03:79:3b:6b:f8:be:b6:
6e:83:73:34:1d:3d:e0:24:3d:6d:4b:bc:73:f6:3b:fb:36:6d:
1e:73:3a:32:eb:e5:5a:21:3f:43:16:66:a1:bb:f5:e9:7f:45:
a8:be:a4:c2:7f:3a:eb:fe:11:db:40:31:9f:75:47:2f:65:aa:
b9:ee:98:fe:05:6c:c1:b2:f6:ea:87:c5:24:fb:4e:80:e8:32:
3b:d4:f7:e5:12:22:3c:63:9e:05:2e:fc:b5:f6:a2:02:49:64:
84:42:f1:22:85:7c:35:ca:8e:cf:fb:0c:da:e3:59:c9:b7:e2:
a8:90:fa:35:90:fe:4f:db:d7:b0:9a:99:b4:32:ed:98:67:31:
c0:e9:db:6e:19:03:29:f3:b8:1b:27:17:75:6e:86:84:d0:02:
1f:9e:2f:53:15:e0:f6:25:33:69:eb:03:6a:b0:ed:f9:e7:a9:
9c:0c:a0:c8:a4:fa:dd:c5:2b:9c:34:64:37:5e:f1:cc:2f:d4:
cf:88:2c:1a
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECXjiYzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzYxYjVjZDY5NjgyNWI3NGZjY2JhN2Q5N2MzZDBhMjcyNGVmM2FhMB4XDTIyMDEw
MTA5MDQwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODY1NjYwNzhjNGY4
NTE2Mzk2MTNhMTFhOWUzNzg3NGQ1MjM2Y2M5ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMfNDxrpYoHC2fSouj9pr6Xf8wBWsBt8cytRVaROId0FhjpG
BnFXjNJkk+6CcSd0qWdVM4ZLLCfG9eZkxeGvVIxEdXF+MLuStkk8QzXI9DS1+fAQ
euA8fVnYStKly1J9IJ+U+Nh1bIp9f/T0xIVnojqBVYIj0LqNK/1Rkyy4HnstmoHE
O77uZHmk2bvQzcVcz+b+NHBym3JQLsDokdoM3OeE1543QxHlb0uoAID097QjNZxF
M7U5CdquWwiG+AqQ1qPtIVYzKIfCe2bk+XTRsMMlet2uJXiCIzbye9E1H+opFJA2
tQuQraqPb2jLAim4rgpoqitMkg6p4jlTP24Pke8CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSGVmB4xPhRY5YToRqeN4dNUjbMmDAfBgNVHSMEGDAWgBSTYbXNaWglt0/M
un2Xw9Cick7zqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syRzF6V2xvSmJkUHpMcDlsOFBRb25KTzg2by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2YvNzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8x
L2hsWmdlTVQ0VVdPV0U2RWFuamVIVFZJMnpKZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Yv
NzJiZjJmLThlMzQtNDhhMi04NDlhLWE1NDFkMWJjZWUxOS8xL2syRzF6V2xvSmJk
UHpMcDlsOFBRb25KTzg2by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoOqgfgLDANBgkqhkiG9w0BAQsF
AAOCAQEAtfo09GgzloNVq7MSt+0eJaHo3a4VwOtCNUdwixWa2vAIJiLGj4w290JN
NHk9xy8w9xlqvsutvfDV1qlfO7MVcW8DeTtr+L62boNzNB094CQ9bUu8c/Y7+zZt
HnM6MuvlWiE/QxZmobv16X9FqL6kwn866/4R20Axn3VHL2Wque6Y/gVswbL26ofF
JPtOgOgyO9T35RIiPGOeBS78tfaiAklkhELxIoV8NcqOz/sM2uNZybfiqJD6NZD+
T9vXsJqZtDLtmGcxwOnbbhkDKfO4GycXdW6GhNACH54vUxXg9iUzaesDarDt+eep
nAygyKT63cUrnDRkN17xzC/Uz4gsGg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org