Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/RKu6_I1j2_8PdqzTkF9bDxSSI0Q.roa
File: RKu6_I1j2_8PdqzTkF9bDxSSI0Q.roa (raw, json)
Hash identifier: o3Rez+96fxYGF45u+CEXKeovxiVlW0WVjCohL6M2dr0=
Subject key identifier: 44:AB:BA:FC:8D:63:DB:FF:0F:76:AC:D3:90:5F:5B:0F:14:92:23:44
Certificate issuer: /CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Certificate serial: 08B31FB6
Authority key identifier: 3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/RKu6_I1j2_8PdqzTkF9bDxSSI0Q.roa
Signing time: Sat 01 Jan 2022 15:05:18 +0000
ROA not before: Sat 01 Jan 2022 15:05:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61230
IP address blocks: 2a0e:1107:10::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145956790 (0x8b31fb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Validity
Not Before: Jan 1 15:05:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44abbafc8d63dbff0f76acd3905f5b0f14922344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:79:94:64:7b:a4:76:0d:3f:b7:e8:ee:a8:ca:
61:20:3b:b3:af:69:d6:00:b7:db:a1:e4:08:66:d7:
76:1f:ed:d1:b0:0b:40:d7:44:f2:bb:e3:23:a7:6e:
3b:b5:44:31:ba:eb:d1:c9:7f:0e:52:4d:1c:37:d3:
0c:60:f5:a0:1b:6c:ae:07:d0:f2:da:a5:ef:87:19:
2c:2b:04:11:4e:7b:86:f9:a4:fa:c4:bb:89:ab:fd:
93:06:9f:53:e6:91:c9:9c:64:73:3d:17:47:0b:05:
9e:7f:28:46:eb:6f:c4:e1:bc:81:20:bf:1f:e9:da:
d0:78:aa:89:cb:0d:7b:00:aa:cf:8a:a3:68:db:fd:
35:43:5e:18:a9:d4:ef:2b:a9:71:c4:e4:36:cc:1c:
7f:20:b0:28:15:15:b3:36:1b:7a:8d:0e:5e:d8:ac:
db:9b:47:7b:ad:3a:d7:5e:d7:6e:70:b7:6f:5c:ad:
38:b3:67:37:5e:3a:af:3e:b8:90:cc:3e:27:99:0e:
8f:e3:25:9a:07:e5:da:6b:75:78:95:45:16:58:77:
08:79:cd:ca:98:69:7b:6f:61:4d:6c:b4:07:68:fb:
e7:5c:bf:d6:90:84:e4:37:71:18:44:3e:a3:af:93:
58:98:de:cf:fb:08:98:9c:fc:d5:f1:b2:f4:29:e7:
4c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:AB:BA:FC:8D:63:DB:FF:0F:76:AC:D3:90:5F:5B:0F:14:92:23:44
X509v3 Authority Key Identifier:
keyid:3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/RKu6_I1j2_8PdqzTkF9bDxSSI0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1107:10::/44
Signature Algorithm: sha256WithRSAEncryption
1e:99:8c:4f:03:8a:26:8b:62:92:18:7e:aa:72:8b:60:d0:21:
e3:da:22:3b:3d:e5:f7:6c:1e:ec:9b:d7:6c:d3:63:57:84:83:
0c:14:44:ec:8e:40:1a:6b:1f:05:c9:d5:1a:53:31:b7:14:8a:
cc:4f:9e:d2:e2:77:23:c3:c2:bf:7d:60:18:f6:f6:f2:a4:44:
ab:d9:1a:ef:c6:03:ce:ea:73:55:61:98:ba:78:6b:72:99:85:
33:4e:4f:93:f7:15:fe:91:7b:8b:27:be:81:c0:cb:9f:b1:28:
4f:2e:57:9a:2d:23:0e:21:89:bd:f6:ff:e2:a0:61:79:63:85:
eb:8f:52:85:64:19:9f:f4:67:42:6f:65:2c:da:c1:bb:f1:82:
6e:fc:57:bb:19:78:1b:7e:1b:49:7b:d0:57:9e:12:8e:98:4b:
2e:d4:a0:5c:1b:0a:9d:ff:e1:28:3e:d4:ad:fe:ff:38:72:d0:
7d:a4:f6:fa:00:a1:d8:8d:a3:d0:de:a5:a9:e2:a5:05:8f:2e:
25:0a:35:bd:b7:1b:61:db:73:f6:47:cd:a0:e9:74:f6:e0:36:
a8:94:dd:a0:75:57:8b:a1:2b:42:af:5f:9d:3b:2f:d8:10:8e:
5f:36:57:21:b1:1a:36:7f:e3:3d:d4:04:ec:14:8a:9b:1a:85:
75:02:92:2d
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECLMftjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YWNhNTA4NThhMTg1NmZmYTAyZTkxMzU2ZjE0MjM2ZTdjMzhiODVhMB4XDTIyMDEw
MTE1MDUxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDRhYmJhZmM4ZDYz
ZGJmZjBmNzZhY2QzOTA1ZjViMGYxNDkyMjM0NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALZ5lGR7pHYNP7fo7qjKYSA7s69p1gC326HkCGbXdh/t0bAL
QNdE8rvjI6duO7VEMbrr0cl/DlJNHDfTDGD1oBtsrgfQ8tql74cZLCsEEU57hvmk
+sS7iav9kwafU+aRyZxkcz0XRwsFnn8oRutvxOG8gSC/H+na0HiqicsNewCqz4qj
aNv9NUNeGKnU7yupccTkNswcfyCwKBUVszYbeo0OXtis25tHe606117XbnC3b1yt
OLNnN146rz64kMw+J5kOj+Mlmgfl2mt1eJVFFlh3CHnNyphpe29hTWy0B2j751y/
1pCE5DdxGEQ+o6+TWJjez/sImJz81fGy9CnnTJkCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBREq7r8jWPb/w92rNOQX1sPFJIjRDAfBgNVHSMEGDAWgBQ6ylCFihhW/6Au
kTVvFCNufDi4WjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09zcFFoWW9ZVnYtZ0xwRTFieFFqYm53NHVGby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODEvMTJiOTM3LTg5MGQtNDdiNS1hMDQxLTMzMWQ3ZmM3N2JkNC8x
L1JLdTZfSTFqMl84UGRxelRrRjliRHhTU0kwUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEv
MTJiOTM3LTg5MGQtNDdiNS1hMDQxLTMzMWQ3ZmM3N2JkNC8xL09zcFFoWW9ZVnYt
Z0xwRTFieFFqYm53NHVGby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoOEQcAEDANBgkqhkiG9w0BAQsF
AAOCAQEAHpmMTwOKJotikhh+qnKLYNAh49oiOz3l92we7JvXbNNjV4SDDBRE7I5A
GmsfBcnVGlMxtxSKzE+e0uJ3I8PCv31gGPb28qREq9ka78YDzupzVWGYunhrcpmF
M05Pk/cV/pF7iye+gcDLn7EoTy5Xmi0jDiGJvfb/4qBheWOF649ShWQZn/RnQm9l
LNrBu/GCbvxXuxl4G34bSXvQV54SjphLLtSgXBsKnf/hKD7Urf7/OHLQfaT2+gCh
2I2j0N6lqeKlBY8uJQo1vbcbYdtz9kfNoOl09uA2qJTdoHVXi6ErQq9fnTsv2BCO
XzZXIbEaNn/jPdQE7BSKmxqFdQKSLQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:58 2024 by rpki-client on console-fra.rpki-client.org