Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/5qenvFhdMIMSwA4UgSV846stHgQ.roa
File: 5qenvFhdMIMSwA4UgSV846stHgQ.roa (raw, json)
Hash identifier: xjFZnevyVrTbERMgc4Qwx3w0idroPuiS6WcGaPSnq6I=
Subject key identifier: E6:A7:A7:BC:58:5D:30:83:12:C0:0E:14:81:25:7C:E3:AB:2D:1E:04
Certificate issuer: /CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Certificate serial: 04F343A1
Authority key identifier: E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/5qenvFhdMIMSwA4UgSV846stHgQ.roa
Signing time: Sat 01 Jan 2022 01:57:50 +0000
ROA not before: Sat 01 Jan 2022 01:57:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8990
IP address blocks: 2a01:7d80:2000::/35 maxlen: 35
2a01:7d80:a000::/35 maxlen: 35
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83051425 (0x4f343a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Validity
Not Before: Jan 1 01:57:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6a7a7bc585d308312c00e1481257ce3ab2d1e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:1a:b0:a1:04:ea:48:36:e0:fe:2d:23:39:9c:
3c:d0:7b:2e:da:c5:c5:83:51:4a:a8:ff:17:df:eb:
23:93:06:bb:fd:cf:e6:41:f8:84:7b:ee:8e:a6:87:
bc:a9:96:d3:d3:a7:a4:bb:bc:17:f3:77:16:a0:c5:
d0:83:39:d1:e6:80:cf:87:df:18:7b:e3:d0:26:db:
ba:9d:0f:92:47:54:6d:a3:f7:8f:eb:16:95:62:ae:
bb:ea:ec:e6:24:ce:87:71:69:1f:75:80:83:dc:b7:
2a:32:a8:9f:9a:6e:ea:21:e0:e0:0e:ba:0a:ce:e3:
ae:18:da:4d:9a:a9:b0:92:74:40:f5:3a:8a:0e:81:
f5:6b:c4:ad:8f:bb:82:29:37:c3:f6:e6:1b:c2:34:
38:7a:e7:8a:09:1e:f3:53:00:ad:56:d5:47:c1:6e:
8e:0f:9b:d6:eb:6a:f0:c9:a7:6e:a3:a8:2b:95:51:
6d:88:b9:aa:42:28:d6:bc:5e:eb:90:7e:94:61:f7:
dd:b7:83:16:62:30:d0:88:22:9f:3d:b4:ec:39:a4:
6f:60:27:ed:5b:1d:35:8b:a3:aa:d0:8d:8c:56:a5:
6b:11:62:ba:0e:c6:18:4d:2a:2f:7c:f3:f7:d8:06:
f8:53:9f:c2:b7:e5:a8:57:9a:48:5b:87:d9:d5:40:
1e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A7:A7:BC:58:5D:30:83:12:C0:0E:14:81:25:7C:E3:AB:2D:1E:04
X509v3 Authority Key Identifier:
keyid:E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/5qenvFhdMIMSwA4UgSV846stHgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/4ej0H2sCuT-F0ae0i0jPoyLwiPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:7d80:2000::/35
2a01:7d80:a000::/35
Signature Algorithm: sha256WithRSAEncryption
21:d0:a5:b9:16:55:04:7e:9d:ba:92:ac:0f:4d:a6:b7:2b:7d:
09:f6:db:1c:0d:1c:85:d4:d2:82:36:2a:b3:51:50:10:72:60:
50:10:43:07:75:75:05:d3:03:e7:8a:16:66:47:f7:55:8b:6e:
dc:09:ad:af:4a:17:fd:b6:0c:67:a9:1b:5e:b9:32:1b:32:55:
21:9b:ec:39:50:dd:55:5b:6e:a4:46:c2:2c:60:21:f0:15:47:
41:3c:fc:6c:f3:d0:34:67:a5:36:1b:38:1d:7a:a3:80:84:47:
47:7a:77:69:78:4c:3b:08:dc:4a:5b:6a:2b:89:bc:91:b9:46:
7b:06:75:17:2d:00:1c:84:d0:e0:ff:ac:86:1a:c9:b4:ff:54:
7e:84:06:7c:a1:a3:ae:c8:6b:5b:dc:59:36:4d:89:6d:05:d9:
3a:36:d1:7a:62:6b:2e:82:5e:2d:cd:89:a6:d9:44:09:65:97:
21:70:38:dc:77:66:2d:98:39:d4:a2:d3:9b:7b:93:71:35:58:
b4:a0:27:65:6d:85:47:f7:0f:1d:cf:5b:06:fa:55:fd:e7:7d:
1f:2e:66:9a:12:27:55:29:10:a7:cd:7c:f5:b7:8d:4d:f8:0e:
12:fb:cf:cc:aa:1f:b2:92:f4:b6:b9:d0:38:88:ea:85:97:52:
b3:02:f0:54
-----BEGIN CERTIFICATE-----
MIIE+TCCA+GgAwIBAgIEBPNDoTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MWU4ZjQxZjZiMDJiOTNmODVkMWE3YjQ4YjQ4Y2ZhMzIyZjA4OGY4MB4XDTIyMDEw
MTAxNTc1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTZhN2E3YmM1ODVk
MzA4MzEyYzAwZTE0ODEyNTdjZTNhYjJkMWUwNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANIasKEE6kg24P4tIzmcPNB7LtrFxYNRSqj/F9/rI5MGu/3P
5kH4hHvujqaHvKmW09OnpLu8F/N3FqDF0IM50eaAz4ffGHvj0Cbbup0PkkdUbaP3
j+sWlWKuu+rs5iTOh3FpH3WAg9y3KjKon5pu6iHg4A66Cs7jrhjaTZqpsJJ0QPU6
ig6B9WvErY+7gik3w/bmG8I0OHrnigke81MArVbVR8Fujg+b1utq8MmnbqOoK5VR
bYi5qkIo1rxe65B+lGH33beDFmIw0Iginz207Dmkb2An7VsdNYujqtCNjFalaxFi
ug7GGE0qL3zz99gG+FOfwrflqFeaSFuH2dVAHhMCAwEAAaOCAhMwggIPMB0GA1Ud
DgQWBBTmp6e8WF0wgxLADhSBJXzjqy0eBDAfBgNVHSMEGDAWgBTh6PQfawK5P4XR
p7SLSM+jIvCI+DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRlajBIMnNDdVQtRjBhZTBpMGpQb3lMd2lQZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODEvOWJhOTQwLTAwNzgtNGZkMC1hZmRlLTUzN2EyYjBiNGRkYS8x
LzVxZW52RmhkTUlNU3dBNFVnU1Y4NDZzdEhnUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEv
OWJhOTQwLTAwNzgtNGZkMC1hZmRlLTUzN2EyYjBiNGRkYS8xLzRlajBIMnNDdVQt
RjBhZTBpMGpQb3lMd2lQZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAp
BggrBgEFBQcBBwEB/wQaMBgwFgQCAAIwEAMGBSoBfYAgAwYFKgF9gKAwDQYJKoZI
hvcNAQELBQADggEBACHQpbkWVQR+nbqSrA9NprcrfQn22xwNHIXU0oI2KrNRUBBy
YFAQQwd1dQXTA+eKFmZH91WLbtwJra9KF/22DGepG165MhsyVSGb7DlQ3VVbbqRG
wixgIfAVR0E8/Gzz0DRnpTYbOB16o4CER0d6d2l4TDsI3EpbaiuJvJG5RnsGdRct
AByE0OD/rIYaybT/VH6EBnyho67Ia1vcWTZNiW0F2To20Xpiay6CXi3NiabZRAll
lyFwONx3Zi2YOdSi05t7k3E1WLSgJ2VthUf3Dx3PWwb6Vf3nfR8uZpoSJ1UpEKfN
fPW3jU34DhL7z8yqH7KS9La50DiI6oWXUrMC8FQ=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:26 2025 by rpki-client