Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/olnHIDlBS3Y_jfcuPTEqb9Gp0hI.roa
File: olnHIDlBS3Y_jfcuPTEqb9Gp0hI.roa (raw, json)
Hash identifier: tbbNwGHde5I7ltcN6XkV9CTJOzmDY/I4haLY69X1ZDc=
Subject key identifier: A2:59:C7:20:39:41:4B:76:3F:8D:F7:2E:3D:31:2A:6F:D1:A9:D2:12
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 041CD850
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/olnHIDlBS3Y_jfcuPTEqb9Gp0hI.roa
Signing time: Fri 29 Apr 2022 11:36:03 +0000
ROA not before: Fri 29 Apr 2022 11:36:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42708
IP address blocks: 2a10:1fc0:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68999248 (0x41cd850)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Apr 29 11:36:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a259c72039414b763f8df72e3d312a6fd1a9d212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d0:0d:ff:ab:eb:c9:3a:ef:7d:b2:3c:a2:e1:
07:37:48:bf:4a:8f:5c:ee:f1:79:41:cf:d0:27:bc:
5e:9c:81:4b:b4:da:e3:6c:19:c7:ff:73:81:33:88:
42:ad:a4:63:f9:a4:e8:5c:a6:53:8e:04:f8:75:25:
57:5a:3b:46:13:e7:a6:14:93:20:02:84:76:8a:b1:
1d:02:55:f7:c0:08:43:88:de:d4:58:65:dc:15:bd:
2a:9d:50:2e:a7:8d:c1:96:20:cb:99:33:78:5e:14:
1a:37:85:bc:2b:ef:54:7e:90:78:c8:62:c0:43:b9:
23:2a:b6:dc:cd:14:cb:e4:87:5f:0b:c7:1f:11:c6:
50:7a:13:58:58:ca:f5:60:52:f6:01:cd:78:dc:ee:
f4:43:3a:58:a0:6a:b0:d6:cb:f8:f2:54:a3:18:17:
67:75:32:7d:20:ea:f8:7c:b5:5d:ef:b3:94:3b:c2:
e0:d3:5f:76:b6:3a:ca:d7:5d:1c:b5:17:00:a7:c8:
7a:e3:60:4e:8e:4d:5a:47:ff:69:58:03:56:56:52:
5e:69:f3:2e:59:2e:2b:4a:f8:e0:0d:89:c2:2b:94:
81:59:31:96:37:87:54:23:7c:88:d6:fd:9b:fa:35:
df:96:ba:a3:1a:5d:1f:22:36:0c:1b:a6:0a:0f:18:
4f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:59:C7:20:39:41:4B:76:3F:8D:F7:2E:3D:31:2A:6F:D1:A9:D2:12
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/olnHIDlBS3Y_jfcuPTEqb9Gp0hI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:1fc0:9::/48
Signature Algorithm: sha256WithRSAEncryption
60:8e:81:6c:c5:e3:45:df:98:dc:6b:ff:77:c5:d0:39:61:87:
dc:db:8e:60:a7:e1:58:ba:03:73:62:9f:44:18:7c:a1:fa:cd:
d0:61:26:4a:4f:9c:b6:3b:55:87:6a:d2:a3:45:37:6b:3c:47:
80:8c:50:ae:9c:3b:d2:d3:cb:d0:e5:ed:dd:67:89:4b:26:67:
fd:5b:7a:83:2a:b7:5e:7f:2c:f6:41:55:57:5f:40:db:76:08:
2f:4c:07:4a:3d:4d:05:61:cb:f1:cb:01:ff:cd:63:44:6e:eb:
c5:9f:7c:4d:c4:b0:90:ba:18:a1:7e:96:dd:71:1d:0a:c1:49:
3d:83:5f:c5:c4:d2:59:34:75:24:4a:26:27:da:4f:87:68:0e:
8d:84:8e:b0:27:4d:66:20:44:9c:53:4f:8d:f1:e2:61:cc:89:
82:75:7f:67:32:ed:6a:6f:02:b2:0a:cf:82:17:29:46:b8:b1:
92:07:87:7b:dd:62:0c:69:9c:ab:e5:19:7e:b8:e0:ec:3f:20:
0d:85:48:e0:6c:20:7b:ce:6a:37:09:04:82:5b:b3:72:64:fe:
db:b3:14:43:d2:e1:51:bd:e8:5b:09:db:07:07:a6:36:43:34:
c8:c9:1d:99:84:16:dc:24:80:df:c7:15:c6:04:21:a0:3c:35:
1a:db:62:75
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEBBzYUDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NDczMjBkMDMwOTMwMTc4ZTZmN2NlZWY5MWQyYWI4Nzg0ZDNkYzE2MB4XDTIyMDQy
OTExMzYwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTI1OWM3MjAzOTQx
NGI3NjNmOGRmNzJlM2QzMTJhNmZkMWE5ZDIxMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALXQDf+r68k6732yPKLhBzdIv0qPXO7xeUHP0Ce8XpyBS7Ta
42wZx/9zgTOIQq2kY/mk6FymU44E+HUlV1o7RhPnphSTIAKEdoqxHQJV98AIQ4je
1Fhl3BW9Kp1QLqeNwZYgy5kzeF4UGjeFvCvvVH6QeMhiwEO5Iyq23M0Uy+SHXwvH
HxHGUHoTWFjK9WBS9gHNeNzu9EM6WKBqsNbL+PJUoxgXZ3UyfSDq+Hy1Xe+zlDvC
4NNfdrY6ytddHLUXAKfIeuNgTo5NWkf/aVgDVlZSXmnzLlkuK0r44A2JwiuUgVkx
ljeHVCN8iNb9m/o135a6oxpdHyI2DBumCg8YT4MCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSiWccgOUFLdj+N9y49MSpv0anSEjAfBgNVHSMEGDAWgBSUcyDQMJMBeOb3
zu+R0quHhNPcFjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2xITWcwRENUQVhqbTk4N3ZrZEtyaDRUVDNCWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODQvODJlODc2LWM5OTctNDYwNS04N2FhLThhYzRhMjE5MzhiNC8x
L29sbkhJRGxCUzNZX2pmY3VQVEVxYjlHcDBoSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODQv
ODJlODc2LWM5OTctNDYwNS04N2FhLThhYzRhMjE5MzhiNC8xL2xITWcwRENUQVhq
bTk4N3ZrZEtyaDRUVDNCWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoQH8AACTANBgkqhkiG9w0BAQsF
AAOCAQEAYI6BbMXjRd+Y3Gv/d8XQOWGH3NuOYKfhWLoDc2KfRBh8ofrN0GEmSk+c
tjtVh2rSo0U3azxHgIxQrpw70tPL0OXt3WeJSyZn/Vt6gyq3Xn8s9kFVV19A23YI
L0wHSj1NBWHL8csB/81jRG7rxZ98TcSwkLoYoX6W3XEdCsFJPYNfxcTSWTR1JEom
J9pPh2gOjYSOsCdNZiBEnFNPjfHiYcyJgnV/ZzLtam8CsgrPghcpRrixkgeHe91i
DGmcq+UZfrjg7D8gDYVI4Gwge85qNwkEgluzcmT+27MUQ9LhUb3oWwnbBwemNkM0
yMkdmYQW3CSA38cVxgQhoDw1GttidQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:23 2024 by rpki-client on console-fra.rpki-client.org