Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/317ddd-687d-458a-9ff5-22fc588bc66f/1/55lhnE6qkrupEgDY1FCIoDKd1KE.roa
File: 55lhnE6qkrupEgDY1FCIoDKd1KE.roa (raw, json)
Hash identifier: f57vTU+gj80PZj0HlhFATZgppw27S3/SmeyQZRTkkv4=
Subject key identifier: E7:99:61:9C:4E:AA:92:BB:A9:12:00:D8:D4:50:88:A0:32:9D:D4:A1
Certificate issuer: /CN=a82a023ebdb12e971e7a8729d826a7924cf7e832
Certificate serial: 01838A688270CAB5A24A412343AA09C3BEFD
Authority key identifier: A8:2A:02:3E:BD:B1:2E:97:1E:7A:87:29:D8:26:A7:92:4C:F7:E8:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qCoCPr2xLpceeocp2Cankkz36DI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/317ddd-687d-458a-9ff5-22fc588bc66f/1/55lhnE6qkrupEgDY1FCIoDKd1KE.roa
Signing time: Thu 29 Sep 2022 18:00:48 +0000
ROA not before: Thu 29 Sep 2022 18:00:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2116
IP address blocks: 2a13:6200::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8a:68:82:70:ca:b5:a2:4a:41:23:43:aa:09:c3:be:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a82a023ebdb12e971e7a8729d826a7924cf7e832
Validity
Not Before: Sep 29 18:00:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e799619c4eaa92bba91200d8d45088a0329dd4a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ea:53:43:54:ca:52:fb:1f:32:a8:00:46:a9:
99:6d:0f:22:36:b7:76:52:f1:2f:e5:bd:ee:ca:75:
9d:b2:60:d1:e7:fb:9d:77:bc:5f:6f:b0:fd:cb:c4:
6f:bb:66:56:64:1a:27:39:f3:0b:4c:ae:f3:7f:9e:
a0:cf:80:55:de:1f:9f:bc:13:5c:bf:dd:07:58:44:
b3:6c:91:1a:1e:39:a6:6f:05:4f:2c:6b:a7:1e:b6:
63:4a:ee:31:09:6a:df:ac:94:48:f2:6e:93:ae:47:
6e:2f:6c:80:8b:c8:89:ed:9a:54:1c:95:c9:3c:ec:
47:08:57:00:5a:1a:6a:68:fc:b0:b2:6b:b0:5b:c8:
78:c4:4c:15:b3:0a:84:c7:10:89:36:a6:3c:b7:cf:
8b:4c:1e:ff:84:11:30:5e:1c:b1:6a:21:3b:99:a7:
19:2c:da:19:50:47:d4:04:ac:61:ee:e3:c2:0f:79:
0a:19:c1:40:70:fd:df:17:78:f4:7d:f9:e0:aa:22:
01:57:03:83:b0:8a:22:30:de:22:d5:3c:dc:ac:4f:
e2:1a:7e:c1:2d:b9:bf:b7:e0:1e:65:a0:c3:60:3e:
71:3b:90:2b:fe:d4:95:d0:d3:5a:d1:ad:03:7c:60:
84:fc:3f:bb:fb:85:85:ec:5f:bc:1d:04:da:0f:b7:
e4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:99:61:9C:4E:AA:92:BB:A9:12:00:D8:D4:50:88:A0:32:9D:D4:A1
X509v3 Authority Key Identifier:
keyid:A8:2A:02:3E:BD:B1:2E:97:1E:7A:87:29:D8:26:A7:92:4C:F7:E8:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qCoCPr2xLpceeocp2Cankkz36DI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/317ddd-687d-458a-9ff5-22fc588bc66f/1/55lhnE6qkrupEgDY1FCIoDKd1KE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/317ddd-687d-458a-9ff5-22fc588bc66f/1/qCoCPr2xLpceeocp2Cankkz36DI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:6200::/29
Signature Algorithm: sha256WithRSAEncryption
a5:68:1d:14:a3:1e:55:77:77:b2:71:3f:2b:52:d3:c1:aa:cd:
5d:a3:97:45:ca:c3:95:f7:ac:49:d5:22:7a:0c:70:0d:5f:c9:
fc:79:63:39:e4:e4:31:22:eb:0e:45:52:9c:c9:70:75:66:df:
d7:73:ef:c4:d1:ca:0f:ad:03:87:c5:7a:4b:fc:36:be:b5:08:
de:60:85:b1:e0:60:c5:d7:e3:b1:9f:ab:c2:24:3f:38:66:cd:
65:fb:67:b3:9f:c6:bf:4b:10:7c:68:78:b3:84:ff:d7:b4:9a:
d9:38:48:26:4c:5c:de:c6:59:48:0b:55:72:4a:c0:0b:bb:d5:
45:a3:3c:1c:35:b1:86:45:08:58:cd:78:44:12:d6:9a:d4:cd:
2f:a6:60:1f:dc:a2:e9:01:b4:88:db:07:ee:b9:b4:30:a9:c2:
91:81:56:6c:5f:ed:f3:f0:93:db:90:4a:c9:a3:2a:3f:9d:af:
e2:b3:fe:a6:5e:94:76:f1:af:26:a3:4d:1c:74:7d:42:12:17:
a3:ec:53:92:5c:c3:5d:d5:bd:51:b5:61:c2:d3:cb:f6:03:e2:
60:80:ad:c9:d6:c9:52:68:82:04:d4:cc:88:97:d7:9d:f4:31:
4d:d4:f5:fa:cf:ba:e9:e6:c7:17:df:7d:4c:e9:ed:57:6c:bf:
05:d4:f4:83
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYOKaIJwyrWiSkEjQ6oJw779MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4MmEwMjNlYmRiMTJlOTcxZTdhODcyOWQ4MjZhNzkyNGNm
N2U4MzIwHhcNMjIwOTI5MTgwMDQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNzk5NjE5YzRlYWE5MmJiYTkxMjAwZDhkNDUwODhhMDMyOWRkNGExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi+pTQ1TKUvsfMqgARqmZbQ8iNrd2
UvEv5b3uynWdsmDR5/udd7xfb7D9y8Rvu2ZWZBonOfMLTK7zf56gz4BV3h+fvBNc
v90HWESzbJEaHjmmbwVPLGunHrZjSu4xCWrfrJRI8m6TrkduL2yAi8iJ7ZpUHJXJ
POxHCFcAWhpqaPywsmuwW8h4xEwVswqExxCJNqY8t8+LTB7/hBEwXhyxaiE7macZ
LNoZUEfUBKxh7uPCD3kKGcFAcP3fF3j0ffngqiIBVwODsIoiMN4i1TzcrE/iGn7B
Lbm/t+AeZaDDYD5xO5Ar/tSV0NNa0a0DfGCE/D+7+4WF7F+8HQTaD7fk0QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFOeZYZxOqpK7qRIA2NRQiKAyndShMB8GA1UdIwQY
MBaAFKgqAj69sS6XHnqHKdgmp5JM9+gyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUNvQ1ByMnhMcGNlZW9jcDJDYW5ra3ozNkRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My8zMTdkZGQtNjg3ZC00NThhLTlmZjUt
MjJmYzU4OGJjNjZmLzEvNTVsaG5FNnFrcnVwRWdEWTFGQ0lvREtkMUtFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85My8zMTdkZGQtNjg3ZC00NThhLTlmZjUtMjJmYzU4OGJjNjZm
LzEvcUNvQ1ByMnhMcGNlZW9jcDJDYW5ra3ozNkRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhNiADAN
BgkqhkiG9w0BAQsFAAOCAQEApWgdFKMeVXd3snE/K1LTwarNXaOXRcrDlfesSdUi
egxwDV/J/HljOeTkMSLrDkVSnMlwdWbf13PvxNHKD60Dh8V6S/w2vrUI3mCFseBg
xdfjsZ+rwiQ/OGbNZftns5/Gv0sQfGh4s4T/17Sa2ThIJkxc3sZZSAtVckrAC7vV
RaM8HDWxhkUIWM14RBLWmtTNL6ZgH9yi6QG0iNsH7rm0MKnCkYFWbF/t8/CT25BK
yaMqP52v4rP+pl6UdvGvJqNNHHR9QhIXo+xTklzDXdW9UbVhwtPL9gPiYICtydbJ
UmiCBNTMiJfXnfQxTdT1+s+66ebHF999TOntV2y/BdT0gw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:34 2024 by rpki-client on console-fra.rpki-client.org