Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/bpUhWaT-U3nB_FoegfCDG0cCnsQ.roa
File: bpUhWaT-U3nB_FoegfCDG0cCnsQ.roa (raw, json)
Hash identifier: piwsAI+4FLN2LXbaN1A5XJolcldni6Ht9ZMv2fviwN4=
Subject key identifier: 6E:95:21:59:A4:FE:53:79:C1:FC:5A:1E:81:F0:83:1B:47:02:9E:C4
Certificate issuer: /CN=10773f32d3cb4e13e43f10a3dc422f1f3271bfba
Certificate serial: 01854B05134CF8900BB7B7844D6EAF2B1D6A
Authority key identifier: 10:77:3F:32:D3:CB:4E:13:E4:3F:10:A3:DC:42:2F:1F:32:71:BF:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHc_MtPLThPkPxCj3EIvHzJxv7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/bpUhWaT-U3nB_FoegfCDG0cCnsQ.roa
Signing time: Sun 25 Dec 2022 20:41:41 +0000
ROA not before: Sun 25 Dec 2022 20:41:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a0a:4a40:10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:4b:05:13:4c:f8:90:0b:b7:b7:84:4d:6e:af:2b:1d:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10773f32d3cb4e13e43f10a3dc422f1f3271bfba
Validity
Not Before: Dec 25 20:41:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e952159a4fe5379c1fc5a1e81f0831b47029ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:df:38:9d:06:2e:77:8b:4f:12:8b:fa:32:15:
77:63:de:86:58:37:19:af:8c:a9:be:e9:35:d2:31:
18:d3:3e:37:af:10:db:15:28:d4:28:d1:a7:a9:bd:
18:cb:13:b0:16:78:6d:41:06:f0:e0:a5:04:9a:87:
fd:f4:31:79:b0:a5:29:26:1f:fc:79:82:43:19:f6:
db:a5:e2:89:04:c9:a6:8d:17:77:cf:7b:37:fb:e4:
b3:3b:39:4a:88:f7:68:7c:0a:62:de:69:5d:b0:57:
df:b9:f8:63:20:ae:d4:4e:1b:e8:5d:63:88:c7:d6:
b4:6b:e2:54:7b:15:a6:6d:dd:5b:e5:1c:55:5d:1d:
8b:c8:3a:00:c0:4f:5f:94:29:59:9a:82:82:4c:25:
73:f1:76:26:94:89:58:4c:4f:11:73:0e:f9:15:63:
55:7e:a5:5a:20:f2:c1:0a:90:59:81:d1:2f:43:0c:
20:44:a7:54:20:3a:60:f6:93:53:96:53:8d:6d:a9:
2f:fb:6c:3e:8f:62:ad:2d:d0:8f:b9:ec:38:ef:17:
7c:3e:48:29:ac:10:8d:31:95:b6:cb:e7:b1:19:22:
40:b0:b1:2b:21:44:db:eb:14:ca:99:f1:9e:e3:24:
b4:41:ed:5f:a3:6d:20:7e:1a:01:be:dc:6d:ad:e7:
be:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:95:21:59:A4:FE:53:79:C1:FC:5A:1E:81:F0:83:1B:47:02:9E:C4
X509v3 Authority Key Identifier:
keyid:10:77:3F:32:D3:CB:4E:13:E4:3F:10:A3:DC:42:2F:1F:32:71:BF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHc_MtPLThPkPxCj3EIvHzJxv7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/bpUhWaT-U3nB_FoegfCDG0cCnsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/EHc_MtPLThPkPxCj3EIvHzJxv7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4a40:10::/48
Signature Algorithm: sha256WithRSAEncryption
24:3b:44:13:f0:65:9b:d8:ba:15:87:a4:91:75:17:56:7f:47:
a9:34:ed:e8:1b:03:67:73:8c:0a:83:9c:2c:01:2c:aa:88:ee:
d3:3f:b8:03:48:38:6a:62:ff:f1:cf:f5:14:e3:96:17:bd:57:
1a:4b:57:c7:71:c6:fc:d6:db:90:f5:98:ce:6a:de:b8:e3:0a:
43:a1:e8:a2:96:ab:33:1d:3e:ef:0f:93:6c:b3:74:8a:f2:ae:
6c:13:b0:30:54:ef:89:33:e5:60:30:0e:2c:6b:7d:94:96:7b:
cd:01:92:fd:e4:04:34:14:f4:b9:56:ac:cd:67:e3:ab:b4:d7:
4a:d6:5c:98:ea:38:9b:f6:b5:d0:95:ea:60:da:27:2d:99:40:
b3:16:2f:1c:6d:4b:b2:bf:88:cb:99:f7:ce:ad:98:c1:9f:d5:
5a:c1:e7:95:73:e8:58:e8:a2:bb:c6:75:12:35:84:10:e8:75:
62:f5:80:07:5a:a9:b1:54:de:ef:82:97:9d:5a:a7:7b:11:64:
fb:46:4b:d8:90:04:cd:63:22:6c:9a:e4:2e:95:6e:63:29:87:
3b:0a:e6:53:05:ee:bd:d7:65:60:3a:43:c6:c9:89:ce:9a:df:
c6:eb:7b:fa:54:39:1d:c8:85:a8:f5:4b:08:21:75:e0:04:ea:
b4:7a:47:af
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVLBRNM+JALt7eETW6vKx1qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwNzczZjMyZDNjYjRlMTNlNDNmMTBhM2RjNDIyZjFmMzI3
MWJmYmEwHhcNMjIxMjI1MjA0MTQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTk1MjE1OWE0ZmU1Mzc5YzFmYzVhMWU4MWYwODMxYjQ3MDI5ZWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzd84nQYud4tPEov6MhV3Y96GWDcZ
r4ypvuk10jEY0z43rxDbFSjUKNGnqb0YyxOwFnhtQQbw4KUEmof99DF5sKUpJh/8
eYJDGfbbpeKJBMmmjRd3z3s3++SzOzlKiPdofApi3mldsFffufhjIK7UThvoXWOI
x9a0a+JUexWmbd1b5RxVXR2LyDoAwE9flClZmoKCTCVz8XYmlIlYTE8Rcw75FWNV
fqVaIPLBCpBZgdEvQwwgRKdUIDpg9pNTllONbakv+2w+j2KtLdCPuew47xd8Pkgp
rBCNMZW2y+exGSJAsLErIUTb6xTKmfGe4yS0Qe1fo20gfhoBvtxtree+1QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFG6VIVmk/lN5wfxaHoHwgxtHAp7EMB8GA1UdIwQY
MBaAFBB3PzLTy04T5D8Qo9xCLx8ycb+6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUhjX010UExUaFBrUHhDajNFSXZIekp4djdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8wOWNhZmQtNjhiYy00MWEyLThiYWIt
ODBiODRlNGYyMGM5LzEvYnBVaFdhVC1VM25CX0ZvZWdmQ0RHMGNDbnNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC8wOWNhZmQtNjhiYy00MWEyLThiYWItODBiODRlNGYyMGM5
LzEvRUhjX010UExUaFBrUHhDajNFSXZIekp4djdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgpKQAAQ
MA0GCSqGSIb3DQEBCwUAA4IBAQAkO0QT8GWb2LoVh6SRdRdWf0epNO3oGwNnc4wK
g5wsASyqiO7TP7gDSDhqYv/xz/UU45YXvVcaS1fHccb81tuQ9ZjOat644wpDoeii
lqszHT7vD5Nss3SK8q5sE7AwVO+JM+VgMA4sa32UlnvNAZL95AQ0FPS5VqzNZ+Or
tNdK1lyY6jib9rXQlepg2ictmUCzFi8cbUuyv4jLmffOrZjBn9VaweeVc+hY6KK7
xnUSNYQQ6HVi9YAHWqmxVN7vgpedWqd7EWT7RkvYkATNYyJsmuQulW5jKYc7CuZT
Be6912VgOkPGyYnOmt/G63v6VDkdyIWo9UsIIXXgBOq0ekev
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:23 2023 by rpki-client on console-ams.rpki-client.org