Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/t-ZIqEUO2Nbn_kRz39F92k4Z3LM.roa
File: t-ZIqEUO2Nbn_kRz39F92k4Z3LM.roa (raw, json)
Hash identifier: rHMNLx1K3XsbWsAkO21tFO7Qmaa0MGu0Lv3zEeWvvM4=
Subject key identifier: B7:E6:48:A8:45:0E:D8:D6:E7:FE:44:73:DF:D1:7D:DA:4E:19:DC:B3
Certificate issuer: /CN=a15237c39a325aa309b69e66fe09237da1ad0d2b
Certificate serial: 018564A967597D8AB52CC14BA737AC1088FC
Authority key identifier: A1:52:37:C3:9A:32:5A:A3:09:B6:9E:66:FE:09:23:7D:A1:AD:0D:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/t-ZIqEUO2Nbn_kRz39F92k4Z3LM.roa
Signing time: Fri 30 Dec 2022 20:11:41 +0000
ROA not before: Fri 30 Dec 2022 20:11:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60271
IP address blocks: 2a13:75c1:1000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:64:a9:67:59:7d:8a:b5:2c:c1:4b:a7:37:ac:10:88:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15237c39a325aa309b69e66fe09237da1ad0d2b
Validity
Not Before: Dec 30 20:11:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7e648a8450ed8d6e7fe4473dfd17dda4e19dcb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:17:5c:c2:4b:46:4a:b6:60:96:93:c2:aa:4a:
dc:85:ac:d1:77:25:ac:77:15:35:71:87:f2:db:d7:
c3:81:e3:d1:1b:66:73:4c:ad:5c:d1:e0:a0:4c:28:
95:3a:f6:a6:40:d9:44:51:cd:8c:ad:86:4b:30:50:
f5:f1:cc:fa:31:de:b3:b6:19:54:0c:1d:ab:62:8f:
8a:62:2d:b0:98:9c:c8:44:60:38:0b:5c:99:6c:7e:
7c:9b:11:0f:57:06:27:a8:53:44:ac:82:fa:55:72:
65:94:4d:7c:e2:72:70:b1:27:3f:8b:95:be:51:59:
7d:8e:10:42:43:1f:e1:52:e0:a3:7e:6e:94:5f:90:
41:14:3a:b2:de:79:4d:b8:4e:9c:52:c0:8e:d4:50:
bf:5e:41:76:ac:94:3a:97:25:b4:8c:cb:19:32:1b:
cb:51:af:de:ec:00:fa:9d:55:45:67:c8:0a:27:ae:
ad:6f:5c:88:80:42:0d:bc:07:f9:3d:95:be:c1:19:
ee:39:e5:5f:7b:c7:66:d5:87:80:25:b0:44:74:c7:
53:51:4d:21:99:ec:ab:fb:78:c5:f6:29:77:44:19:
a2:9b:e3:8c:06:1f:9f:c6:c2:75:2b:b3:3a:73:f6:
e3:0e:5d:a6:05:03:44:e9:d1:92:80:b0:f0:e8:6e:
c7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:E6:48:A8:45:0E:D8:D6:E7:FE:44:73:DF:D1:7D:DA:4E:19:DC:B3
X509v3 Authority Key Identifier:
keyid:A1:52:37:C3:9A:32:5A:A3:09:B6:9E:66:FE:09:23:7D:A1:AD:0D:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/t-ZIqEUO2Nbn_kRz39F92k4Z3LM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/oVI3w5oyWqMJtp5m_gkjfaGtDSs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:75c1:1000::/36
Signature Algorithm: sha256WithRSAEncryption
5c:e5:13:e2:50:a0:1f:42:a5:34:21:57:99:95:f3:d3:7b:e7:
72:91:b0:21:a5:80:56:59:7b:b5:25:7f:20:74:6a:f7:fa:46:
bd:4e:57:ab:1f:b6:e4:43:1e:68:3e:d6:2a:3e:75:55:c7:2f:
cb:0e:ac:81:df:39:56:17:13:5d:3f:2b:63:ec:51:d7:8e:78:
7c:29:bf:4d:31:56:dd:9e:4c:d5:cb:e1:11:1b:2f:26:ef:c6:
ff:20:93:5a:d1:ad:7c:72:64:85:13:10:e2:c2:3a:45:57:f2:
5f:19:8c:48:9c:be:00:fc:00:2f:d9:81:f9:22:80:66:f2:88:
e1:27:6c:3f:5b:72:c1:33:9a:91:42:2f:17:5a:94:ee:a1:37:
be:8b:fa:57:fd:68:7f:c2:ac:7b:c0:30:52:1a:f4:af:0e:35:
35:8d:ba:2e:28:e9:96:56:14:ad:bc:27:55:89:b8:6c:d7:1b:
bb:0d:21:5d:ad:84:9b:ab:8a:38:f7:d5:3d:01:6a:53:1a:19:
12:06:3b:2a:3f:a8:e5:f2:6d:82:f8:69:e1:03:4e:2b:3f:6e:
bd:1d:8d:d1:93:d4:e0:7a:82:c6:2d:c5:c1:9e:e9:8f:ff:b6:
f1:dd:6f:56:db:33:ed:09:dc:57:bf:1b:5c:42:59:e8:29:f7:
bd:e0:34:19
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVkqWdZfYq1LMFLpzesEIj8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNTIzN2MzOWEzMjVhYTMwOWI2OWU2NmZlMDkyMzdkYTFh
ZDBkMmIwHhcNMjIxMjMwMjAxMTQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiN2U2NDhhODQ1MGVkOGQ2ZTdmZTQ0NzNkZmQxN2RkYTRlMTlkY2IzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjhdcwktGSrZglpPCqkrchazRdyWs
dxU1cYfy29fDgePRG2ZzTK1c0eCgTCiVOvamQNlEUc2MrYZLMFD18cz6Md6zthlU
DB2rYo+KYi2wmJzIRGA4C1yZbH58mxEPVwYnqFNErIL6VXJllE184nJwsSc/i5W+
UVl9jhBCQx/hUuCjfm6UX5BBFDqy3nlNuE6cUsCO1FC/XkF2rJQ6lyW0jMsZMhvL
Ua/e7AD6nVVFZ8gKJ66tb1yIgEINvAf5PZW+wRnuOeVfe8dm1YeAJbBEdMdTUU0h
meyr+3jF9il3RBmim+OMBh+fxsJ1K7M6c/bjDl2mBQNE6dGSgLDw6G7HlwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFLfmSKhFDtjW5/5Ec9/RfdpOGdyzMB8GA1UdIwQY
MBaAFKFSN8OaMlqjCbaeZv4JI32hrQ0rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1ZJM3c1b3lXcU1KdHA1bV9na2pmYUd0RFNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9mMzMyMjktY2EyZC00MTA4LTg5MmQt
NGM5MTBhZTM3MzVkLzEvdC1aSXFFVU8yTmJuX2tSejM5RjkyazRaM0xNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9mMzMyMjktY2EyZC00MTA4LTg5MmQtNGM5MTBhZTM3MzVk
LzEvb1ZJM3c1b3lXcU1KdHA1bV9na2pmYUd0RFNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKhN1wRAw
DQYJKoZIhvcNAQELBQADggEBAFzlE+JQoB9CpTQhV5mV89N753KRsCGlgFZZe7Ul
fyB0avf6Rr1OV6sftuRDHmg+1io+dVXHL8sOrIHfOVYXE10/K2PsUdeOeHwpv00x
Vt2eTNXL4REbLybvxv8gk1rRrXxyZIUTEOLCOkVX8l8ZjEicvgD8AC/ZgfkigGby
iOEnbD9bcsEzmpFCLxdalO6hN76L+lf9aH/CrHvAMFIa9K8ONTWNui4o6ZZWFK28
J1WJuGzXG7sNIV2thJurijj31T0BalMaGRIGOyo/qOXybYL4aeEDTis/br0djdGT
1OB6gsYtxcGe6Y//tvHdb1bbM+0J3Fe/G1xCWegp973gNBk=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:57 2025 by rpki-client