Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/5D75vh0ThgKCy2-yDwwF2ucSY3k.roa
File: 5D75vh0ThgKCy2-yDwwF2ucSY3k.roa (raw, json)
Hash identifier: UubgBBD3OdcH1Z19O1ujeqr+tlSOXbZG9///4lUK7t8=
Subject key identifier: E4:3E:F9:BE:1D:13:86:02:82:CB:6F:B2:0F:0C:05:DA:E7:12:63:79
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 117492A7
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/5D75vh0ThgKCy2-yDwwF2ucSY3k.roa
Signing time: Tue 31 May 2022 11:05:16 +0000
ROA not before: Tue 31 May 2022 11:05:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 2a06:e881:73ff::/48 maxlen: 48
2a06:e881:9200::/45 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 292852391 (0x117492a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: May 31 11:05:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e43ef9be1d13860282cb6fb20f0c05dae7126379
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:18:e5:fe:78:3d:12:03:5d:04:26:ae:d3:b9:
89:33:62:81:fc:21:84:1c:fa:db:34:39:4e:ff:e1:
bf:1e:49:b6:70:bf:e3:30:92:3d:52:14:0b:0c:00:
8d:04:64:a2:af:7e:58:f6:33:d6:18:e9:17:ff:c3:
43:00:b7:eb:c4:e6:25:59:e4:59:34:ea:82:5d:aa:
f3:c5:d7:de:39:e4:83:e0:c5:cd:de:ec:2e:cc:8b:
9a:f2:43:a3:75:4d:a3:cb:bc:1d:9a:75:00:aa:52:
f8:85:73:a4:bf:47:65:30:77:8e:60:cb:1b:99:96:
3c:07:98:31:09:61:f6:86:81:e2:fc:b0:9d:42:ff:
0f:4d:5c:b0:ca:a0:44:02:a1:f6:10:8b:fb:1c:b9:
e9:94:b0:21:22:d1:51:e4:e9:60:4a:07:1a:f3:1d:
9c:02:31:6b:d6:66:a5:8b:ba:b1:d2:2c:50:27:b9:
e3:b5:7e:95:5e:eb:8e:b0:83:12:aa:1c:20:06:f3:
8a:9f:99:0e:a8:13:4e:6a:bb:5c:3d:17:ee:4b:1c:
99:e2:22:c4:f1:62:44:35:28:62:9d:26:b8:c1:47:
fd:9a:d0:32:15:4c:0b:0b:e7:40:a7:dc:58:07:7d:
63:18:a0:a9:91:f4:f3:10:5d:38:43:66:73:d7:f2:
8f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:3E:F9:BE:1D:13:86:02:82:CB:6F:B2:0F:0C:05:DA:E7:12:63:79
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/5D75vh0ThgKCy2-yDwwF2ucSY3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:73ff::/48
2a06:e881:9200::/45
Signature Algorithm: sha256WithRSAEncryption
a0:cc:3e:62:29:67:2c:5d:e2:fd:77:7c:b4:f4:0b:82:ca:43:
9f:6c:06:04:86:dd:0c:2b:b3:3d:4d:ad:0f:ed:ac:44:e4:56:
69:22:6e:35:bf:e5:08:92:47:4f:24:d8:75:ee:37:a6:2b:88:
76:0b:b1:cf:03:f7:9b:6e:45:19:47:be:78:73:d7:20:5a:18:
81:9f:a0:f2:aa:43:bf:26:68:87:e8:52:e4:16:62:8e:83:4f:
75:1c:43:e2:a9:5c:82:f3:fa:2a:5b:c3:d7:bf:2c:fd:c2:c3:
59:9c:93:39:a4:53:63:ad:6a:55:36:03:3a:2d:83:77:d8:53:
da:7c:50:f1:05:25:c6:ac:02:ff:23:55:50:15:9a:7d:ad:5d:
04:05:54:89:cf:8c:0a:9e:b7:a2:c4:cb:1c:02:08:55:04:40:
44:11:05:82:63:a0:68:4e:0d:fc:2a:cd:2e:fa:b8:9d:e0:48:
71:bd:8c:3e:32:37:fd:67:72:ba:88:16:03:a1:1b:25:20:b1:
f7:3d:f2:de:f8:03:14:4e:08:6a:61:37:a1:d5:f2:13:3b:24:
61:6f:92:48:4a:c3:a5:02:c6:e4:c9:67:d4:d5:1a:ee:d4:a8:
07:d6:32:23:3c:b6:e6:b5:58:34:6f:d4:09:91:4d:61:e7:c2:
f1:9b:e1:e3
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEEXSSpzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ODA3NGI0MTllYWQ0Y2VmZWEyZjJhZDJjMjU5ZDk3OGM1ZWQ3OTU0MB4XDTIyMDUz
MTExMDUxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTQzZWY5YmUxZDEz
ODYwMjgyY2I2ZmIyMGYwYzA1ZGFlNzEyNjM3OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJEY5f54PRIDXQQmrtO5iTNigfwhhBz62zQ5Tv/hvx5JtnC/
4zCSPVIUCwwAjQRkoq9+WPYz1hjpF//DQwC368TmJVnkWTTqgl2q88XX3jnkg+DF
zd7sLsyLmvJDo3VNo8u8HZp1AKpS+IVzpL9HZTB3jmDLG5mWPAeYMQlh9oaB4vyw
nUL/D01csMqgRAKh9hCL+xy56ZSwISLRUeTpYEoHGvMdnAIxa9ZmpYu6sdIsUCe5
47V+lV7rjrCDEqocIAbzip+ZDqgTTmq7XD0X7kscmeIixPFiRDUoYp0muMFH/ZrQ
MhVMCwvnQKfcWAd9YxigqZH08xBdOENmc9fyj/kCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBTkPvm+HROGAoLLb7IPDAXa5xJjeTAfBgNVHSMEGDAWgBS4B0tBnq1M7+ov
KtLCWdl4xe15VDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VBZExRWjZ0VE9fcUx5clN3bG5aZU1YdGVWUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWIvMWU0M2U0LWQwNmUtNGE1NS1iZGI2LTNkOTFlZGU1YjJiMS8x
LzVENzV2aDBUaGdLQ3kyLXlEd3dGMnVjU1kzay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIv
MWU0M2U0LWQwNmUtNGE1NS1iZGI2LTNkOTFlZGU1YjJiMS8xL3VBZExRWjZ0VE9f
cUx5clN3bG5aZU1YdGVWUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAIwEgMHACoG6IFz/wMHAyoG6IGSADANBgkq
hkiG9w0BAQsFAAOCAQEAoMw+YilnLF3i/Xd8tPQLgspDn2wGBIbdDCuzPU2tD+2s
RORWaSJuNb/lCJJHTyTYde43piuIdguxzwP3m25FGUe+eHPXIFoYgZ+g8qpDvyZo
h+hS5BZijoNPdRxD4qlcgvP6KlvD178s/cLDWZyTOaRTY61qVTYDOi2Dd9hT2nxQ
8QUlxqwC/yNVUBWafa1dBAVUic+MCp63osTLHAIIVQRARBEFgmOgaE4N/CrNLvq4
neBIcb2MPjI3/WdyuogWA6EbJSCx9z3y3vgDFE4IamE3odXyEzskYW+SSErDpQLG
5Mln1NUa7tSoB9YyIzy25rVYNG/UCZFNYefC8Zvh4w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:40 2024 by rpki-client on console-ams.rpki-client.org