Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/DmamquFt5YTxAs7mKLxqOE4nE30.roa
File: DmamquFt5YTxAs7mKLxqOE4nE30.roa (raw, json)
Hash identifier: F4TQ5UZLR94fk6z5D8KoDsw5fQ4dWSfidkVK5OEBfFw=
Subject key identifier: 0E:66:A6:AA:E1:6D:E5:84:F1:02:CE:E6:28:BC:6A:38:4E:27:13:7D
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 02F8A231
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/DmamquFt5YTxAs7mKLxqOE4nE30.roa
Signing time: Sat 01 Jan 2022 16:03:37 +0000
ROA not before: Sat 01 Jan 2022 16:03:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142597
IP address blocks: 2a0e:46c4:2c30::/44 maxlen: 48
2a0e:46c4:2e00::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49848881 (0x2f8a231)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 1 16:03:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e66a6aae16de584f102cee628bc6a384e27137d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a4:f0:76:50:6a:6a:63:da:cc:ad:5a:65:7f:
9c:88:4f:1a:3d:41:55:9e:b8:d5:a7:8d:0e:99:78:
a0:f5:02:62:bb:96:3f:a5:1b:70:5e:5d:e4:3b:0b:
82:12:a2:43:6c:f0:14:ba:95:cf:27:fe:c3:f3:25:
ba:88:1a:cf:06:7f:71:38:8d:5f:74:bb:ef:a1:5e:
5d:c4:10:71:11:ac:bf:d1:23:42:6b:b2:bf:6d:f8:
57:f1:59:0c:07:e2:3e:12:90:22:19:9e:46:fe:26:
a2:70:5e:88:7d:77:64:85:50:a3:ca:63:00:40:76:
de:1d:ca:c2:a9:bf:31:a1:06:1d:86:38:ab:8e:4f:
45:ac:25:5b:c2:34:cb:d7:0b:1a:a9:0f:8c:23:f6:
ff:ef:52:dd:e0:07:73:8f:67:bf:e0:03:f2:62:ac:
cd:f4:c6:9a:37:5a:59:cc:78:89:83:af:d9:65:47:
af:bd:1e:94:be:78:f5:19:72:79:ca:5f:33:b3:ba:
de:58:d6:f7:7c:14:2c:a6:3b:65:b0:20:68:76:08:
37:f4:45:7e:b2:12:8e:3e:c3:6b:43:4c:16:14:bd:
45:34:8a:bc:4d:90:cc:e3:0e:e4:1b:75:b0:b4:d6:
35:58:0b:b3:cd:03:48:94:1f:02:bb:ce:65:69:6c:
86:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:66:A6:AA:E1:6D:E5:84:F1:02:CE:E6:28:BC:6A:38:4E:27:13:7D
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/DmamquFt5YTxAs7mKLxqOE4nE30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c4:2c30::/44
2a0e:46c4:2e00::/40
Signature Algorithm: sha256WithRSAEncryption
07:95:e8:2f:95:f9:f8:23:48:02:53:73:da:c4:09:8a:1f:25:
49:21:66:89:d2:39:c7:a3:67:4c:f5:cc:3a:4f:1f:f4:51:c2:
70:7d:ec:38:28:6b:aa:9b:c3:d8:ad:8d:86:53:1f:9b:bc:1a:
8b:5d:21:ad:b4:b5:bc:e3:71:07:10:14:e7:c9:d4:00:af:89:
2a:67:d5:15:e7:61:a3:a8:19:5e:e0:34:94:4a:56:69:14:d6:
f0:23:a1:55:1a:5d:69:ca:75:af:68:ef:f6:ea:3e:90:d0:df:
d4:09:fb:03:ee:c9:de:ae:81:b6:88:93:c6:02:3d:a6:9c:ca:
33:ff:df:e9:67:06:f1:66:2a:d8:ad:54:3a:b3:0d:fc:a7:18:
29:cd:a3:36:ad:13:9e:b5:a1:b6:03:61:b1:4d:9a:8c:56:69:
73:42:31:b9:d8:81:48:d5:35:b4:8c:52:66:54:9d:7d:39:1d:
9f:8f:fa:12:ea:04:79:f9:8d:cd:3a:88:29:d0:99:87:96:41:
b9:9c:52:e6:c6:46:43:7e:2c:8b:10:ec:1c:f1:87:ca:52:75:
df:58:66:b9:6f:17:1d:a3:9b:31:44:40:4b:ea:43:a5:71:06:
b6:f1:ce:81:04:71:4e:37:bf:91:99:ca:65:d6:65:dc:6f:c2:
ff:32:b7:bf
-----BEGIN CERTIFICATE-----
MIIE+jCCA+KgAwIBAgIEAviiMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NzBlNTQ1MGQxNDg2NzgwYWJhNTRmMDQ1ZWM0ODAyZjE5ZjBiNGY3MB4XDTIyMDEw
MTE2MDMzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGU2NmE2YWFlMTZk
ZTU4NGYxMDJjZWU2MjhiYzZhMzg0ZTI3MTM3ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMak8HZQampj2sytWmV/nIhPGj1BVZ641aeNDpl4oPUCYruW
P6UbcF5d5DsLghKiQ2zwFLqVzyf+w/MluogazwZ/cTiNX3S776FeXcQQcRGsv9Ej
Qmuyv234V/FZDAfiPhKQIhmeRv4monBeiH13ZIVQo8pjAEB23h3Kwqm/MaEGHYY4
q45PRawlW8I0y9cLGqkPjCP2/+9S3eAHc49nv+AD8mKszfTGmjdaWcx4iYOv2WVH
r70elL549RlyecpfM7O63ljW93wULKY7ZbAgaHYIN/RFfrISjj7Da0NMFhS9RTSK
vE2QzOMO5Bt1sLTWNVgLs80DSJQfArvOZWlshh0CAwEAAaOCAhQwggIQMB0GA1Ud
DgQWBBQOZqaq4W3lhPECzuYovGo4TicTfTAfBgNVHSMEGDAWgBQ3DlRQ0UhngKul
TwRexIAvGfC09zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L053NVVVTkZJWjRDcnBVOEVYc1NBTHhud3RQYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWYvZjBmNzBjLTA2ZTctNDFhYy1hMmI4LTg1OGRjZTU3ZmNkYi8x
L0RtYW1xdUZ0NVlUeEFzN21LTHhxT0U0bkUzMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWYv
ZjBmNzBjLTA2ZTctNDFhYy1hMmI4LTg1OGRjZTU3ZmNkYi8xL053NVVVTkZJWjRD
cnBVOEVYc1NBTHhud3RQYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAq
BggrBgEFBQcBBwEB/wQbMBkwFwQCAAIwEQMHBCoORsQsMAMGACoORsQuMA0GCSqG
SIb3DQEBCwUAA4IBAQAHlegvlfn4I0gCU3PaxAmKHyVJIWaJ0jnHo2dM9cw6Tx/0
UcJwfew4KGuqm8PYrY2GUx+bvBqLXSGttLW843EHEBTnydQAr4kqZ9UV52GjqBle
4DSUSlZpFNbwI6FVGl1pynWvaO/26j6Q0N/UCfsD7sneroG2iJPGAj2mnMoz/9/p
ZwbxZirYrVQ6sw38pxgpzaM2rROetaG2A2GxTZqMVmlzQjG52IFI1TW0jFJmVJ19
OR2fj/oS6gR5+Y3NOogp0JmHlkG5nFLmxkZDfiyLEOwc8YfKUnXfWGa5bxcdo5sx
REBL6kOlcQa28c6BBHFON7+Rmcpl1mXcb8L/Mre/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:15 2024 by rpki-client on console-fra.rpki-client.org