Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/5tHF4wDHCmuqCAy7-mO08RRyMpM.roa
File: 5tHF4wDHCmuqCAy7-mO08RRyMpM.roa (raw, json)
Hash identifier: KpEnfAMzv/NGGtGULOxgpeVGT/gxq6ebAJ/sN+JEmWU=
Subject key identifier: E6:D1:C5:E3:00:C7:0A:6B:AA:08:0C:BB:FA:63:B4:F1:14:72:32:93
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 081E0BB1
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/5tHF4wDHCmuqCAy7-mO08RRyMpM.roa
Signing time: Sat 01 Jan 2022 06:55:59 +0000
ROA not before: Sat 01 Jan 2022 06:55:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212592
IP address blocks: 2a0f:5707:aa90::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136186801 (0x81e0bb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6d1c5e300c70a6baa080cbbfa63b4f114723293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f5:28:70:35:86:a8:6b:2d:46:ae:95:fd:06:
0d:03:bf:30:36:a9:62:aa:41:aa:d9:c5:84:c5:c5:
19:30:65:ab:29:5d:ba:2c:c8:c5:a9:57:4b:00:f4:
3c:6c:a6:b5:71:71:f4:d6:1c:a7:a9:2b:78:ef:ac:
99:ae:dd:57:b5:6e:a4:0e:42:ff:ab:7f:17:bb:a8:
a3:fd:f1:7d:71:28:77:48:85:2f:73:51:0a:10:0a:
13:81:84:1e:d6:bc:b0:ad:97:47:dd:8d:17:33:77:
c4:f2:18:4a:8d:08:8f:51:4a:62:e0:86:13:37:18:
7b:fd:c9:d0:9f:17:aa:55:07:9d:18:d2:eb:f0:7c:
1a:58:6d:91:3d:43:c7:05:60:32:37:36:92:b0:52:
0f:27:6d:1f:b4:d7:e8:19:f0:9e:bb:58:43:d5:7f:
e8:ec:9c:72:77:8a:98:fb:93:2a:59:09:99:8c:2c:
fe:30:dd:cb:3a:c6:a5:7e:4b:cc:85:bf:9f:55:4b:
20:1d:ce:65:14:4a:a4:a4:9f:28:00:a4:78:c6:7b:
a9:19:36:14:db:30:14:cb:ed:fb:74:28:e0:0a:77:
1c:92:c0:f9:b8:fa:4f:4a:83:ce:41:6e:43:10:c0:
02:e6:88:14:81:d8:38:88:11:e4:a9:2e:f8:bf:7f:
e5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D1:C5:E3:00:C7:0A:6B:AA:08:0C:BB:FA:63:B4:F1:14:72:32:93
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/5tHF4wDHCmuqCAy7-mO08RRyMpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:aa90::/44
Signature Algorithm: sha256WithRSAEncryption
21:df:87:39:2e:a6:b8:7c:d0:ea:a3:e5:60:0c:ce:36:42:fb:
fa:92:3b:1e:13:9b:06:ad:fc:cb:79:1b:45:0b:af:4e:1b:e1:
14:c0:85:a1:0b:f4:bd:b7:e7:9f:ee:00:20:8e:fc:ea:28:d5:
e5:09:7b:cc:1d:f0:08:10:9f:0b:a9:25:f3:f3:c9:fc:53:98:
d9:1c:cb:01:f9:03:b8:da:23:fe:92:c3:82:43:ca:90:84:0f:
99:90:e9:e9:d9:41:96:11:2e:ca:4c:58:ab:f9:1e:56:92:e1:
ed:89:11:45:c7:6b:33:e6:41:97:03:c7:a5:94:13:4c:f7:ac:
33:73:e3:b9:7b:d5:fb:86:5c:34:ed:9a:01:8b:60:51:c8:68:
ee:a0:1c:eb:0d:78:d9:1f:2d:e3:34:8c:a1:23:6f:e9:2b:bd:
e4:66:24:03:36:1d:dd:6a:82:bc:8b:b2:99:7e:9e:c2:93:16:
4f:a1:e1:af:2c:53:f6:a6:8a:77:3e:3f:64:6b:45:05:90:7e:
5c:a2:51:6a:b0:11:94:58:53:79:66:0e:91:d0:36:c6:19:02:
60:82:f0:a7:9d:3f:c8:f7:05:9f:8c:ba:d7:41:56:62:85:02:
d6:85:85:47:7b:67:56:ff:ff:30:92:08:24:44:0a:92:63:95:
15:a4:8f:e7
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECB4LsTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YTY0NGMxMTU2ODUxODAzZjM3YWRlZWMwODc2Y2NmOTg5ZDVhZWYwMB4XDTIyMDEw
MTA2NTU1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTZkMWM1ZTMwMGM3
MGE2YmFhMDgwY2JiZmE2M2I0ZjExNDcyMzI5MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALj1KHA1hqhrLUaulf0GDQO/MDapYqpBqtnFhMXFGTBlqyld
uizIxalXSwD0PGymtXFx9NYcp6kreO+sma7dV7VupA5C/6t/F7uoo/3xfXEod0iF
L3NRChAKE4GEHta8sK2XR92NFzN3xPIYSo0Ij1FKYuCGEzcYe/3J0J8XqlUHnRjS
6/B8GlhtkT1DxwVgMjc2krBSDydtH7TX6BnwnrtYQ9V/6OyccneKmPuTKlkJmYws
/jDdyzrGpX5LzIW/n1VLIB3OZRRKpKSfKACkeMZ7qRk2FNswFMvt+3Qo4Ap3HJLA
+bj6T0qDzkFuQxDAAuaIFIHYOIgR5Kku+L9/5e0CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTm0cXjAMcKa6oIDLv6Y7TxFHIykzAfBgNVHSMEGDAWgBRKZEwRVoUYA/N6
3uwIdsz5idWu8DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NtUk1FVmFGR0FQemV0N3NDSGJNLVluVnJ2QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTkvNmIwNzk4LTNkNGYtNDBlNi1iNzM5LWNjMWM5YjVmNjY0MC8x
LzV0SEY0d0RIQ211cUNBeTctbU8wOFJSeU1wTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTkv
NmIwNzk4LTNkNGYtNDBlNi1iNzM5LWNjMWM5YjVmNjY0MC8xL1NtUk1FVmFGR0FQ
emV0N3NDSGJNLVluVnJ2QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoPVweqkDANBgkqhkiG9w0BAQsF
AAOCAQEAId+HOS6muHzQ6qPlYAzONkL7+pI7HhObBq38y3kbRQuvThvhFMCFoQv0
vbfnn+4AII786ijV5Ql7zB3wCBCfC6kl8/PJ/FOY2RzLAfkDuNoj/pLDgkPKkIQP
mZDp6dlBlhEuykxYq/keVpLh7YkRRcdrM+ZBlwPHpZQTTPesM3PjuXvV+4ZcNO2a
AYtgUcho7qAc6w142R8t4zSMoSNv6Su95GYkAzYd3WqCvIuymX6ewpMWT6HhryxT
9qaKdz4/ZGtFBZB+XKJRarARlFhTeWYOkdA2xhkCYILwp50/yPcFn4y610FWYoUC
1oWFR3tnVv//MJIIJEQKkmOVFaSP5w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org