Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/uCiEJV_iiAmuYBQNzkgF9kbVUFk.roa
File: uCiEJV_iiAmuYBQNzkgF9kbVUFk.roa (raw, json)
Hash identifier: F4/uwdiT86/CERuwif+nyP6mU0cJhhHCv0i7fsG/820=
Subject key identifier: B8:28:84:25:5F:E2:88:09:AE:60:14:0D:CE:48:05:F6:46:D5:50:59
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 08087D21
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/uCiEJV_iiAmuYBQNzkgF9kbVUFk.roa
Signing time: Sat 01 Jan 2022 06:55:49 +0000
ROA not before: Sat 01 Jan 2022 06:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205923
IP address blocks: 2a0f:5707:fff6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134774049 (0x8087d21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b82884255fe28809ae60140dce4805f646d55059
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0d:e8:d8:d5:3c:a8:d8:0d:70:ac:a3:09:25:
59:70:4a:75:85:f7:3e:62:8e:8b:b5:f1:d8:38:9b:
3f:a3:ff:42:85:2c:4f:5d:01:b2:03:ae:48:9f:26:
18:0d:6a:e9:95:f5:a3:27:63:dd:5b:54:b2:19:7a:
bf:6d:7c:94:49:a9:02:9c:1a:76:0d:cf:12:c9:8f:
e6:56:d2:55:bf:13:01:c4:3b:0d:e4:74:bd:21:34:
2b:b9:f0:b7:25:17:da:07:37:43:73:49:da:b0:f1:
ee:0a:c1:7a:d5:55:1a:89:1a:4f:9f:2c:4f:9d:f6:
71:ce:af:1a:ff:17:0f:08:8a:f9:91:78:5a:c8:b3:
c6:41:24:4d:74:c1:4d:51:69:20:5b:89:7d:9a:16:
6a:f4:52:4f:ce:69:68:8c:09:64:5e:e0:38:d4:52:
1d:90:9a:16:8d:58:1a:1f:2c:34:18:14:ee:f2:a8:
6f:b5:58:1f:e6:06:a3:23:29:3f:db:d2:58:df:9e:
42:c6:d2:6a:fd:02:b2:f3:6b:b8:50:8e:99:e4:83:
42:82:6d:b0:57:37:cf:a8:2d:58:d1:03:ef:b2:d3:
89:5e:d3:97:d0:74:8c:74:03:f5:87:52:3c:d7:67:
d8:f3:a1:8d:30:40:28:0b:8e:16:d1:ac:bc:df:6b:
00:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:28:84:25:5F:E2:88:09:AE:60:14:0D:CE:48:05:F6:46:D5:50:59
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/uCiEJV_iiAmuYBQNzkgF9kbVUFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:fff6::/48
Signature Algorithm: sha256WithRSAEncryption
10:cd:ae:13:4e:33:3b:ee:82:f2:01:7f:5f:29:f5:82:79:6a:
d2:6e:87:53:22:e8:69:87:c0:ec:96:0e:dd:15:46:c1:42:ad:
ed:ac:6e:60:ac:05:c5:78:c0:8b:59:d7:62:fa:2d:e2:d8:a5:
d8:7f:45:39:87:81:ee:5f:f9:46:6f:56:e5:79:c0:04:7e:ea:
89:da:de:73:ef:21:ad:0d:2d:b0:6b:c5:ce:f3:50:eb:24:bb:
d4:43:54:c6:a9:92:4b:06:87:e1:2d:83:1a:76:11:ed:2e:f5:
2e:5f:9c:dc:ba:ff:6a:44:74:3a:e4:15:11:cb:8c:92:76:4e:
d6:34:4a:f8:70:45:16:cf:b1:9b:e9:26:2a:b0:4f:db:7d:e9:
81:34:b4:a7:81:7c:da:02:39:d6:ed:c1:fb:a5:8c:53:b9:9e:
94:fb:fd:90:93:24:91:26:da:1a:25:37:4b:ca:87:5f:bf:39:
da:2a:56:68:c7:4b:75:3e:7f:4a:65:5a:54:b1:da:57:ae:f7:
2c:2f:1f:8d:13:1d:75:13:7d:81:6b:a5:18:10:18:30:2e:15:
73:57:7d:e4:b1:38:57:5e:2d:6d:79:53:17:4f:5f:77:8c:4b:
e1:90:a5:b6:3f:58:84:18:04:fa:b1:87:2e:40:c4:24:42:6b:
d1:99:31:d6
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECAh9ITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YTY0NGMxMTU2ODUxODAzZjM3YWRlZWMwODc2Y2NmOTg5ZDVhZWYwMB4XDTIyMDEw
MTA2NTU0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjgyODg0MjU1ZmUy
ODgwOWFlNjAxNDBkY2U0ODA1ZjY0NmQ1NTA1OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALsN6NjVPKjYDXCsowklWXBKdYX3PmKOi7Xx2DibP6P/QoUs
T10BsgOuSJ8mGA1q6ZX1oydj3VtUshl6v218lEmpApwadg3PEsmP5lbSVb8TAcQ7
DeR0vSE0K7nwtyUX2gc3Q3NJ2rDx7grBetVVGokaT58sT532cc6vGv8XDwiK+ZF4
WsizxkEkTXTBTVFpIFuJfZoWavRST85paIwJZF7gONRSHZCaFo1YGh8sNBgU7vKo
b7VYH+YGoyMpP9vSWN+eQsbSav0CsvNruFCOmeSDQoJtsFc3z6gtWNED77LTiV7T
l9B0jHQD9YdSPNdn2POhjTBAKAuOFtGsvN9rALcCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBS4KIQlX+KICa5gFA3OSAX2RtVQWTAfBgNVHSMEGDAWgBRKZEwRVoUYA/N6
3uwIdsz5idWu8DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NtUk1FVmFGR0FQemV0N3NDSGJNLVluVnJ2QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTkvNmIwNzk4LTNkNGYtNDBlNi1iNzM5LWNjMWM5YjVmNjY0MC8x
L3VDaUVKVl9paUFtdVlCUU56a2dGOWtiVlVGay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTkv
NmIwNzk4LTNkNGYtNDBlNi1iNzM5LWNjMWM5YjVmNjY0MC8xL1NtUk1FVmFGR0FQ
emV0N3NDSGJNLVluVnJ2QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoPVwf/9jANBgkqhkiG9w0BAQsF
AAOCAQEAEM2uE04zO+6C8gF/Xyn1gnlq0m6HUyLoaYfA7JYO3RVGwUKt7axuYKwF
xXjAi1nXYvot4til2H9FOYeB7l/5Rm9W5XnABH7qidrec+8hrQ0tsGvFzvNQ6yS7
1ENUxqmSSwaH4S2DGnYR7S71Ll+c3Lr/akR0OuQVEcuMknZO1jRK+HBFFs+xm+km
KrBP233pgTS0p4F82gI51u3B+6WMU7melPv9kJMkkSbaGiU3S8qHX7852ipWaMdL
dT5/SmVaVLHaV673LC8fjRMddRN9gWulGBAYMC4Vc1d95LE4V14tbXlTF09fd4xL
4ZCltj9YhBgE+rGHLkDEJEJr0Zkx1g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org