Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/vx5WsViso4GWwaYXkwee7grhJoo.roa
File: vx5WsViso4GWwaYXkwee7grhJoo.roa (raw, json)
Hash identifier: 0isxB447U46Ask92sQ6wOWVUTNOZhKcjCHOn5/3TWzo=
Subject key identifier: BF:1E:56:B1:58:AC:A3:81:96:C1:A6:17:93:07:9E:EE:0A:E1:26:8A
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 081000AE
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/vx5WsViso4GWwaYXkwee7grhJoo.roa
Signing time: Sat 01 Jan 2022 06:55:53 +0000
ROA not before: Sat 01 Jan 2022 06:55:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208148
IP address blocks: 2a0f:5707:ab00::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135266478 (0x81000ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf1e56b158aca38196c1a61793079eee0ae1268a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:b9:5c:08:4d:04:f4:d6:b5:c2:ad:69:39:36:
77:b6:13:0a:60:79:a6:9e:7a:9d:0c:8b:12:b2:bc:
26:c2:fa:cb:32:76:71:68:ba:ed:0a:d0:6f:8e:59:
53:1f:bd:2b:d9:c5:4b:c6:c2:dc:65:a6:80:4c:18:
41:aa:9b:bc:17:f6:5f:79:88:7d:17:12:b6:d4:1b:
23:1c:77:b1:02:20:b4:2d:85:01:4c:1e:49:54:db:
88:67:54:58:84:8b:d9:27:8a:76:06:09:be:38:c6:
2e:7c:e1:b5:b2:19:0a:b3:e2:a3:a7:55:f9:90:b5:
9d:93:ae:fb:e7:8b:aa:fe:e2:a6:3b:03:1b:1c:d5:
da:7d:ed:4a:0f:dd:ff:97:80:eb:20:a3:a9:b2:b7:
de:99:6a:ce:1c:a2:fa:f5:26:54:78:3e:db:26:42:
64:52:bf:d1:d1:9e:b8:db:85:6b:24:2d:be:45:7f:
b4:75:25:a8:74:4d:68:ad:06:b8:c5:21:ae:f8:f5:
ed:1d:c8:c3:77:b7:47:71:f6:f3:2e:c1:cf:6b:1c:
e9:7a:f5:96:52:ab:b9:42:d7:1e:6b:94:10:16:cf:
19:7e:b9:2b:93:e5:36:01:62:5d:be:55:70:e8:1c:
e6:67:4d:d3:46:6a:1f:36:5f:43:90:37:a8:3a:ca:
53:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:1E:56:B1:58:AC:A3:81:96:C1:A6:17:93:07:9E:EE:0A:E1:26:8A
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/vx5WsViso4GWwaYXkwee7grhJoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:ab00::/44
Signature Algorithm: sha256WithRSAEncryption
bc:19:9f:6e:7b:47:21:45:ee:1f:ec:d7:b2:35:9d:ff:94:40:
73:65:b5:c8:1b:89:a0:89:86:23:5b:2f:42:f3:85:0a:1f:b3:
d2:fe:d1:8e:ce:06:be:56:fd:4c:8e:c6:b3:f1:91:15:93:fa:
69:85:92:06:23:0d:a9:a6:de:94:93:20:20:9a:a1:b1:b4:53:
71:c4:22:a2:61:43:06:dc:90:ad:f8:55:8c:50:07:34:ad:49:
d5:6b:e1:e8:f9:d7:50:3a:80:2f:3d:e7:57:53:22:0f:69:fb:
63:99:cd:b4:12:cd:c5:8a:08:20:fe:70:f4:12:27:67:a5:48:
a1:d3:a2:b8:ff:46:b5:0f:18:c2:9e:f8:8f:91:53:1e:68:0f:
58:20:a1:ee:48:a9:58:2e:39:e3:d8:1f:16:27:06:0d:76:1c:
d8:53:01:82:40:71:5f:cc:ae:aa:df:d2:04:37:70:e7:e8:ed:
b6:f6:87:8c:14:d6:30:a2:a7:93:43:e6:fd:7b:7e:e8:1f:8e:
c1:7e:df:7f:f6:cb:5c:fd:8a:81:99:9a:2c:88:f2:88:00:af:
60:3a:4a:35:64:b5:e0:c5:29:4c:88:5f:4a:b0:ff:4b:ba:e0:
27:e5:77:e3:17:52:a1:fc:59:27:94:e1:f7:3c:c3:68:1f:9f:
5c:aa:ac:06
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECBAArjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YTY0NGMxMTU2ODUxODAzZjM3YWRlZWMwODc2Y2NmOTg5ZDVhZWYwMB4XDTIyMDEw
MTA2NTU1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmYxZTU2YjE1OGFj
YTM4MTk2YzFhNjE3OTMwNzllZWUwYWUxMjY4YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANu5XAhNBPTWtcKtaTk2d7YTCmB5pp56nQyLErK8JsL6yzJ2
cWi67QrQb45ZUx+9K9nFS8bC3GWmgEwYQaqbvBf2X3mIfRcSttQbIxx3sQIgtC2F
AUweSVTbiGdUWISL2SeKdgYJvjjGLnzhtbIZCrPio6dV+ZC1nZOu++eLqv7ipjsD
GxzV2n3tSg/d/5eA6yCjqbK33plqzhyi+vUmVHg+2yZCZFK/0dGeuNuFayQtvkV/
tHUlqHRNaK0GuMUhrvj17R3Iw3e3R3H28y7Bz2sc6Xr1llKruULXHmuUEBbPGX65
K5PlNgFiXb5VcOgc5mdN00ZqHzZfQ5A3qDrKUzMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBS/HlaxWKyjgZbBpheTB57uCuEmijAfBgNVHSMEGDAWgBRKZEwRVoUYA/N6
3uwIdsz5idWu8DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NtUk1FVmFGR0FQemV0N3NDSGJNLVluVnJ2QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTkvNmIwNzk4LTNkNGYtNDBlNi1iNzM5LWNjMWM5YjVmNjY0MC8x
L3Z4NVdzVmlzbzRHV3dhWVhrd2VlN2dyaEpvby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTkv
NmIwNzk4LTNkNGYtNDBlNi1iNzM5LWNjMWM5YjVmNjY0MC8xL1NtUk1FVmFGR0FQ
emV0N3NDSGJNLVluVnJ2QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoPVwerADANBgkqhkiG9w0BAQsF
AAOCAQEAvBmfbntHIUXuH+zXsjWd/5RAc2W1yBuJoImGI1svQvOFCh+z0v7Rjs4G
vlb9TI7Gs/GRFZP6aYWSBiMNqabelJMgIJqhsbRTccQiomFDBtyQrfhVjFAHNK1J
1Wvh6PnXUDqALz3nV1MiD2n7Y5nNtBLNxYoIIP5w9BInZ6VIodOiuP9GtQ8Ywp74
j5FTHmgPWCCh7kipWC4549gfFicGDXYc2FMBgkBxX8yuqt/SBDdw5+jttvaHjBTW
MKKnk0Pm/Xt+6B+OwX7ff/bLXP2KgZmaLIjyiACvYDpKNWS14MUpTIhfSrD/S7rg
J+V34xdSofxZJ5Th9zzDaB+fXKqsBg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org