Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/RdJ53FtN_eMp3gwDnAy0rzxoMJk.roa
File: RdJ53FtN_eMp3gwDnAy0rzxoMJk.roa (raw, json)
Hash identifier: zP9KWCTpJ5j5DIUALuSOph52QZnv8Q9IznmTic246OY=
Subject key identifier: 45:D2:79:DC:5B:4D:FD:E3:29:DE:0C:03:9C:0C:B4:AF:3C:68:30:99
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 0183141B01C5EE57A84283CB5FCA97F1C886
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/RdJ53FtN_eMp3gwDnAy0rzxoMJk.roa
Signing time: Tue 06 Sep 2022 18:40:57 +0000
ROA not before: Tue 06 Sep 2022 18:40:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35758
IP address blocks: 2a11:840:30::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:14:1b:01:c5:ee:57:a8:42:83:cb:5f:ca:97:f1:c8:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Sep 6 18:40:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45d279dc5b4dfde329de0c039c0cb4af3c683099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:45:2e:38:25:66:20:09:07:15:09:e2:3d:12:
fc:d3:6d:2f:c3:de:c0:a6:02:bf:8e:5d:2e:49:93:
00:9a:23:e7:1e:5a:13:4c:f5:c1:08:2e:ec:38:1e:
45:e7:3a:3d:93:20:61:ca:ee:92:8d:42:19:5d:1f:
01:e9:9a:70:3f:73:46:95:70:0f:48:61:90:e3:dd:
4c:48:97:9d:66:47:94:91:53:e7:32:87:59:45:32:
20:e5:a3:9a:4c:6b:36:91:e1:fa:ff:fd:a8:b9:91:
ce:6d:4f:50:58:0f:8a:63:2c:7a:b6:d2:19:a4:98:
8a:9a:1c:56:24:96:e5:68:51:95:c9:a4:5e:2c:e8:
a1:c6:5e:01:6c:21:90:af:d7:50:e2:48:b7:bb:67:
a9:a0:21:4a:c3:5d:9d:8c:86:4a:06:25:39:fe:e0:
44:ad:c1:96:49:f5:b7:fd:9f:0d:ef:69:0e:b6:0a:
5a:e1:34:27:7c:50:d0:43:57:6f:15:a6:f1:2d:fb:
d2:08:18:dd:f6:8f:c4:2e:f4:dc:4f:6e:4d:19:b7:
7c:87:97:03:02:99:19:46:93:c0:de:02:24:0e:5a:
ac:75:8a:ac:b8:e4:2d:77:b3:7a:49:6d:45:5a:50:
a3:79:29:76:c5:a5:44:81:4c:1d:d7:d4:de:67:cb:
56:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:D2:79:DC:5B:4D:FD:E3:29:DE:0C:03:9C:0C:B4:AF:3C:68:30:99
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/RdJ53FtN_eMp3gwDnAy0rzxoMJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:840:30::/48
Signature Algorithm: sha256WithRSAEncryption
9b:58:0f:09:6c:a5:c5:0a:46:2f:1c:e0:e9:57:1f:2c:11:90:
f7:18:a7:0a:19:de:ce:ad:c2:fe:df:38:6e:d3:b6:8d:11:18:
ce:01:04:d2:93:b7:77:04:fb:c2:cb:1d:55:d2:0c:a0:af:43:
05:ae:bc:68:c8:86:ed:2c:9a:ea:0c:cc:58:ed:12:1e:fc:cf:
85:fe:cf:b7:c5:fc:c8:30:24:d2:2a:55:13:20:07:8e:f4:50:
10:da:ed:af:24:29:4e:f7:07:4a:75:1f:4a:2c:9b:ff:8a:b5:
d5:b8:03:e5:03:b0:f3:6a:c8:31:7b:5b:7f:6e:60:f0:35:02:
f3:15:4b:2b:de:68:e3:9d:d7:3d:af:3c:94:11:6c:1a:aa:96:
07:cd:a3:a9:f3:a2:99:cf:a0:08:c0:7a:e4:7e:91:46:5d:78:
88:fd:e3:10:67:47:db:eb:53:57:93:c8:8e:1e:f4:4b:84:fd:
17:44:88:ec:c0:7b:b2:80:ac:e9:17:2e:46:37:46:57:fc:6c:
af:16:0e:6b:a0:30:77:cf:ba:34:05:9b:e9:d7:15:01:44:39:
5d:01:7a:01:8c:47:64:6f:ef:0b:41:d1:4c:97:72:e3:cd:46:
10:06:52:52:45:fb:7d:d6:eb:9a:bf:48:9a:3f:83:67:a1:f8:
37:ce:da:c5
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYMUGwHF7leoQoPLX8qX8ciGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5MDU2ZmE5NjI1YjZjODc0MDQyNjdjNmRjMjE5OTI0YWMx
NjAwNDUwHhcNMjIwOTA2MTg0MDU3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NWQyNzlkYzViNGRmZGUzMjlkZTBjMDM5YzBjYjRhZjNjNjgzMDk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4UUuOCVmIAkHFQniPRL8020vw97A
pgK/jl0uSZMAmiPnHloTTPXBCC7sOB5F5zo9kyBhyu6SjUIZXR8B6ZpwP3NGlXAP
SGGQ491MSJedZkeUkVPnModZRTIg5aOaTGs2keH6//2ouZHObU9QWA+KYyx6ttIZ
pJiKmhxWJJblaFGVyaReLOihxl4BbCGQr9dQ4ki3u2epoCFKw12djIZKBiU5/uBE
rcGWSfW3/Z8N72kOtgpa4TQnfFDQQ1dvFabxLfvSCBjd9o/ELvTcT25NGbd8h5cD
ApkZRpPA3gIkDlqsdYqsuOQtd7N6SW1FWlCjeSl2xaVEgUwd19TeZ8tW+wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFEXSedxbTf3jKd4MA5wMtK88aDCZMB8GA1UdIwQY
MBaAFIkFb6liW2yHQEJnxtwhmSSsFgBFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQt
NTE5MjAzNzMzNTNjLzEvUmRKNTNGdE5fZU1wM2d3RG5BeTByenhvTUprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQtNTE5MjAzNzMzNTNj
LzEvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhEIQAAw
MA0GCSqGSIb3DQEBCwUAA4IBAQCbWA8JbKXFCkYvHODpVx8sEZD3GKcKGd7OrcL+
3zhu07aNERjOAQTSk7d3BPvCyx1V0gygr0MFrrxoyIbtLJrqDMxY7RIe/M+F/s+3
xfzIMCTSKlUTIAeO9FAQ2u2vJClO9wdKdR9KLJv/irXVuAPlA7Dzasgxe1t/bmDw
NQLzFUsr3mjjndc9rzyUEWwaqpYHzaOp86KZz6AIwHrkfpFGXXiI/eMQZ0fb61NX
k8iOHvRLhP0XRIjswHuygKzpFy5GN0ZX/GyvFg5roDB3z7o0BZvp1xUBRDldAXoB
jEdkb+8LQdFMl3LjzUYQBlJSRft91uuav0iaP4Nnofg3ztrF
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:20 2024 by rpki-client on console-fra.rpki-client.org