Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/URwuKasr2osytruzZh6g4XgW6xo.roa
File: URwuKasr2osytruzZh6g4XgW6xo.roa (raw, json)
Hash identifier: df11HaNLnnKcfzIH5JqCGW8in5WOWkGu73YohNvcalo=
Subject key identifier: 51:1C:2E:29:AB:2B:DA:8B:32:B6:BB:B3:66:1E:A0:E1:78:16:EB:1A
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 0183141B027E04CF55238A10CEE8AD8AFACD
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/URwuKasr2osytruzZh6g4XgW6xo.roa
Signing time: Tue 06 Sep 2022 18:40:57 +0000
ROA not before: Tue 06 Sep 2022 18:40:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 37153
IP address blocks: 2a11:840:32::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:14:1b:02:7e:04:cf:55:23:8a:10:ce:e8:ad:8a:fa:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Sep 6 18:40:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=511c2e29ab2bda8b32b6bbb3661ea0e17816eb1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:65:b7:cc:3d:84:14:73:f0:7f:54:52:d5:0f:
26:d9:76:14:57:ff:4a:d2:62:c1:b8:27:b0:59:13:
2d:65:4e:23:6c:db:87:fe:4c:7b:b4:17:d0:89:68:
8c:68:a1:58:81:1a:3b:c2:e8:01:2c:53:80:14:94:
33:9e:3b:4a:4d:9b:27:b4:86:76:7a:08:a1:c5:1a:
26:24:86:3e:fc:22:3c:61:41:a2:fe:a5:e1:84:54:
5a:4c:2d:ea:bc:de:6b:ef:86:20:63:cf:0c:c4:ed:
f9:4b:6c:bc:9e:17:6a:c8:09:0e:71:9f:a7:88:7c:
2a:7c:64:3f:75:84:e2:43:6b:2c:ba:68:81:af:e0:
49:20:d0:55:1b:0a:bf:f4:4a:c6:1d:4f:bb:fd:4e:
bd:99:54:d9:e8:42:3b:3d:37:cd:77:b3:2f:ed:91:
27:31:83:0e:47:64:ae:53:1f:87:d8:74:04:c3:24:
a3:14:3a:9c:1b:25:4d:65:d8:82:f1:4b:9e:a7:2f:
d7:93:5c:40:37:1d:45:0b:67:d6:0f:03:24:73:b1:
60:28:40:d1:0f:0f:0f:64:ba:4c:76:b5:a1:00:1b:
3f:0d:98:d1:a0:6f:21:2d:5a:af:07:92:38:c7:c6:
a7:85:75:c7:89:c3:2e:d6:1f:75:15:9b:38:b3:e0:
2a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:1C:2E:29:AB:2B:DA:8B:32:B6:BB:B3:66:1E:A0:E1:78:16:EB:1A
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/URwuKasr2osytruzZh6g4XgW6xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:840:32::/48
Signature Algorithm: sha256WithRSAEncryption
5b:02:f5:75:49:fd:46:48:ff:0e:46:60:27:68:bd:6d:38:1b:
30:c4:e2:f1:16:16:07:4e:80:a2:18:3d:f7:7b:e1:ee:84:29:
03:11:c3:a0:b7:71:4a:3e:fe:7f:d6:38:ef:aa:ab:d8:d2:1d:
cb:db:ea:35:40:d2:8e:f6:9d:f4:8c:1f:8f:9c:f9:51:85:88:
54:04:9b:dc:f8:2c:e7:4d:27:9d:20:03:01:aa:05:b9:9d:f4:
cc:e9:c3:d8:2b:18:63:32:16:73:3b:be:6d:a0:71:46:49:de:
57:a4:dc:a0:bc:d4:a4:20:41:6e:a0:56:65:c5:d1:3d:29:a0:
26:ed:27:30:e0:bb:ea:54:7c:94:18:b3:f6:a5:71:5b:e1:2c:
fd:78:bb:6c:11:87:9e:2d:db:ca:69:06:ca:f9:51:f9:19:87:
58:0f:31:fd:34:9e:68:cb:89:0e:62:e6:44:6e:b6:88:d1:23:
e5:45:95:b1:fb:66:f3:93:f8:59:2a:1f:4c:2e:4a:3d:e4:2e:
39:c2:4d:5f:5d:b7:84:c3:41:ee:23:d1:0e:f7:f1:f8:9f:18:
ab:21:03:c7:c5:41:af:f7:62:7a:02:8f:41:6a:3e:ac:eb:7c:
02:8b:e8:ea:0e:f0:1c:45:bd:9d:8b:b6:4d:03:17:8f:22:1a:
be:b7:58:f9
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYMUGwJ+BM9VI4oQzuitivrNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5MDU2ZmE5NjI1YjZjODc0MDQyNjdjNmRjMjE5OTI0YWMx
NjAwNDUwHhcNMjIwOTA2MTg0MDU3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTFjMmUyOWFiMmJkYThiMzJiNmJiYjM2NjFlYTBlMTc4MTZlYjFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk2W3zD2EFHPwf1RS1Q8m2XYUV/9K
0mLBuCewWRMtZU4jbNuH/kx7tBfQiWiMaKFYgRo7wugBLFOAFJQznjtKTZsntIZ2
egihxRomJIY+/CI8YUGi/qXhhFRaTC3qvN5r74YgY88MxO35S2y8nhdqyAkOcZ+n
iHwqfGQ/dYTiQ2ssumiBr+BJINBVGwq/9ErGHU+7/U69mVTZ6EI7PTfNd7Mv7ZEn
MYMOR2SuUx+H2HQEwySjFDqcGyVNZdiC8Uuepy/Xk1xANx1FC2fWDwMkc7FgKEDR
Dw8PZLpMdrWhABs/DZjRoG8hLVqvB5I4x8anhXXHicMu1h91FZs4s+Aq4QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFEcLimrK9qLMra7s2YeoOF4FusaMB8GA1UdIwQY
MBaAFIkFb6liW2yHQEJnxtwhmSSsFgBFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQt
NTE5MjAzNzMzNTNjLzEvVVJ3dUthc3Iyb3N5dHJ1elpoNmc0WGdXNnhvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQtNTE5MjAzNzMzNTNj
LzEvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhEIQAAy
MA0GCSqGSIb3DQEBCwUAA4IBAQBbAvV1Sf1GSP8ORmAnaL1tOBswxOLxFhYHToCi
GD33e+HuhCkDEcOgt3FKPv5/1jjvqqvY0h3L2+o1QNKO9p30jB+PnPlRhYhUBJvc
+CznTSedIAMBqgW5nfTM6cPYKxhjMhZzO75toHFGSd5XpNygvNSkIEFuoFZlxdE9
KaAm7Scw4LvqVHyUGLP2pXFb4Sz9eLtsEYeeLdvKaQbK+VH5GYdYDzH9NJ5oy4kO
YuZEbraI0SPlRZWx+2bzk/hZKh9MLko95C45wk1fXbeEw0HuI9EO9/H4nxirIQPH
xUGv92J6Ao9Baj6s63wCi+jqDvAcRb2di7ZNAxePIhq+t1j5
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:51 2024 by rpki-client on console-ams.rpki-client.org