Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/b5ea59-b5a9-4c48-ae02-1df65a07630f/1/ElV0ePYqECgBU9qppt4Es4wztp4.roa
File: ElV0ePYqECgBU9qppt4Es4wztp4.roa (raw, json)
Hash identifier: t3MDZ8oe8GZ28eQPasepwdpNartSqZaFIjx/MbXkAtI=
Subject key identifier: 12:55:74:78:F6:2A:10:28:01:53:DA:A9:A6:DE:04:B3:8C:33:B6:9E
Certificate issuer: /CN=e7eb26291b9e9ab5afc88ed76d3af81a907e5f9f
Certificate serial: 0181DAD076AA5B45CFB9154AA4ED92288B08
Authority key identifier: E7:EB:26:29:1B:9E:9A:B5:AF:C8:8E:D7:6D:3A:F8:1A:90:7E:5F:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5-smKRuemrWvyI7XbTr4GpB-X58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/b5ea59-b5a9-4c48-ae02-1df65a07630f/1/ElV0ePYqECgBU9qppt4Es4wztp4.roa
Signing time: Thu 07 Jul 2022 22:38:23 +0000
ROA not before: Thu 07 Jul 2022 22:38:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 701
IP address blocks: 2a11:9c40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:da:d0:76:aa:5b:45:cf:b9:15:4a:a4:ed:92:28:8b:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7eb26291b9e9ab5afc88ed76d3af81a907e5f9f
Validity
Not Before: Jul 7 22:38:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12557478f62a10280153daa9a6de04b38c33b69e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:45:57:7b:12:4b:43:df:84:fc:6a:b8:bb:bd:
5b:23:00:ce:7c:4d:6b:35:20:25:4c:93:12:b0:5a:
b6:0d:08:ee:ab:4c:72:4f:94:03:a8:68:a8:b4:41:
d0:79:d4:b5:24:20:0b:da:d7:35:9a:2c:0d:1d:82:
41:e0:c9:92:0f:cc:81:b2:bc:bd:63:51:a3:3a:2a:
92:e5:ee:93:ec:6c:20:89:59:6a:bf:87:e6:b8:66:
73:79:fb:18:d3:d6:2c:31:bf:9e:df:c4:a7:1e:78:
5b:a7:85:1e:6d:a5:de:49:20:97:a9:7f:cd:02:1d:
31:9a:1f:fd:e8:06:a8:36:3a:96:ab:99:a1:bc:23:
b5:7e:fd:44:e0:53:09:3d:d9:16:78:e0:bd:dc:8a:
a5:ad:d3:1a:87:c0:3f:fb:85:6f:2b:67:42:e9:94:
42:35:36:a6:8a:f3:c2:e8:44:cc:48:37:cc:1a:49:
00:3a:1d:32:ea:8a:e4:4b:97:b5:84:64:71:21:9c:
0d:87:8e:20:16:9a:59:e9:62:84:d8:d5:b8:be:32:
b6:4c:e7:6d:42:8f:5b:82:72:1e:32:d9:ce:f6:ad:
f1:9f:46:5e:03:f7:2c:d8:af:9c:c9:e9:22:77:48:
c7:a4:e1:da:44:10:5d:81:6f:18:c5:eb:50:93:8a:
3e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:55:74:78:F6:2A:10:28:01:53:DA:A9:A6:DE:04:B3:8C:33:B6:9E
X509v3 Authority Key Identifier:
keyid:E7:EB:26:29:1B:9E:9A:B5:AF:C8:8E:D7:6D:3A:F8:1A:90:7E:5F:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5-smKRuemrWvyI7XbTr4GpB-X58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/b5ea59-b5a9-4c48-ae02-1df65a07630f/1/ElV0ePYqECgBU9qppt4Es4wztp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/b5ea59-b5a9-4c48-ae02-1df65a07630f/1/5-smKRuemrWvyI7XbTr4GpB-X58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:9c40::/29
Signature Algorithm: sha256WithRSAEncryption
5b:94:c8:70:09:20:5f:79:fe:a3:56:9b:a4:f4:12:31:fa:04:
1d:96:d2:44:71:5d:8f:85:e9:ba:85:5c:ac:43:bd:41:42:00:
2d:a3:a1:84:aa:b5:f9:97:9f:8e:1f:b7:b1:0b:6c:10:98:1f:
7c:85:c4:42:6e:c8:da:99:7f:1b:60:8b:aa:b3:a2:40:80:9e:
df:f4:a1:84:33:d9:c3:fa:04:9b:32:aa:ff:fa:27:a2:56:bc:
22:06:87:06:f2:f7:d4:74:d3:ba:94:8e:33:b7:8b:e8:36:9e:
af:d1:df:45:e1:f3:ec:12:59:e7:80:fe:b7:31:84:81:ec:1f:
64:e7:17:b0:61:80:5f:ef:46:32:3b:4a:69:92:a9:a6:31:88:
2e:6f:0b:45:99:5c:32:d3:84:be:03:d6:4a:41:e9:c0:61:de:
7a:eb:87:73:54:f4:48:34:a6:57:a4:b2:72:aa:21:a4:7a:17:
cd:63:23:6f:6b:dc:15:13:19:84:ba:4d:73:4b:a9:ae:32:20:
43:03:73:6e:11:c3:1d:e4:a7:e7:b4:41:2c:6e:5d:9e:53:43:
42:52:23:4f:21:f6:e0:41:19:36:b3:6c:0a:73:1b:c8:98:37:
c8:18:56:bf:66:e2:e4:a4:12:b5:95:b3:04:6e:40:c4:f0:c2:
15:66:c8:0f
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYHa0HaqW0XPuRVKpO2SKIsIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3ZWIyNjI5MWI5ZTlhYjVhZmM4OGVkNzZkM2FmODFhOTA3
ZTVmOWYwHhcNMjIwNzA3MjIzODIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjU1NzQ3OGY2MmExMDI4MDE1M2RhYTlhNmRlMDRiMzhjMzNiNjllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5UVXexJLQ9+E/Gq4u71bIwDOfE1r
NSAlTJMSsFq2DQjuq0xyT5QDqGiotEHQedS1JCAL2tc1miwNHYJB4MmSD8yBsry9
Y1GjOiqS5e6T7GwgiVlqv4fmuGZzefsY09YsMb+e38SnHnhbp4UebaXeSSCXqX/N
Ah0xmh/96AaoNjqWq5mhvCO1fv1E4FMJPdkWeOC93IqlrdMah8A/+4VvK2dC6ZRC
NTamivPC6ETMSDfMGkkAOh0y6orkS5e1hGRxIZwNh44gFppZ6WKE2NW4vjK2TOdt
Qo9bgnIeMtnO9q3xn0ZeA/cs2K+cyekid0jHpOHaRBBdgW8YxetQk4o+fwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFBJVdHj2KhAoAVPaqabeBLOMM7aeMB8GA1UdIwQY
MBaAFOfrJikbnpq1r8iO1206+BqQfl+fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNS1zbUtSdWVtcld2eUk3WGJUcjRHcEItWDU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9iNWVhNTktYjVhOS00YzQ4LWFlMDIt
MWRmNjVhMDc2MzBmLzEvRWxWMGVQWXFFQ2dCVTlxcHB0NEVzNHd6dHA0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9iNWVhNTktYjVhOS00YzQ4LWFlMDItMWRmNjVhMDc2MzBm
LzEvNS1zbUtSdWVtcld2eUk3WGJUcjRHcEItWDU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhGcQDAN
BgkqhkiG9w0BAQsFAAOCAQEAW5TIcAkgX3n+o1abpPQSMfoEHZbSRHFdj4XpuoVc
rEO9QUIALaOhhKq1+Zefjh+3sQtsEJgffIXEQm7I2pl/G2CLqrOiQICe3/ShhDPZ
w/oEmzKq//onola8IgaHBvL31HTTupSOM7eL6Daer9HfReHz7BJZ54D+tzGEgewf
ZOcXsGGAX+9GMjtKaZKppjGILm8LRZlcMtOEvgPWSkHpwGHeeuuHc1T0SDSmV6Sy
cqohpHoXzWMjb2vcFRMZhLpNc0uprjIgQwNzbhHDHeSn57RBLG5dnlNDQlIjTyH2
4EEZNrNsCnMbyJg3yBhWv2bi5KQStZWzBG5AxPDCFWbIDw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-fra.rpki-client.org