Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/E414YIPqnadhd7xJV8OmLvEK8WE.roa
File: E414YIPqnadhd7xJV8OmLvEK8WE.roa (raw, json)
Hash identifier: lFFSkwwMkZZRrob7biNuuqkP+VYUIDx5a75LkeXAqYE=
Subject key identifier: 13:8D:78:60:83:EA:9D:A7:61:77:BC:49:57:C3:A6:2E:F1:0A:F1:61
Certificate issuer: /CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Certificate serial: 4D019756
Authority key identifier: AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/E414YIPqnadhd7xJV8OmLvEK8WE.roa
Signing time: Sat 01 Jan 2022 15:56:15 +0000
ROA not before: Sat 01 Jan 2022 15:56:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50022
IP address blocks: 2a05:7401:4000::/34 maxlen: 34
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1291949910 (0x4d019756)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Validity
Not Before: Jan 1 15:56:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=138d786083ea9da76177bc4957c3a62ef10af161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3d:e4:58:40:81:be:2c:d1:e5:47:fb:fb:ba:
7d:f7:c1:7e:d5:5a:d2:21:3c:d5:d0:ee:95:ac:e8:
94:ff:99:83:2b:32:0d:ec:da:66:ce:b9:c1:b0:be:
12:81:33:60:02:81:78:c2:69:3a:12:96:15:c0:fe:
27:3f:91:60:49:23:61:34:7c:82:bb:a1:b4:89:bf:
b1:fd:0d:85:4d:0c:1b:bd:64:ac:a6:cd:99:c3:9d:
a1:d5:3c:ef:66:a0:3d:a1:16:f0:c2:41:b0:38:b7:
86:92:a9:24:88:76:74:2d:b4:68:fb:3c:85:e7:02:
09:d3:9e:28:e2:ca:2c:03:15:99:02:fe:39:c0:c4:
d2:7b:5e:4f:b2:14:b8:35:31:a0:47:2b:7e:2b:33:
81:01:a1:50:b3:65:d4:b3:42:17:0c:7e:ef:24:48:
23:6f:03:4f:5f:aa:53:de:5a:68:0a:68:a2:02:53:
e1:57:63:17:7d:22:5e:b4:3d:56:61:ad:37:fd:9f:
d5:47:da:0d:fb:d1:9b:1a:5c:4d:f2:e9:20:c4:67:
98:00:09:d4:40:6b:ea:42:19:14:fe:24:7d:1e:da:
10:86:73:43:72:de:27:50:af:39:80:03:1d:26:92:
33:d2:1f:02:4e:92:84:5d:e7:3e:72:c2:67:b0:c7:
86:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8D:78:60:83:EA:9D:A7:61:77:BC:49:57:C3:A6:2E:F1:0A:F1:61
X509v3 Authority Key Identifier:
keyid:AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/E414YIPqnadhd7xJV8OmLvEK8WE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:7401:4000::/34
Signature Algorithm: sha256WithRSAEncryption
15:6d:ec:e5:fb:75:a7:eb:a6:e9:33:f5:8a:2c:95:db:c5:b5:
e3:80:11:af:2f:9d:8e:6a:8e:c4:fd:fc:50:d6:c3:17:c9:6d:
91:6e:44:bd:8c:a6:74:6e:db:f6:17:4b:b3:c3:3f:a1:7d:20:
c3:97:90:0a:ba:18:51:79:c7:be:25:86:a6:e7:4c:6e:0e:bb:
81:76:2c:05:3c:49:50:40:98:47:4a:ab:7f:71:1d:e0:6d:ee:
28:d0:a5:3b:5e:a1:51:3a:a5:6a:a7:cb:9a:a0:cd:16:f0:c6:
4c:92:e7:55:6f:c4:5c:32:aa:24:cd:22:42:d3:ca:c6:f5:15:
86:60:5e:ee:d8:68:b5:ce:fc:6d:5b:51:46:cb:ec:77:70:c8:
13:5e:81:4d:d2:b4:a3:fa:df:f4:d2:18:8a:cc:7a:38:10:1b:
4d:07:61:ff:3c:3b:29:4d:e0:b6:59:c4:fc:ad:f7:df:bf:08:
40:21:d5:82:48:82:3f:f1:8e:dc:c2:ac:b0:ea:fd:7d:49:9c:
19:09:00:3c:65:87:d9:d5:20:63:b4:ad:fd:ba:f2:34:35:56:
f6:19:d6:7d:21:d5:d4:4e:dc:e0:0e:55:3a:18:05:e8:db:78:
d2:b1:cd:2a:ac:71:f2:5a:95:ef:f4:be:11:1b:89:ad:92:f2:
af:48:b8:b4
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIETQGXVjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZTdmNzQ3ZGY1ZjI0MzUzMTU0ZGM0ZDRiZjcwZDJkZGNiNTNlOTAwMB4XDTIyMDEw
MTE1NTYxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTM4ZDc4NjA4M2Vh
OWRhNzYxNzdiYzQ5NTdjM2E2MmVmMTBhZjE2MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK495FhAgb4s0eVH+/u6fffBftVa0iE81dDulazolP+Zgysy
DezaZs65wbC+EoEzYAKBeMJpOhKWFcD+Jz+RYEkjYTR8gruhtIm/sf0NhU0MG71k
rKbNmcOdodU872agPaEW8MJBsDi3hpKpJIh2dC20aPs8hecCCdOeKOLKLAMVmQL+
OcDE0nteT7IUuDUxoEcrfiszgQGhULNl1LNCFwx+7yRII28DT1+qU95aaApoogJT
4VdjF30iXrQ9VmGtN/2f1UfaDfvRmxpcTfLpIMRnmAAJ1EBr6kIZFP4kfR7aEIZz
Q3LeJ1CvOYADHSaSM9IfAk6ShF3nPnLCZ7DHhokCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBQTjXhgg+qdp2F3vElXw6Yu8QrxYTAfBgNVHSMEGDAWgBSuf3R99fJDUxVN
xNS/cNLdy1PpADAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JuOTBmZlh5UTFNVlRjVFV2M0RTM2N0VDZRQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjIvNThhZjI0LWM0NTQtNDRiMC1hN2NhLWM2ZjFlNmFjOWJhOS8x
L0U0MTRZSVBxbmFkaGQ3eEpWOE9tTHZFSzhXRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjIv
NThhZjI0LWM0NTQtNDRiMC1hN2NhLWM2ZjFlNmFjOWJhOS8xL3JuOTBmZlh5UTFN
VlRjVFV2M0RTM2N0VDZRQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBioFdAFAMA0GCSqGSIb3DQEBCwUA
A4IBAQAVbezl+3Wn66bpM/WKLJXbxbXjgBGvL52Oao7E/fxQ1sMXyW2RbkS9jKZ0
btv2F0uzwz+hfSDDl5AKuhhRece+JYam50xuDruBdiwFPElQQJhHSqt/cR3gbe4o
0KU7XqFROqVqp8uaoM0W8MZMkudVb8RcMqokzSJC08rG9RWGYF7u2Gi1zvxtW1FG
y+x3cMgTXoFN0rSj+t/00hiKzHo4EBtNB2H/PDspTeC2WcT8rfffvwhAIdWCSII/
8Y7cwqyw6v19SZwZCQA8ZYfZ1SBjtK39uvI0NVb2GdZ9IdXUTtzgDlU6GAXo23jS
sc0qrHHyWpXv9L4RG4mtkvKvSLi0
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:04 2025 by rpki-client