Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1c7c09-e02c-4cbf-9e67-9685555190c4/1/4le18fXnykPOEn77egmA4-yLz2o.roa
File: 4le18fXnykPOEn77egmA4-yLz2o.roa (raw, json)
Hash identifier: oqNP9NcCFVlbNEPtUFq3X04hTM7ckSIT4JyfIUcnsZg=
Subject key identifier: E2:57:B5:F1:F5:E7:CA:43:CE:12:7E:FB:7A:09:80:E3:EC:8B:CF:6A
Certificate issuer: /CN=d81d42aae019e4ea44a616378eb66b389de8c511
Certificate serial: 0183F2B06CA0B36415D2F467636492AB0DBA
Authority key identifier: D8:1D:42:AA:E0:19:E4:EA:44:A6:16:37:8E:B6:6B:38:9D:E8:C5:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2B1CquAZ5OpEphY3jrZrOJ3oxRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1c7c09-e02c-4cbf-9e67-9685555190c4/1/4le18fXnykPOEn77egmA4-yLz2o.roa
Signing time: Wed 19 Oct 2022 23:59:51 +0000
ROA not before: Wed 19 Oct 2022 23:59:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50902
IP address blocks: 2a0f:fc80::/32 maxlen: 32
2a0f:fc81::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f2:b0:6c:a0:b3:64:15:d2:f4:67:63:64:92:ab:0d:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d81d42aae019e4ea44a616378eb66b389de8c511
Validity
Not Before: Oct 19 23:59:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e257b5f1f5e7ca43ce127efb7a0980e3ec8bcf6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0c:03:46:b9:b6:a9:89:85:c1:5a:ea:a6:f5:
fb:e2:94:4a:99:69:f9:6e:f9:ee:6a:2f:44:a6:25:
f4:ea:f2:88:87:66:eb:b2:5b:71:bc:46:01:4c:00:
8e:ad:4f:81:3f:95:bf:cc:1c:ff:cb:76:3f:22:c4:
9a:fd:90:f9:35:1c:37:93:66:7b:d3:b3:ab:e8:42:
cb:c4:f2:a6:8c:c4:9d:13:c6:9e:58:b7:c2:1b:18:
df:0b:93:78:ed:93:30:c8:5f:a8:46:2c:c9:e1:e2:
dd:03:45:fe:e0:63:0c:e0:cc:f9:6f:27:6e:06:b6:
57:75:81:83:f1:9e:58:b3:01:d0:d0:41:07:c8:0c:
c8:47:88:3d:5b:27:79:95:6c:d3:51:8e:59:e8:07:
6e:6e:9c:fa:a2:ee:32:46:fe:e0:fd:48:a9:03:40:
98:e9:a3:47:a6:bd:0a:e4:da:f4:29:c8:1e:45:8d:
02:2b:c5:18:ed:0f:69:54:5f:8d:82:ce:7f:2f:b2:
54:0d:fb:30:a6:30:ad:84:88:2d:37:21:31:4b:fb:
49:a9:66:20:ba:c2:9c:6c:53:f7:47:db:04:2c:9b:
76:bb:e9:7c:a8:d8:6f:8a:0f:dc:62:f5:83:d5:70:
7b:6b:08:4a:cf:d8:3b:00:1a:dd:c4:cf:f2:74:58:
73:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:57:B5:F1:F5:E7:CA:43:CE:12:7E:FB:7A:09:80:E3:EC:8B:CF:6A
X509v3 Authority Key Identifier:
keyid:D8:1D:42:AA:E0:19:E4:EA:44:A6:16:37:8E:B6:6B:38:9D:E8:C5:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2B1CquAZ5OpEphY3jrZrOJ3oxRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1c7c09-e02c-4cbf-9e67-9685555190c4/1/4le18fXnykPOEn77egmA4-yLz2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1c7c09-e02c-4cbf-9e67-9685555190c4/1/2B1CquAZ5OpEphY3jrZrOJ3oxRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:fc80::/31
Signature Algorithm: sha256WithRSAEncryption
82:31:8c:34:39:a7:bb:57:71:2e:1f:91:a1:34:78:b3:85:2d:
1e:5d:46:23:c7:47:75:22:7c:1e:5f:94:4d:34:89:89:fe:f3:
63:2b:a5:64:ad:fd:49:01:75:a5:19:d2:1d:b6:e6:c9:8e:34:
69:a1:79:6b:b3:c0:b5:4b:15:14:34:7a:bb:0c:ad:87:9e:58:
d1:f3:1c:5e:1d:e8:fd:23:3b:5c:ce:8a:7c:4f:47:ba:cf:67:
3f:7c:1f:7e:11:d3:79:47:7a:22:5e:5b:8d:75:66:87:34:0f:
8e:65:6e:4f:0a:27:9d:94:3b:1a:d3:e0:01:6d:d6:4b:cc:b4:
87:04:62:3b:f7:2a:67:97:f4:49:52:d1:01:b4:96:89:a7:f9:
8c:84:43:6b:8d:01:2f:92:04:05:84:45:7b:fa:db:19:fb:8c:
18:d5:23:ae:0e:b9:d0:20:43:a6:51:3d:2c:35:22:1f:d2:75:
ab:85:5f:8b:70:9e:52:ca:e3:64:f0:5c:ef:d9:b8:8c:39:24:
78:56:59:90:5c:61:ad:e2:ee:ed:27:de:08:8a:96:fc:c5:8c:
72:75:0e:0f:17:89:6e:76:7f:de:2d:6d:7b:8f:4a:c2:81:e4:
91:bf:6d:b4:61:d2:66:72:a6:e6:7c:77:7a:8d:9b:80:cc:4b:
a0:74:8d:1b
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYPysGygs2QV0vRnY2SSqw26MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MWQ0MmFhZTAxOWU0ZWE0NGE2MTYzNzhlYjY2YjM4OWRl
OGM1MTEwHhcNMjIxMDE5MjM1OTUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMjU3YjVmMWY1ZTdjYTQzY2UxMjdlZmI3YTA5ODBlM2VjOGJjZjZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogwDRrm2qYmFwVrqpvX74pRKmWn5
bvnuai9EpiX06vKIh2brsltxvEYBTACOrU+BP5W/zBz/y3Y/IsSa/ZD5NRw3k2Z7
07Or6ELLxPKmjMSdE8aeWLfCGxjfC5N47ZMwyF+oRizJ4eLdA0X+4GMM4Mz5bydu
BrZXdYGD8Z5YswHQ0EEHyAzIR4g9Wyd5lWzTUY5Z6Adubpz6ou4yRv7g/UipA0CY
6aNHpr0K5Nr0KcgeRY0CK8UY7Q9pVF+Ngs5/L7JUDfswpjCthIgtNyExS/tJqWYg
usKcbFP3R9sELJt2u+l8qNhvig/cYvWD1XB7awhKz9g7ABrdxM/ydFhziwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFOJXtfH158pDzhJ++3oJgOPsi89qMB8GA1UdIwQY
MBaAFNgdQqrgGeTqRKYWN462azid6MURMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkIxQ3F1QVo1T3BFcGhZM2pyWnJPSjNveFJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS8xYzdjMDktZTAyYy00Y2JmLTllNjct
OTY4NTU1NTE5MGM0LzEvNGxlMThmWG55a1BPRW43N2VnbUE0LXlMejJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS8xYzdjMDktZTAyYy00Y2JmLTllNjctOTY4NTU1NTE5MGM0
LzEvMkIxQ3F1QVo1T3BFcGhZM2pyWnJPSjNveFJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUBKg/8gDAN
BgkqhkiG9w0BAQsFAAOCAQEAgjGMNDmnu1dxLh+RoTR4s4UtHl1GI8dHdSJ8Hl+U
TTSJif7zYyulZK39SQF1pRnSHbbmyY40aaF5a7PAtUsVFDR6uwyth55Y0fMcXh3o
/SM7XM6KfE9Hus9nP3wffhHTeUd6Il5bjXVmhzQPjmVuTwonnZQ7GtPgAW3WS8y0
hwRiO/cqZ5f0SVLRAbSWiaf5jIRDa40BL5IEBYRFe/rbGfuMGNUjrg650CBDplE9
LDUiH9J1q4Vfi3CeUsrjZPBc79m4jDkkeFZZkFxhreLu7SfeCIqW/MWMcnUODxeJ
bnZ/3i1te49KwoHkkb9ttGHSZnKm5nx3eo2bgMxLoHSNGw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:28 2024 by rpki-client on console-ams.rpki-client.org