Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/UqL6ptNsJXL3vcwi6ND9GIm-hxM.roa
File: UqL6ptNsJXL3vcwi6ND9GIm-hxM.roa (raw, json)
Hash identifier: CfkAW79RJqhy6nqvQncFfqaZQ6KDGcv1GwtvVgoCmSw=
Subject key identifier: 52:A2:FA:A6:D3:6C:25:72:F7:BD:CC:22:E8:D0:FD:18:89:BE:87:13
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 01833AFA47FFEE50DFB104F2E47A9286BF72
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/UqL6ptNsJXL3vcwi6ND9GIm-hxM.roa
Signing time: Wed 14 Sep 2022 07:50:24 +0000
ROA not before: Wed 14 Sep 2022 07:50:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39686
IP address blocks: 2a07:3500:11e0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3a:fa:47:ff:ee:50:df:b1:04:f2:e4:7a:92:86:bf:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Sep 14 07:50:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52a2faa6d36c2572f7bdcc22e8d0fd1889be8713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a2:6d:d4:c5:84:1d:a4:ae:b7:d1:1b:52:a9:
e2:79:70:24:8e:b1:3a:42:23:42:24:e7:f0:6d:95:
5e:d4:70:37:40:05:76:8e:fe:e9:ea:af:15:bb:d3:
59:5c:ea:74:5d:e8:28:e6:e2:cf:c9:8c:1a:50:32:
94:4d:7d:69:93:0b:f5:c5:f1:15:45:4e:ab:af:af:
61:28:07:09:ff:6b:6f:ec:ac:52:46:49:99:04:93:
fd:c5:62:aa:36:7f:5b:9d:c2:10:0b:ac:5e:47:22:
0c:e7:8f:80:f4:41:f0:ec:3f:ca:e1:b3:8d:af:b4:
fc:f3:62:87:3f:a3:f0:41:c4:77:f6:c9:c3:87:30:
dd:b0:fe:6a:56:7a:eb:72:d8:28:4e:71:81:3e:1d:
8d:29:f3:2c:78:40:07:8c:83:2b:17:d3:21:f1:ae:
54:49:a3:46:2e:29:5f:ff:7c:d8:8f:59:8a:64:3e:
a6:1f:7d:4d:8b:08:c0:8a:b5:87:93:a3:ad:74:f4:
8a:ff:17:a2:f3:93:bd:91:ec:63:db:82:f6:0d:e9:
aa:e9:d2:52:a9:f4:07:3b:64:13:56:3d:fa:e5:11:
fe:fe:65:9e:bd:51:1d:32:3c:99:a7:06:a9:78:16:
6d:23:ca:1f:c8:a3:1a:c0:27:43:d6:13:a4:b7:15:
5f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A2:FA:A6:D3:6C:25:72:F7:BD:CC:22:E8:D0:FD:18:89:BE:87:13
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/UqL6ptNsJXL3vcwi6ND9GIm-hxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3500:11e0::/48
Signature Algorithm: sha256WithRSAEncryption
43:fc:2c:45:bd:c1:91:aa:54:8e:94:96:ee:eb:7e:79:c2:c6:
d1:95:26:60:92:d2:6b:60:bc:37:db:17:3b:ed:ed:09:6f:df:
81:c3:1d:b1:1c:d5:55:1b:ea:c4:0b:8b:eb:f9:fc:0a:7c:2c:
ba:74:ce:30:1d:28:c7:74:8d:0b:0f:55:ce:0b:ef:35:09:26:
f0:4c:e5:17:74:63:3c:f3:8c:a2:1d:67:31:5d:a4:fa:03:b8:
a9:a2:c8:ca:b2:01:5a:4a:cb:16:00:45:f0:d9:3a:57:c8:d6:
4c:1b:6e:88:a0:c2:a0:42:a7:cc:70:ca:17:3a:a0:ec:19:c1:
70:d3:24:25:43:1a:10:d0:44:38:38:6c:58:4b:cc:1f:e0:5f:
bd:d6:e2:cd:ba:e9:74:b7:fa:5e:46:bb:39:ac:1d:4c:67:6a:
9a:05:dd:f6:f0:84:b9:17:32:45:71:bd:37:dc:da:95:6f:ae:
65:e6:a6:2b:bf:50:c9:79:a0:24:41:7b:fb:3a:70:f4:b0:c8:
a6:0d:5f:dd:b3:9a:9e:eb:1d:26:ea:c7:dd:9f:05:2f:e4:c0:
23:ae:ba:21:64:41:e3:bf:40:5a:30:1a:98:e7:03:eb:0c:e4:
e8:09:52:60:74:56:03:12:74:0a:56:7f:12:fe:08:55:64:7d:
21:d7:12:ae
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYM6+kf/7lDfsQTy5HqShr9yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwNWQyOGQxNjYyNmJjNWRjYWJmMmU5MTU0MzU3ODJiOTZl
MTQwNzEwHhcNMjIwOTE0MDc1MDI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmEyZmFhNmQzNmMyNTcyZjdiZGNjMjJlOGQwZmQxODg5YmU4NzEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzKJt1MWEHaSut9EbUqnieXAkjrE6
QiNCJOfwbZVe1HA3QAV2jv7p6q8Vu9NZXOp0Xego5uLPyYwaUDKUTX1pkwv1xfEV
RU6rr69hKAcJ/2tv7KxSRkmZBJP9xWKqNn9bncIQC6xeRyIM54+A9EHw7D/K4bON
r7T882KHP6PwQcR39snDhzDdsP5qVnrrctgoTnGBPh2NKfMseEAHjIMrF9Mh8a5U
SaNGLilf/3zYj1mKZD6mH31NiwjAirWHk6OtdPSK/xei85O9kexj24L2Demq6dJS
qfQHO2QTVj365RH+/mWevVEdMjyZpwapeBZtI8ofyKMawCdD1hOktxVf1QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFKi+qbTbCVy973MIujQ/RiJvocTMB8GA1UdIwQY
MBaAFLBdKNFmJrxdyr8ukVQ1eCuW4UBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEt
YWQ1NzU1MjJiMzY1LzEvVXFMNnB0TnNKWEwzdmN3aTZORDlHSW0taHhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy9iYmE5NzMtN2M5Zi00YjExLWI2MTEtYWQ1NzU1MjJiMzY1
LzEvc0YwbzBXWW12RjNLdnk2UlZEVjRLNWJoUUhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgc1ABHg
MA0GCSqGSIb3DQEBCwUAA4IBAQBD/CxFvcGRqlSOlJbu6355wsbRlSZgktJrYLw3
2xc77e0Jb9+Bwx2xHNVVG+rEC4vr+fwKfCy6dM4wHSjHdI0LD1XOC+81CSbwTOUX
dGM884yiHWcxXaT6A7iposjKsgFaSssWAEXw2TpXyNZMG26IoMKgQqfMcMoXOqDs
GcFw0yQlQxoQ0EQ4OGxYS8wf4F+91uLNuul0t/peRrs5rB1MZ2qaBd328IS5FzJF
cb033NqVb65l5qYrv1DJeaAkQXv7OnD0sMimDV/ds5qe6x0m6sfdnwUv5MAjrroh
ZEHjv0BaMBqY5wPrDOToCVJgdFYDEnQKVn8S/ghVZH0h1xKu
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:54 2024 by rpki-client on console-fra.rpki-client.org