Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/0gBKgBgQjmGj-OxtA_W8sItQkh4.roa
File: 0gBKgBgQjmGj-OxtA_W8sItQkh4.roa (raw, json)
Hash identifier: rsermZCLyoEPAvJ2fT5AFwHbe18VNiiuXSYFJAw0AQ4=
Subject key identifier: D2:00:4A:80:18:10:8E:61:A3:F8:EC:6D:03:F5:BC:B0:8B:50:92:1E
Certificate issuer: /CN=dc4e453affe895b6452b84027437c5c00fd37067
Certificate serial: 18C72E3A
Authority key identifier: DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/0gBKgBgQjmGj-OxtA_W8sItQkh4.roa
Signing time: Wed 26 Jan 2022 10:01:36 +0000
ROA not before: Wed 26 Jan 2022 10:01:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31458
IP address blocks: 2a01:be60::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 415706682 (0x18c72e3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc4e453affe895b6452b84027437c5c00fd37067
Validity
Not Before: Jan 26 10:01:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2004a8018108e61a3f8ec6d03f5bcb08b50921e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:98:c1:ea:df:0a:e1:b1:aa:70:4d:df:ec:ae:
14:72:f3:1b:ff:a8:4f:2c:7f:f5:4d:75:40:a1:74:
e2:49:03:15:81:65:0d:00:ca:ae:e4:57:a1:78:d6:
aa:fc:77:0a:5b:87:28:47:1f:06:c6:eb:a1:e2:59:
27:5d:e0:ac:c8:c6:d7:99:28:2d:81:b0:54:3a:39:
b2:38:e9:7b:8e:01:3b:88:ec:f6:e5:39:3f:5a:c2:
e8:0c:31:7a:3e:99:f5:29:70:3c:3c:40:48:d9:89:
a5:73:83:67:54:7a:3b:c7:b7:d0:1f:6a:4b:9d:be:
eb:41:bf:1d:78:4e:ed:7a:d3:02:04:cc:d3:1d:23:
47:16:39:62:7c:c2:fc:0d:6e:84:4b:55:43:bf:cb:
a1:9b:0e:70:73:b3:78:66:d7:62:de:3a:55:91:92:
a1:18:e8:3b:d4:32:58:70:68:46:2f:5c:2c:27:eb:
69:83:3a:8b:34:05:53:f1:11:30:95:a6:ba:ff:11:
59:d7:da:09:6a:07:f1:32:81:b1:91:39:bf:04:e7:
30:8f:4f:b5:f7:74:e2:1c:8e:69:ca:7f:31:20:66:
6a:df:78:04:20:cf:0b:f8:a5:51:86:26:ec:e7:f6:
9d:15:22:12:76:66:ca:8f:e2:20:80:15:b8:2f:4d:
57:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:00:4A:80:18:10:8E:61:A3:F8:EC:6D:03:F5:BC:B0:8B:50:92:1E
X509v3 Authority Key Identifier:
keyid:DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/0gBKgBgQjmGj-OxtA_W8sItQkh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/3E5FOv_olbZFK4QCdDfFwA_TcGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:be60::/32
Signature Algorithm: sha256WithRSAEncryption
a5:30:5e:fc:91:5c:81:d1:b7:ef:34:7f:a5:ce:6d:23:97:81:
0c:5b:97:ef:1d:c4:24:58:77:e6:46:6b:62:5b:d5:0d:5b:2f:
1b:83:fb:e0:08:58:0a:dc:60:cc:24:8b:c9:27:62:8f:67:e2:
43:e2:0f:08:48:d1:78:a5:e2:e4:77:9f:8e:42:0f:1f:7b:45:
74:14:29:fa:ea:46:15:a2:7e:3d:3e:3e:d9:4a:0a:ed:70:55:
25:e3:85:47:30:03:1a:a3:49:9b:ed:78:0e:e0:9b:89:93:dc:
48:3c:dc:d8:ec:a3:85:fb:78:ca:b3:f7:e8:9e:0b:25:62:8d:
e0:0b:9a:fd:c9:c1:a2:63:2b:ea:9c:64:7e:35:f6:82:d7:a3:
d5:ae:65:3b:05:1a:ff:84:af:a1:52:f4:bd:03:16:ae:43:a1:
a3:f9:6a:39:67:e6:90:82:b4:0f:a3:50:c4:27:de:d2:9f:60:
3f:ec:5f:62:20:69:8a:6c:97:12:28:b4:d1:67:e9:e0:16:82:
c7:ac:f2:b5:ff:f7:8b:88:db:13:f9:0f:30:a9:b2:7c:96:f6:
5c:fd:1e:0a:d6:9e:2c:84:0d:84:8c:fe:74:24:37:ce:97:24:
1b:3f:ff:4b:57:91:83:3d:67:ad:82:6b:71:2f:fa:bd:2a:37:
a3:5e:b5:75
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEGMcuOjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YzRlNDUzYWZmZTg5NWI2NDUyYjg0MDI3NDM3YzVjMDBmZDM3MDY3MB4XDTIyMDEy
NjEwMDEzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDIwMDRhODAxODEw
OGU2MWEzZjhlYzZkMDNmNWJjYjA4YjUwOTIxZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALiYwerfCuGxqnBN3+yuFHLzG/+oTyx/9U11QKF04kkDFYFl
DQDKruRXoXjWqvx3CluHKEcfBsbroeJZJ13grMjG15koLYGwVDo5sjjpe44BO4js
9uU5P1rC6Awxej6Z9SlwPDxASNmJpXODZ1R6O8e30B9qS52+60G/HXhO7XrTAgTM
0x0jRxY5YnzC/A1uhEtVQ7/LoZsOcHOzeGbXYt46VZGSoRjoO9QyWHBoRi9cLCfr
aYM6izQFU/ERMJWmuv8RWdfaCWoH8TKBsZE5vwTnMI9Ptfd04hyOacp/MSBmat94
BCDPC/ilUYYm7Of2nRUiEnZmyo/iIIAVuC9NV5cCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBTSAEqAGBCOYaP47G0D9bywi1CSHjAfBgNVHSMEGDAWgBTcTkU6/+iVtkUr
hAJ0N8XAD9NwZzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNFNUZPdl9vbGJaRks0UUNkRGZGd0FfVGNHYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzkvNThlNjU1LWU3MTMtNDVkMi05NThhLTE4MjI4NjdlMTU5Ni8x
LzBnQktnQmdRam1Hai1PeHRBX1c4c0l0UWtoNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzkv
NThlNjU1LWU3MTMtNDVkMi05NThhLTE4MjI4NjdlMTU5Ni8xLzNFNUZPdl9vbGJa
Rks0UUNkRGZGd0FfVGNHYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoBvmAwDQYJKoZIhvcNAQELBQAD
ggEBAKUwXvyRXIHRt+80f6XObSOXgQxbl+8dxCRYd+ZGa2Jb1Q1bLxuD++AIWArc
YMwki8knYo9n4kPiDwhI0Xil4uR3n45CDx97RXQUKfrqRhWifj0+PtlKCu1wVSXj
hUcwAxqjSZvteA7gm4mT3Eg83Njso4X7eMqz9+ieCyVijeALmv3JwaJjK+qcZH41
9oLXo9WuZTsFGv+Er6FS9L0DFq5DoaP5ajln5pCCtA+jUMQn3tKfYD/sX2IgaYps
lxIotNFn6eAWgses8rX/94uI2xP5DzCpsnyW9lz9HgrWniyEDYSM/nQkN86XJBs/
/0tXkYM9Z62Ca3Ev+r0qN6NetXU=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:47 2023 by rpki-client on console-ams.rpki-client.org