Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/9bb7d6-7f7a-486c-8a0d-c47c26fa68af/1/DlM0qp71aBP1SWGelt8QwmxEfKs.roa
File: DlM0qp71aBP1SWGelt8QwmxEfKs.roa (raw, json)
Hash identifier: YMKA5Vudh5Cg9dzSyl90W3NEFMDHcfUoSgB5NTBsUsc=
Subject key identifier: 0E:53:34:AA:9E:F5:68:13:F5:49:61:9E:96:DF:10:C2:6C:44:7C:AB
Certificate issuer: /CN=546ec217e9b129316c23a6fa9f9a721f10c2d95d
Certificate serial: 0183F60EA3BD6D0E1647CDE03D966BAA4775
Authority key identifier: 54:6E:C2:17:E9:B1:29:31:6C:23:A6:FA:9F:9A:72:1F:10:C2:D9:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VG7CF-mxKTFsI6b6n5pyHxDC2V0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/9bb7d6-7f7a-486c-8a0d-c47c26fa68af/1/DlM0qp71aBP1SWGelt8QwmxEfKs.roa
Signing time: Thu 20 Oct 2022 15:41:38 +0000
ROA not before: Thu 20 Oct 2022 15:41:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197835
IP address blocks: 2a13:940::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f6:0e:a3:bd:6d:0e:16:47:cd:e0:3d:96:6b:aa:47:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546ec217e9b129316c23a6fa9f9a721f10c2d95d
Validity
Not Before: Oct 20 15:41:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e5334aa9ef56813f549619e96df10c26c447cab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:98:ea:50:fc:39:5a:26:37:da:44:58:b5:63:
22:0e:45:81:3d:a9:f1:05:08:b7:59:7e:bd:00:16:
7b:ec:4c:50:a9:df:d5:43:8a:90:5f:b2:90:8e:8f:
bc:46:8d:d9:48:1c:16:5b:2f:67:bd:6b:5f:3f:a4:
10:1d:c3:58:e5:77:3b:e9:c2:c2:96:4a:b6:4e:6b:
36:a2:53:ca:34:b3:0a:f0:8e:a4:6e:0f:47:4c:b2:
67:d2:2b:76:d7:71:0d:2f:24:73:0b:55:7e:d7:78:
cd:a5:66:39:c2:f9:72:d3:5e:61:bd:3f:61:bd:77:
fd:5d:e5:d7:78:92:30:67:6d:dc:7e:f1:1c:37:51:
f2:e3:68:f7:c1:3d:e0:5c:af:e6:3e:e0:d4:7a:3b:
5d:9e:80:42:d6:3a:5f:ee:61:67:c6:cc:98:75:7c:
11:63:9f:4d:3c:39:6d:9c:5c:e6:8c:7b:7a:03:cf:
d1:df:96:8f:ee:a9:4e:bc:de:a6:53:b4:42:e1:bd:
5a:0b:bf:57:46:6d:0e:7f:31:3d:3e:4d:9e:3e:9c:
8e:1e:cb:bd:e0:a5:27:54:f8:c2:0e:34:20:1f:df:
ef:f2:4b:26:9a:e0:f7:a7:e9:4e:fd:52:1d:7e:f5:
a8:21:b5:4c:a6:83:b0:7d:78:21:d1:bd:85:59:cc:
19:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:53:34:AA:9E:F5:68:13:F5:49:61:9E:96:DF:10:C2:6C:44:7C:AB
X509v3 Authority Key Identifier:
keyid:54:6E:C2:17:E9:B1:29:31:6C:23:A6:FA:9F:9A:72:1F:10:C2:D9:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VG7CF-mxKTFsI6b6n5pyHxDC2V0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/9bb7d6-7f7a-486c-8a0d-c47c26fa68af/1/DlM0qp71aBP1SWGelt8QwmxEfKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/9bb7d6-7f7a-486c-8a0d-c47c26fa68af/1/VG7CF-mxKTFsI6b6n5pyHxDC2V0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:940::/29
Signature Algorithm: sha256WithRSAEncryption
2a:82:63:cd:9c:60:fd:12:6a:cf:b6:6c:f8:7f:16:58:fe:f6:
f8:c1:29:83:69:77:e4:aa:f5:97:9d:d7:4a:77:b3:a3:cf:a7:
75:8d:3a:74:dc:e0:af:2c:c9:36:b9:3c:78:ea:99:7b:f8:bd:
80:68:3b:ae:3c:54:e8:05:7f:fb:c1:f8:aa:64:b3:84:1d:96:
86:09:03:bc:61:e7:81:a3:32:e3:51:65:ea:38:a0:a7:ba:ce:
d5:da:84:a9:1f:e3:f6:34:86:7d:3b:7f:d6:53:d9:f7:9d:07:
87:71:1c:8d:79:69:91:6d:80:b7:c2:67:ed:d2:ac:20:5e:e8:
81:5d:09:60:9d:69:ff:c0:46:cc:f9:3f:83:ca:de:fc:f8:95:
a2:fc:53:36:e8:ff:d8:06:89:ef:d9:c0:fa:30:23:6e:13:a2:
4b:9e:db:ec:dc:3d:d4:59:26:ed:1c:e5:48:19:84:f0:80:68:
a1:37:fa:da:28:74:57:b3:da:d4:d1:84:f1:59:8a:6f:92:61:
23:74:88:68:5c:8e:23:60:ac:c2:84:17:4c:76:50:4f:e4:9c:
18:e6:1e:69:12:b7:fe:5a:ed:20:db:c4:39:65:f5:9f:b4:03:
f3:c7:44:8e:9a:61:9f:8e:4f:ac:bf:0c:4f:d6:ec:bd:b2:d3:
11:a9:af:d0
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYP2DqO9bQ4WR83gPZZrqkd1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0NmVjMjE3ZTliMTI5MzE2YzIzYTZmYTlmOWE3MjFmMTBj
MmQ5NWQwHhcNMjIxMDIwMTU0MTM4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTUzMzRhYTllZjU2ODEzZjU0OTYxOWU5NmRmMTBjMjZjNDQ3Y2FiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppjqUPw5WiY32kRYtWMiDkWBPanx
BQi3WX69ABZ77ExQqd/VQ4qQX7KQjo+8Ro3ZSBwWWy9nvWtfP6QQHcNY5Xc76cLC
lkq2Tms2olPKNLMK8I6kbg9HTLJn0it213ENLyRzC1V+13jNpWY5wvly015hvT9h
vXf9XeXXeJIwZ23cfvEcN1Hy42j3wT3gXK/mPuDUejtdnoBC1jpf7mFnxsyYdXwR
Y59NPDltnFzmjHt6A8/R35aP7qlOvN6mU7RC4b1aC79XRm0OfzE9Pk2ePpyOHsu9
4KUnVPjCDjQgH9/v8ksmmuD3p+lO/VIdfvWoIbVMpoOwfXgh0b2FWcwZgwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFA5TNKqe9WgT9UlhnpbfEMJsRHyrMB8GA1UdIwQY
MBaAFFRuwhfpsSkxbCOm+p+ach8QwtldMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkc3Q0YtbXhLVEZzSTZiNm41cHlIeERDMlYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS85YmI3ZDYtN2Y3YS00ODZjLThhMGQt
YzQ3YzI2ZmE2OGFmLzEvRGxNMHFwNzFhQlAxU1dHZWx0OFF3bXhFZktzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS85YmI3ZDYtN2Y3YS00ODZjLThhMGQtYzQ3YzI2ZmE2OGFm
LzEvVkc3Q0YtbXhLVEZzSTZiNm41cHlIeERDMlYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhMJQDAN
BgkqhkiG9w0BAQsFAAOCAQEAKoJjzZxg/RJqz7Zs+H8WWP72+MEpg2l35Kr1l53X
Snezo8+ndY06dNzgryzJNrk8eOqZe/i9gGg7rjxU6AV/+8H4qmSzhB2WhgkDvGHn
gaMy41Fl6jigp7rO1dqEqR/j9jSGfTt/1lPZ950Hh3EcjXlpkW2At8Jn7dKsIF7o
gV0JYJ1p/8BGzPk/g8re/PiVovxTNuj/2AaJ79nA+jAjbhOiS57b7Nw91Fkm7Rzl
SBmE8IBooTf62ih0V7Pa1NGE8VmKb5JhI3SIaFyOI2CswoQXTHZQT+ScGOYeaRK3
/lrtINvEOWX1n7QD88dEjpphn45PrL8MT9bsvbLTEamv0A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:19 2024 by rpki-client on console-ams.rpki-client.org