Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5b21e3-3944-4ce6-aaf5-c0ba2f3fc72a/1/GN0I7NhUIBDqkz4jB-JMiCrAAug.roa
File: GN0I7NhUIBDqkz4jB-JMiCrAAug.roa (raw, json)
Hash identifier: cVZnci2SZ6t+ggQ3zXPmSLdh7wPU7RqOoAt0AlS17FA=
Subject key identifier: 18:DD:08:EC:D8:54:20:10:EA:93:3E:23:07:E2:4C:88:2A:C0:02:E8
Certificate issuer: /CN=5776d9a0b55bd495a1be3c5c03fa251d3de8b8c5
Certificate serial: 0181EECA63DB796FDF3D3D7AE650CE7417D3
Authority key identifier: 57:76:D9:A0:B5:5B:D4:95:A1:BE:3C:5C:03:FA:25:1D:3D:E8:B8:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V3bZoLVb1JWhvjxcA_olHT3ouMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5b21e3-3944-4ce6-aaf5-c0ba2f3fc72a/1/GN0I7NhUIBDqkz4jB-JMiCrAAug.roa
Signing time: Mon 11 Jul 2022 19:44:10 +0000
ROA not before: Mon 11 Jul 2022 19:44:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209861
IP address blocks: 2a10:a647:ad00::/40 maxlen: 40
2a10:a642:aa00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ee:ca:63:db:79:6f:df:3d:3d:7a:e6:50:ce:74:17:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5776d9a0b55bd495a1be3c5c03fa251d3de8b8c5
Validity
Not Before: Jul 11 19:44:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18dd08ecd8542010ea933e2307e24c882ac002e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:90:46:54:9f:fd:e3:eb:d8:f9:8a:35:f6:b1:
44:ad:d9:9e:a9:c0:ca:51:32:54:33:c3:cd:8c:ef:
8a:af:2a:c5:d8:05:e7:ae:55:53:1a:61:58:2b:fa:
ca:7f:9c:de:98:b0:1b:28:fc:a5:41:07:51:1e:cb:
3a:73:51:74:35:ff:7d:c2:e0:82:d6:2d:ad:ec:0e:
e0:c3:38:a0:dc:7e:8a:51:92:6a:ba:cf:d8:16:76:
85:cf:8e:86:9b:b4:cb:4f:aa:aa:b0:41:74:f1:00:
29:92:fd:77:f8:39:bf:65:0f:54:9a:8b:9b:e2:3f:
8c:8c:00:98:ce:08:7c:82:66:c8:a4:92:3a:fa:8a:
88:24:69:c2:30:78:2f:18:c4:d4:c0:3e:d4:af:e1:
1e:13:86:0a:d2:b3:07:82:da:90:f2:88:33:7c:21:
77:97:92:13:f7:9e:f7:7d:a4:61:18:be:dd:8c:d9:
8e:49:a4:a5:2c:a3:71:22:86:3c:0c:eb:8c:b3:fa:
cd:ba:20:f9:41:89:94:cd:85:2b:f0:ad:28:eb:6d:
55:a8:ac:ca:c9:20:26:06:0d:92:6c:dc:84:c3:5a:
1d:39:20:01:38:da:84:dd:6a:16:9a:a5:80:3c:f7:
06:98:2d:9d:c3:4a:b9:ab:c5:92:b3:55:2b:77:19:
b1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:DD:08:EC:D8:54:20:10:EA:93:3E:23:07:E2:4C:88:2A:C0:02:E8
X509v3 Authority Key Identifier:
keyid:57:76:D9:A0:B5:5B:D4:95:A1:BE:3C:5C:03:FA:25:1D:3D:E8:B8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3bZoLVb1JWhvjxcA_olHT3ouMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5b21e3-3944-4ce6-aaf5-c0ba2f3fc72a/1/GN0I7NhUIBDqkz4jB-JMiCrAAug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5b21e3-3944-4ce6-aaf5-c0ba2f3fc72a/1/V3bZoLVb1JWhvjxcA_olHT3ouMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:a642:aa00::/48
2a10:a647:ad00::/40
Signature Algorithm: sha256WithRSAEncryption
90:d5:95:0e:b4:93:17:fb:8c:e7:25:04:bb:7d:e1:e4:c0:f7:
81:ef:c2:2e:74:05:6c:c1:b5:9f:07:58:aa:11:3e:a5:2e:89:
f7:c1:88:30:43:d0:99:54:29:d3:f9:50:a0:5c:a7:c7:b6:ef:
6b:65:ac:87:22:71:b4:e1:93:0d:77:b3:85:16:82:41:58:1f:
df:99:5e:c8:a9:5b:f5:5c:aa:cd:1a:2d:20:43:eb:c2:b0:b5:
b5:14:b6:38:c3:98:41:63:52:41:90:74:91:d7:4c:04:6e:ac:
1f:f6:98:60:5b:9f:05:ad:c3:1d:c8:f1:d3:8f:3e:63:2f:d6:
6a:5b:8f:2c:47:9d:c9:0c:b1:ec:35:f8:37:88:c6:2c:56:8c:
06:86:59:dd:f4:eb:a3:23:81:1d:0d:11:33:81:c2:1e:98:d2:
71:68:6d:fb:49:8b:c3:0f:6b:66:a9:84:80:6f:94:8b:80:7f:
ad:9f:f2:fd:6d:49:a1:0c:46:45:f3:27:7d:d4:01:8c:db:24:
7c:05:cc:f9:66:c4:ca:e0:11:ae:a6:c6:4b:40:fd:e6:91:4b:
77:52:f4:9c:c4:94:99:a9:14:95:6d:d5:d8:05:85:bb:aa:6f:
60:3c:7e:24:e1:29:2e:de:c7:2c:fa:5c:d0:38:ce:af:a7:ee:
fa:28:a6:6e
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgISAYHuymPbeW/fPT165lDOdBfTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3NzZkOWEwYjU1YmQ0OTVhMWJlM2M1YzAzZmEyNTFkM2Rl
OGI4YzUwHhcNMjIwNzExMTk0NDEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOGRkMDhlY2Q4NTQyMDEwZWE5MzNlMjMwN2UyNGM4ODJhYzAwMmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppBGVJ/94+vY+Yo19rFErdmeqcDK
UTJUM8PNjO+KryrF2AXnrlVTGmFYK/rKf5zemLAbKPylQQdRHss6c1F0Nf99wuCC
1i2t7A7gwzig3H6KUZJqus/YFnaFz46Gm7TLT6qqsEF08QApkv13+Dm/ZQ9Umoub
4j+MjACYzgh8gmbIpJI6+oqIJGnCMHgvGMTUwD7Ur+EeE4YK0rMHgtqQ8ogzfCF3
l5IT9573faRhGL7djNmOSaSlLKNxIoY8DOuMs/rNuiD5QYmUzYUr8K0o621VqKzK
ySAmBg2SbNyEw1odOSABONqE3WoWmqWAPPcGmC2dw0q5q8WSs1Urdxmx+wIDAQAB
o4ICFDCCAhAwHQYDVR0OBBYEFBjdCOzYVCAQ6pM+IwfiTIgqwALoMB8GA1UdIwQY
MBaAFFd22aC1W9SVob48XAP6JR096LjFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVjNiWm9MVmIxSldodmp4Y0Ffb2xIVDNvdU1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS81YjIxZTMtMzk0NC00Y2U2LWFhZjUt
YzBiYTJmM2ZjNzJhLzEvR04wSTdOaFVJQkRxa3o0akItSk1pQ3JBQXVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS81YjIxZTMtMzk0NC00Y2U2LWFhZjUtYzBiYTJmM2ZjNzJh
LzEvVjNiWm9MVmIxSldodmp4Y0Ffb2xIVDNvdU1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwcAKhCmQqoA
AwYAKhCmR60wDQYJKoZIhvcNAQELBQADggEBAJDVlQ60kxf7jOclBLt94eTA94Hv
wi50BWzBtZ8HWKoRPqUuiffBiDBD0JlUKdP5UKBcp8e272tlrIcicbThkw13s4UW
gkFYH9+ZXsipW/Vcqs0aLSBD68KwtbUUtjjDmEFjUkGQdJHXTARurB/2mGBbnwWt
wx3I8dOPPmMv1mpbjyxHnckMsew1+DeIxixWjAaGWd3066MjgR0NETOBwh6Y0nFo
bftJi8MPa2aphIBvlIuAf62f8v1tSaEMRkXzJ33UAYzbJHwFzPlmxMrgEa6mxktA
/eaRS3dS9JzElJmpFJVt1dgFhbuqb2A8fiThKS7exyz6XNA4zq+n7voopm4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:25 2024 by rpki-client on console-fra.rpki-client.org