Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/306adb-7aa7-4b82-b05a-2a6b9a0ccabd/1/XrW8OYEox4Tkd8Hm-p9uBSjzmuc.roa
File: XrW8OYEox4Tkd8Hm-p9uBSjzmuc.roa (raw, json)
Hash identifier: cZfCs+xF9IwONK6JenmP6U1jwO0i/tBYs7TYPC6x7bg=
Subject key identifier: 5E:B5:BC:39:81:28:C7:84:E4:77:C1:E6:FA:9F:6E:05:28:F3:9A:E7
Certificate issuer: /CN=8c856557c4146a8b50dc4d94424b06680cef755b
Certificate serial: 35CB1609
Authority key identifier: 8C:85:65:57:C4:14:6A:8B:50:DC:4D:94:42:4B:06:68:0C:EF:75:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jIVlV8QUaotQ3E2UQksGaAzvdVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/306adb-7aa7-4b82-b05a-2a6b9a0ccabd/1/XrW8OYEox4Tkd8Hm-p9uBSjzmuc.roa
Signing time: Wed 12 Jan 2022 14:27:29 +0000
ROA not before: Wed 12 Jan 2022 14:27:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49846
IP address blocks: 2a01:348:317:8000::/49 maxlen: 49
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 902501897 (0x35cb1609)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c856557c4146a8b50dc4d94424b06680cef755b
Validity
Not Before: Jan 12 14:27:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5eb5bc398128c784e477c1e6fa9f6e0528f39ae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:de:83:7d:2c:77:9a:bb:39:c9:fb:63:d2:2b:
3f:4f:66:7a:32:a2:33:da:54:4b:86:3a:ed:a2:58:
b1:8f:30:cd:22:68:bd:e5:c9:c4:6a:90:06:47:4c:
8a:90:bb:6f:ac:04:27:e8:3f:1c:43:8f:df:98:14:
96:4c:78:57:5f:9a:c8:97:45:a9:cc:26:4f:6c:3e:
82:41:db:86:aa:c6:03:35:50:15:8a:fd:07:b7:f5:
98:b3:2c:fb:53:d7:3e:15:e1:f8:8d:eb:89:e8:89:
ff:92:7c:ac:ba:f5:b8:15:71:b8:09:e8:a5:6b:46:
ef:31:15:13:8a:17:5e:52:21:b3:56:a5:a1:9e:d5:
69:a0:4c:08:d1:25:5a:20:ca:30:e3:79:30:1a:98:
91:fb:93:f3:7b:4e:27:ac:8c:e6:ba:d2:81:5a:b1:
46:20:86:20:f0:fc:0e:80:74:e5:81:11:d5:7c:98:
a4:47:12:5d:f9:b8:16:5e:5c:79:01:64:96:3f:36:
94:52:8b:3a:30:92:cf:3f:a6:03:55:08:75:f7:d1:
60:e5:17:bb:ba:d9:ae:1d:06:3f:99:65:ba:44:74:
55:71:99:30:d3:1c:05:ed:61:c0:8f:a0:17:b5:d8:
2d:84:7e:48:58:5b:7f:2a:7a:85:49:48:5c:22:c3:
2b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:B5:BC:39:81:28:C7:84:E4:77:C1:E6:FA:9F:6E:05:28:F3:9A:E7
X509v3 Authority Key Identifier:
keyid:8C:85:65:57:C4:14:6A:8B:50:DC:4D:94:42:4B:06:68:0C:EF:75:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jIVlV8QUaotQ3E2UQksGaAzvdVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/306adb-7aa7-4b82-b05a-2a6b9a0ccabd/1/XrW8OYEox4Tkd8Hm-p9uBSjzmuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/306adb-7aa7-4b82-b05a-2a6b9a0ccabd/1/jIVlV8QUaotQ3E2UQksGaAzvdVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:348:317:8000::/49
Signature Algorithm: sha256WithRSAEncryption
b4:df:c4:b3:ff:f2:64:25:61:b8:f2:d1:1f:bc:10:37:b1:80:
e9:24:81:c5:57:67:6d:14:d9:75:8e:d5:04:4e:7d:48:17:ab:
f1:71:f9:48:3f:c4:96:2a:b8:32:f1:bf:5d:14:4a:2c:3e:11:
df:38:30:9b:56:64:f9:21:92:b5:3d:82:2a:d4:ad:72:b3:c6:
92:c8:73:81:78:92:ae:e2:1d:84:14:f8:be:34:e4:02:44:a6:
eb:5a:9a:9b:38:c3:a2:ca:fe:c8:f4:54:16:35:6b:7a:6e:6c:
82:0d:95:00:d8:e0:80:2a:f1:94:2f:8d:f2:94:25:fd:8f:8f:
90:bf:64:c3:3c:13:f2:ab:96:03:6b:f1:d5:c6:72:47:8b:42:
71:38:d8:0e:eb:2d:9c:31:4d:98:aa:d4:e5:db:be:f8:65:f9:
ba:3a:e6:35:87:38:5e:a2:99:6d:8c:d9:8c:49:b2:23:20:1e:
d4:6d:f4:ca:b3:49:d1:10:7e:d2:d5:fd:1f:65:da:9b:85:04:
72:be:e5:40:54:6d:c7:78:52:ea:d8:42:6b:e0:a1:84:1f:5a:
be:f2:71:23:b1:f2:2b:d2:c2:bc:53:a6:16:1e:b3:17:cc:d8:
41:88:45:dd:b1:fa:87:05:24:2e:eb:91:13:d9:1a:a6:db:74:
bc:bb:eb:92
-----BEGIN CERTIFICATE-----
MIIE8zCCA9ugAwIBAgIENcsWCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
Yzg1NjU1N2M0MTQ2YThiNTBkYzRkOTQ0MjRiMDY2ODBjZWY3NTViMB4XDTIyMDEx
MjE0MjcyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWViNWJjMzk4MTI4
Yzc4NGU0NzdjMWU2ZmE5ZjZlMDUyOGYzOWFlNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK3eg30sd5q7Ocn7Y9IrP09mejKiM9pUS4Y67aJYsY8wzSJo
veXJxGqQBkdMipC7b6wEJ+g/HEOP35gUlkx4V1+ayJdFqcwmT2w+gkHbhqrGAzVQ
FYr9B7f1mLMs+1PXPhXh+I3rieiJ/5J8rLr1uBVxuAnopWtG7zEVE4oXXlIhs1al
oZ7VaaBMCNElWiDKMON5MBqYkfuT83tOJ6yM5rrSgVqxRiCGIPD8DoB05YER1XyY
pEcSXfm4Fl5ceQFklj82lFKLOjCSzz+mA1UIdffRYOUXu7rZrh0GP5llukR0VXGZ
MNMcBe1hwI+gF7XYLYR+SFhbfyp6hUlIXCLDK50CAwEAAaOCAg0wggIJMB0GA1Ud
DgQWBBRetbw5gSjHhOR3web6n24FKPOa5zAfBgNVHSMEGDAWgBSMhWVXxBRqi1Dc
TZRCSwZoDO91WzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pJVmxWOFFVYW90UTNFMlVRa3NHYUF6dmRWcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGQvMzA2YWRiLTdhYTctNGI4Mi1iMDVhLTJhNmI5YTBjY2FiZC8x
L1hyVzhPWUVveDRUa2Q4SG0tcDl1QlNqem11Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGQv
MzA2YWRiLTdhYTctNGI4Mi1iMDVhLTJhNmI5YTBjY2FiZC8xL2pJVmxWOFFVYW90
UTNFMlVRa3NHYUF6dmRWcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAj
BggrBgEFBQcBBwEB/wQUMBIwEAQCAAIwCgMIByoBA0gDF4AwDQYJKoZIhvcNAQEL
BQADggEBALTfxLP/8mQlYbjy0R+8EDexgOkkgcVXZ20U2XWO1QROfUgXq/Fx+Ug/
xJYquDLxv10USiw+Ed84MJtWZPkhkrU9girUrXKzxpLIc4F4kq7iHYQU+L405AJE
putamps4w6LK/sj0VBY1a3pubIINlQDY4IAq8ZQvjfKUJf2Pj5C/ZMM8E/KrlgNr
8dXGckeLQnE42A7rLZwxTZiq1OXbvvhl+bo65jWHOF6imW2M2YxJsiMgHtRt9Mqz
SdEQftLV/R9l2puFBHK+5UBUbcd4UurYQmvgoYQfWr7ycSOx8ivSwrxTphYesxfM
2EGIRd2x+ocFJC7rkRPZGqbbdLy765I=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:52 2025 by rpki-client