Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/1-lu7W7bFoerooamFFALsdqTsh-I.roa
File: 1-lu7W7bFoerooamFFALsdqTsh-I.roa (raw, json)
Hash identifier: qcdzSGl1HVJlF/jTYAoXhBJxZnIgzTzGVQNl3bSGrwQ=
Subject key identifier: FA:5B:BB:5B:B6:C5:A1:EA:E8:A1:A9:85:14:02:EC:76:A4:EC:87:E2
Certificate issuer: /CN=7ba2be98438b98ee68a0d1b8c4144520bd0a623d
Certificate serial: 04162F0F
Authority key identifier: 7B:A2:BE:98:43:8B:98:EE:68:A0:D1:B8:C4:14:45:20:BD:0A:62:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6K-mEOLmO5ooNG4xBRFIL0KYj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/1-lu7W7bFoerooamFFALsdqTsh-I.roa
Signing time: Sat 01 Jan 2022 10:02:59 +0000
ROA not before: Sat 01 Jan 2022 10:02:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9312
IP address blocks: 2a0e:7580:4590::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68562703 (0x4162f0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ba2be98438b98ee68a0d1b8c4144520bd0a623d
Validity
Not Before: Jan 1 10:02:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa5bbb5bb6c5a1eae8a1a9851402ec76a4ec87e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:34:d9:06:60:e4:3f:d5:6f:d3:5b:09:da:b7:
cd:1c:61:82:99:2a:f9:9e:5b:dc:1a:7c:cc:d8:ce:
66:a8:e9:5e:07:7d:12:eb:7d:6b:77:8c:f9:8d:8a:
fb:15:12:3d:a7:15:ac:4e:0c:73:b1:a3:54:cf:a5:
de:21:93:32:fa:35:f6:6a:b6:e5:64:f5:a9:46:b0:
70:c4:a4:51:cf:aa:f4:59:c1:b0:c5:d3:f1:ea:43:
bf:e4:24:ed:7b:1f:24:62:3a:00:5c:ca:6b:cd:df:
5c:8c:8d:fb:a0:0e:29:ca:0a:7e:95:92:64:c8:a4:
06:45:d5:eb:e1:54:75:49:48:f9:37:b6:d6:fc:c4:
62:c1:e2:bd:cc:00:ee:6d:09:5e:d5:4d:51:ad:7e:
be:02:37:a7:84:62:93:8e:f8:7d:30:61:5a:d3:a5:
11:31:0a:d9:6f:66:bf:3f:ce:96:c4:e2:0e:6c:0b:
69:36:f3:44:24:dc:3a:ae:c3:da:c7:43:78:16:3d:
8d:b5:9e:0c:8f:f1:8c:87:82:3e:a9:80:0c:b8:30:
3c:29:06:10:88:c4:44:72:1e:6b:ee:00:60:ae:a6:
7f:5d:41:ab:35:02:79:ae:87:0c:67:f3:78:bf:b0:
49:4f:e3:37:cb:0d:78:7e:7e:2a:8e:3d:9c:69:56:
a2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:5B:BB:5B:B6:C5:A1:EA:E8:A1:A9:85:14:02:EC:76:A4:EC:87:E2
X509v3 Authority Key Identifier:
keyid:7B:A2:BE:98:43:8B:98:EE:68:A0:D1:B8:C4:14:45:20:BD:0A:62:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6K-mEOLmO5ooNG4xBRFIL0KYj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/1-lu7W7bFoerooamFFALsdqTsh-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/e6K-mEOLmO5ooNG4xBRFIL0KYj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:7580:4590::/48
Signature Algorithm: sha256WithRSAEncryption
5d:27:3a:1e:ac:36:d8:ff:e1:fe:ec:52:56:b2:c3:73:ba:74:
14:69:ab:e0:d4:8e:39:3e:7e:fe:ae:aa:45:20:82:8f:51:ad:
fb:7b:57:13:17:f9:b8:a4:50:b3:56:c0:be:94:c3:16:8b:8b:
a6:b3:59:1c:c7:32:8c:cd:73:52:01:35:07:5b:cb:1a:d4:f6:
ff:dc:99:6c:c4:f0:a9:2d:22:cb:18:2f:2b:a2:9d:42:cc:18:
36:ef:2d:f1:99:43:56:0c:33:e6:2c:f2:e4:43:09:8b:dd:61:
41:73:62:0b:ce:93:30:fa:d3:6c:d2:43:7b:d3:5a:d6:bd:83:
fb:de:33:69:23:76:3d:43:15:f4:26:66:a5:59:3a:d5:5c:79:
69:a9:cd:d7:2a:50:1d:b4:c8:b2:1a:45:22:40:bc:d3:e5:99:
89:6c:ec:0c:1a:9d:b6:00:6b:d7:f2:b5:aa:b4:1e:91:71:df:
77:c3:12:3a:2b:43:21:d3:5f:27:f3:ca:cc:aa:07:50:29:1b:
11:1c:ee:85:3f:de:d6:5b:8e:e4:c6:7f:d0:c6:0f:85:df:df:
ba:a3:cd:b0:8a:e2:51:dc:36:4b:3a:4b:65:58:ac:f0:c0:c5:
c0:10:5e:2a:d0:b2:e7:56:18:1c:8a:f4:cb:65:de:8e:d3:0b:
ca:83:85:02
-----BEGIN CERTIFICATE-----
MIIE8zCCA9ugAwIBAgIEBBYvDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YmEyYmU5ODQzOGI5OGVlNjhhMGQxYjhjNDE0NDUyMGJkMGE2MjNkMB4XDTIyMDEw
MTEwMDI1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmE1YmJiNWJiNmM1
YTFlYWU4YTFhOTg1MTQwMmVjNzZhNGVjODdlMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKE02QZg5D/Vb9NbCdq3zRxhgpkq+Z5b3Bp8zNjOZqjpXgd9
Eut9a3eM+Y2K+xUSPacVrE4Mc7GjVM+l3iGTMvo19mq25WT1qUawcMSkUc+q9FnB
sMXT8epDv+Qk7XsfJGI6AFzKa83fXIyN+6AOKcoKfpWSZMikBkXV6+FUdUlI+Te2
1vzEYsHivcwA7m0JXtVNUa1+vgI3p4Rik474fTBhWtOlETEK2W9mvz/OlsTiDmwL
aTbzRCTcOq7D2sdDeBY9jbWeDI/xjIeCPqmADLgwPCkGEIjERHIea+4AYK6mf11B
qzUCea6HDGfzeL+wSU/jN8sNeH5+Ko49nGlWopkCAwEAAaOCAg0wggIJMB0GA1Ud
DgQWBBT6W7tbtsWh6uihqYUUAux2pOyH4jAfBgNVHSMEGDAWgBR7or6YQ4uY7mig
0bjEFEUgvQpiPTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2U2Sy1tRU9MbU81b29ORzR4QlJGSUwwS1lqMC5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTQvODQ1ZTc2LTljMmQtNGFmZi05MmFmLTQ5MzViM2Y1YzIwOS8x
LzEtbHU3VzdiRm9lcm9vYW1GRkFMc2RxVHNoLUkucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2U0
Lzg0NWU3Ni05YzJkLTRhZmYtOTJhZi00OTM1YjNmNWMyMDkvMS9lNkstbUVPTG1P
NW9vTkc0eEJSRklMMEtZajAuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqDnWARZAwDQYJKoZIhvcNAQEL
BQADggEBAF0nOh6sNtj/4f7sUlayw3O6dBRpq+DUjjk+fv6uqkUggo9Rrft7VxMX
+bikULNWwL6UwxaLi6azWRzHMozNc1IBNQdbyxrU9v/cmWzE8KktIssYLyuinULM
GDbvLfGZQ1YMM+Ys8uRDCYvdYUFzYgvOkzD602zSQ3vTWta9g/veM2kjdj1DFfQm
ZqVZOtVceWmpzdcqUB20yLIaRSJAvNPlmYls7AwanbYAa9fytaq0HpFx33fDEjor
QyHTXyfzysyqB1ApGxEc7oU/3tZbjuTGf9DGD4Xf37qjzbCK4lHcNks6S2VYrPDA
xcAQXirQsudWGByK9Mtl3o7TC8qDhQI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:28 2024 by rpki-client on console-ams.rpki-client.org