Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4f955b-2ba5-4fc4-83f5-02dae131246f/1/_5Q196-hBzYhswU9dBh8Nco4THA.roa
File: _5Q196-hBzYhswU9dBh8Nco4THA.roa (raw, json)
Hash identifier: x4fZ1mtNSu5HC4w0MEv9dn1TUkHPIs5mvbXpiF773pk=
Subject key identifier: FF:94:35:F7:AF:A1:07:36:21:B3:05:3D:74:18:7C:35:CA:38:4C:70
Certificate issuer: /CN=5d4fccc994e94131dc11bfc95c64585b345e01f5
Certificate serial: 387BA70D
Authority key identifier: 5D:4F:CC:C9:94:E9:41:31:DC:11:BF:C9:5C:64:58:5B:34:5E:01:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XU_MyZTpQTHcEb_JXGRYWzReAfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4f955b-2ba5-4fc4-83f5-02dae131246f/1/_5Q196-hBzYhswU9dBh8Nco4THA.roa
Signing time: Sat 01 Jan 2022 09:55:16 +0000
ROA not before: Sat 01 Jan 2022 09:55:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201458
IP address blocks: 2a03:4720::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 947627789 (0x387ba70d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d4fccc994e94131dc11bfc95c64585b345e01f5
Validity
Not Before: Jan 1 09:55:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff9435f7afa1073621b3053d74187c35ca384c70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f9:48:9e:13:da:52:3e:7a:2f:b8:a4:34:93:
fb:3e:76:2c:f6:39:5c:be:bf:69:27:87:76:99:44:
07:e5:b6:ee:db:64:be:0b:ff:17:fa:8b:b2:2a:98:
61:73:76:5e:4f:c5:b5:3f:33:5e:94:af:92:e5:f4:
ae:c4:36:69:cc:33:67:42:f5:29:aa:83:cb:4e:ce:
ee:6d:5d:c8:65:6e:59:9c:92:a8:27:65:fc:1b:bf:
3e:26:68:26:2b:46:9e:3a:1a:49:00:e0:33:b0:3f:
a8:4d:43:31:7e:01:33:7b:07:25:80:96:ef:1c:b9:
45:a0:e9:38:b6:b0:f2:9d:14:f8:23:99:c9:5f:5c:
e6:0e:7c:f5:fc:d0:dd:5a:ca:33:7d:46:e0:cc:a5:
84:c3:5b:23:63:b4:ca:f4:2f:2c:8c:be:1d:ad:08:
f2:89:17:c3:a3:92:5f:ac:1c:64:cc:1a:f7:00:f6:
ed:9e:4c:f2:43:69:11:37:fc:00:15:ce:0d:8c:18:
a5:49:01:34:75:f8:b9:8c:13:79:e7:0e:1c:01:bc:
b5:87:70:09:45:49:04:3a:d5:68:9e:ff:86:a3:6d:
3d:5a:94:d8:b3:79:8d:e5:07:28:9e:f7:1b:63:5d:
b0:ae:2f:f5:6a:a7:2d:7f:ac:0d:5a:0c:d8:8b:42:
d6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:94:35:F7:AF:A1:07:36:21:B3:05:3D:74:18:7C:35:CA:38:4C:70
X509v3 Authority Key Identifier:
keyid:5D:4F:CC:C9:94:E9:41:31:DC:11:BF:C9:5C:64:58:5B:34:5E:01:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XU_MyZTpQTHcEb_JXGRYWzReAfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4f955b-2ba5-4fc4-83f5-02dae131246f/1/_5Q196-hBzYhswU9dBh8Nco4THA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4f955b-2ba5-4fc4-83f5-02dae131246f/1/XU_MyZTpQTHcEb_JXGRYWzReAfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:4720::/32
Signature Algorithm: sha256WithRSAEncryption
a1:7a:a2:51:56:89:4d:67:a0:82:cd:45:32:f1:bd:f1:55:92:
38:4f:16:3b:04:27:d2:87:90:de:ac:83:50:96:a0:4e:06:84:
44:51:19:b0:29:c9:fe:bc:14:f8:a7:d0:41:c1:3c:63:33:aa:
33:8c:e1:7b:04:51:5d:41:dc:7f:ec:fe:de:d7:53:a6:3d:ff:
5a:a9:85:29:bc:98:4d:76:d7:ec:ed:a2:67:89:16:c3:05:f4:
7e:b9:24:7c:52:77:a4:6d:43:cc:3b:70:41:bd:b4:f8:62:1b:
fc:37:7d:aa:0b:19:e4:7c:1d:fc:8b:ba:30:f6:fe:1e:64:da:
8a:20:c6:cd:00:9e:15:a6:7b:6a:f0:48:9f:00:a5:31:87:1e:
67:84:bf:6a:88:8b:ad:41:e5:90:d3:e7:56:1e:1a:03:dc:e1:
bc:e3:bd:f0:60:12:11:64:8b:17:c8:eb:1d:7d:f8:55:73:2f:
a1:71:ce:9d:ad:26:28:ed:4c:e8:5f:55:11:ca:06:22:8e:6f:
57:b2:7e:fb:b0:2e:a2:98:1e:d5:5f:dc:81:43:80:c0:2b:8d:
d7:3d:9d:30:ec:60:38:91:77:5a:fa:d7:75:fb:ea:4b:4d:a8:
1e:a0:3f:31:6e:47:70:0d:c2:7b:ad:57:59:f0:4f:f1:3f:c2:
c9:47:c1:d5
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEOHunDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZDRmY2NjOTk0ZTk0MTMxZGMxMWJmYzk1YzY0NTg1YjM0NWUwMWY1MB4XDTIyMDEw
MTA5NTUxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmY5NDM1ZjdhZmEx
MDczNjIxYjMwNTNkNzQxODdjMzVjYTM4NGM3MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALL5SJ4T2lI+ei+4pDST+z52LPY5XL6/aSeHdplEB+W27ttk
vgv/F/qLsiqYYXN2Xk/FtT8zXpSvkuX0rsQ2acwzZ0L1KaqDy07O7m1dyGVuWZyS
qCdl/Bu/PiZoJitGnjoaSQDgM7A/qE1DMX4BM3sHJYCW7xy5RaDpOLaw8p0U+COZ
yV9c5g589fzQ3VrKM31G4MylhMNbI2O0yvQvLIy+Ha0I8okXw6OSX6wcZMwa9wD2
7Z5M8kNpETf8ABXODYwYpUkBNHX4uYwTeecOHAG8tYdwCUVJBDrVaJ7/hqNtPVqU
2LN5jeUHKJ73G2NdsK4v9WqnLX+sDVoM2ItC1hUCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT/lDX3r6EHNiGzBT10GHw1yjhMcDAfBgNVHSMEGDAWgBRdT8zJlOlBMdwR
v8lcZFhbNF4B9TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hVX015WlRwUVRIY0ViX0pYR1JZV3pSZUFmVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTUvNGY5NTViLTJiYTUtNGZjNC04M2Y1LTAyZGFlMTMxMjQ2Zi8x
L181UTE5Ni1oQnpZaHN3VTlkQmg4TmNvNFRIQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTUv
NGY5NTViLTJiYTUtNGZjNC04M2Y1LTAyZGFlMTMxMjQ2Zi8xL1hVX015WlRwUVRI
Y0ViX0pYR1JZV3pSZUFmVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoDRyAwDQYJKoZIhvcNAQELBQAD
ggEBAKF6olFWiU1noILNRTLxvfFVkjhPFjsEJ9KHkN6sg1CWoE4GhERRGbApyf68
FPin0EHBPGMzqjOM4XsEUV1B3H/s/t7XU6Y9/1qphSm8mE121+ztomeJFsMF9H65
JHxSd6RtQ8w7cEG9tPhiG/w3faoLGeR8HfyLujD2/h5k2oogxs0AnhWme2rwSJ8A
pTGHHmeEv2qIi61B5ZDT51YeGgPc4bzjvfBgEhFkixfI6x19+FVzL6Fxzp2tJijt
TOhfVRHKBiKOb1eyfvuwLqKYHtVf3IFDgMArjdc9nTDsYDiRd1r613X76ktNqB6g
PzFuR3ANwnutV1nwT/E/wslHwdU=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:59 2025 by rpki-client