Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/2426f1-8f2a-49ff-8643-193ad5c79b83/1/aRWWdW7M0nQPv25-Y3NStaOeiZ8.roa
File: aRWWdW7M0nQPv25-Y3NStaOeiZ8.roa (raw, json)
Hash identifier: HYNSoNcdiWwpEKw+YMJCk+6BU11lgP8Q4vEWqjBb1CQ=
Subject key identifier: 69:15:96:75:6E:CC:D2:74:0F:BF:6E:7E:63:73:52:B5:A3:9E:89:9F
Certificate issuer: /CN=96e82ab648b8b3f8857569c39af9544adfc17c01
Certificate serial: 0544C5
Authority key identifier: 96:E8:2A:B6:48:B8:B3:F8:85:75:69:C3:9A:F9:54:4A:DF:C1:7C:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lugqtki4s_iFdWnDmvlUSt_BfAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/2426f1-8f2a-49ff-8643-193ad5c79b83/1/aRWWdW7M0nQPv25-Y3NStaOeiZ8.roa
Signing time: Fri 13 May 2022 10:36:40 +0000
ROA not before: Fri 13 May 2022 10:36:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9103
IP address blocks: 2a00:6c40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 345285 (0x544c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96e82ab648b8b3f8857569c39af9544adfc17c01
Validity
Not Before: May 13 10:36:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=691596756eccd2740fbf6e7e637352b5a39e899f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:3a:4c:08:41:04:94:57:b4:96:40:d0:42:da:
ff:07:83:b7:0e:60:68:8f:f4:d5:91:dd:76:b6:37:
62:27:02:fd:7b:53:a7:37:ce:f3:16:62:b4:2f:69:
c8:40:80:02:fd:24:db:dc:57:bc:63:e9:d2:24:a9:
17:bc:b0:ec:16:84:9b:29:05:62:df:1a:88:73:d4:
a7:a0:fb:35:cc:f2:d0:df:84:e3:ab:99:6b:3e:96:
3c:e8:9c:3a:55:bd:a6:9d:a7:d4:52:8f:11:1b:43:
ca:7d:4e:73:8d:5e:b3:a4:1b:ef:5c:d9:4c:39:f8:
ea:82:11:d5:be:1b:c9:80:28:51:86:34:82:0b:52:
ec:19:53:ce:05:42:56:43:c6:cd:9e:eb:e5:89:95:
ae:3a:5e:9b:66:3e:92:7e:1e:e6:f3:a3:e7:f7:63:
c3:c6:ba:94:56:17:2e:36:9b:c2:34:01:b6:ce:b4:
8f:90:ad:d2:c6:b7:21:40:8a:fc:b6:19:7e:a2:64:
ba:a6:37:18:6c:11:cb:30:13:a7:0e:e4:89:c5:2e:
65:88:fb:f8:b8:12:95:a0:ed:87:5b:ba:d0:a6:5d:
57:16:5b:4b:35:7e:7f:df:8b:7a:10:4e:66:1c:7c:
04:7d:b1:2e:b4:2b:5e:dd:7a:41:92:38:69:f7:25:
f3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:15:96:75:6E:CC:D2:74:0F:BF:6E:7E:63:73:52:B5:A3:9E:89:9F
X509v3 Authority Key Identifier:
keyid:96:E8:2A:B6:48:B8:B3:F8:85:75:69:C3:9A:F9:54:4A:DF:C1:7C:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lugqtki4s_iFdWnDmvlUSt_BfAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/2426f1-8f2a-49ff-8643-193ad5c79b83/1/aRWWdW7M0nQPv25-Y3NStaOeiZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/2426f1-8f2a-49ff-8643-193ad5c79b83/1/lugqtki4s_iFdWnDmvlUSt_BfAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:6c40::/32
Signature Algorithm: sha256WithRSAEncryption
9c:2f:ca:60:3c:a2:3c:3a:b0:bf:13:bb:f3:0b:f9:57:10:d9:
9a:8c:e4:df:7e:bc:fa:fd:c5:1d:7d:1b:28:5c:28:24:e5:ec:
d0:d7:18:79:42:9b:49:d8:7e:4c:59:89:84:ef:01:a6:c0:b9:
f6:56:38:02:fc:79:f2:a0:62:19:b5:13:89:be:56:89:7e:60:
5c:11:11:29:d4:1d:6b:59:0a:8d:86:67:28:8b:e1:5c:41:f0:
e9:b0:ad:96:31:aa:15:62:b9:38:dc:29:82:c7:96:1b:64:45:
74:98:b7:5f:c6:82:eb:af:70:8e:39:44:a4:78:3e:fb:cd:9a:
f6:7f:2d:50:f2:59:c4:17:c1:1a:de:c9:48:ba:91:04:0b:d6:
a2:f1:11:f4:09:a9:44:0d:69:6b:1e:fa:7b:f7:46:4b:c5:3d:
9d:69:5c:c2:e3:41:90:c7:c7:43:52:11:fb:49:df:bf:33:09:
02:ca:71:ab:21:82:8a:fd:15:62:8f:7b:b6:b0:eb:7a:be:cf:
e6:77:8f:17:87:3e:0d:92:88:05:2c:a5:eb:fd:0d:be:f4:30:
42:48:c8:23:ea:2b:a6:f3:7c:47:10:cd:09:38:89:37:64:43:
5f:23:35:32:26:e3:83:10:6b:f1:11:30:82:90:00:e9:a4:dd:
46:40:3d:ad
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIDBUTFMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDk2
ZTgyYWI2NDhiOGIzZjg4NTc1NjljMzlhZjk1NDRhZGZjMTdjMDEwHhcNMjIwNTEz
MTAzNjQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2OTE1OTY3NTZlY2Nk
Mjc0MGZiZjZlN2U2MzczNTJiNWEzOWU4OTlmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAjjpMCEEElFe0lkDQQtr/B4O3DmBoj/TVkd12tjdiJwL9e1On
N87zFmK0L2nIQIAC/STb3Fe8Y+nSJKkXvLDsFoSbKQVi3xqIc9SnoPs1zPLQ34Tj
q5lrPpY86Jw6Vb2mnafUUo8RG0PKfU5zjV6zpBvvXNlMOfjqghHVvhvJgChRhjSC
C1LsGVPOBUJWQ8bNnuvliZWuOl6bZj6Sfh7m86Pn92PDxrqUVhcuNpvCNAG2zrSP
kK3SxrchQIr8thl+omS6pjcYbBHLMBOnDuSJxS5liPv4uBKVoO2HW7rQpl1XFltL
NX5/34t6EE5mHHwEfbEutCte3XpBkjhp9yXzKQIDAQABo4ICCjCCAgYwHQYDVR0O
BBYEFGkVlnVuzNJ0D79ufmNzUrWjnomfMB8GA1UdIwQYMBaAFJboKrZIuLP4hXVp
w5r5VErfwXwBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
bHVncXRraTRzX2lGZFduRG12bFVTdF9CZkFFLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9mNy8yNDI2ZjEtOGYyYS00OWZmLTg2NDMtMTkzYWQ1Yzc5YjgzLzEv
YVJXV2RXN00wblFQdjI1LVkzTlN0YU9laVo4LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8y
NDI2ZjEtOGYyYS00OWZmLTg2NDMtMTkzYWQ1Yzc5YjgzLzEvbHVncXRraTRzX2lG
ZFduRG12bFVTdF9CZkFFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAG
CCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgBsQDANBgkqhkiG9w0BAQsFAAOC
AQEAnC/KYDyiPDqwvxO78wv5VxDZmozk3368+v3FHX0bKFwoJOXs0NcYeUKbSdh+
TFmJhO8BpsC59lY4Avx58qBiGbUTib5WiX5gXBERKdQda1kKjYZnKIvhXEHw6bCt
ljGqFWK5ONwpgseWG2RFdJi3X8aC669wjjlEpHg++82a9n8tUPJZxBfBGt7JSLqR
BAvWovER9AmpRA1pax76e/dGS8U9nWlcwuNBkMfHQ1IR+0nfvzMJAspxqyGCiv0V
Yo97trDrer7P5nePF4c+DZKIBSyl6/0NvvQwQkjII+orpvN8RxDNCTiJN2RDXyM1
MibjgxBr8REwgpAA6aTdRkA9rQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:03 2024 by rpki-client on console-fra.rpki-client.org