Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/f0dd5f-b972-410b-9907-166fb9db6db3/1/CLyFyVFz1xF6OYGrdOAs8AL0cAI.roa
File: CLyFyVFz1xF6OYGrdOAs8AL0cAI.roa (raw, json)
Hash identifier: dSlLmh31heJ/TMq8dUe6wSLkGzNhFVeO45egXEhgpB4=
Subject key identifier: 08:BC:85:C9:51:73:D7:11:7A:39:81:AB:74:E0:2C:F0:02:F4:70:02
Certificate issuer: /CN=4d302a2dd517a61a3b952746f2ee9fbe436d6349
Certificate serial: 355AB58C
Authority key identifier: 4D:30:2A:2D:D5:17:A6:1A:3B:95:27:46:F2:EE:9F:BE:43:6D:63:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTAqLdUXpho7lSdG8u6fvkNtY0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/f0dd5f-b972-410b-9907-166fb9db6db3/1/CLyFyVFz1xF6OYGrdOAs8AL0cAI.roa
Signing time: Sat 01 Jan 2022 05:54:41 +0000
ROA not before: Sat 01 Jan 2022 05:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51603
IP address blocks: 2a01:56f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 895137164 (0x355ab58c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d302a2dd517a61a3b952746f2ee9fbe436d6349
Validity
Not Before: Jan 1 05:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08bc85c95173d7117a3981ab74e02cf002f47002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:39:48:57:8f:3c:c5:e8:9c:83:0e:ce:bb:a9:
14:cf:57:54:34:56:4f:e4:7b:e1:db:f1:ae:bf:2c:
6c:0b:32:e8:a2:30:a1:82:33:7b:8e:6b:2d:7f:f2:
f6:1d:a3:d3:82:f3:85:13:3e:fa:d3:db:64:9b:a1:
c7:5c:40:79:bf:46:d2:81:ac:62:aa:32:92:bf:b0:
06:67:a5:0a:b3:54:17:09:66:6c:e9:37:eb:3b:e7:
cc:68:a1:48:13:61:c4:a4:7c:06:91:17:8a:f5:ea:
f9:9b:4b:58:c3:f2:bb:b4:4d:a6:76:c3:97:de:f0:
f3:76:27:49:74:21:1e:d4:07:b6:8b:54:45:74:0c:
dd:23:91:45:33:a4:f2:ee:da:48:4b:32:78:83:07:
9e:6d:08:3c:6c:89:5b:be:d8:33:4b:7c:49:e6:82:
81:cb:0e:a6:09:2e:e2:c4:a4:73:1e:ce:ed:e7:79:
77:f7:db:c2:fd:02:78:f8:84:76:5a:c3:02:b0:c4:
7a:1f:16:54:2b:5c:b7:62:7c:33:5d:ca:d9:47:29:
e7:b4:ff:71:be:08:36:1f:1d:99:5b:33:35:6d:e6:
20:b4:94:e1:d4:c7:c3:07:6b:46:43:25:43:2e:38:
46:d8:c3:a2:53:66:45:44:21:94:1f:52:a5:14:62:
ba:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:BC:85:C9:51:73:D7:11:7A:39:81:AB:74:E0:2C:F0:02:F4:70:02
X509v3 Authority Key Identifier:
keyid:4D:30:2A:2D:D5:17:A6:1A:3B:95:27:46:F2:EE:9F:BE:43:6D:63:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTAqLdUXpho7lSdG8u6fvkNtY0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f0dd5f-b972-410b-9907-166fb9db6db3/1/CLyFyVFz1xF6OYGrdOAs8AL0cAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f0dd5f-b972-410b-9907-166fb9db6db3/1/TTAqLdUXpho7lSdG8u6fvkNtY0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:56f::/48
Signature Algorithm: sha256WithRSAEncryption
82:e6:88:55:27:e6:63:e2:35:dc:64:bb:51:96:9f:4f:77:42:
69:f5:9c:d3:cb:a6:a2:97:ba:1a:5d:12:a7:9a:40:9b:8d:d4:
4a:91:5c:6d:42:b9:9d:f7:12:d0:ef:1a:34:2f:11:09:78:fa:
6c:bf:8c:55:19:09:0c:eb:0b:e5:ff:60:0e:5a:32:4a:a8:6b:
b2:0f:51:1a:27:3a:74:6f:3d:22:58:ab:4f:4a:87:bc:dd:ce:
c3:87:b1:1e:69:b2:6e:71:98:56:2e:80:6a:3a:d5:05:e6:c5:
8b:de:56:dc:63:9a:e5:b7:2d:e1:91:f3:18:29:d0:e6:72:4f:
06:67:77:ec:05:a5:95:0f:3f:ed:43:64:1b:fa:d4:8d:e1:8b:
aa:4d:e1:ba:6e:32:7a:1c:99:fc:14:b6:6f:68:c2:29:74:16:
04:49:d8:cc:11:c1:55:15:00:a2:a9:e5:69:5b:1e:a5:50:f1:
12:7f:a6:df:ea:72:e8:84:26:15:41:d4:87:4b:d6:ad:f1:47:
e7:73:81:ff:6d:ef:66:f1:88:b7:48:a2:b6:94:41:fc:b3:cd:
c8:3c:58:49:53:b6:33:88:02:c4:85:31:35:60:33:95:cc:c5:
67:b5:57:18:33:cf:5e:cb:b1:9b:40:33:fc:42:02:ac:47:39:
17:4f:17:fc
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIENVq1jDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZDMwMmEyZGQ1MTdhNjFhM2I5NTI3NDZmMmVlOWZiZTQzNmQ2MzQ5MB4XDTIyMDEw
MTA1NTQ0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDhiYzg1Yzk1MTcz
ZDcxMTdhMzk4MWFiNzRlMDJjZjAwMmY0NzAwMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK05SFePPMXonIMOzrupFM9XVDRWT+R74dvxrr8sbAsy6KIw
oYIze45rLX/y9h2j04LzhRM++tPbZJuhx1xAeb9G0oGsYqoykr+wBmelCrNUFwlm
bOk36zvnzGihSBNhxKR8BpEXivXq+ZtLWMPyu7RNpnbDl97w83YnSXQhHtQHtotU
RXQM3SORRTOk8u7aSEsyeIMHnm0IPGyJW77YM0t8SeaCgcsOpgku4sSkcx7O7ed5
d/fbwv0CePiEdlrDArDEeh8WVCtct2J8M13K2Ucp57T/cb4INh8dmVszNW3mILSU
4dTHwwdrRkMlQy44RtjDolNmRUQhlB9SpRRiuo8CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQIvIXJUXPXEXo5gat04CzwAvRwAjAfBgNVHSMEGDAWgBRNMCot1RemGjuV
J0by7p++Q21jSTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RUQXFMZFVYcGhvN2xTZEc4dTZmdmtOdFkway5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmIvZjBkZDVmLWI5NzItNDEwYi05OTA3LTE2NmZiOWRiNmRiMy8x
L0NMeUZ5VkZ6MXhGNk9ZR3JkT0FzOEFMMGNBSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmIv
ZjBkZDVmLWI5NzItNDEwYi05OTA3LTE2NmZiOWRiNmRiMy8xL1RUQXFMZFVYcGhv
N2xTZEc4dTZmdmtOdFkway5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoBBW8AADANBgkqhkiG9w0BAQsF
AAOCAQEAguaIVSfmY+I13GS7UZafT3dCafWc08umope6Gl0Sp5pAm43USpFcbUK5
nfcS0O8aNC8RCXj6bL+MVRkJDOsL5f9gDloySqhrsg9RGic6dG89IlirT0qHvN3O
w4exHmmybnGYVi6AajrVBebFi95W3GOa5bct4ZHzGCnQ5nJPBmd37AWllQ8/7UNk
G/rUjeGLqk3hum4yehyZ/BS2b2jCKXQWBEnYzBHBVRUAoqnlaVsepVDxEn+m3+py
6IQmFUHUh0vWrfFH53OB/23vZvGIt0iitpRB/LPNyDxYSVO2M4gCxIUxNWAzlczF
Z7VXGDPPXsuxm0Az/EICrEc5F08X/A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:41 2024 by rpki-client on console-fra.rpki-client.org