Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/q0JhiA7To-gHPj3NyRZhGYJFXWA.roa
File: q0JhiA7To-gHPj3NyRZhGYJFXWA.roa (raw, json)
Hash identifier: q7xz7CkD+l17DmfoCzbo+GHfn2kklOtcn59XhpoxaM4=
Subject key identifier: AB:42:61:88:0E:D3:A3:E8:07:3E:3D:CD:C9:16:61:19:82:45:5D:60
Certificate issuer: /CN=55fad96dd05af8c2d26192c841131f2f97459fed
Certificate serial: 08B4162B
Authority key identifier: 55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/q0JhiA7To-gHPj3NyRZhGYJFXWA.roa
Signing time: Sat 01 Jan 2022 13:02:04 +0000
ROA not before: Sat 01 Jan 2022 13:02:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210541
IP address blocks: 2a0e:3303::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146019883 (0x8b4162b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55fad96dd05af8c2d26192c841131f2f97459fed
Validity
Not Before: Jan 1 13:02:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab4261880ed3a3e8073e3dcdc916611982455d60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:17:a4:a4:e3:3c:64:49:22:27:4b:5c:ac:4a:
bf:09:df:bc:e3:f1:9a:83:f7:79:3a:f1:0a:2e:53:
ee:49:73:9e:2f:16:b7:55:cf:5d:50:89:dc:c3:55:
1b:33:e0:8f:bd:74:7f:be:f9:8b:87:c2:f2:4a:4f:
63:f2:6d:90:b2:a3:02:7c:03:e6:9c:92:63:21:94:
e3:c4:58:45:1f:13:93:e3:54:36:79:1e:ed:83:a5:
bf:83:13:3c:7e:bf:2c:4e:00:51:42:c4:ce:ef:70:
26:75:a3:94:d5:c8:2b:90:4d:66:96:0e:54:d3:d0:
b8:50:61:1d:a2:5e:8b:da:d4:26:1d:ca:c0:e1:30:
b2:9e:73:73:b5:55:0d:ea:cd:d8:dc:e9:3e:af:64:
8b:44:90:be:f9:2a:73:a0:91:65:d0:92:a3:16:bf:
40:3a:2e:76:d8:30:2d:6e:c5:9d:a5:67:e4:72:54:
f2:b1:81:75:65:56:14:8b:cd:e5:16:64:51:fa:57:
1e:d0:40:42:76:f8:a1:0b:6e:07:fe:70:76:db:15:
43:59:6f:d5:03:02:40:10:7f:6b:65:d7:0c:90:cc:
a7:ad:69:c1:bc:e9:d5:44:bd:94:89:65:f5:02:b0:
01:11:83:af:b4:d4:f7:e1:8a:23:9a:da:ba:93:7e:
69:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:42:61:88:0E:D3:A3:E8:07:3E:3D:CD:C9:16:61:19:82:45:5D:60
X509v3 Authority Key Identifier:
keyid:55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/q0JhiA7To-gHPj3NyRZhGYJFXWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:3303::/32
Signature Algorithm: sha256WithRSAEncryption
4a:04:61:f6:77:0c:7c:92:17:b5:7b:5b:42:14:01:d9:8c:bf:
b8:f3:40:44:4e:c8:0a:f8:b1:8b:9f:74:01:86:58:20:0e:c0:
83:6f:e6:74:28:f3:01:17:db:28:4b:40:77:ea:b4:4f:c5:d6:
ad:2f:45:73:b9:d8:62:51:15:c2:fe:9c:3a:80:37:12:ba:7c:
c7:18:61:6f:69:22:99:fb:b1:8a:67:2f:8c:44:86:24:58:fc:
43:d8:2c:94:bb:63:32:99:31:70:99:c5:8c:c5:12:05:11:7c:
9d:8f:8c:72:2e:1b:df:16:29:e6:8a:4b:25:51:0e:0b:0e:a8:
00:76:69:77:11:4f:95:b5:59:b2:88:1d:03:10:84:3e:1a:43:
f9:f6:41:91:07:ad:48:2a:b1:77:38:ad:49:d6:00:54:19:b9:
3f:a4:85:d2:f3:70:fa:7b:33:0e:7a:19:3b:1d:a9:c2:3f:14:
18:7c:bc:c1:bc:64:f1:47:a8:9c:b8:fe:ec:84:76:68:62:c7:
af:cf:71:ab:5f:58:6d:4f:01:90:df:b8:d8:59:34:00:c3:a4:
4e:b2:0a:cb:21:d5:95:5c:15:3d:af:80:84:2a:51:41:8d:de:
18:53:7f:99:3e:15:a6:b8:65:e4:dd:b2:8e:66:fa:b8:37:ec:
3d:96:e2:56
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIECLQWKzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NWZhZDk2ZGQwNWFmOGMyZDI2MTkyYzg0MTEzMWYyZjk3NDU5ZmVkMB4XDTIyMDEw
MTEzMDIwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWI0MjYxODgwZWQz
YTNlODA3M2UzZGNkYzkxNjYxMTk4MjQ1NWQ2MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK0XpKTjPGRJIidLXKxKvwnfvOPxmoP3eTrxCi5T7klzni8W
t1XPXVCJ3MNVGzPgj710f775i4fC8kpPY/JtkLKjAnwD5pySYyGU48RYRR8Tk+NU
Nnke7YOlv4MTPH6/LE4AUULEzu9wJnWjlNXIK5BNZpYOVNPQuFBhHaJei9rUJh3K
wOEwsp5zc7VVDerN2NzpPq9ki0SQvvkqc6CRZdCSoxa/QDoudtgwLW7FnaVn5HJU
8rGBdWVWFIvN5RZkUfpXHtBAQnb4oQtuB/5wdtsVQ1lv1QMCQBB/a2XXDJDMp61p
wbzp1US9lIll9QKwARGDr7TU9+GKI5raupN+aakCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBSrQmGIDtOj6Ac+Pc3JFmEZgkVdYDAfBgNVHSMEGDAWgBRV+tlt0Fr4wtJh
kshBEx8vl0Wf7TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZmclpiZEJhLU1MU1laTElRUk1mTDVkRm4tMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODIvMzBlNTgyLTQ0NDgtNDk1Mi05NGEwLTMwZmYyYzgzZjAwMS8x
L3EwSmhpQTdUby1nSFBqM055UlpoR1lKRlhXQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIv
MzBlNTgyLTQ0NDgtNDk1Mi05NGEwLTMwZmYyYzgzZjAwMS8xL1ZmclpiZEJhLU1M
U1laTElRUk1mTDVkRm4tMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoOMwMwDQYJKoZIhvcNAQELBQAD
ggEBAEoEYfZ3DHySF7V7W0IUAdmMv7jzQEROyAr4sYufdAGGWCAOwINv5nQo8wEX
2yhLQHfqtE/F1q0vRXO52GJRFcL+nDqANxK6fMcYYW9pIpn7sYpnL4xEhiRY/EPY
LJS7YzKZMXCZxYzFEgURfJ2PjHIuG98WKeaKSyVRDgsOqAB2aXcRT5W1WbKIHQMQ
hD4aQ/n2QZEHrUgqsXc4rUnWAFQZuT+khdLzcPp7Mw56GTsdqcI/FBh8vMG8ZPFH
qJy4/uyEdmhix6/PcatfWG1PAZDfuNhZNADDpE6yCssh1ZVcFT2vgIQqUUGN3hhT
f5k+Faa4ZeTdso5m+rg37D2W4lY=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:22 2023 by rpki-client on console.sobornost.net