Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/mRquo5BXdHbQGL3YYsJPef3O_k4.roa
File: mRquo5BXdHbQGL3YYsJPef3O_k4.roa (raw, json)
Hash identifier: 78mRIXFwPDHunhdFMtL77xMf3xtE+X9HKey5QaHuHE4=
Subject key identifier: 99:1A:AE:A3:90:57:74:76:D0:18:BD:D8:62:C2:4F:79:FD:CE:FE:4E
Certificate issuer: /CN=4bfc5a29410f1ffcf4de2a5a7058f51620b30b79
Certificate serial: 2079
Authority key identifier: 4B:FC:5A:29:41:0F:1F:FC:F4:DE:2A:5A:70:58:F5:16:20:B3:0B:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S_xaKUEPH_z03ipacFj1FiCzC3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/mRquo5BXdHbQGL3YYsJPef3O_k4.roa
Signing time: Tue 15 Feb 2022 20:00:31 +0000
ROA not before: Tue 15 Feb 2022 20:00:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212998
IP address blocks: 2001:678:dd4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8313 (0x2079)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bfc5a29410f1ffcf4de2a5a7058f51620b30b79
Validity
Not Before: Feb 15 20:00:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=991aaea390577476d018bdd862c24f79fdcefe4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6f:e1:7e:4f:d8:a9:bd:09:86:41:df:5f:6a:
be:47:90:9e:69:0f:11:78:40:c1:21:24:57:e1:d7:
19:60:74:3a:49:f2:0a:01:84:7e:71:5b:bf:31:cc:
85:20:a0:38:2b:f6:4b:90:fc:a7:27:f5:28:fc:d7:
e1:4c:24:eb:c2:69:10:92:21:76:91:8d:1e:6b:b6:
bf:d6:90:46:24:c5:f3:e9:9e:ef:58:18:95:4a:98:
b6:a6:f5:ec:32:4d:31:d9:bc:4e:fd:7c:4d:ad:06:
a6:89:25:f8:d6:11:49:da:eb:fd:25:50:4d:52:4b:
5f:ec:23:86:82:76:43:fb:54:7d:b0:c3:c7:11:71:
3b:5d:ba:d7:61:69:98:b0:10:c0:51:3e:a6:ab:70:
2c:13:b7:03:94:6a:58:fc:37:31:5b:97:64:d2:1f:
4a:50:ca:0c:3c:2d:0c:fc:ec:06:b3:60:56:ac:78:
45:55:ec:54:3c:fa:1b:30:18:5a:a7:39:38:70:7e:
9b:dd:d1:5a:89:51:8c:90:85:74:ee:9d:83:26:7a:
23:01:31:d7:25:93:cc:93:e5:6a:1d:a0:18:7c:05:
e5:37:98:85:4a:9a:fc:6f:b0:d4:9b:07:0a:34:31:
2a:0a:35:88:52:63:bf:06:c8:ba:4b:c7:dd:82:3f:
d5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:1A:AE:A3:90:57:74:76:D0:18:BD:D8:62:C2:4F:79:FD:CE:FE:4E
X509v3 Authority Key Identifier:
keyid:4B:FC:5A:29:41:0F:1F:FC:F4:DE:2A:5A:70:58:F5:16:20:B3:0B:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S_xaKUEPH_z03ipacFj1FiCzC3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/mRquo5BXdHbQGL3YYsJPef3O_k4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/S_xaKUEPH_z03ipacFj1FiCzC3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:dd4::/48
Signature Algorithm: sha256WithRSAEncryption
18:23:cb:c3:38:51:a9:5a:13:b4:f6:1c:7a:da:6f:fb:8f:f3:
66:c5:0a:01:df:e4:d8:52:38:4a:72:f1:41:83:d8:53:2a:01:
d9:52:7b:c8:7e:98:6e:ab:f0:be:c7:b4:d9:4e:f2:9e:61:5f:
53:e0:a1:ed:f7:f0:ca:3c:c5:46:9e:89:a8:de:48:22:30:2f:
cb:e4:3d:5d:9f:05:9d:61:aa:4b:22:c5:31:8a:5b:a7:79:29:
8c:eb:4c:26:65:7b:56:41:87:69:48:fe:02:9e:ad:cf:6b:31:
ea:0f:9d:0e:9b:b2:46:a1:0f:f3:a1:55:34:34:56:19:57:49:
18:0c:9b:ea:27:a5:37:18:c0:c8:1d:a0:1c:2e:b7:93:8b:e6:
fc:c1:98:17:a3:9c:80:4f:a4:c3:57:35:1d:09:af:82:2c:7a:
4b:29:9e:31:62:27:cf:10:93:1c:ff:e0:fb:6a:1f:50:38:a3:
aa:9f:b7:94:04:4f:8f:65:81:d2:6d:64:2c:76:46:1b:f0:76:
e6:f0:e6:35:75:ca:b8:c0:31:2b:50:a5:6d:42:91:f6:f3:b1:
43:f7:45:df:ec:f2:62:e3:bd:f2:ec:1a:7e:7a:b9:25:cb:76:
06:d0:f6:bf:78:82:60:e1:02:97:4f:17:9b:d7:4d:5e:c8:64:
80:35:05:46
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICIHkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNGJm
YzVhMjk0MTBmMWZmY2Y0ZGUyYTVhNzA1OGY1MTYyMGIzMGI3OTAeFw0yMjAyMTUy
MDAwMzFaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDk5MWFhZWEzOTA1Nzc0
NzZkMDE4YmRkODYyYzI0Zjc5ZmRjZWZlNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtb+F+T9ipvQmGQd9far5HkJ5pDxF4QMEhJFfh1xlgdDpJ8goB
hH5xW78xzIUgoDgr9kuQ/Kcn9Sj81+FMJOvCaRCSIXaRjR5rtr/WkEYkxfPpnu9Y
GJVKmLam9ewyTTHZvE79fE2tBqaJJfjWEUna6/0lUE1SS1/sI4aCdkP7VH2ww8cR
cTtdutdhaZiwEMBRPqarcCwTtwOUalj8NzFbl2TSH0pQygw8LQz87AazYFaseEVV
7FQ8+hswGFqnOThwfpvd0VqJUYyQhXTunYMmeiMBMdclk8yT5WodoBh8BeU3mIVK
mvxvsNSbBwo0MSoKNYhSY78GyLpLx92CP9W7AgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUmRquo5BXdHbQGL3YYsJPef3O/k4wHwYDVR0jBBgwFoAUS/xaKUEPH/z03ipa
cFj1FiCzC3kwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9T
X3hhS1VFUEhfejAzaXBhY0ZqMUZpQ3pDM2suY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxUL2QwLzNiMmJmZC02MGViLTRjYmYtOWY3Zi0xMzYyNTdlMzA3NmUvMS9t
UnF1bzVCWGRIYlFHTDNZWXNKUGVmM09fazQucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2QwLzNi
MmJmZC02MGViLTRjYmYtOWY3Zi0xMzYyNTdlMzA3NmUvMS9TX3hhS1VFUEhfejAz
aXBhY0ZqMUZpQ3pDM2suY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYI
KwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQZ4DdQwDQYJKoZIhvcNAQELBQAD
ggEBABgjy8M4UalaE7T2HHrab/uP82bFCgHf5NhSOEpy8UGD2FMqAdlSe8h+mG6r
8L7HtNlO8p5hX1Pgoe338Mo8xUaeiajeSCIwL8vkPV2fBZ1hqksixTGKW6d5KYzr
TCZle1ZBh2lI/gKerc9rMeoPnQ6bskahD/OhVTQ0VhlXSRgMm+onpTcYwMgdoBwu
t5OL5vzBmBejnIBPpMNXNR0Jr4IsekspnjFiJ88Qkxz/4PtqH1A4o6qft5QET49l
gdJtZCx2Rhvwdubw5jV1yrjAMStQpW1CkfbzsUP3Rd/s8mLjvfLsGn56uSXLdgbQ
9r94gmDhApdPF5vXTV7IZIA1BUY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:31 2024 by rpki-client on console-ams.rpki-client.org