Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/517411-0c42-4d18-9039-c99dd390a7d6/1/pAunwwI_hc6iDgmxLPdD8t9-Ids.roa
File: pAunwwI_hc6iDgmxLPdD8t9-Ids.roa (raw, json)
Hash identifier: BCNWP+AqiSeHJUKox8iy/GP33lCEPRhzweWIDMgIbuc=
Subject key identifier: A4:0B:A7:C3:02:3F:85:CE:A2:0E:09:B1:2C:F7:43:F2:DF:7E:21:DB
Certificate issuer: /CN=373d8f557cae18e235d938bad3cfae17c91b9de6
Certificate serial: 5A6B
Authority key identifier: 37:3D:8F:55:7C:AE:18:E2:35:D9:38:BA:D3:CF:AE:17:C9:1B:9D:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nz2PVXyuGOI12Ti608-uF8kbneY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/517411-0c42-4d18-9039-c99dd390a7d6/1/pAunwwI_hc6iDgmxLPdD8t9-Ids.roa
Signing time: Mon 09 May 2022 07:48:50 +0000
ROA not before: Mon 09 May 2022 07:48:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209488
IP address blocks: 2a12:61c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23147 (0x5a6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=373d8f557cae18e235d938bad3cfae17c91b9de6
Validity
Not Before: May 9 07:48:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a40ba7c3023f85cea20e09b12cf743f2df7e21db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b6:06:98:33:cd:2f:ed:c2:47:78:57:b8:b6:
dc:ce:f8:2e:01:b5:76:21:b9:2c:a3:eb:70:aa:44:
76:07:4e:99:4d:92:1a:d0:22:99:2c:50:b6:b9:ea:
ac:d5:54:26:dc:69:5f:6d:5f:e5:8f:dc:b6:ee:a7:
65:78:7d:9a:e5:e5:63:be:7b:76:0c:8d:d5:6b:e2:
b8:d7:bd:ee:4b:dc:b9:de:b1:dd:78:6d:18:e8:96:
ec:0e:5d:25:0f:3e:63:3c:2a:cf:ac:46:e6:64:f2:
b0:0f:06:a7:16:61:89:75:3d:cb:49:ae:8c:9f:8e:
ea:9e:90:82:db:e3:2c:6c:f0:3f:73:17:2c:74:6b:
16:67:fe:62:b6:7c:92:e9:29:52:0a:ff:ee:0e:50:
f2:4e:1f:61:7b:41:dd:f1:93:aa:9e:25:b6:3e:12:
22:aa:41:bb:d9:9b:b9:75:dc:ea:b5:74:50:83:0c:
16:0d:88:0a:3d:ed:57:82:25:1e:32:fe:a2:69:8f:
91:79:f2:d9:23:9c:8e:ea:cc:f6:c5:cf:5c:d1:41:
c8:10:32:b0:af:f4:25:4c:10:59:b2:ba:86:08:f0:
d7:62:fd:35:da:3b:eb:fe:cd:d8:b7:35:36:8b:d4:
fd:5b:f6:78:86:d5:74:8a:56:d9:99:7e:b5:b8:f7:
17:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:0B:A7:C3:02:3F:85:CE:A2:0E:09:B1:2C:F7:43:F2:DF:7E:21:DB
X509v3 Authority Key Identifier:
keyid:37:3D:8F:55:7C:AE:18:E2:35:D9:38:BA:D3:CF:AE:17:C9:1B:9D:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nz2PVXyuGOI12Ti608-uF8kbneY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/517411-0c42-4d18-9039-c99dd390a7d6/1/pAunwwI_hc6iDgmxLPdD8t9-Ids.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/517411-0c42-4d18-9039-c99dd390a7d6/1/Nz2PVXyuGOI12Ti608-uF8kbneY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:61c0::/29
Signature Algorithm: sha256WithRSAEncryption
ac:15:2c:19:f8:ff:de:b8:71:68:58:be:93:7f:6a:0c:94:23:
39:fa:6c:a3:17:2a:33:99:64:70:8a:a2:ae:57:2b:97:37:82:
58:e6:55:a2:db:40:05:c2:cc:0f:85:51:48:56:d1:40:c2:43:
fa:a2:2c:44:cc:b6:80:0c:98:b3:3b:2c:27:e9:5c:94:6c:4e:
c3:74:33:93:b5:f7:2c:31:72:4e:75:d5:d7:fc:96:da:f8:09:
a8:46:0a:ca:fc:b7:ec:24:bf:3a:7b:b8:75:cb:c2:7b:12:16:
34:5f:d5:a7:8e:32:3b:5d:f0:75:74:9d:5b:12:14:0c:e2:fc:
f7:69:d8:ba:41:a6:a2:35:72:8c:21:9d:4d:41:d4:d5:74:a7:
d7:89:dd:99:04:10:81:0a:3e:72:1b:c6:ce:09:25:d5:24:f7:
d7:8c:30:93:90:50:e9:94:55:30:bf:9a:63:38:96:87:8b:4d:
51:4d:5f:35:fe:0f:9e:40:e1:fb:a7:7f:86:48:1e:af:bd:c8:
54:d2:db:cc:ab:d5:e9:a1:17:ac:8a:ed:41:e8:a4:ee:fc:58:
49:6f:df:c2:9c:cc:15:e4:9c:2a:7d:e1:91:d3:f2:cd:37:38:
ae:c3:23:9f:42:75:aa:4d:41:70:02:c3:cd:1a:f1:19:8a:3e:
25:6d:a4:b1
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgICWmswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzcz
ZDhmNTU3Y2FlMThlMjM1ZDkzOGJhZDNjZmFlMTdjOTFiOWRlNjAeFw0yMjA1MDkw
NzQ4NTBaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKGE0MGJhN2MzMDIzZjg1
Y2VhMjBlMDliMTJjZjc0M2YyZGY3ZTIxZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCtgaYM80v7cJHeFe4ttzO+C4BtXYhuSyj63CqRHYHTplNkhrQ
IpksULa56qzVVCbcaV9tX+WP3Lbup2V4fZrl5WO+e3YMjdVr4rjXve5L3Lnesd14
bRjoluwOXSUPPmM8Ks+sRuZk8rAPBqcWYYl1PctJroyfjuqekILb4yxs8D9zFyx0
axZn/mK2fJLpKVIK/+4OUPJOH2F7Qd3xk6qeJbY+EiKqQbvZm7l13Oq1dFCDDBYN
iAo97VeCJR4y/qJpj5F58tkjnI7qzPbFz1zRQcgQMrCv9CVMEFmyuoYI8Ndi/TXa
O+v+zdi3NTaL1P1b9niG1XSKVtmZfrW49xc5AgMBAAGjggIKMIICBjAdBgNVHQ4E
FgQUpAunwwI/hc6iDgmxLPdD8t9+IdswHwYDVR0jBBgwFoAUNz2PVXyuGOI12Ti6
08+uF8kbneYwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9O
ejJQVlh5dUdPSTEyVGk2MDgtdUY4a2JuZVkuY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxUL2Y3LzUxNzQxMS0wYzQyLTRkMTgtOTAzOS1jOTlkZDM5MGE3ZDYvMS9w
QXVud3dJX2hjNmlEZ214TFBkRDh0OS1JZHMucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y3LzUx
NzQxMS0wYzQyLTRkMTgtOTAzOS1jOTlkZDM5MGE3ZDYvMS9OejJQVlh5dUdPSTEy
VGk2MDgtdUY4a2JuZVkuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYI
KwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQMqEmHAMA0GCSqGSIb3DQEBCwUAA4IB
AQCsFSwZ+P/euHFoWL6Tf2oMlCM5+myjFyozmWRwiqKuVyuXN4JY5lWi20AFwswP
hVFIVtFAwkP6oixEzLaADJizOywn6VyUbE7DdDOTtfcsMXJOddXX/Jba+AmoRgrK
/LfsJL86e7h1y8J7EhY0X9WnjjI7XfB1dJ1bEhQM4vz3adi6QaaiNXKMIZ1NQdTV
dKfXid2ZBBCBCj5yG8bOCSXVJPfXjDCTkFDplFUwv5pjOJaHi01RTV81/g+eQOH7
p3+GSB6vvchU0tvMq9XpoResiu1B6KTu/FhJb9/CnMwV5JwqfeGR0/LNNziuwyOf
QnWqTUFwAsPNGvEZij4lbaSx
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:05 2024 by rpki-client on console-fra.rpki-client.org