Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/3RAC3n2R7PEyn-RUgRgkGGi30rg.roa
File: 3RAC3n2R7PEyn-RUgRgkGGi30rg.roa (raw, json)
Hash identifier: 2wMpUNCX/czfTIHPFNPIrzZnjVEKdgSjaHefWAPvALE=
Subject key identifier: DD:10:02:DE:7D:91:EC:F1:32:9F:E4:54:81:18:24:18:68:B7:D2:B8
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 0493104A
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/3RAC3n2R7PEyn-RUgRgkGGi30rg.roa
Signing time: Mon 24 Jan 2022 12:51:45 +0000
ROA not before: Mon 24 Jan 2022 12:51:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47943
IP address blocks: 2001:b18:1017::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76746826 (0x493104a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Jan 24 12:51:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd1002de7d91ecf1329fe4548118241868b7d2b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:79:e7:27:16:3f:a7:ed:3b:64:f9:65:27:68:
13:0c:d1:58:bb:b8:e4:c5:cf:29:5e:e5:b9:5c:c7:
ed:6e:6d:75:30:21:4f:e7:2f:66:4d:88:6d:f5:05:
6c:4f:24:89:6b:02:08:e6:64:fb:3b:49:48:d8:01:
ca:82:59:fc:70:f6:b7:4e:65:78:0f:c8:89:69:6e:
99:12:b1:f5:20:f9:42:a1:fd:45:ae:6f:19:4b:83:
84:82:a9:e6:ee:fe:08:6a:10:58:15:d0:64:ac:7b:
6e:7c:6b:da:5e:b1:d5:45:aa:aa:bd:52:0c:20:98:
77:36:de:ac:2d:ea:2f:15:4f:e7:8e:72:32:ed:3b:
a7:4a:97:56:ab:0e:75:48:ce:c3:f2:6c:0c:53:cf:
63:74:01:7e:23:0c:3e:30:7b:3d:0e:e1:58:08:c0:
e9:01:f4:bb:a9:ee:80:20:d8:e1:b6:38:b5:47:7d:
7e:12:39:0d:d9:e1:db:64:ba:a6:43:84:ae:5c:2b:
d1:e2:68:6d:c6:55:15:5c:31:f8:f2:c9:ea:38:93:
52:e3:b3:96:4c:b3:a0:2d:23:25:b0:05:35:e0:a8:
7b:e6:2c:5d:01:de:28:ef:9a:15:76:4e:2c:bc:cc:
b0:c3:03:96:81:ba:1e:ba:b3:a3:db:2e:ce:cb:a3:
b6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:10:02:DE:7D:91:EC:F1:32:9F:E4:54:81:18:24:18:68:B7:D2:B8
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/3RAC3n2R7PEyn-RUgRgkGGi30rg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:b18:1017::/48
Signature Algorithm: sha256WithRSAEncryption
64:e3:b6:a2:46:04:97:6a:d6:c8:37:70:47:ba:b2:c2:b6:c1:
6c:d8:83:2a:88:de:40:ce:4b:45:5c:47:63:0e:d1:55:ba:14:
a1:9d:38:9a:6d:3c:7d:80:a1:4e:6f:4b:83:19:4a:fb:5c:79:
91:b2:b4:39:3f:3b:a4:85:1e:1d:f9:9b:08:3e:b5:d3:0b:dc:
b2:82:86:5f:1d:8f:5e:8d:52:35:87:98:ab:29:df:e4:d2:6e:
1b:f8:7f:2f:16:10:dc:3a:a8:6c:51:7d:03:a3:d9:8a:58:35:
c8:5d:a2:eb:2a:3d:93:67:31:b4:27:c2:04:3e:69:14:ba:1c:
b4:4f:2b:82:d1:a8:ee:b9:fd:c6:d5:19:92:06:e9:85:39:15:
21:e4:b0:d0:dc:ed:2a:a2:ec:07:74:df:6d:15:2b:b2:2c:f4:
b6:d3:29:b5:3e:64:57:f1:af:18:ec:e0:5e:fc:5d:69:7d:60:
b1:e2:ce:93:d2:14:00:ee:7f:8b:54:b2:e8:59:19:ba:1e:4c:
99:ff:41:b9:b5:13:9c:f9:cd:47:00:c6:91:99:69:1d:2a:c7:
33:9e:f2:12:b0:94:e0:a3:d5:ba:0a:02:9d:23:2f:00:54:f2:
47:fd:1f:32:c5:90:fe:e2:07:84:41:f8:28:2c:9c:5b:75:ad:
53:15:50:b6
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEBJMQSjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NzlmNWNhOGMzM2YxMzRjM2MxNTdkNDhiOWMyYWU0ZTkxYjYzMGJmMB4XDTIyMDEy
NDEyNTE0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGQxMDAyZGU3ZDkx
ZWNmMTMyOWZlNDU0ODExODI0MTg2OGI3ZDJiODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKd55ycWP6ftO2T5ZSdoEwzRWLu45MXPKV7luVzH7W5tdTAh
T+cvZk2IbfUFbE8kiWsCCOZk+ztJSNgByoJZ/HD2t05leA/IiWlumRKx9SD5QqH9
Ra5vGUuDhIKp5u7+CGoQWBXQZKx7bnxr2l6x1UWqqr1SDCCYdzberC3qLxVP545y
Mu07p0qXVqsOdUjOw/JsDFPPY3QBfiMMPjB7PQ7hWAjA6QH0u6nugCDY4bY4tUd9
fhI5Ddnh22S6pkOErlwr0eJobcZVFVwx+PLJ6jiTUuOzlkyzoC0jJbAFNeCoe+Ys
XQHeKO+aFXZOLLzMsMMDloG6Hrqzo9suzsujtqMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBTdEALefZHs8TKf5FSBGCQYaLfSuDAfBgNVHSMEGDAWgBSXn1yowz8TTDwV
fUi5wq5OkbYwvzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2w1OWNxTU1fRTB3OEZYMUl1Y0t1VHBHMk1MOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjMvZjY1NjEwLTU5ZjYtNGFkNi1hOWQ4LTE0NzBhYzM2NGRkMi8x
LzNSQUMzbjJSN1BFeW4tUlVnUmdrR0dpMzByZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjMv
ZjY1NjEwLTU5ZjYtNGFkNi1hOWQ4LTE0NzBhYzM2NGRkMi8xL2w1OWNxTU1fRTB3
OEZYMUl1Y0t1VHBHMk1MOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABCxgQFzANBgkqhkiG9w0BAQsF
AAOCAQEAZOO2okYEl2rWyDdwR7qywrbBbNiDKojeQM5LRVxHYw7RVboUoZ04mm08
fYChTm9LgxlK+1x5kbK0OT87pIUeHfmbCD610wvcsoKGXx2PXo1SNYeYqynf5NJu
G/h/LxYQ3DqobFF9A6PZilg1yF2i6yo9k2cxtCfCBD5pFLoctE8rgtGo7rn9xtUZ
kgbphTkVIeSw0NztKqLsB3TfbRUrsiz0ttMptT5kV/GvGOzgXvxdaX1gseLOk9IU
AO5/i1Sy6FkZuh5Mmf9BubUTnPnNRwDGkZlpHSrHM57yErCU4KPVugoCnSMvAFTy
R/0fMsWQ/uIHhEH4KCycW3WtUxVQtg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:18 2024 by rpki-client on console-ams.rpki-client.org