Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/74KzK2EZ81-MQrWP4fyIUSeojPo.roa
File: 74KzK2EZ81-MQrWP4fyIUSeojPo.roa (raw, json)
Hash identifier: 1Y+qRXg6w1HMTGeCBJjjw2wSRNARckyAvT3rMNaDCp8=
Subject key identifier: EF:82:B3:2B:61:19:F3:5F:8C:42:B5:8F:E1:FC:88:51:27:A8:8C:FA
Certificate issuer: /CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Certificate serial: 0182F304F0DFCDF3E3562614995CD4A1549F
Authority key identifier: 2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/74KzK2EZ81-MQrWP4fyIUSeojPo.roa
Signing time: Wed 31 Aug 2022 08:29:23 +0000
ROA not before: Wed 31 Aug 2022 08:29:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57351
IP address blocks: 2a12:8fc6:400::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f3:04:f0:df:cd:f3:e3:56:26:14:99:5c:d4:a1:54:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Validity
Not Before: Aug 31 08:29:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef82b32b6119f35f8c42b58fe1fc885127a88cfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:2d:8c:94:18:be:8d:3f:a8:85:b6:1d:a7:00:
e7:41:b9:91:0b:26:81:c4:c8:05:fc:e1:2d:40:9c:
7a:0c:35:0c:9b:fc:1b:83:a9:ba:45:74:ba:4f:81:
67:8f:0d:7a:9b:8c:87:d5:21:89:0d:c3:94:62:65:
38:b7:29:98:75:d2:bb:28:74:9d:f4:a5:94:61:f9:
e3:e1:26:92:9c:03:63:3a:73:54:bc:40:86:6a:70:
ad:2d:d8:77:e5:8b:c4:e3:76:97:35:9a:29:63:17:
fd:a6:0c:14:67:24:44:99:a5:c1:8d:32:27:71:91:
a4:e4:03:c0:3f:46:ae:8c:0f:49:b3:2f:79:d5:0a:
dd:7d:bc:65:9b:ed:9b:a7:85:b7:2f:1b:44:38:28:
a7:86:98:18:bf:91:59:19:94:4b:f5:77:9f:de:47:
c2:f6:70:3a:2c:d3:a6:ca:99:64:66:c5:8a:ea:ea:
2f:d2:bd:26:33:91:99:24:c9:2a:5b:68:62:66:30:
d4:5d:ee:28:eb:3b:cc:a2:d0:f6:4e:73:fb:1e:50:
80:54:5c:95:65:be:49:07:7e:ba:ad:84:ab:0e:34:
88:1a:5a:4a:9f:57:24:c8:9c:f2:c8:51:1f:9f:ef:
f9:3c:1c:5c:17:29:74:ec:1c:cf:f0:c6:da:91:8e:
ee:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:82:B3:2B:61:19:F3:5F:8C:42:B5:8F:E1:FC:88:51:27:A8:8C:FA
X509v3 Authority Key Identifier:
keyid:2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/74KzK2EZ81-MQrWP4fyIUSeojPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8fc6:400::/40
Signature Algorithm: sha256WithRSAEncryption
60:19:ed:67:e6:32:74:b1:a1:dc:e7:5e:e8:b4:a7:0d:8d:62:
9c:a8:12:72:40:26:11:b8:e9:e9:de:9e:bc:be:8d:b3:61:ca:
94:3d:c5:11:74:7d:f4:a1:e4:01:32:a0:e3:15:b4:d7:ee:fa:
0d:8c:b0:bf:eb:84:6a:3c:58:de:71:fe:36:5d:71:ad:52:52:
4f:59:ee:53:66:c1:1e:c8:34:4a:d4:45:dc:25:73:34:47:26:
06:8a:36:de:05:27:92:c0:94:47:52:0a:df:0c:df:d1:8c:14:
ef:f2:a4:4e:64:c6:b2:90:9b:00:29:c0:b9:24:f1:45:86:20:
fe:8c:cc:e1:a9:8e:81:0d:05:62:39:43:4c:96:0c:b1:eb:a9:
d0:64:93:1f:e8:c4:a0:3d:ac:53:9b:85:91:f8:47:1d:e0:79:
92:a2:e5:cd:b6:19:bc:45:ff:a2:05:16:1d:64:a0:18:c6:47:
fa:b5:4a:20:10:e3:1c:98:be:07:44:eb:17:b7:e0:d1:2c:13:
1a:fd:94:08:a4:31:f3:de:72:45:88:a3:0d:f1:ab:3e:59:b3:
3d:b4:83:6d:6a:ef:35:3d:b5:79:d4:73:79:c0:e8:9b:72:73:
02:60:0e:94:b5:d7:02:ab:02:51:11:16:75:4c:29:c6:64:21:
7d:92:bd:e8
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYLzBPDfzfPjViYUmVzUoVSfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiOTY3ZTc3MmNjNzI5ODMwNWExMWZmYTY1ZGQxODVmNmE1
ODkxMGIwHhcNMjIwODMxMDgyOTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjgyYjMyYjYxMTlmMzVmOGM0MmI1OGZlMWZjODg1MTI3YTg4Y2ZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgS2MlBi+jT+ohbYdpwDnQbmRCyaB
xMgF/OEtQJx6DDUMm/wbg6m6RXS6T4Fnjw16m4yH1SGJDcOUYmU4tymYddK7KHSd
9KWUYfnj4SaSnANjOnNUvECGanCtLdh35YvE43aXNZopYxf9pgwUZyREmaXBjTIn
cZGk5APAP0aujA9Jsy951Qrdfbxlm+2bp4W3LxtEOCinhpgYv5FZGZRL9Xef3kfC
9nA6LNOmyplkZsWK6uov0r0mM5GZJMkqW2hiZjDUXe4o6zvMotD2TnP7HlCAVFyV
Zb5JB366rYSrDjSIGlpKn1ckyJzyyFEfn+/5PBxcFyl07BzP8MbakY7uXwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFO+CsythGfNfjEK1j+H8iFEnqIz6MB8GA1UdIwQY
MBaAFCuWfncsxymDBaEf+mXdGF9qWJELMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzVaLWR5ekhLWU1Gb1JfNlpkMFlYMnBZa1FzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS82NjBlNzQtYTNiYy00NDRiLTljNmEt
NThjOTZkNjZmMGExLzEvNzRLeksyRVo4MS1NUXJXUDRmeUlVU2VvalBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS82NjBlNzQtYTNiYy00NDRiLTljNmEtNThjOTZkNjZmMGEx
LzEvSzVaLWR5ekhLWU1Gb1JfNlpkMFlYMnBZa1FzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhKPxgQw
DQYJKoZIhvcNAQELBQADggEBAGAZ7WfmMnSxodznXui0pw2NYpyoEnJAJhG46ene
nry+jbNhypQ9xRF0ffSh5AEyoOMVtNfu+g2MsL/rhGo8WN5x/jZdca1SUk9Z7lNm
wR7INErURdwlczRHJgaKNt4FJ5LAlEdSCt8M39GMFO/ypE5kxrKQmwApwLkk8UWG
IP6MzOGpjoENBWI5Q0yWDLHrqdBkkx/oxKA9rFObhZH4Rx3geZKi5c22GbxF/6IF
Fh1koBjGR/q1SiAQ4xyYvgdE6xe34NEsExr9lAikMfPeckWIow3xqz5Zsz20g21q
7zU9tXnUc3nA6JtycwJgDpS11wKrAlERFnVMKcZkIX2Sveg=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:38 2023 by rpki-client on console-fra.rpki-client.org