Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/qkaNk0gdUoNutWcv7zJt0qKT1rw.roa
File: qkaNk0gdUoNutWcv7zJt0qKT1rw.roa (raw, json)
Hash identifier: eqfQ5G2370A/t0TCKRMKmH+oZD91H9ejZLnYV6IwmbM=
Subject key identifier: AA:46:8D:93:48:1D:52:83:6E:B5:67:2F:EF:32:6D:D2:A2:93:D6:BC
Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Certificate serial: 0309ED
Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/qkaNk0gdUoNutWcv7zJt0qKT1rw.roa
Signing time: Sat 08 Jan 2022 00:44:23 +0000
ROA not before: Sat 08 Jan 2022 00:44:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49752
IP address blocks: 2a12:4944::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199149 (0x309ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Validity
Not Before: Jan 8 00:44:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa468d93481d52836eb5672fef326dd2a293d6bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6a:2c:87:ea:a6:a3:5a:26:2f:3f:24:34:d3:
ff:e3:f7:d9:a2:1d:6f:f7:a6:f2:40:39:4d:73:12:
12:7b:91:19:39:9a:7f:43:7b:d4:c3:24:d0:35:3b:
08:71:99:c7:87:43:c5:f5:d7:4a:73:ed:ce:0c:02:
4a:91:34:7d:c9:8a:d5:a5:44:3d:dc:d6:c1:41:be:
75:6b:86:90:83:19:97:d0:19:4b:c9:ae:76:72:ab:
8f:fe:3d:72:48:83:0c:b2:77:31:6e:39:fd:f3:a4:
17:05:b1:64:44:79:b3:41:e9:3c:b0:db:25:b7:f8:
3d:c2:99:b1:f5:1d:a4:89:91:ce:de:91:6c:fc:4a:
73:36:e6:5f:7b:69:72:ac:11:53:de:51:db:bb:d8:
22:7e:ad:2e:da:54:31:fc:d5:01:51:ef:28:65:60:
50:d3:39:52:46:45:fe:d4:0e:76:66:7f:bf:e4:54:
c3:b0:a3:a2:f4:6d:cc:8e:76:8b:6f:b3:d2:98:b9:
d8:17:3c:42:7a:43:eb:3f:70:85:da:70:b7:dc:d3:
9f:22:aa:30:9c:d7:0c:d5:d9:e6:39:a9:90:30:1a:
88:1e:bb:c7:0f:f3:ff:43:9c:43:95:20:43:ec:73:
63:4d:a3:c1:5d:be:9e:b0:9c:a2:94:81:af:c4:28:
d3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:46:8D:93:48:1D:52:83:6E:B5:67:2F:EF:32:6D:D2:A2:93:D6:BC
X509v3 Authority Key Identifier:
keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/qkaNk0gdUoNutWcv7zJt0qKT1rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:4944::/32
Signature Algorithm: sha256WithRSAEncryption
4d:78:87:45:f7:2c:20:e8:13:13:d4:fb:60:f7:30:08:77:65:
80:e8:c6:51:3c:cf:4f:eb:e0:ab:9f:90:cc:95:58:79:96:73:
ce:f7:56:3b:71:a8:37:14:1b:a5:1e:3f:4d:ab:0b:00:8b:9f:
03:e4:79:0d:36:21:06:08:27:82:97:3d:7c:50:6c:e2:e4:95:
61:8a:05:2d:cc:45:53:60:1b:dd:40:8d:79:04:62:81:85:61:
53:1d:98:4c:c4:ce:a3:c9:ee:f5:88:b1:f6:60:56:67:42:8a:
65:7f:f9:28:1e:6e:ab:24:8e:4f:30:5e:23:b2:a8:ab:e3:fd:
76:71:25:79:e3:b1:e2:f1:9f:db:a9:69:db:d2:6d:63:d4:25:
ec:ad:8e:66:d3:6d:86:7c:36:e9:58:4d:54:8b:94:78:d6:dd:
5c:0c:42:74:9d:59:7b:21:18:a5:b2:a1:80:83:eb:ec:d3:d6:
6d:23:dd:ca:59:11:d4:3c:37:a9:55:b7:66:c7:10:38:1b:45:
68:08:1b:c5:f5:06:38:cf:6a:49:b6:18:6c:94:4e:3c:ee:43:
80:0d:ed:ef:f7:80:68:86:ec:5f:86:0e:6b:b6:b6:d4:0b:22:
e7:d1:8b:bb:46:7f:4b:2b:62:90:3a:80:b0:03:31:60:87:67:
eb:53:e5:c5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIDAwntMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDc0
NjM5NWMxMjY3MmFkOTU4OTIxYjYyYjlkYzliMmJjZDhhNjhhOWYwHhcNMjIwMTA4
MDA0NDIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhhYTQ2OGQ5MzQ4MWQ1
MjgzNmViNTY3MmZlZjMyNmRkMmEyOTNkNmJjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtWosh+qmo1omLz8kNNP/4/fZoh1v96byQDlNcxISe5EZOZp/
Q3vUwyTQNTsIcZnHh0PF9ddKc+3ODAJKkTR9yYrVpUQ93NbBQb51a4aQgxmX0BlL
ya52cquP/j1ySIMMsncxbjn986QXBbFkRHmzQek8sNslt/g9wpmx9R2kiZHO3pFs
/EpzNuZfe2lyrBFT3lHbu9gifq0u2lQx/NUBUe8oZWBQ0zlSRkX+1A52Zn+/5FTD
sKOi9G3MjnaLb7PSmLnYFzxCekPrP3CF2nC33NOfIqownNcM1dnmOamQMBqIHrvH
D/P/Q5xDlSBD7HNjTaPBXb6esJyilIGvxCjTtwIDAQABo4ICCjCCAgYwHQYDVR0O
BBYEFKpGjZNIHVKDbrVnL+8ybdKik9a8MB8GA1UdIwQYMBaAFHRjlcEmcq2ViSG2
K53JsrzYpoqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
ZEdPVndTWnlyWldKSWJZcm5jbXl2TmltaXA4LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC82Mi85ZTIzNTEtOGRkMC00YjcwLWE1ZmMtZmI3NzRhYmRmYWMyLzEv
cWthTmswZ2RVb051dFdjdjd6SnQwcUtUMXJ3LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi85
ZTIzNTEtOGRkMC00YjcwLWE1ZmMtZmI3NzRhYmRmYWMyLzEvZEdPVndTWnlyWldK
SWJZcm5jbXl2TmltaXA4LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAG
CCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhJJRDANBgkqhkiG9w0BAQsFAAOC
AQEATXiHRfcsIOgTE9T7YPcwCHdlgOjGUTzPT+vgq5+QzJVYeZZzzvdWO3GoNxQb
pR4/TasLAIufA+R5DTYhBggngpc9fFBs4uSVYYoFLcxFU2Ab3UCNeQRigYVhUx2Y
TMTOo8nu9Yix9mBWZ0KKZX/5KB5uqySOTzBeI7Koq+P9dnEleeOx4vGf26lp29Jt
Y9Ql7K2OZtNthnw26VhNVIuUeNbdXAxCdJ1ZeyEYpbKhgIPr7NPWbSPdylkR1Dw3
qVW3ZscQOBtFaAgbxfUGOM9qSbYYbJROPO5DgA3t7/eAaIbsX4YOa7a21Asi59GL
u0Z/SytikDqAsAMxYIdn61PlxQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org