Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/ba8790-ef43-40ea-becf-bb0e0cc26c49/1/12mCqvnDgiUpu_uGuNleSnP04UM.roa
File: 12mCqvnDgiUpu_uGuNleSnP04UM.roa (raw, json)
Hash identifier: LIUNizwNDkNxZWKhtz4bZRtnRCMZ/1qZTww69M6qq8g=
Subject key identifier: D7:69:82:AA:F9:C3:82:25:29:BB:FB:86:B8:D9:5E:4A:73:F4:E1:43
Certificate issuer: /CN=ce65471b94a3260c2d9f658dced2f87f40b5424b
Certificate serial: 10619DB2
Authority key identifier: CE:65:47:1B:94:A3:26:0C:2D:9F:65:8D:CE:D2:F8:7F:40:B5:42:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmVHG5SjJgwtn2WNztL4f0C1Qks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/ba8790-ef43-40ea-becf-bb0e0cc26c49/1/12mCqvnDgiUpu_uGuNleSnP04UM.roa
Signing time: Sat 01 Jan 2022 03:51:50 +0000
ROA not before: Sat 01 Jan 2022 03:51:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 192.124.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274832818 (0x10619db2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce65471b94a3260c2d9f658dced2f87f40b5424b
Validity
Not Before: Jan 1 03:51:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d76982aaf9c3822529bbfb86b8d95e4a73f4e143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:c8:9a:70:1e:bf:71:81:c3:16:15:e6:ae:d5:
78:31:11:3d:0c:7a:24:22:52:4a:dd:19:d3:8d:51:
1d:a7:b6:92:ee:48:e4:4f:33:b8:2f:39:e6:2f:44:
f2:e0:9c:21:5f:08:5d:36:c1:a0:4e:1e:63:0e:0e:
55:c2:64:c8:f7:b0:a9:46:85:f1:44:65:31:57:f8:
39:83:45:9a:c1:ee:58:00:61:ce:25:dc:91:d8:dd:
9c:20:25:05:77:17:68:d4:1b:ca:59:69:a6:7a:38:
cd:68:3d:63:ec:be:69:7f:29:09:d1:73:b6:42:db:
8e:46:08:ae:d3:ed:ab:1e:6e:57:27:07:39:16:49:
86:01:97:d2:51:95:6c:55:b3:b0:7c:88:5a:ef:9a:
f2:8c:4a:1c:05:35:e9:03:59:bf:fc:8d:68:03:97:
f2:f8:dc:9c:f5:5b:01:b8:01:88:91:cf:24:2b:0d:
88:82:b2:24:ed:c1:af:e1:b2:33:39:1f:77:fc:2a:
5d:a3:bd:b7:37:89:07:6d:f6:d8:00:54:29:2e:5c:
e3:e8:6b:cf:00:a3:de:b8:80:83:71:f7:3c:68:65:
d2:20:0e:0c:b6:94:e4:75:9f:69:ea:a4:d4:1f:7f:
60:83:96:94:ef:9f:48:c8:09:3c:7a:ab:be:7e:b3:
2f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:69:82:AA:F9:C3:82:25:29:BB:FB:86:B8:D9:5E:4A:73:F4:E1:43
X509v3 Authority Key Identifier:
keyid:CE:65:47:1B:94:A3:26:0C:2D:9F:65:8D:CE:D2:F8:7F:40:B5:42:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmVHG5SjJgwtn2WNztL4f0C1Qks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/ba8790-ef43-40ea-becf-bb0e0cc26c49/1/12mCqvnDgiUpu_uGuNleSnP04UM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/ba8790-ef43-40ea-becf-bb0e0cc26c49/1/zmVHG5SjJgwtn2WNztL4f0C1Qks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.254.0/24
Signature Algorithm: sha256WithRSAEncryption
20:06:df:95:78:3f:8b:8e:c2:fc:af:e5:14:c1:a9:62:d6:5a:
65:ff:6c:a6:dc:3b:10:fe:a3:98:98:48:69:f8:30:e4:ea:e3:
76:9a:00:90:6b:3e:00:ff:cd:f6:5d:b5:72:13:74:fb:81:cc:
56:06:35:d5:1c:87:8a:54:b7:1d:e5:9d:e4:e6:c6:fb:01:6c:
85:40:7b:63:ca:33:e0:93:54:6e:c5:cb:98:be:1b:ad:dd:61:
a8:82:ec:c8:d0:43:74:23:47:26:54:a5:6e:d4:8a:41:fb:9c:
46:c6:ed:25:bf:58:18:ae:9a:d2:dd:60:d9:be:3e:94:f3:6c:
c9:0e:c4:eb:b8:47:fb:f2:a1:be:49:00:a5:73:47:ef:27:95:
32:6c:a1:82:3b:f2:c6:16:e2:06:d4:4d:55:a9:f5:63:bc:88:
3f:e9:3b:ae:d1:98:3c:b4:8b:b6:8f:da:ff:b1:69:0d:c0:5d:
27:98:7d:92:84:52:08:f8:85:af:aa:6d:ec:5e:58:65:43:9d:
16:03:ea:00:dd:30:08:56:18:60:bd:13:2a:30:95:66:7a:10:
31:f3:6f:14:13:29:20:70:0f:38:df:17:c6:48:35:b3:eb:9a:
f4:b4:58:90:c2:f4:13:40:01:78:0c:65:4a:e0:9f:0e:a9:e8:
c0:65:68:9a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEGGdsjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZTY1NDcxYjk0YTMyNjBjMmQ5ZjY1OGRjZWQyZjg3ZjQwYjU0MjRiMB4XDTIyMDEw
MTAzNTE1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDc2OTgyYWFmOWMz
ODIyNTI5YmJmYjg2YjhkOTVlNGE3M2Y0ZTE0MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPPImnAev3GBwxYV5q7VeDERPQx6JCJSSt0Z041RHae2ku5I
5E8zuC855i9E8uCcIV8IXTbBoE4eYw4OVcJkyPewqUaF8URlMVf4OYNFmsHuWABh
ziXckdjdnCAlBXcXaNQbyllppno4zWg9Y+y+aX8pCdFztkLbjkYIrtPtqx5uVycH
ORZJhgGX0lGVbFWzsHyIWu+a8oxKHAU16QNZv/yNaAOX8vjcnPVbAbgBiJHPJCsN
iIKyJO3Br+GyMzkfd/wqXaO9tzeJB2322ABUKS5c4+hrzwCj3riAg3H3PGhl0iAO
DLaU5HWfaeqk1B9/YIOWlO+fSMgJPHqrvn6zL2sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTXaYKq+cOCJSm7+4a42V5Kc/ThQzAfBgNVHSMEGDAWgBTOZUcblKMmDC2f
ZY3O0vh/QLVCSzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ptVkhHNVNqSmd3dG4yV056dEw0ZjBDMVFrcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODEvYmE4NzkwLWVmNDMtNDBlYS1iZWNmLWJiMGUwY2MyNmM0OS8x
LzEybUNxdm5EZ2lVcHVfdUd1TmxlU25QMDRVTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEv
YmE4NzkwLWVmNDMtNDBlYS1iZWNmLWJiMGUwY2MyNmM0OS8xL3ptVkhHNVNqSmd3
dG4yV056dEw0ZjBDMVFrcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMB8/jANBgkqhkiG9w0BAQsFAAOC
AQEAIAbflXg/i47C/K/lFMGpYtZaZf9sptw7EP6jmJhIafgw5OrjdpoAkGs+AP/N
9l21chN0+4HMVgY11RyHilS3HeWd5ObG+wFshUB7Y8oz4JNUbsXLmL4brd1hqILs
yNBDdCNHJlSlbtSKQfucRsbtJb9YGK6a0t1g2b4+lPNsyQ7E67hH+/KhvkkApXNH
7yeVMmyhgjvyxhbiBtRNVan1Y7yIP+k7rtGYPLSLto/a/7FpDcBdJ5h9koRSCPiF
r6pt7F5YZUOdFgPqAN0wCFYYYL0TKjCVZnoQMfNvFBMpIHAPON8Xxkg1s+ua9LRY
kML0E0ABeAxlSuCfDqnowGVomg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:44 2024 by rpki-client on console-ams.rpki-client.org