Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/9i8u8IufS-M1fHB3iQH7EFAaJKo.roa
File: 9i8u8IufS-M1fHB3iQH7EFAaJKo.roa (raw, json)
Hash identifier: vX1wdtWn65Hezi0991MsGVbUpGLeINgYh554XOmXM04=
Subject key identifier: F6:2F:2E:F0:8B:9F:4B:E3:35:7C:70:77:89:01:FB:10:50:1A:24:AA
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 2B7C5D
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/9i8u8IufS-M1fHB3iQH7EFAaJKo.roa
Signing time: Mon 18 Apr 2022 22:00:49 +0000
ROA not before: Mon 18 Apr 2022 22:00:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208548
IP address blocks: 2a12:bec1::/36 maxlen: 36
2a12:bec0:40::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2849885 (0x2b7c5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Apr 18 22:00:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f62f2ef08b9f4be3357c70778901fb10501a24aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ad:cb:64:22:15:73:da:b0:62:f2:b8:74:f3:
25:02:03:d3:b7:95:ab:d9:6a:cf:85:ea:f4:97:85:
e8:70:e6:63:02:f7:aa:59:cc:7c:26:71:60:5c:54:
6e:21:1b:b3:ce:ca:75:5d:1f:8e:ae:b0:2f:4b:82:
09:a3:6b:79:33:f1:a3:09:24:ce:a8:6d:38:dd:06:
18:fd:93:07:b9:f4:e2:8e:be:10:2b:db:c5:15:ff:
eb:63:9e:dd:30:a6:cd:4f:c6:d1:5a:86:f9:24:83:
4d:70:3e:73:4d:88:09:cf:9f:f3:d4:d7:43:10:69:
a2:49:78:51:8a:fa:cb:3c:63:04:09:59:05:f0:ce:
6e:61:25:96:c2:fa:cd:c6:45:90:36:f0:f5:b2:88:
e3:3e:c1:a5:39:85:77:e5:44:06:6c:fb:32:5d:be:
7d:ab:4a:89:0a:69:2b:c5:e0:c4:bc:d1:e4:d6:87:
7c:02:53:e6:9b:d4:91:4c:1b:6b:47:1b:5d:49:e8:
45:9d:1a:70:77:11:74:92:5e:c3:54:b8:71:6d:1c:
19:41:85:29:8a:e5:4a:e3:26:39:57:94:cd:aa:86:
dd:a9:34:d9:3b:90:e7:20:b4:8c:b5:a0:c4:a4:28:
da:ca:ee:92:29:01:2d:5e:52:e0:ff:f4:6c:04:76:
2e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:2F:2E:F0:8B:9F:4B:E3:35:7C:70:77:89:01:FB:10:50:1A:24:AA
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/9i8u8IufS-M1fHB3iQH7EFAaJKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:40::/48
2a12:bec1::/36
Signature Algorithm: sha256WithRSAEncryption
1d:3d:84:f2:ad:e8:e3:fd:e2:6f:9a:1c:1e:2b:59:66:71:d1:
19:63:39:93:b2:62:d5:4b:f3:f4:6b:24:ea:02:af:19:b7:7a:
36:2b:04:fb:12:54:5b:96:58:02:d8:a4:6f:53:35:e0:08:11:
1f:30:f9:1d:7a:b8:1d:af:11:17:aa:74:a2:74:a7:df:ab:63:
b4:94:47:5d:cc:20:7d:50:0e:a1:30:d2:d3:a7:b7:89:c0:22:
58:63:c6:39:65:1a:d3:36:48:b9:ce:14:70:9c:6c:4f:6c:5b:
06:2c:25:d0:0a:57:09:f1:70:1d:5e:00:76:62:63:de:93:d9:
dc:9e:98:05:9e:00:e0:28:99:df:5f:ca:8a:13:47:15:5d:ef:
74:06:9f:5e:0e:42:75:ad:ce:41:fe:56:05:ce:9f:c0:5c:16:
43:f8:a7:03:71:79:4a:c2:7b:a8:9f:d2:25:63:10:39:fd:19:
b0:8a:a6:30:d9:68:57:33:b4:f2:f8:8f:a5:f2:8e:28:34:9a:
1a:fd:25:c2:b2:41:a1:f8:6f:55:10:44:57:63:ca:be:20:7a:
a3:11:52:07:c5:a3:81:39:da:ed:28:4b:ef:c5:9a:79:8f:4e:
ec:af:5d:24:48:cf:fd:0d:c5:4b:f0:f8:98:36:79:a8:25:ae:
64:8f:df:72
-----BEGIN CERTIFICATE-----
MIIE+TCCA+GgAwIBAgIDK3xdMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGIz
N2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBjM2Q2NmYwHhcNMjIwNDE4
MjIwMDQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhmNjJmMmVmMDhiOWY0
YmUzMzU3YzcwNzc4OTAxZmIxMDUwMWEyNGFhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAsq3LZCIVc9qwYvK4dPMlAgPTt5Wr2WrPher0l4XocOZjAveq
Wcx8JnFgXFRuIRuzzsp1XR+OrrAvS4IJo2t5M/GjCSTOqG043QYY/ZMHufTijr4Q
K9vFFf/rY57dMKbNT8bRWob5JINNcD5zTYgJz5/z1NdDEGmiSXhRivrLPGMECVkF
8M5uYSWWwvrNxkWQNvD1sojjPsGlOYV35UQGbPsyXb59q0qJCmkrxeDEvNHk1od8
AlPmm9SRTBtrRxtdSehFnRpwdxF0kl7DVLhxbRwZQYUpiuVK4yY5V5TNqobdqTTZ
O5DnILSMtaDEpCjayu6SKQEtXlLg//RsBHYucQIDAQABo4ICFDCCAhAwHQYDVR0O
BBYEFPYvLvCLn0vjNXxwd4kB+xBQGiSqMB8GA1UdIwQYMBaAFLN+IVpBXte13ktt
wS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
czM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2VlLzEv
OWk4dThJdWZTLU0xZkhCM2lRSDdFRkFhSktvLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85
N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2VlLzEvczM0aFdrRmUxN1hl
UzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCoG
CCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwcAKhK+wABAAwYEKhK+wQAwDQYJKoZI
hvcNAQELBQADggEBAB09hPKt6OP94m+aHB4rWWZx0RljOZOyYtVL8/RrJOoCrxm3
ejYrBPsSVFuWWALYpG9TNeAIER8w+R16uB2vEReqdKJ0p9+rY7SUR13MIH1QDqEw
0tOnt4nAIlhjxjllGtM2SLnOFHCcbE9sWwYsJdAKVwnxcB1eAHZiY96T2dyemAWe
AOAomd9fyooTRxVd73QGn14OQnWtzkH+VgXOn8BcFkP4pwNxeUrCe6if0iVjEDn9
GbCKpjDZaFcztPL4j6Xyjig0mhr9JcKyQaH4b1UQRFdjyr4geqMRUgfFo4E52u0o
S+/FmnmPTuyvXSRIz/0NxUvw+Jg2eaglrmSP33I=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org