Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/Oyp8anSbDlkk4JUaBQFF6dqAAqg.roa
File: Oyp8anSbDlkk4JUaBQFF6dqAAqg.roa (raw, json)
Hash identifier: oF8HufVb2s5sRF/Uwht75QGkEFJQRYDrc4XbngcBo98=
Subject key identifier: 3B:2A:7C:6A:74:9B:0E:59:24:E0:95:1A:05:01:45:E9:DA:80:02:A8
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 961576
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/Oyp8anSbDlkk4JUaBQFF6dqAAqg.roa
Signing time: Thu 02 Jun 2022 21:11:20 +0000
ROA not before: Thu 02 Jun 2022 21:11:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208548
IP address blocks: 2a12:bec0:7400::/40 maxlen: 40
2a12:bec0:40::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9835894 (0x961576)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jun 2 21:11:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b2a7c6a749b0e5924e0951a050145e9da8002a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b5:e9:13:52:8d:29:90:ea:73:ac:df:e4:87:
74:69:99:7b:9a:c6:13:e1:11:18:0f:8b:56:ee:5f:
75:52:c6:44:36:6b:cb:39:e5:a3:ec:5b:5c:a4:1f:
cd:20:77:85:b5:a9:a6:9c:f8:e5:73:8b:60:6f:c0:
b3:70:53:e7:03:3d:d2:fa:de:53:52:bf:e2:97:5f:
dd:44:de:72:df:17:d5:0d:e8:96:84:58:7b:60:14:
92:41:e3:b6:a0:1f:81:a7:d1:49:8f:fb:d7:73:0e:
d0:87:af:2d:c2:05:4a:79:1e:c5:9c:f5:fd:65:be:
fb:a4:92:0e:aa:77:0d:03:0e:d8:41:8c:e4:3c:1f:
61:b5:21:0f:57:3f:75:45:b1:7c:4f:1e:1e:59:19:
42:26:1a:46:2b:b6:c0:60:6b:ce:c2:11:cb:16:22:
fd:36:74:59:40:a5:3a:9f:b4:29:46:33:14:61:b0:
af:30:1b:3d:61:48:8e:39:fd:15:3b:d5:18:ad:7d:
76:f5:f4:49:ab:9e:7b:be:39:4a:75:42:85:7e:18:
dc:35:b8:2b:0b:2c:f8:ee:4e:f1:b0:82:16:3f:94:
6f:ea:de:e2:0c:b6:b8:9f:f7:a4:4c:12:84:8c:46:
bd:13:35:b9:9b:d8:d1:a0:4c:8d:9a:e9:eb:41:97:
12:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:2A:7C:6A:74:9B:0E:59:24:E0:95:1A:05:01:45:E9:DA:80:02:A8
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/Oyp8anSbDlkk4JUaBQFF6dqAAqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:40::/48
2a12:bec0:7400::/40
Signature Algorithm: sha256WithRSAEncryption
b8:2d:d6:6b:d5:08:4f:ae:c8:71:2a:8b:09:35:6f:dd:16:09:
01:e1:af:50:94:80:76:f1:f1:7d:39:25:e7:58:3b:63:12:8d:
8c:3b:7a:a1:7d:9d:10:fe:69:46:5c:ae:d5:1a:fe:12:83:37:
2e:22:7f:02:73:5f:1a:ae:d5:a5:a9:bb:2d:0c:9b:bf:60:3d:
4a:11:6d:0a:b8:2e:35:c6:03:78:01:24:b1:0d:b0:e9:9d:49:
29:40:a2:c6:fc:a6:8d:83:96:d9:6e:89:00:7d:69:70:89:6c:
38:78:48:c8:e8:1d:de:03:fb:d7:34:a8:ec:56:62:e4:d1:7c:
22:e4:04:d1:54:55:e0:3a:f4:48:1c:16:a5:28:01:1e:66:7a:
3f:19:a3:78:21:63:dd:ba:f3:84:aa:50:7b:70:34:c9:c5:45:
a3:43:72:17:de:d1:82:d3:58:9b:7d:34:5b:70:c7:7a:98:e5:
7e:62:7a:57:a3:d0:c1:12:4a:db:b9:66:b6:84:eb:b6:ab:be:
23:90:54:bf:23:f2:b8:fb:36:a2:f3:8d:7e:2f:0d:66:67:14:
d6:56:a1:61:2b:df:52:91:21:79:4f:20:34:86:01:3d:e0:df:
36:ca:49:bb:be:6b:67:0b:2e:3d:15:92:d9:3b:7f:d4:e3:18:
91:a6:91:1d
-----BEGIN CERTIFICATE-----
MIIE+jCCA+KgAwIBAgIEAJYVdjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MzdlMjE1YTQxNWVkN2I1ZGU0YjZkYzEyZjJmN2I3NzUwYzNkNjZmMB4XDTIyMDYw
MjIxMTEyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2IyYTdjNmE3NDli
MGU1OTI0ZTA5NTFhMDUwMTQ1ZTlkYTgwMDJhODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANm16RNSjSmQ6nOs3+SHdGmZe5rGE+ERGA+LVu5fdVLGRDZr
yznlo+xbXKQfzSB3hbWpppz45XOLYG/As3BT5wM90vreU1K/4pdf3UTect8X1Q3o
loRYe2AUkkHjtqAfgafRSY/713MO0IevLcIFSnkexZz1/WW++6SSDqp3DQMO2EGM
5DwfYbUhD1c/dUWxfE8eHlkZQiYaRiu2wGBrzsIRyxYi/TZ0WUClOp+0KUYzFGGw
rzAbPWFIjjn9FTvVGK19dvX0Sauee745SnVChX4Y3DW4Kwss+O5O8bCCFj+Ub+re
4gy2uJ/3pEwShIxGvRM1uZvY0aBMjZrp60GXEo8CAwEAAaOCAhQwggIQMB0GA1Ud
DgQWBBQ7KnxqdJsOWSTglRoFAUXp2oACqDAfBgNVHSMEGDAWgBSzfiFaQV7Xtd5L
bcEvL3t3UMPWbzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3MzNGhXa0ZlMTdYZVMyM0JMeTk3ZDFERDFtOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODcvOTdmNDlhLTdhOTUtNGRkNS04Yzc0LTU1MzY5Y2Y1MDdlZS8x
L095cDhhblNiRGxrazRKVWFCUUZGNmRxQUFxZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcv
OTdmNDlhLTdhOTUtNGRkNS04Yzc0LTU1MzY5Y2Y1MDdlZS8xL3MzNGhXa0ZlMTdY
ZVMyM0JMeTk3ZDFERDFtOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAq
BggrBgEFBQcBBwEB/wQbMBkwFwQCAAIwEQMHACoSvsAAQAMGACoSvsB0MA0GCSqG
SIb3DQEBCwUAA4IBAQC4LdZr1QhPrshxKosJNW/dFgkB4a9QlIB28fF9OSXnWDtj
Eo2MO3qhfZ0Q/mlGXK7VGv4SgzcuIn8Cc18artWlqbstDJu/YD1KEW0KuC41xgN4
ASSxDbDpnUkpQKLG/KaNg5bZbokAfWlwiWw4eEjI6B3eA/vXNKjsVmLk0Xwi5ATR
VFXgOvRIHBalKAEeZno/GaN4IWPduvOEqlB7cDTJxUWjQ3IX3tGC01ibfTRbcMd6
mOV+YnpXo9DBEkrbuWa2hOu2q74jkFS/I/K4+zai841+Lw1mZxTWVqFhK99SkSF5
TyA0hgE94N82ykm7vmtnCy49FZLZO3/U4xiRppEd
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org