Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/23iDWqGuA-xPuJKi-TU0fmzm8VI.roa
File: 23iDWqGuA-xPuJKi-TU0fmzm8VI.roa (raw, json)
Hash identifier: icpgk3LSK3qd+B/NPqjsL2AbnxgmcsrUeCeHbe3KBnw=
Subject key identifier: DB:78:83:5A:A1:AE:03:EC:4F:B8:92:A2:F9:35:34:7E:6C:E6:F1:52
Certificate issuer: /CN=823b6f3b7af87bb8ef6dd843bebd6d81b0559213
Certificate serial: 018336BEB0853270486EFC3A198B53C67EBA
Authority key identifier: 82:3B:6F:3B:7A:F8:7B:B8:EF:6D:D8:43:BE:BD:6D:81:B0:55:92:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gjtvO3r4e7jvbdhDvr1tgbBVkhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/23iDWqGuA-xPuJKi-TU0fmzm8VI.roa
Signing time: Tue 13 Sep 2022 12:06:50 +0000
ROA not before: Tue 13 Sep 2022 12:06:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 2a12:8440::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:36:be:b0:85:32:70:48:6e:fc:3a:19:8b:53:c6:7e:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=823b6f3b7af87bb8ef6dd843bebd6d81b0559213
Validity
Not Before: Sep 13 12:06:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db78835aa1ae03ec4fb892a2f935347e6ce6f152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fe:52:3d:bc:5d:57:43:a4:59:2e:f5:9a:12:
08:cc:c4:9a:39:a7:44:3f:47:74:0a:e6:e7:68:a9:
2c:41:a1:7f:17:ce:4e:b0:96:d1:5d:be:c0:14:92:
14:4e:3c:19:45:45:b4:65:6d:e5:f3:4a:f8:f4:d3:
86:89:dd:e4:d1:86:eb:57:8e:35:8f:95:67:91:74:
eb:2c:db:95:b1:be:68:9d:6a:a8:9a:76:ab:f4:98:
46:da:73:62:50:98:7c:74:79:fa:d1:a3:f1:51:6c:
b1:f2:7d:64:a9:11:ff:68:d5:7b:2e:b0:3b:89:7c:
68:86:20:30:38:82:b0:bc:f8:94:47:65:c4:72:a4:
93:44:1b:02:22:6a:ab:c7:9c:71:59:87:61:15:1c:
c7:aa:87:fa:72:04:21:dc:5a:78:5c:93:d5:d1:4b:
c8:81:33:39:88:d5:9f:70:d5:98:e7:06:17:9d:3c:
d7:35:bc:40:ce:f1:5d:0a:e9:f0:12:a8:bc:06:1d:
7b:ce:c8:78:d2:15:ed:d4:20:16:cb:c5:44:66:f4:
d9:92:61:f1:06:7f:fb:2f:61:2d:3b:1e:d6:9b:d6:
2e:27:63:0d:61:f9:f4:87:42:a3:cc:a1:23:d3:02:
48:cd:75:2e:22:48:5c:eb:8f:42:4d:f9:be:73:c8:
29:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:78:83:5A:A1:AE:03:EC:4F:B8:92:A2:F9:35:34:7E:6C:E6:F1:52
X509v3 Authority Key Identifier:
keyid:82:3B:6F:3B:7A:F8:7B:B8:EF:6D:D8:43:BE:BD:6D:81:B0:55:92:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gjtvO3r4e7jvbdhDvr1tgbBVkhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/23iDWqGuA-xPuJKi-TU0fmzm8VI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/gjtvO3r4e7jvbdhDvr1tgbBVkhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8440::/29
Signature Algorithm: sha256WithRSAEncryption
3e:14:ca:0d:d7:2d:13:18:5b:24:ff:c2:2d:68:38:ef:b6:88:
ab:c7:b7:b5:26:92:14:15:d4:09:e9:b8:92:5b:a3:12:6e:f6:
06:4f:3b:8f:e1:0f:34:e7:69:88:0a:8c:a0:15:0b:03:73:cb:
06:0f:6d:dd:6f:90:25:23:b6:d8:39:83:74:36:a6:ff:7c:34:
94:a4:d3:9d:1b:9a:82:cd:46:8f:58:1d:fe:d6:a4:8e:bc:8a:
89:c9:02:60:a7:63:91:b2:39:47:6a:b8:9f:dc:9d:79:44:67:
4a:5d:07:fd:46:64:02:bc:0e:a8:23:55:63:83:0c:82:ee:86:
69:8a:dc:9d:64:b1:e5:fd:81:bb:e1:29:60:51:24:c1:06:37:
70:bb:3e:29:1e:14:f6:1f:c6:42:99:fe:c2:50:9f:b8:09:ee:
58:cc:30:df:50:d5:2f:f6:be:ba:8f:8f:df:44:09:a3:da:2b:
c0:8d:d2:28:e0:0b:0f:bf:02:f0:f5:34:50:d1:c5:c9:fa:3b:
a5:dd:da:72:f3:4c:8f:62:c9:ba:4f:1b:9d:bf:eb:ec:00:ba:
c6:64:c2:89:03:f8:0c:46:d9:6a:28:66:0d:48:fb:ac:8b:da:
e3:13:a3:a1:7a:51:3c:04:2e:ac:a5:c9:59:6b:5d:08:50:07:
57:74:bb:8e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYM2vrCFMnBIbvw6GYtTxn66MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyM2I2ZjNiN2FmODdiYjhlZjZkZDg0M2JlYmQ2ZDgxYjA1
NTkyMTMwHhcNMjIwOTEzMTIwNjUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjc4ODM1YWExYWUwM2VjNGZiODkyYTJmOTM1MzQ3ZTZjZTZmMTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi/5SPbxdV0OkWS71mhIIzMSaOadE
P0d0CubnaKksQaF/F85OsJbRXb7AFJIUTjwZRUW0ZW3l80r49NOGid3k0YbrV441
j5VnkXTrLNuVsb5onWqomnar9JhG2nNiUJh8dHn60aPxUWyx8n1kqRH/aNV7LrA7
iXxohiAwOIKwvPiUR2XEcqSTRBsCImqrx5xxWYdhFRzHqof6cgQh3Fp4XJPV0UvI
gTM5iNWfcNWY5wYXnTzXNbxAzvFdCunwEqi8Bh17zsh40hXt1CAWy8VEZvTZkmHx
Bn/7L2EtOx7Wm9YuJ2MNYfn0h0KjzKEj0wJIzXUuIkhc649CTfm+c8gpwQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFNt4g1qhrgPsT7iSovk1NH5s5vFSMB8GA1UdIwQY
MBaAFII7bzt6+Hu4723YQ769bYGwVZITMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2p0dk8zcjRlN2p2YmRoRHZyMXRnYkJWa2hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9jNDk0Y2ItMjUxNy00MWE4LWE0NTct
ZTcxMGMyYTE0YmNlLzEvMjNpRFdxR3VBLXhQdUpLaS1UVTBmbXptOFZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZS9jNDk0Y2ItMjUxNy00MWE4LWE0NTctZTcxMGMyYTE0YmNl
LzEvZ2p0dk8zcjRlN2p2YmRoRHZyMXRnYkJWa2hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhKEQDAN
BgkqhkiG9w0BAQsFAAOCAQEAPhTKDdctExhbJP/CLWg477aIq8e3tSaSFBXUCem4
klujEm72Bk87j+EPNOdpiAqMoBULA3PLBg9t3W+QJSO22DmDdDam/3w0lKTTnRua
gs1Gj1gd/takjryKickCYKdjkbI5R2q4n9ydeURnSl0H/UZkArwOqCNVY4MMgu6G
aYrcnWSx5f2Bu+EpYFEkwQY3cLs+KR4U9h/GQpn+wlCfuAnuWMww31DVL/a+uo+P
30QJo9orwI3SKOALD78C8PU0UNHFyfo7pd3acvNMj2LJuk8bnb/r7AC6xmTCiQP4
DEbZaihmDUj7rIva4xOjoXpRPAQurKXJWWtdCFAHV3S7jg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:26 2024 by rpki-client on console-ams.rpki-client.org