Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/036434-e95e-4426-8d1c-67280c8bbab8/1/lI-Jef6Yf9HoddoE-cAotccwIbo.roa
File: lI-Jef6Yf9HoddoE-cAotccwIbo.roa (raw, json)
Hash identifier: Krfk90t4dOhQhTZ2UpZ3Fw4JNvF6ht95aEnemfRj8+I=
Subject key identifier: 94:8F:89:79:FE:98:7F:D1:E8:75:DA:04:F9:C0:28:B5:C7:30:21:BA
Certificate issuer: /CN=0239ae11188088547eb3e523483cca98556c115b
Certificate serial: 2FEAB993
Authority key identifier: 02:39:AE:11:18:80:88:54:7E:B3:E5:23:48:3C:CA:98:55:6C:11:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AjmuERiAiFR-s-UjSDzKmFVsEVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/036434-e95e-4426-8d1c-67280c8bbab8/1/lI-Jef6Yf9HoddoE-cAotccwIbo.roa
Signing time: Sat 01 Jan 2022 04:01:06 +0000
ROA not before: Sat 01 Jan 2022 04:01:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16276
IP address blocks: 185.12.32.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 803912083 (0x2feab993)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0239ae11188088547eb3e523483cca98556c115b
Validity
Not Before: Jan 1 04:01:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=948f8979fe987fd1e875da04f9c028b5c73021ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:3d:11:df:7a:e1:f2:9e:5f:4c:bf:41:fb:0c:
e4:76:07:42:3d:29:55:01:04:81:57:4b:6d:49:5d:
82:4b:a8:e6:e8:f6:27:4b:d7:7a:08:77:62:21:60:
47:52:48:14:ec:70:f4:65:b1:03:fa:af:f3:17:5d:
91:d8:24:1b:3a:86:9e:f0:42:f8:bd:7b:2d:b9:b8:
4c:4b:40:28:84:d7:04:b1:9a:24:7d:21:7a:71:57:
35:66:1a:a3:c9:21:87:73:6e:3c:59:03:ab:7f:3a:
bb:99:22:f9:58:32:9a:b6:2b:4b:9c:ed:fc:b5:02:
4a:8f:dd:bd:15:2d:3d:58:00:2a:f5:d5:a5:96:9f:
08:78:74:e8:72:05:ee:c8:d8:d8:d0:04:5a:45:8a:
eb:eb:8a:ff:b7:ba:87:28:bb:ee:f3:71:85:70:19:
ae:d0:9e:93:c8:49:d5:c3:6f:cb:75:82:f9:ab:5c:
2c:57:07:bd:bf:64:2c:a8:6d:4b:0a:27:6a:95:21:
9b:20:71:cd:da:b5:52:05:76:26:89:7b:20:27:18:
b2:28:fc:9a:eb:f5:55:f1:96:16:28:2b:ad:39:5e:
c2:e2:a2:fe:45:88:50:89:00:8c:e4:fa:71:3c:60:
80:c7:27:80:a6:ae:8c:cd:91:d9:d0:e5:f3:fe:1d:
5b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:8F:89:79:FE:98:7F:D1:E8:75:DA:04:F9:C0:28:B5:C7:30:21:BA
X509v3 Authority Key Identifier:
keyid:02:39:AE:11:18:80:88:54:7E:B3:E5:23:48:3C:CA:98:55:6C:11:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AjmuERiAiFR-s-UjSDzKmFVsEVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/036434-e95e-4426-8d1c-67280c8bbab8/1/lI-Jef6Yf9HoddoE-cAotccwIbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/036434-e95e-4426-8d1c-67280c8bbab8/1/AjmuERiAiFR-s-UjSDzKmFVsEVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.12.32.0/23
Signature Algorithm: sha256WithRSAEncryption
cc:a2:f6:a9:33:7d:f8:f6:1a:fb:8e:08:c9:20:9f:9d:8d:1f:
c4:96:5b:a1:8f:3b:28:ae:d8:9a:a1:95:e9:37:dd:50:98:2e:
5e:62:11:74:bb:55:4c:cc:f8:19:dd:11:bd:c5:22:07:f3:be:
08:51:1a:f2:05:f5:f5:b2:7f:51:cd:95:b7:e6:da:ac:4a:d4:
f9:d0:a9:de:b0:c5:0d:61:b8:6d:00:cc:10:5f:08:07:1e:9c:
cd:9e:1b:0c:6b:a8:ae:20:5e:24:67:cd:b8:0b:36:db:0b:84:
1a:f1:a0:57:15:d2:10:5d:78:ab:d7:a9:e5:bb:1e:94:04:26:
c6:c0:25:f0:e9:12:9c:66:9e:f5:cd:4b:2c:a9:0a:ab:a2:aa:
19:b7:5b:96:8b:29:91:e9:d0:9a:cd:74:71:27:55:80:33:0b:
83:dc:c4:5e:23:eb:6e:57:0a:eb:b3:2d:d6:83:21:45:34:29:
4c:54:17:3f:71:db:13:a5:67:4a:a9:3a:ba:c3:ef:b7:78:9c:
d4:af:b6:e3:db:92:f9:f4:fb:95:4d:c0:cd:e9:5c:84:ff:90:
b9:db:93:8d:49:cd:85:66:ee:00:c0:28:0c:06:1c:93:d2:94:
1e:7f:0f:bd:66:9b:0d:d4:ba:4f:68:75:d0:10:f1:01:f4:6d:
5a:33:f7:57
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEL+q5kzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MjM5YWUxMTE4ODA4ODU0N2ViM2U1MjM0ODNjY2E5ODU1NmMxMTViMB4XDTIyMDEw
MTA0MDEwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTQ4Zjg5NzlmZTk4
N2ZkMWU4NzVkYTA0ZjljMDI4YjVjNzMwMjFiYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANU9Ed964fKeX0y/QfsM5HYHQj0pVQEEgVdLbUldgkuo5uj2
J0vXegh3YiFgR1JIFOxw9GWxA/qv8xddkdgkGzqGnvBC+L17Lbm4TEtAKITXBLGa
JH0henFXNWYao8khh3NuPFkDq386u5ki+VgymrYrS5zt/LUCSo/dvRUtPVgAKvXV
pZafCHh06HIF7sjY2NAEWkWK6+uK/7e6hyi77vNxhXAZrtCek8hJ1cNvy3WC+atc
LFcHvb9kLKhtSwonapUhmyBxzdq1UgV2Jol7ICcYsij8muv1VfGWFigrrTlewuKi
/kWIUIkAjOT6cTxggMcngKaujM2R2dDl8/4dWwECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSUj4l5/ph/0eh12gT5wCi1xzAhujAfBgNVHSMEGDAWgBQCOa4RGICIVH6z
5SNIPMqYVWwRWzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FqbXVFUmlBaUZSLXMtVWpTRHpLbUZWc0VWcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTEvMDM2NDM0LWU5NWUtNDQyNi04ZDFjLTY3MjgwYzhiYmFiOC8x
L2xJLUplZjZZZjlIb2Rkb0UtY0FvdGNjd0liby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEv
MDM2NDM0LWU5NWUtNDQyNi04ZDFjLTY3MjgwYzhiYmFiOC8xL0FqbXVFUmlBaUZS
LXMtVWpTRHpLbUZWc0VWcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbkMIDANBgkqhkiG9w0BAQsFAAOC
AQEAzKL2qTN9+PYa+44IySCfnY0fxJZboY87KK7YmqGV6TfdUJguXmIRdLtVTMz4
Gd0RvcUiB/O+CFEa8gX19bJ/Uc2Vt+barErU+dCp3rDFDWG4bQDMEF8IBx6czZ4b
DGuoriBeJGfNuAs22wuEGvGgVxXSEF14q9ep5bselAQmxsAl8OkSnGae9c1LLKkK
q6KqGbdblospkenQms10cSdVgDMLg9zEXiPrblcK67Mt1oMhRTQpTFQXP3HbE6Vn
Sqk6usPvt3ic1K+249uS+fT7lU3AzelchP+QuduTjUnNhWbuAMAoDAYck9KUHn8P
vWabDdS6T2h10BDxAfRtWjP3Vw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-ams.rpki-client.org