Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/3bJw_G6jiHtwVUjpqSpxsDT5NAI.roa
File: 3bJw_G6jiHtwVUjpqSpxsDT5NAI.roa (raw, json)
Hash identifier: 7btGr580nndKKDG9m9ZHNRN9aTAY8PeOtiqxSX23580=
Subject key identifier: DD:B2:70:FC:6E:A3:88:7B:70:55:48:E9:A9:2A:71:B0:34:F9:34:02
Certificate issuer: /CN=700a1231d1c27a754e46ef10e92a730ae15d0f55
Certificate serial: 03C15766
Authority key identifier: 70:0A:12:31:D1:C2:7A:75:4E:46:EF:10:E9:2A:73:0A:E1:5D:0F:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAoSMdHCenVORu8Q6SpzCuFdD1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/3bJw_G6jiHtwVUjpqSpxsDT5NAI.roa
Signing time: Sat 01 Jan 2022 12:57:18 +0000
ROA not before: Sat 01 Jan 2022 12:57:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50349
IP address blocks: 217.11.128.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63002470 (0x3c15766)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=700a1231d1c27a754e46ef10e92a730ae15d0f55
Validity
Not Before: Jan 1 12:57:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddb270fc6ea3887b705548e9a92a71b034f93402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e4:7c:42:c1:00:8c:22:ab:71:10:9c:e8:c3:
1f:5a:3a:ac:71:fb:db:78:2d:e6:a2:61:b8:59:c7:
74:c8:36:8e:b9:c4:79:e5:b4:e6:37:7b:9b:31:00:
a6:0c:2d:de:8f:47:9e:f1:7b:f2:82:08:61:af:14:
e4:01:6e:74:15:01:77:0d:80:ae:6a:90:8f:f9:c2:
69:58:c1:46:b9:12:d1:9c:93:ce:13:7a:7a:1b:a7:
cb:38:59:99:75:a9:69:6c:24:c0:a2:46:f5:b8:fc:
9f:ff:65:ff:99:31:63:89:2a:fd:2a:ca:4e:38:8e:
66:0b:07:42:d9:81:00:66:87:b4:7a:d0:f7:89:77:
98:e5:2d:41:20:4f:70:76:2a:2c:8c:a9:71:26:0c:
b0:38:93:09:05:82:90:e3:11:aa:8d:f4:f4:4e:2e:
d3:10:58:72:52:52:51:96:73:56:f5:e2:43:0c:9c:
64:b7:61:fe:c6:22:3f:bc:fa:c3:6d:1b:1d:44:27:
10:29:74:97:b2:3d:a7:ad:25:5b:47:f3:b5:39:21:
f1:10:2c:b2:b9:6d:e0:d9:5c:e1:e1:58:ae:a9:c9:
b9:9b:e3:ce:e7:0c:68:5a:ca:69:07:94:26:77:50:
8d:16:77:dc:75:85:3a:09:58:13:97:c8:a4:41:11:
d6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:B2:70:FC:6E:A3:88:7B:70:55:48:E9:A9:2A:71:B0:34:F9:34:02
X509v3 Authority Key Identifier:
keyid:70:0A:12:31:D1:C2:7A:75:4E:46:EF:10:E9:2A:73:0A:E1:5D:0F:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAoSMdHCenVORu8Q6SpzCuFdD1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/3bJw_G6jiHtwVUjpqSpxsDT5NAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/cAoSMdHCenVORu8Q6SpzCuFdD1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.11.128.0/22
Signature Algorithm: sha256WithRSAEncryption
61:95:3b:a8:9b:e7:b4:a6:c3:a3:a7:44:22:07:be:ac:c0:d7:
f8:99:42:d6:d6:8a:81:0d:2d:05:12:c6:71:ca:33:24:04:8e:
a7:bb:96:0e:5b:09:86:68:e7:43:61:11:71:5a:32:78:c7:84:
da:3b:f3:8c:44:49:b1:a0:38:48:fd:aa:d8:fa:8e:dc:ef:80:
30:9c:f4:af:58:35:5b:63:b6:fc:40:85:b8:93:91:1a:d0:f5:
ab:33:a9:22:07:c9:ef:a2:f2:0a:72:37:2d:7e:66:25:16:23:
3c:d6:45:56:3f:d4:03:9d:a1:bd:db:4f:2e:1d:ed:cc:57:fe:
ae:af:95:bc:2e:5a:5d:5c:8a:7b:ff:57:21:59:d7:fb:10:ac:
b3:c0:68:8e:56:f5:19:c2:a3:09:eb:a3:b9:0f:b2:51:15:d0:
91:47:2a:98:f6:94:fb:57:f4:1f:76:4e:19:ad:4d:64:57:6f:
0d:de:d6:64:90:1f:35:00:1d:bb:b3:25:45:4b:6d:12:b4:dc:
54:32:3b:db:3a:e8:6e:00:9a:c4:bb:3d:eb:55:10:b3:8f:c9:
96:6b:07:21:cb:ce:16:8e:e0:48:04:a0:83:62:53:69:03:b2:
47:eb:ad:d0:2c:28:b1:ce:33:4b:e2:07:47:6c:8a:03:80:1c:
53:1a:9d:a6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA8FXZjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MDBhMTIzMWQxYzI3YTc1NGU0NmVmMTBlOTJhNzMwYWUxNWQwZjU1MB4XDTIyMDEw
MTEyNTcxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGRiMjcwZmM2ZWEz
ODg3YjcwNTU0OGU5YTkyYTcxYjAzNGY5MzQwMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALzkfELBAIwiq3EQnOjDH1o6rHH723gt5qJhuFnHdMg2jrnE
eeW05jd7mzEApgwt3o9HnvF78oIIYa8U5AFudBUBdw2ArmqQj/nCaVjBRrkS0ZyT
zhN6ehunyzhZmXWpaWwkwKJG9bj8n/9l/5kxY4kq/SrKTjiOZgsHQtmBAGaHtHrQ
94l3mOUtQSBPcHYqLIypcSYMsDiTCQWCkOMRqo309E4u0xBYclJSUZZzVvXiQwyc
ZLdh/sYiP7z6w20bHUQnECl0l7I9p60lW0fztTkh8RAssrlt4Nlc4eFYrqnJuZvj
zucMaFrKaQeUJndQjRZ33HWFOglYE5fIpEER1kMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTdsnD8bqOIe3BVSOmpKnGwNPk0AjAfBgNVHSMEGDAWgBRwChIx0cJ6dU5G
7xDpKnMK4V0PVTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NBb1NNZEhDZW5WT1J1OFE2U3B6Q3VGZEQxVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTEvZGNjMmI0LTlkZWQtNDY3OC04Mzk4LWFiNzlhMzc4OWY4Zi8x
LzNiSndfRzZqaUh0d1ZVanBxU3B4c0RUNU5BSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEv
ZGNjMmI0LTlkZWQtNDY3OC04Mzk4LWFiNzlhMzc4OWY4Zi8xL2NBb1NNZEhDZW5W
T1J1OFE2U3B6Q3VGZEQxVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtkLgDANBgkqhkiG9w0BAQsFAAOC
AQEAYZU7qJvntKbDo6dEIge+rMDX+JlC1taKgQ0tBRLGccozJASOp7uWDlsJhmjn
Q2ERcVoyeMeE2jvzjERJsaA4SP2q2PqO3O+AMJz0r1g1W2O2/ECFuJORGtD1qzOp
IgfJ76LyCnI3LX5mJRYjPNZFVj/UA52hvdtPLh3tzFf+rq+VvC5aXVyKe/9XIVnX
+xCss8Bojlb1GcKjCeujuQ+yURXQkUcqmPaU+1f0H3ZOGa1NZFdvDd7WZJAfNQAd
u7MlRUttErTcVDI72zrobgCaxLs961UQs4/JlmsHIcvOFo7gSASgg2JTaQOyR+ut
0Cwosc4zS+IHR2yKA4AcUxqdpg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:01 2024 by rpki-client on console-ams.rpki-client.org