Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/PLxYjhviIuIax9q7VX-x6ho99m0.roa
File: PLxYjhviIuIax9q7VX-x6ho99m0.roa (raw, json)
Hash identifier: Fh326M1BjsXZh9eMEtdOK1Tg2h/9hLmYUE2kydJSvLM=
Subject key identifier: 3C:BC:58:8E:1B:E2:22:E2:1A:C7:DA:BB:55:7F:B1:EA:1A:3D:F6:6D
Certificate issuer: /CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Certificate serial: 01822FFE7C52BEB2B074E5642124CB69074C
Authority key identifier: 63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/PLxYjhviIuIax9q7VX-x6ho99m0.roa
Signing time: Sun 24 Jul 2022 11:36:23 +0000
ROA not before: Sun 24 Jul 2022 11:36:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207721
IP address blocks: 2a12:fb40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:2f:fe:7c:52:be:b2:b0:74:e5:64:21:24:cb:69:07:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Validity
Not Before: Jul 24 11:36:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cbc588e1be222e21ac7dabb557fb1ea1a3df66d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b1:8c:37:34:f2:eb:e9:6d:52:ef:cf:bb:b0:
cf:51:d4:3c:4c:33:7e:36:04:4f:d3:bf:2f:07:c8:
c4:67:d8:18:71:04:4d:bf:f4:4b:75:c7:77:0c:42:
9c:20:b2:3e:63:f7:25:24:23:5c:a8:79:5e:bc:d0:
0f:89:f8:b0:04:24:9d:29:00:84:8a:5e:8d:81:5e:
b9:1d:79:40:08:4f:e2:8d:5d:6f:f3:ab:46:92:f9:
80:26:9c:1f:54:da:bc:09:dc:34:24:2e:54:19:7b:
c4:bb:f5:20:33:a0:f0:95:9c:97:de:b1:50:2f:ca:
a3:60:12:93:d5:9c:c2:ac:90:1c:96:0c:2d:9e:3b:
de:56:37:4a:f2:6d:04:db:93:76:b4:4d:d9:66:41:
f7:73:c6:d6:94:57:8a:f7:28:e1:26:02:1d:fe:32:
ea:70:18:0a:f2:98:83:78:e6:c3:16:75:ce:63:bb:
7c:28:cc:d3:47:95:b4:bd:f2:b3:33:54:05:72:dd:
69:29:76:82:e4:51:4a:f1:09:46:58:26:c5:5b:e9:
e2:b2:ba:95:8e:a3:b5:2c:91:83:87:48:f0:02:2f:
8b:f3:af:f1:cb:6b:ba:bc:44:b7:87:b4:84:f4:e9:
b7:9e:f7:55:00:3e:c1:a5:71:4b:9d:b7:13:8d:e5:
f2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:BC:58:8E:1B:E2:22:E2:1A:C7:DA:BB:55:7F:B1:EA:1A:3D:F6:6D
X509v3 Authority Key Identifier:
keyid:63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/PLxYjhviIuIax9q7VX-x6ho99m0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:fb40::/29
Signature Algorithm: sha256WithRSAEncryption
54:be:27:34:d3:11:ee:db:c8:e8:71:24:16:19:48:27:8a:af:
f5:2f:cf:2e:f0:8b:25:2d:ef:38:b5:eb:80:b1:f4:a2:8f:17:
30:ec:e7:2c:7e:c0:9f:29:aa:d3:c3:ef:d6:3f:8d:07:dd:ea:
88:52:63:51:ec:cb:40:87:00:77:98:e2:e2:dd:3c:95:30:16:
4d:51:21:d9:96:20:fa:d1:7d:9c:3e:ca:da:b5:ea:da:14:42:
75:ac:4c:f1:21:ba:60:83:ba:37:cb:b8:7a:2a:9f:b9:4b:9f:
09:0f:57:89:11:46:4a:74:38:06:4f:e5:77:c6:aa:0e:fc:41:
0b:a8:f3:07:72:68:38:15:48:58:e6:89:aa:3c:84:c1:4c:52:
92:bd:6b:03:fa:6a:52:ec:4f:c2:c1:c5:f2:fb:69:c0:0f:e8:
6d:1b:f3:90:88:84:18:e9:fd:ba:9f:4a:49:21:8e:e2:a7:1d:
93:cf:35:3c:d8:17:b6:2f:01:0c:28:42:8f:fb:97:10:4e:6e:
d3:5c:3e:ad:c6:8e:e0:52:bb:87:96:c6:b2:57:01:9e:01:39:
1b:88:8a:cf:b2:4b:7e:c7:94:62:e9:f7:95:87:2d:f8:5b:d8:
d1:d3:6c:55:b8:1c:1a:f1:75:b7:0e:30:7d:ca:09:22:12:fd:
58:cc:c7:50
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYIv/nxSvrKwdOVkISTLaQdMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzOGM4M2Y5YTNhM2QyMTYwYTAxNzhjYTE5Y2NiNDNhMGQy
ZjE4OTAwHhcNMjIwNzI0MTEzNjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzY2JjNTg4ZTFiZTIyMmUyMWFjN2RhYmI1NTdmYjFlYTFhM2RmNjZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprGMNzTy6+ltUu/Pu7DPUdQ8TDN+
NgRP078vB8jEZ9gYcQRNv/RLdcd3DEKcILI+Y/clJCNcqHlevNAPifiwBCSdKQCE
il6NgV65HXlACE/ijV1v86tGkvmAJpwfVNq8Cdw0JC5UGXvEu/UgM6DwlZyX3rFQ
L8qjYBKT1ZzCrJAclgwtnjveVjdK8m0E25N2tE3ZZkH3c8bWlFeK9yjhJgId/jLq
cBgK8piDeObDFnXOY7t8KMzTR5W0vfKzM1QFct1pKXaC5FFK8QlGWCbFW+nisrqV
jqO1LJGDh0jwAi+L86/xy2u6vES3h7SE9Om3nvdVAD7BpXFLnbcTjeXynQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFDy8WI4b4iLiGsfau1V/seoaPfZtMB8GA1UdIwQY
MBaAFGOMg/mjo9IWCgF4yhnMtDoNLxiQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWTR5RC1hT2owaFlLQVhqS0djeTBPZzB2R0pBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jYzNjMjgtN2IxMy00MzQzLWFmMzct
MjU1NTBiYTI5MTI3LzEvUEx4WWpodmlJdUlheDlxN1ZYLXg2aG85OW0wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9jYzNjMjgtN2IxMy00MzQzLWFmMzctMjU1NTBiYTI5MTI3
LzEvWTR5RC1hT2owaFlLQVhqS0djeTBPZzB2R0pBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhL7QDAN
BgkqhkiG9w0BAQsFAAOCAQEAVL4nNNMR7tvI6HEkFhlIJ4qv9S/PLvCLJS3vOLXr
gLH0oo8XMOznLH7Anymq08Pv1j+NB93qiFJjUezLQIcAd5ji4t08lTAWTVEh2ZYg
+tF9nD7K2rXq2hRCdaxM8SG6YIO6N8u4eiqfuUufCQ9XiRFGSnQ4Bk/ld8aqDvxB
C6jzB3JoOBVIWOaJqjyEwUxSkr1rA/pqUuxPwsHF8vtpwA/obRvzkIiEGOn9up9K
SSGO4qcdk881PNgXti8BDChCj/uXEE5u01w+rcaO4FK7h5bGslcBngE5G4iKz7JL
fseUYun3lYct+FvY0dNsVbgcGvF1tw4wfcoJIhL9WMzHUA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:55 2023 by rpki-client on console-fra.rpki-client.org