Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/SFlkxtfWDCnltV8RWMjbSYbz6FA.roa
File: SFlkxtfWDCnltV8RWMjbSYbz6FA.roa (raw, json)
Hash identifier: Whzr7Wbg96gQ2peVOq7wfWhZtKA9LjzzgqnXlTVounA=
Subject key identifier: 48:59:64:C6:D7:D6:0C:29:E5:B5:5F:11:58:C8:DB:49:86:F3:E8:50
Certificate issuer: /CN=3026806a6b8dac68c2a32b65849229524fc33da7
Certificate serial: 0123D9
Authority key identifier: 30:26:80:6A:6B:8D:AC:68:C2:A3:2B:65:84:92:29:52:4F:C3:3D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCaAamuNrGjCoytlhJIpUk_DPac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/SFlkxtfWDCnltV8RWMjbSYbz6FA.roa
Signing time: Tue 15 Feb 2022 19:29:30 +0000
ROA not before: Tue 15 Feb 2022 19:29:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47536
IP address blocks: 2a12:79c0::/32 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74713 (0x123d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3026806a6b8dac68c2a32b65849229524fc33da7
Validity
Not Before: Feb 15 19:29:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=485964c6d7d60c29e5b55f1158c8db4986f3e850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:27:30:80:f6:73:6c:3f:ec:cc:8e:fd:c3:58:
4f:8e:c6:f3:e2:e0:ce:9a:a6:c4:a2:50:eb:c7:ad:
cf:52:d0:23:df:81:30:4e:fa:3b:f4:4f:92:e6:e6:
f4:b2:62:e5:6b:02:be:53:d1:ef:e4:a7:8a:d3:fe:
e0:1d:5e:03:5c:6b:80:a0:a2:8f:d6:da:d0:ae:d3:
1b:f1:0f:90:5b:7a:42:f4:7c:6d:cc:31:ac:96:c6:
36:0f:cb:bd:90:f9:e9:c9:ea:e0:e2:95:73:34:e3:
44:5c:d8:af:f1:e0:78:cf:bc:f2:e6:37:83:3d:6c:
a0:30:7c:40:b1:3b:bc:b2:0d:a2:83:e1:93:29:6a:
ae:7b:70:3b:28:4c:90:37:13:10:23:33:d0:57:62:
72:32:47:8b:ce:ee:d8:f0:da:9d:1a:eb:02:a2:7f:
c8:55:9f:7d:8c:26:7e:dd:e4:9d:a4:36:c0:9e:af:
42:66:01:bc:4e:c1:f2:5b:a1:f2:db:29:18:f9:19:
a7:c8:0b:d3:67:bf:7f:4e:6c:08:34:43:5b:2d:f2:
d3:29:cf:51:f5:cc:bb:55:be:de:28:4b:f1:3a:bd:
50:84:c8:79:4b:81:fd:ff:f8:c6:32:9f:8b:0f:f1:
8f:11:cf:2f:3b:dc:7d:fb:87:f0:6f:d3:3d:11:6d:
45:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:59:64:C6:D7:D6:0C:29:E5:B5:5F:11:58:C8:DB:49:86:F3:E8:50
X509v3 Authority Key Identifier:
keyid:30:26:80:6A:6B:8D:AC:68:C2:A3:2B:65:84:92:29:52:4F:C3:3D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCaAamuNrGjCoytlhJIpUk_DPac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/SFlkxtfWDCnltV8RWMjbSYbz6FA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/MCaAamuNrGjCoytlhJIpUk_DPac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:79c0::/32
Signature Algorithm: sha256WithRSAEncryption
4b:7a:ad:72:2e:cf:2a:f3:53:2c:a7:8e:52:17:15:64:d2:51:
c2:1d:4b:79:9c:cc:12:cc:5c:3f:e1:61:a3:9d:6e:53:f1:8f:
f9:75:ee:ef:6c:44:83:0e:f4:7c:56:c2:b0:93:aa:e2:9b:16:
64:99:95:86:60:75:1a:ff:25:1d:28:15:4d:7b:44:ef:27:a3:
42:70:2a:c4:73:bd:ee:8b:aa:32:b1:36:96:74:bf:02:03:13:
f3:b1:d8:01:76:78:6f:03:6c:52:ae:50:66:3d:4d:ed:e1:a3:
39:5f:4f:38:b9:75:6f:64:74:d6:c6:a3:48:83:50:d0:8e:41:
d8:a4:66:ea:18:d5:0d:bc:f2:72:dd:0b:97:04:a1:e9:76:12:
21:39:3a:18:29:96:6e:6e:96:48:a5:54:fb:5c:97:ce:32:18:
74:8b:29:0b:15:02:f6:f5:a2:23:08:3d:a1:e8:3a:6c:9a:b2:
94:3a:3e:20:ff:0c:2f:4d:9f:a4:56:0d:84:08:62:4a:0e:c3:
fb:9a:88:8a:87:8e:f0:48:39:b4:69:97:87:b9:6a:a3:4e:b3:
5c:d7:1b:ed:e8:67:4a:38:7c:fb:ec:99:e7:da:df:b3:25:fa:
44:78:a1:d7:cd:f3:10:d5:ce:87:fb:c9:f4:5d:e2:5d:fd:dc:
4a:4b:eb:2e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIDASPZMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDMw
MjY4MDZhNmI4ZGFjNjhjMmEzMmI2NTg0OTIyOTUyNGZjMzNkYTcwHhcNMjIwMjE1
MTkyOTMwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0ODU5NjRjNmQ3ZDYw
YzI5ZTViNTVmMTE1OGM4ZGI0OTg2ZjNlODUwMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAuCcwgPZzbD/szI79w1hPjsbz4uDOmqbEolDrx63PUtAj34Ew
Tvo79E+S5ub0smLlawK+U9Hv5KeK0/7gHV4DXGuAoKKP1trQrtMb8Q+QW3pC9Hxt
zDGslsY2D8u9kPnpyerg4pVzNONEXNiv8eB4z7zy5jeDPWygMHxAsTu8sg2ig+GT
KWque3A7KEyQNxMQIzPQV2JyMkeLzu7Y8NqdGusCon/IVZ99jCZ+3eSdpDbAnq9C
ZgG8TsHyW6Hy2ykY+RmnyAvTZ79/TmwINENbLfLTKc9R9cy7Vb7eKEvxOr1QhMh5
S4H9//jGMp+LD/GPEc8vO9x9+4fwb9M9EW1FiQIDAQABo4ICCjCCAgYwHQYDVR0O
BBYEFEhZZMbX1gwp5bVfEVjI20mG8+hQMB8GA1UdIwQYMBaAFDAmgGprjaxowqMr
ZYSSKVJPwz2nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
TUNhQWFtdU5yR2pDb3l0bGhKSXBVa19EUGFjLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iZi85ZGNhMGUtYTQxYi00OTcyLWJiYjUtMDhlMmIxMDE3OTI3LzEv
U0Zsa3h0ZldEQ25sdFY4UldNamJTWWJ6NkZBLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi85
ZGNhMGUtYTQxYi00OTcyLWJiYjUtMDhlMmIxMDE3OTI3LzEvTUNhQWFtdU5yR2pD
b3l0bGhKSXBVa19EUGFjLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAG
CCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhJ5wDANBgkqhkiG9w0BAQsFAAOC
AQEAS3qtci7PKvNTLKeOUhcVZNJRwh1LeZzMEsxcP+Fho51uU/GP+XXu72xEgw70
fFbCsJOq4psWZJmVhmB1Gv8lHSgVTXtE7yejQnAqxHO97ouqMrE2lnS/AgMT87HY
AXZ4bwNsUq5QZj1N7eGjOV9POLl1b2R01sajSINQ0I5B2KRm6hjVDbzyct0LlwSh
6XYSITk6GCmWbm6WSKVU+1yXzjIYdIspCxUC9vWiIwg9oeg6bJqylDo+IP8ML02f
pFYNhAhiSg7D+5qIioeO8Eg5tGmXh7lqo06zXNcb7ehnSjh8++yZ59rfsyX6RHih
183zENXOh/vJ9F3iXf3cSkvrLg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:52 2024 by rpki-client on console-ams.rpki-client.org