Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/3coPpqavMjyFW-qMPd_Ljmq8mDM.roa
File: 3coPpqavMjyFW-qMPd_Ljmq8mDM.roa (raw, json)
Hash identifier: HQKJGGkBC/e9xbQScCFBXkk12m5Nu75sEDrJPcrjAlk=
Subject key identifier: DD:CA:0F:A6:A6:AF:32:3C:85:5B:EA:8C:3D:DF:CB:8E:6A:BC:98:33
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 0A364116
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/3coPpqavMjyFW-qMPd_Ljmq8mDM.roa
Signing time: Wed 15 Jun 2022 13:38:46 +0000
ROA not before: Wed 15 Jun 2022 13:38:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13
IP address blocks: 212.60.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171327766 (0xa364116)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Jun 15 13:38:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddca0fa6a6af323c855bea8c3ddfcb8e6abc9833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7c:c4:39:b3:e3:7e:b1:9d:fc:e2:c1:c5:3d:
d9:d8:d9:1c:4c:b4:22:96:47:69:12:0b:7c:36:cf:
a4:49:60:56:35:18:48:99:56:7e:41:b3:a3:4c:01:
12:74:c6:cf:29:85:71:8b:d5:04:d4:f2:80:8c:e4:
d0:1b:7b:ca:0b:bd:1d:36:5e:33:62:05:26:fc:d7:
d6:f1:7f:51:39:aa:0e:7c:56:c0:64:0c:d6:5e:db:
3f:3f:59:34:80:f5:0b:88:0a:f8:3e:f7:fb:a8:79:
33:dd:65:fd:15:04:2f:92:79:2a:c7:75:94:34:de:
9d:1f:9f:d7:ba:eb:2a:74:74:c8:5d:0c:61:31:60:
0c:02:4d:ba:24:f6:6a:bc:45:70:b9:45:c4:20:03:
68:b9:fb:45:08:bc:56:38:93:4d:92:d9:27:89:11:
d0:fe:de:e5:14:ed:55:99:ce:52:a2:1e:87:48:2c:
b0:7b:fb:af:65:03:c7:e2:70:ba:1a:bc:db:60:b4:
9a:64:bb:d7:43:7b:33:2a:35:e1:6a:ad:19:84:4c:
58:ad:c1:c6:85:2e:38:cf:8a:d8:ec:8f:16:af:f8:
9f:78:6e:7f:f1:71:2b:ca:f7:d1:6e:7b:ca:47:31:
3b:27:e2:34:e9:44:52:54:20:b0:78:d9:66:f5:58:
cd:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:CA:0F:A6:A6:AF:32:3C:85:5B:EA:8C:3D:DF:CB:8E:6A:BC:98:33
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/3coPpqavMjyFW-qMPd_Ljmq8mDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.60.13.0/24
Signature Algorithm: sha256WithRSAEncryption
81:fc:7e:c6:89:c9:96:0f:5d:2d:6c:84:19:9e:74:34:23:96:
d1:df:2a:74:8c:f7:cb:d2:bd:76:55:85:32:3c:36:f2:3f:01:
9e:95:15:e3:9b:0b:ec:1d:15:0c:b4:dc:c0:3b:79:2f:d3:e7:
e9:1c:e8:a1:6a:67:46:63:c7:11:7a:89:ca:d1:c1:bd:05:fc:
45:21:16:03:ab:7a:ff:8b:4d:09:59:24:c9:66:32:a9:20:fc:
5a:10:6f:a8:06:82:7b:68:4f:a0:29:56:2b:75:50:4a:16:05:
b6:d9:cf:c2:a6:ec:c5:b9:00:b4:e3:b3:fe:95:d7:8a:3c:49:
4f:6e:a1:f5:a0:99:13:a6:f4:b9:9d:8c:bd:cc:82:1c:d7:af:
2e:a0:4d:fc:67:4d:ad:68:0f:98:92:cc:3b:b7:3b:c0:f9:3e:
88:84:24:79:65:e4:24:7b:48:f1:7d:b8:5c:f2:b9:9b:f5:76:
e1:99:60:11:07:79:41:c1:e0:41:a5:37:a8:8f:00:ac:8a:f1:
f3:ad:25:f2:0a:cd:7a:e5:95:5d:8d:36:5f:2b:60:45:7c:7e:
ef:72:57:94:2f:1d:f6:2a:1e:92:bf:ca:3e:f4:b6:2c:2e:cc:
d9:f6:91:90:7c:5b:72:9a:9a:65:8d:ce:3c:94:9f:67:5e:79:
19:2b:e1:64
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECjZBFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MmI3OGY2NjgyZmMzOWM1NWI0MWQ0OGY4MGI4ODM4ZDVkMmRiZjA3MB4XDTIyMDYx
NTEzMzg0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGRjYTBmYTZhNmFm
MzIzYzg1NWJlYThjM2RkZmNiOGU2YWJjOTgzMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJl8xDmz436xnfziwcU92djZHEy0IpZHaRILfDbPpElgVjUY
SJlWfkGzo0wBEnTGzymFcYvVBNTygIzk0Bt7ygu9HTZeM2IFJvzX1vF/UTmqDnxW
wGQM1l7bPz9ZNID1C4gK+D73+6h5M91l/RUEL5J5Ksd1lDTenR+f17rrKnR0yF0M
YTFgDAJNuiT2arxFcLlFxCADaLn7RQi8VjiTTZLZJ4kR0P7e5RTtVZnOUqIeh0gs
sHv7r2UDx+Jwuhq822C0mmS710N7Myo14WqtGYRMWK3BxoUuOM+K2OyPFq/4n3hu
f/FxK8r30W57ykcxOyfiNOlEUlQgsHjZZvVYzRMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTdyg+mpq8yPIVb6ow938uOaryYMzAfBgNVHSMEGDAWgBRyt49mgvw5xVtB
1I+AuIONXS2/BzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NyZVBab0w4T2NWYlFkU1BnTGlEalYwdHZ3Yy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2EvM2M0YjhhLWJmYzctNDFlOS05OWUxLWYzZTUwNmFlYWEwMS8x
LzNjb1BwcWF2TWp5RlctcU1QZF9Mam1xOG1ETS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Ev
M2M0YjhhLWJmYzctNDFlOS05OWUxLWYzZTUwNmFlYWEwMS8xL2NyZVBab0w4T2NW
YlFkU1BnTGlEalYwdHZ3Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANQ8DTANBgkqhkiG9w0BAQsFAAOC
AQEAgfx+xonJlg9dLWyEGZ50NCOW0d8qdIz3y9K9dlWFMjw28j8BnpUV45sL7B0V
DLTcwDt5L9Pn6RzooWpnRmPHEXqJytHBvQX8RSEWA6t6/4tNCVkkyWYyqSD8WhBv
qAaCe2hPoClWK3VQShYFttnPwqbsxbkAtOOz/pXXijxJT26h9aCZE6b0uZ2MvcyC
HNevLqBN/GdNrWgPmJLMO7c7wPk+iIQkeWXkJHtI8X24XPK5m/V24ZlgEQd5QcHg
QaU3qI8ArIrx860l8grNeuWVXY02XytgRXx+73JXlC8d9ioekr/KPvS2LC7M2faR
kHxbcpqaZY3OPJSfZ155GSvhZA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:49 2023 by rpki-client on console-ams.rpki-client.org