Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/8e35f5-97d3-4351-9bb0-fcb36d81254a/1/mBcFBusZq4syIheXyz-4I056XDI.roa
File: mBcFBusZq4syIheXyz-4I056XDI.roa (raw, json)
Hash identifier: I6Rcf4jv2ST90YVy7zuoMq/SfuJt62BWCy7E6VrRS64=
Subject key identifier: 98:17:05:06:EB:19:AB:8B:32:22:17:97:CB:3F:B8:23:4E:7A:5C:32
Certificate issuer: /CN=12e64042b6e7288a485db270c551329b802fd8c4
Certificate serial: 035BEE6B
Authority key identifier: 12:E6:40:42:B6:E7:28:8A:48:5D:B2:70:C5:51:32:9B:80:2F:D8:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EuZAQrbnKIpIXbJwxVEym4Av2MQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/8e35f5-97d3-4351-9bb0-fcb36d81254a/1/mBcFBusZq4syIheXyz-4I056XDI.roa
Signing time: Sat 01 Jan 2022 04:57:10 +0000
ROA not before: Sat 01 Jan 2022 04:57:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24868
IP address blocks: 2001:678:4d4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56356459 (0x35bee6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12e64042b6e7288a485db270c551329b802fd8c4
Validity
Not Before: Jan 1 04:57:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98170506eb19ab8b32221797cb3fb8234e7a5c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:aa:49:12:27:63:d5:86:0b:f3:7f:0b:9e:39:
70:98:83:0a:0e:ec:aa:89:23:90:a2:b7:51:a9:1a:
05:2c:be:5a:97:bb:39:fe:64:5d:7d:a7:99:92:bf:
e2:fe:ab:66:61:00:60:fe:1e:67:72:02:aa:fc:c6:
62:95:ff:73:71:de:40:1b:1a:00:eb:d2:e7:e9:46:
60:52:71:31:d3:3b:c3:06:aa:54:63:95:4d:1f:84:
c9:c3:69:5a:36:37:13:3d:d4:e8:c8:36:ac:a2:24:
ae:a1:35:51:e1:cb:97:71:a7:c4:05:cb:97:97:0f:
36:ef:ab:48:b4:ea:71:19:c6:70:3b:84:97:c1:65:
43:14:0f:10:59:72:70:67:17:48:ed:6b:93:44:0d:
14:30:9f:0f:26:0f:58:ee:dd:39:7a:55:34:06:0b:
55:5f:6c:78:db:7c:ee:cb:a2:7b:f2:a1:15:c5:f8:
05:8f:fe:58:e6:39:a8:dd:b0:91:7a:cd:49:d0:33:
af:77:39:4c:a7:31:b4:f1:a3:be:63:d4:b8:e3:7b:
fe:5c:a4:e6:3a:55:9b:a4:e0:ee:e0:d4:47:a9:c3:
75:91:6a:b4:32:6c:de:c8:02:08:f6:34:27:eb:39:
55:60:89:fe:31:10:41:07:6b:e7:91:95:70:f1:a3:
a5:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:17:05:06:EB:19:AB:8B:32:22:17:97:CB:3F:B8:23:4E:7A:5C:32
X509v3 Authority Key Identifier:
keyid:12:E6:40:42:B6:E7:28:8A:48:5D:B2:70:C5:51:32:9B:80:2F:D8:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EuZAQrbnKIpIXbJwxVEym4Av2MQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8e35f5-97d3-4351-9bb0-fcb36d81254a/1/mBcFBusZq4syIheXyz-4I056XDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8e35f5-97d3-4351-9bb0-fcb36d81254a/1/EuZAQrbnKIpIXbJwxVEym4Av2MQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:4d4::/48
Signature Algorithm: sha256WithRSAEncryption
27:b8:41:65:18:00:88:03:2e:1b:34:70:54:bb:17:6f:a0:93:
32:79:99:b7:41:1f:e2:e2:c9:53:50:1f:29:27:11:06:e5:8f:
d9:d3:82:17:06:d8:76:c7:38:a3:18:b0:65:ef:f4:0f:d0:fe:
ce:9f:d7:b0:be:e8:fe:ec:2c:e1:b6:c9:17:a2:a6:4f:71:5b:
c9:bc:d5:75:c5:34:a6:bf:87:dc:e0:dc:3d:55:47:51:a3:06:
0c:01:e8:d1:88:11:16:66:bf:60:39:53:fd:10:6c:97:eb:7d:
b9:21:f5:22:70:bc:5f:eb:68:b6:b2:8f:15:c7:e8:89:3c:ba:
b9:bb:44:7c:dd:19:86:f0:49:e8:dd:4c:a0:7b:ca:e5:ce:6f:
70:12:ef:d6:89:6d:d1:52:53:ab:54:86:e0:6e:a2:6f:54:bd:
87:b8:d2:30:8a:87:64:b2:cd:64:4d:71:ea:fc:70:c7:08:57:
1a:8b:fb:99:c4:bd:d5:f8:82:81:71:4f:3d:00:59:37:b3:2c:
b2:13:58:42:33:13:c4:8f:d7:0b:07:b5:23:83:50:9c:7d:dc:
8a:09:61:c7:64:71:6a:d1:19:fd:87:3a:ca:55:1f:5a:1f:43:
b1:4c:52:56:7c:f4:74:3c:58:d5:0c:0e:93:c4:6f:fd:17:ee:
d4:cf:97:7b
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEA1vuazANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MmU2NDA0MmI2ZTcyODhhNDg1ZGIyNzBjNTUxMzI5YjgwMmZkOGM0MB4XDTIyMDEw
MTA0NTcxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTgxNzA1MDZlYjE5
YWI4YjMyMjIxNzk3Y2IzZmI4MjM0ZTdhNWMzMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMaqSRInY9WGC/N/C545cJiDCg7sqokjkKK3UakaBSy+Wpe7
Of5kXX2nmZK/4v6rZmEAYP4eZ3ICqvzGYpX/c3HeQBsaAOvS5+lGYFJxMdM7wwaq
VGOVTR+EycNpWjY3Ez3U6Mg2rKIkrqE1UeHLl3GnxAXLl5cPNu+rSLTqcRnGcDuE
l8FlQxQPEFlycGcXSO1rk0QNFDCfDyYPWO7dOXpVNAYLVV9seNt87suie/KhFcX4
BY/+WOY5qN2wkXrNSdAzr3c5TKcxtPGjvmPUuON7/lyk5jpVm6Tg7uDUR6nDdZFq
tDJs3sgCCPY0J+s5VWCJ/jEQQQdr55GVcPGjpcECAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSYFwUG6xmrizIiF5fLP7gjTnpcMjAfBgNVHSMEGDAWgBQS5kBCtucoikhd
snDFUTKbgC/YxDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0V1WkFRcmJuS0lwSVhiSnd4VkV5bTRBdjJNUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDUvOGUzNWY1LTk3ZDMtNDM1MS05YmIwLWZjYjM2ZDgxMjU0YS8x
L21CY0ZCdXNacTRzeUloZVh5ei00STA1NlhESS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDUv
OGUzNWY1LTk3ZDMtNDM1MS05YmIwLWZjYjM2ZDgxMjU0YS8xL0V1WkFRcmJuS0lw
SVhiSnd4VkV5bTRBdjJNUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBngE1DANBgkqhkiG9w0BAQsF
AAOCAQEAJ7hBZRgAiAMuGzRwVLsXb6CTMnmZt0Ef4uLJU1AfKScRBuWP2dOCFwbY
dsc4oxiwZe/0D9D+zp/XsL7o/uws4bbJF6KmT3FbybzVdcU0pr+H3ODcPVVHUaMG
DAHo0YgRFma/YDlT/RBsl+t9uSH1InC8X+totrKPFcfoiTy6ubtEfN0ZhvBJ6N1M
oHvK5c5vcBLv1olt0VJTq1SG4G6ib1S9h7jSMIqHZLLNZE1x6vxwxwhXGov7mcS9
1fiCgXFPPQBZN7MsshNYQjMTxI/XCwe1I4NQnH3ciglhx2RxatEZ/Yc6ylUfWh9D
sUxSVnz0dDxY1QwOk8Rv/Rfu1M+Xew==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:28 2023 by rpki-client on console-ams.rpki-client.org