Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/3e4vNYOoB7kaAVUcBRLPDEfNARM.roa
File: 3e4vNYOoB7kaAVUcBRLPDEfNARM.roa (raw, json)
Hash identifier: LZTSsjb6YCJgMSQ5xwID4rTb9Lb+BtLezNGP4Qny9aM=
Subject key identifier: DD:EE:2F:35:83:A8:07:B9:1A:01:55:1C:05:12:CF:0C:47:CD:01:13
Certificate issuer: /CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Certificate serial: C85049
Authority key identifier: A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/3e4vNYOoB7kaAVUcBRLPDEfNARM.roa
Signing time: Fri 11 Feb 2022 01:50:00 +0000
ROA not before: Fri 11 Feb 2022 01:50:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149502
IP address blocks: 2a12:e100:1::/48 maxlen: 48
2a12:e100:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13127753 (0xc85049)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Validity
Not Before: Feb 11 01:50:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddee2f3583a807b91a01551c0512cf0c47cd0113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b6:2f:ec:48:c5:91:c4:e4:29:c4:88:66:ff:
b3:6f:ab:39:c8:7a:95:f0:e7:b9:69:8c:6e:7c:b8:
10:05:10:51:94:77:55:36:37:54:e8:72:6f:0b:9c:
0b:b9:13:af:3b:8a:8c:7f:bb:d7:a2:9a:4a:23:c9:
3b:d9:4a:da:f3:1f:f4:aa:29:27:bc:c1:78:8f:bf:
e7:cc:a1:11:34:6e:88:55:6f:68:e7:d9:05:e9:59:
02:ea:6f:81:17:ff:f1:25:e4:c5:e4:44:b0:40:29:
f2:72:8c:56:9d:fe:81:5d:cf:17:b2:df:db:a7:2d:
ba:33:4d:6b:be:93:a6:a8:50:af:18:4e:82:a7:cd:
ae:4c:97:f5:4e:d0:d4:f2:ba:08:a4:46:94:8f:b0:
45:14:03:b2:34:8e:a2:d2:67:76:e1:db:8f:db:dd:
66:c7:eb:77:b1:11:62:a6:7d:b3:16:40:e0:75:48:
28:e3:de:d5:dc:85:1c:95:cd:9c:eb:ad:f4:6d:40:
cc:f8:bc:90:f4:c8:82:1e:2a:95:77:e8:08:b5:c7:
db:bc:2d:ff:1e:60:58:90:28:d6:7d:84:e1:d0:a6:
6e:21:9b:8a:5a:68:e9:ff:19:4f:c6:9a:01:86:2a:
c0:0b:01:7b:67:d4:c0:0a:a3:3d:19:83:74:30:73:
fb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:EE:2F:35:83:A8:07:B9:1A:01:55:1C:05:12:CF:0C:47:CD:01:13
X509v3 Authority Key Identifier:
keyid:A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/3e4vNYOoB7kaAVUcBRLPDEfNARM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:e100:1::-2a12:e100:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
96:95:15:29:21:41:c2:c3:17:7d:13:21:6b:ec:07:ee:ad:37:
a6:b2:81:82:96:68:13:9c:4d:1b:11:8d:0b:71:29:06:b5:3d:
23:4d:e2:96:3a:76:d1:64:55:dd:bd:28:88:27:e3:f3:18:0e:
b4:bb:ea:35:d5:aa:88:17:c8:6a:64:5a:fe:f8:2d:5b:b8:55:
09:92:ec:1c:89:cb:48:54:50:80:08:5d:02:14:10:ff:fa:7c:
58:da:4f:c2:cd:2f:13:2e:06:14:6e:38:0d:e0:19:90:60:b5:
32:a8:2e:c9:02:fb:a3:68:ec:33:1c:c7:c7:2a:49:f6:73:28:
b0:56:44:fa:df:fd:fb:aa:a6:f7:9f:82:ae:dd:28:b3:86:fd:
a3:42:1b:21:a6:b2:a2:1e:7c:53:08:4a:4e:42:94:75:a8:36:
77:1c:06:13:0b:c5:97:06:c0:f0:9a:e4:d2:8b:7c:1d:a7:ef:
5f:97:77:90:b8:32:34:52:09:2c:d1:d3:ae:69:60:0a:43:3e:
84:40:5e:4a:67:04:bc:f4:b9:64:0e:fb:12:a2:34:7a:87:ed:
e1:ca:41:79:51:c2:c3:2a:86:6c:65:b0:a0:87:96:54:01:30:
bb:e4:18:88:a5:d2:f2:2a:c1:76:cb:e5:8d:d9:ce:bc:68:a1:
25:5a:56:ad
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIEAMhQSTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MGRmN2Y1YjY2MThiZGEyM2M4M2JlZDExYjQ0MjA0MWYxZmI0NTZkMB4XDTIyMDIx
MTAxNTAwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGRlZTJmMzU4M2E4
MDdiOTFhMDE1NTFjMDUxMmNmMGM0N2NkMDExMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALW2L+xIxZHE5CnEiGb/s2+rOch6lfDnuWmMbny4EAUQUZR3
VTY3VOhybwucC7kTrzuKjH+716KaSiPJO9lK2vMf9KopJ7zBeI+/58yhETRuiFVv
aOfZBelZAupvgRf/8SXkxeREsEAp8nKMVp3+gV3PF7Lf26ctujNNa76TpqhQrxhO
gqfNrkyX9U7Q1PK6CKRGlI+wRRQDsjSOotJnduHbj9vdZsfrd7ERYqZ9sxZA4HVI
KOPe1dyFHJXNnOut9G1AzPi8kPTIgh4qlXfoCLXH27wt/x5gWJAo1n2E4dCmbiGb
ilpo6f8ZT8aaAYYqwAsBe2fUwAqjPRmDdDBz+70CAwEAAaOCAhcwggITMB0GA1Ud
DgQWBBTd7i81g6gHuRoBVRwFEs8MR80BEzAfBgNVHSMEGDAWgBSg339bZhi9ojyD
vtEbRCBB8ftFbTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L29OOV9XMllZdmFJOGc3N1JHMFFnUWZIN1JXMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTIvYTU3MjhiLWEzNmQtNGZiYS05M2FhLTVmNGJjOTAwYzAzZC8x
LzNlNHZOWU9vQjdrYUFWVWNCUkxQREVmTkFSTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTIv
YTU3MjhiLWEzNmQtNGZiYS05M2FhLTVmNGJjOTAwYzAzZC8xL29OOV9XMllZdmFJ
OGc3N1JHMFFnUWZIN1JXMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAt
BggrBgEFBQcBBwEB/wQeMBwwGgQCAAIwFDASAwcAKhLhAAABAwcAKhLhAAACMA0G
CSqGSIb3DQEBCwUAA4IBAQCWlRUpIUHCwxd9EyFr7AfurTemsoGClmgTnE0bEY0L
cSkGtT0jTeKWOnbRZFXdvSiIJ+PzGA60u+o11aqIF8hqZFr++C1buFUJkuwcictI
VFCACF0CFBD/+nxY2k/CzS8TLgYUbjgN4BmQYLUyqC7JAvujaOwzHMfHKkn2cyiw
VkT63/37qqb3n4Ku3Sizhv2jQhshprKiHnxTCEpOQpR1qDZ3HAYTC8WXBsDwmuTS
i3wdp+9fl3eQuDI0Ugks0dOuaWAKQz6EQF5KZwS89LlkDvsSojR6h+3hykF5UcLD
KoZsZbCgh5ZUATC75BiIpdLyKsF2y+WN2c68aKElWlat
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:10 2024 by rpki-client on console-ams.rpki-client.org