Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/3F4ARysa1nkMBRIo_shGFFvLs7Y.roa
File: 3F4ARysa1nkMBRIo_shGFFvLs7Y.roa (raw, json)
Hash identifier: I0+Qyf5tfXCPj1HNblP81vSLGW0cEKv4k+fPh7MeysA=
Subject key identifier: DC:5E:00:47:2B:1A:D6:79:0C:05:12:28:FE:C8:46:14:5B:CB:B3:B6
Certificate issuer: /CN=45afe0d73419f8aade65d2c7115c01420472ba5c
Certificate serial: 0182371117DCBA322E3D4D7A5A39183A6D2B
Authority key identifier: 45:AF:E0:D7:34:19:F8:AA:DE:65:D2:C7:11:5C:01:42:04:72:BA:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ra_g1zQZ-KreZdLHEVwBQgRyulw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/3F4ARysa1nkMBRIo_shGFFvLs7Y.roa
Signing time: Mon 25 Jul 2022 20:34:03 +0000
ROA not before: Mon 25 Jul 2022 20:34:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 2a12:be80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:37:11:17:dc:ba:32:2e:3d:4d:7a:5a:39:18:3a:6d:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45afe0d73419f8aade65d2c7115c01420472ba5c
Validity
Not Before: Jul 25 20:34:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc5e00472b1ad6790c051228fec846145bcbb3b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:81:a4:61:94:8d:25:9d:54:91:18:d8:40:39:
d0:a0:ee:98:94:8f:a5:3c:1e:1a:1b:f1:a1:5a:83:
0b:d5:8d:7c:2b:a3:43:ae:31:a3:a3:05:49:c8:35:
9e:0c:4d:b6:43:be:4d:89:fc:4f:a1:7a:ea:8a:3e:
7f:35:4e:91:7f:4e:d6:8d:4c:53:43:b5:5d:f0:e9:
bc:10:63:8f:82:5d:dd:97:b2:64:71:a2:e0:c3:67:
15:a3:41:42:e4:25:35:a7:d7:7d:b7:a0:a3:f5:86:
63:0f:22:9a:39:d4:8b:6a:a5:ec:d1:2f:f8:1f:e4:
50:71:f3:33:30:99:e6:1a:1e:4c:86:11:61:10:dd:
06:a4:6c:96:d7:cf:9a:f9:09:dd:8b:b3:b8:0f:00:
bc:32:a7:b5:49:03:61:07:f4:da:f9:a7:97:ab:40:
d0:59:55:ae:17:d6:18:d3:44:1e:dd:c9:a6:bc:3b:
99:bd:21:65:fd:d8:92:62:d2:67:21:26:26:ff:4d:
94:2d:df:96:08:7f:71:e0:aa:5c:7b:e6:0c:6c:cb:
eb:a0:1d:ba:c0:4e:8c:80:91:03:0f:8e:65:d5:0c:
27:e6:a7:62:c9:e6:aa:ae:26:75:a5:a1:25:e3:e2:
b4:a1:61:9d:4b:09:2a:08:9a:8b:64:0c:6a:65:61:
c7:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:5E:00:47:2B:1A:D6:79:0C:05:12:28:FE:C8:46:14:5B:CB:B3:B6
X509v3 Authority Key Identifier:
keyid:45:AF:E0:D7:34:19:F8:AA:DE:65:D2:C7:11:5C:01:42:04:72:BA:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ra_g1zQZ-KreZdLHEVwBQgRyulw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/3F4ARysa1nkMBRIo_shGFFvLs7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/11b7b9-1fa6-4c51-a075-85572d652a7b/1/Ra_g1zQZ-KreZdLHEVwBQgRyulw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:be80::/29
Signature Algorithm: sha256WithRSAEncryption
a3:01:19:29:d1:de:48:f1:e5:f9:c7:82:e7:65:8f:3c:23:23:
c5:82:7c:a9:c9:56:55:54:0f:7f:6c:cd:36:97:43:f4:34:0f:
4c:86:12:6b:8d:a1:b8:7f:13:83:cc:8a:d5:66:6b:07:d0:3e:
6b:64:57:77:98:9b:3e:be:ff:ab:08:05:b0:5e:8c:97:96:c7:
b1:29:b6:65:ab:5f:06:ef:b3:45:92:3f:15:f8:6e:27:63:83:
17:90:04:70:d6:19:42:92:c1:d9:3e:cc:0d:16:3e:6d:d7:be:
14:4f:f9:71:91:d3:dd:7d:f1:af:fc:e5:fe:d6:62:8e:14:64:
f3:ca:5d:ec:e2:90:f5:98:22:d2:ff:96:2c:ec:40:f4:aa:7f:
12:32:de:80:c3:f7:a7:58:ff:0c:53:4b:99:87:00:cf:cd:cb:
d0:d4:c8:7c:a1:88:c8:0e:67:46:4c:c1:17:8e:6d:fd:cb:16:
02:86:ca:c9:09:b3:ac:e7:ae:d9:ef:56:04:66:d0:4f:7b:57:
f6:cf:52:da:13:e7:5e:52:6c:1f:41:78:fc:bb:fd:af:ea:d8:
07:45:e1:00:fd:15:58:91:30:22:1f:03:a8:6b:81:66:0e:df:
8b:00:91:df:94:e6:75:90:21:f4:18:f1:fc:18:89:3f:51:d6:
7a:ab:cd:6e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYI3ERfcujIuPU16WjkYOm0rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ1YWZlMGQ3MzQxOWY4YWFkZTY1ZDJjNzExNWMwMTQyMDQ3
MmJhNWMwHhcNMjIwNzI1MjAzNDAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYzVlMDA0NzJiMWFkNjc5MGMwNTEyMjhmZWM4NDYxNDViY2JiM2I2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqYGkYZSNJZ1UkRjYQDnQoO6YlI+l
PB4aG/GhWoML1Y18K6NDrjGjowVJyDWeDE22Q75NifxPoXrqij5/NU6Rf07WjUxT
Q7Vd8Om8EGOPgl3dl7JkcaLgw2cVo0FC5CU1p9d9t6Cj9YZjDyKaOdSLaqXs0S/4
H+RQcfMzMJnmGh5MhhFhEN0GpGyW18+a+Qndi7O4DwC8Mqe1SQNhB/Ta+aeXq0DQ
WVWuF9YY00Qe3cmmvDuZvSFl/diSYtJnISYm/02ULd+WCH9x4Kpce+YMbMvroB26
wE6MgJEDD45l1Qwn5qdiyeaqriZ1paEl4+K0oWGdSwkqCJqLZAxqZWHHEQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFNxeAEcrGtZ5DAUSKP7IRhRby7O2MB8GA1UdIwQY
MBaAFEWv4Nc0Gfiq3mXSxxFcAUIEcrpcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmFfZzF6UVotS3JlWmRMSEVWd0JRZ1J5dWx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8xMWI3YjktMWZhNi00YzUxLWEwNzUt
ODU1NzJkNjUyYTdiLzEvM0Y0QVJ5c2ExbmtNQlJJb19zaEdGRnZMczdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC8xMWI3YjktMWZhNi00YzUxLWEwNzUtODU1NzJkNjUyYTdi
LzEvUmFfZzF6UVotS3JlWmRMSEVWd0JRZ1J5dWx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhK+gDAN
BgkqhkiG9w0BAQsFAAOCAQEAowEZKdHeSPHl+ceC52WPPCMjxYJ8qclWVVQPf2zN
NpdD9DQPTIYSa42huH8Tg8yK1WZrB9A+a2RXd5ibPr7/qwgFsF6Ml5bHsSm2Zatf
Bu+zRZI/FfhuJ2ODF5AEcNYZQpLB2T7MDRY+bde+FE/5cZHT3X3xr/zl/tZijhRk
88pd7OKQ9Zgi0v+WLOxA9Kp/EjLegMP3p1j/DFNLmYcAz83L0NTIfKGIyA5nRkzB
F45t/csWAobKyQmzrOeu2e9WBGbQT3tX9s9S2hPnXlJsH0F4/Lv9r+rYB0XhAP0V
WJEwIh8DqGuBZg7fiwCR35TmdZAh9Bjx/BiJP1HWeqvNbg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:03 2023 by rpki-client on console-fra.rpki-client.org