Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/da4gPvoGRrWBvOajrBUrVXRE6bk.roa
File: da4gPvoGRrWBvOajrBUrVXRE6bk.roa (raw, json)
Hash identifier: dzDYG+gZD6ueFHszPrvQDcDLTD1PRv2NMPbORNkjiZQ=
Subject key identifier: 75:AE:20:3E:FA:06:46:B5:81:BC:E6:A3:AC:15:2B:55:74:44:E9:B9
Certificate issuer: /CN=be84ae7c0503ac450934c9f6cff39a1537a5126d
Certificate serial: 0183C0A5E8D60A1FF74100C95AE09C705575
Authority key identifier: BE:84:AE:7C:05:03:AC:45:09:34:C9:F6:CF:F3:9A:15:37:A5:12:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/voSufAUDrEUJNMn2z_OaFTelEm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/da4gPvoGRrWBvOajrBUrVXRE6bk.roa
Signing time: Mon 10 Oct 2022 06:47:22 +0000
ROA not before: Mon 10 Oct 2022 06:47:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42275
IP address blocks: 2a12:8e40:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c0:a5:e8:d6:0a:1f:f7:41:00:c9:5a:e0:9c:70:55:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be84ae7c0503ac450934c9f6cff39a1537a5126d
Validity
Not Before: Oct 10 06:47:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75ae203efa0646b581bce6a3ac152b557444e9b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:6f:cc:1f:4a:0c:7c:14:01:82:0c:bf:97:cf:
f0:df:4e:87:a5:3e:8d:f9:11:f6:67:b9:f1:36:8b:
0e:b5:b5:c6:da:d6:a5:9e:42:16:8f:3a:48:88:d5:
bf:dc:23:38:e8:ae:89:9c:48:89:b7:ad:5b:2f:36:
73:52:87:f7:e6:a9:f4:f1:eb:ef:14:96:89:cf:43:
ba:af:97:a3:c3:1a:c4:a9:d9:e3:ad:28:1a:89:c0:
97:a2:f8:0f:3f:01:ea:d4:3b:af:22:f1:ff:99:22:
cb:60:dc:96:37:c6:98:5d:a1:4b:66:57:89:04:21:
33:49:5c:54:70:8a:de:9b:77:21:a1:01:32:5f:9a:
10:ab:92:9d:55:55:5d:e8:c5:96:bd:24:a6:5b:63:
73:70:30:ef:b1:8c:0b:de:d3:48:2e:4c:61:e1:ca:
72:37:31:7b:05:3a:d4:29:01:6d:a0:f8:0f:41:b6:
8f:70:a3:5d:15:42:6e:57:e2:e5:6f:aa:f6:9a:1c:
0c:c8:3f:cb:f8:a6:39:32:2b:5f:8d:ec:7d:2b:72:
c5:26:68:9d:c3:f0:d9:51:76:32:aa:c5:d8:6b:7e:
63:48:10:fc:98:55:db:54:be:f5:ff:25:d3:9a:0d:
2a:14:ef:13:4c:06:9d:6d:0c:06:f7:84:ea:75:50:
e3:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AE:20:3E:FA:06:46:B5:81:BC:E6:A3:AC:15:2B:55:74:44:E9:B9
X509v3 Authority Key Identifier:
keyid:BE:84:AE:7C:05:03:AC:45:09:34:C9:F6:CF:F3:9A:15:37:A5:12:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/voSufAUDrEUJNMn2z_OaFTelEm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/da4gPvoGRrWBvOajrBUrVXRE6bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/voSufAUDrEUJNMn2z_OaFTelEm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8e40:2::/48
Signature Algorithm: sha256WithRSAEncryption
0f:d8:ea:d8:c3:91:8c:bd:5c:2c:2a:01:7d:01:f9:13:6d:ad:
a9:25:53:3f:4f:85:cd:ab:7c:29:45:c4:f0:78:31:55:32:2f:
a8:38:92:ec:63:55:e5:cf:49:be:e9:90:3a:b0:5b:f2:d9:54:
bd:95:b2:a3:58:a5:9f:4d:a4:7b:f0:44:08:70:fd:f9:03:fa:
6a:1d:a7:72:92:c3:1b:9f:bc:c8:6d:f7:62:6f:f1:c4:30:4d:
fd:6d:fc:f8:47:41:60:7a:4f:8e:39:23:0e:85:5b:fb:b8:e4:
7a:c4:0d:a3:8a:bd:12:2c:07:1d:36:ba:d0:41:21:7a:21:d5:
9a:22:a4:cb:ea:5b:89:63:e3:2c:5d:ff:12:01:9b:12:76:67:
32:94:eb:93:af:ba:4b:33:02:5a:3f:60:2e:82:c7:ff:bd:5a:
87:73:f2:fb:91:2a:2a:fd:15:29:97:46:63:a6:e0:4e:a1:83:
0a:0b:ba:9e:b8:8d:3c:f6:4c:5f:05:8e:e9:56:f9:0f:e5:d5:
a8:9e:65:5e:39:40:2d:36:cb:eb:e6:58:6a:a3:16:4e:c9:11:
8b:f5:85:6a:01:ca:48:4f:bd:3e:07:ce:d9:4f:5d:4d:df:5d:
4f:ee:ed:07:a8:3a:4b:1e:b1:c9:34:1c:f6:f4:ba:c0:cd:89:
60:31:75:f1
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYPApejWCh/3QQDJWuCccFV1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlODRhZTdjMDUwM2FjNDUwOTM0YzlmNmNmZjM5YTE1Mzdh
NTEyNmQwHhcNMjIxMDEwMDY0NzIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NWFlMjAzZWZhMDY0NmI1ODFiY2U2YTNhYzE1MmI1NTc0NDRlOWI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk2/MH0oMfBQBggy/l8/w306HpT6N
+RH2Z7nxNosOtbXG2talnkIWjzpIiNW/3CM46K6JnEiJt61bLzZzUof35qn08evv
FJaJz0O6r5ejwxrEqdnjrSgaicCXovgPPwHq1DuvIvH/mSLLYNyWN8aYXaFLZleJ
BCEzSVxUcIrem3choQEyX5oQq5KdVVVd6MWWvSSmW2NzcDDvsYwL3tNILkxh4cpy
NzF7BTrUKQFtoPgPQbaPcKNdFUJuV+Llb6r2mhwMyD/L+KY5Mitfjex9K3LFJmid
w/DZUXYyqsXYa35jSBD8mFXbVL71/yXTmg0qFO8TTAadbQwG94TqdVDjLQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFHWuID76Bka1gbzmo6wVK1V0ROm5MB8GA1UdIwQY
MBaAFL6ErnwFA6xFCTTJ9s/zmhU3pRJtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdm9TdWZBVURyRVVKTk1uMnpfT2FGVGVsRW0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni9hMjA0YTUtMTk1MC00YjQ0LWFjOTAt
ODFhMmIzNDdkYTg0LzEvZGE0Z1B2b0dScldCdk9hanJCVXJWWFJFNmJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni9hMjA0YTUtMTk1MC00YjQ0LWFjOTAtODFhMmIzNDdkYTg0
LzEvdm9TdWZBVURyRVVKTk1uMnpfT2FGVGVsRW0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhKOQAAC
MA0GCSqGSIb3DQEBCwUAA4IBAQAP2OrYw5GMvVwsKgF9AfkTba2pJVM/T4XNq3wp
RcTweDFVMi+oOJLsY1Xlz0m+6ZA6sFvy2VS9lbKjWKWfTaR78EQIcP35A/pqHady
ksMbn7zIbfdib/HEME39bfz4R0Fgek+OOSMOhVv7uOR6xA2jir0SLAcdNrrQQSF6
IdWaIqTL6luJY+MsXf8SAZsSdmcylOuTr7pLMwJaP2Augsf/vVqHc/L7kSoq/RUp
l0ZjpuBOoYMKC7qeuI089kxfBY7pVvkP5dWonmVeOUAtNsvr5lhqoxZOyRGL9YVq
AcpIT70+B87ZT11N311P7u0HqDpLHrHJNBz29LrAzYlgMXXx
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:40 2023 by rpki-client on console.sobornost.net