Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/7306a8-7e49-4c95-acc5-5735e045d4c1/1/jPw1-eu6Dk4UiqLeSRC0lUSumxQ.roa
File: jPw1-eu6Dk4UiqLeSRC0lUSumxQ.roa (raw, json)
Hash identifier: 2vJPQRJ3lIWYImGqsZiEWiLatsSg1nzaYJg1ntbRDDw=
Subject key identifier: 8C:FC:35:F9:EB:BA:0E:4E:14:8A:A2:DE:49:10:B4:95:44:AE:9B:14
Certificate issuer: /CN=a739db60f9fc71b1a444a9453c865b4642263a72
Certificate serial: 996C74
Authority key identifier: A7:39:DB:60:F9:FC:71:B1:A4:44:A9:45:3C:86:5B:46:42:26:3A:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pznbYPn8cbGkRKlFPIZbRkImOnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/7306a8-7e49-4c95-acc5-5735e045d4c1/1/jPw1-eu6Dk4UiqLeSRC0lUSumxQ.roa
Signing time: Sat 01 Jan 2022 01:58:35 +0000
ROA not before: Sat 01 Jan 2022 01:58:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 212.18.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10054772 (0x996c74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a739db60f9fc71b1a444a9453c865b4642263a72
Validity
Not Before: Jan 1 01:58:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cfc35f9ebba0e4e148aa2de4910b49544ae9b14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ba:e8:22:f9:f2:ac:80:19:16:56:18:79:6a:
1d:c4:39:32:04:12:a8:db:41:6f:4d:12:3d:d3:fa:
6c:41:cc:d2:71:87:b0:0a:93:8e:04:05:05:94:28:
c6:92:39:c4:c0:9d:8e:12:b4:c2:c2:3d:f4:5d:1e:
2e:19:37:59:a2:91:44:51:60:cc:24:a4:d0:1f:c6:
85:f3:58:1e:13:33:c6:ae:66:9f:cf:e0:f5:7b:55:
2c:ef:b8:c0:72:b4:cf:26:be:26:31:ae:d1:bf:ba:
78:7c:0c:69:a3:db:27:41:a0:41:3e:3d:e7:be:02:
fb:38:15:2f:70:35:fa:7b:46:91:f1:16:f0:e5:11:
fd:82:6f:39:1f:a1:6a:68:bd:7a:d2:be:f2:a9:8c:
68:92:23:b9:fc:0a:07:0f:4e:d3:7f:67:b8:dd:1f:
eb:45:06:02:e9:ec:70:96:eb:0e:82:12:67:6f:88:
ed:a3:5e:a5:b4:d0:02:1e:36:4b:83:0d:6f:1b:7b:
b9:6e:38:16:05:50:83:c2:a1:b9:1c:cf:7b:ed:bd:
2d:a8:06:9d:99:7a:9f:ac:06:1b:5e:84:14:96:9a:
72:f2:37:db:74:f0:fe:71:ea:12:80:27:d2:af:f1:
0e:8d:d2:db:4e:48:17:d8:da:cc:13:53:4f:fc:77:
a6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:FC:35:F9:EB:BA:0E:4E:14:8A:A2:DE:49:10:B4:95:44:AE:9B:14
X509v3 Authority Key Identifier:
keyid:A7:39:DB:60:F9:FC:71:B1:A4:44:A9:45:3C:86:5B:46:42:26:3A:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pznbYPn8cbGkRKlFPIZbRkImOnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/7306a8-7e49-4c95-acc5-5735e045d4c1/1/jPw1-eu6Dk4UiqLeSRC0lUSumxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/7306a8-7e49-4c95-acc5-5735e045d4c1/1/pznbYPn8cbGkRKlFPIZbRkImOnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.97.0/24
Signature Algorithm: sha256WithRSAEncryption
23:6d:9c:b6:e1:73:96:6d:8c:8c:b3:cb:28:2b:7d:25:68:2d:
6f:25:f5:f9:a5:33:71:30:32:79:70:22:4b:aa:ed:6a:f3:10:
80:a4:10:21:18:f8:8f:6f:74:cb:7c:b2:d4:d8:60:9d:4d:2b:
d7:e7:d2:ea:3e:11:e0:e4:5e:a7:9c:5a:75:a4:85:2e:82:49:
61:4a:af:94:c8:66:48:ef:98:51:03:a3:83:bb:17:78:f0:00:
bd:26:c2:d3:7c:9d:12:95:a7:97:14:a6:78:11:44:91:20:17:
b8:66:8e:e7:f7:77:cb:a4:52:bf:04:2a:f6:04:6f:4e:b4:1c:
a1:d6:dc:d9:5e:7c:ce:37:91:48:6a:d4:36:75:36:49:d6:96:
5a:a5:39:3b:0b:c8:bc:f7:ef:02:a6:2e:02:59:92:27:87:77:
ff:2e:cc:78:88:3a:da:7c:ca:e6:aa:fe:37:86:b4:0a:47:ba:
1a:76:da:b1:a4:e7:44:66:8c:52:5a:21:dd:4f:0d:7a:2b:93:
e7:5d:82:93:bf:61:80:c6:83:e5:5e:ed:18:48:84:6c:bc:0d:
3c:2b:ee:54:99:4a:c3:b6:66:74:99:58:51:5e:43:be:2d:d5:
21:34:90:40:7d:74:3b:4d:e1:2c:d9:89:40:5e:57:22:f7:86:
9c:54:73:43
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAJlsdDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NzM5ZGI2MGY5ZmM3MWIxYTQ0NGE5NDUzYzg2NWI0NjQyMjYzYTcyMB4XDTIyMDEw
MTAxNTgzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGNmYzM1ZjllYmJh
MGU0ZTE0OGFhMmRlNDkxMGI0OTU0NGFlOWIxNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJm66CL58qyAGRZWGHlqHcQ5MgQSqNtBb00SPdP6bEHM0nGH
sAqTjgQFBZQoxpI5xMCdjhK0wsI99F0eLhk3WaKRRFFgzCSk0B/GhfNYHhMzxq5m
n8/g9XtVLO+4wHK0zya+JjGu0b+6eHwMaaPbJ0GgQT49574C+zgVL3A1+ntGkfEW
8OUR/YJvOR+hami9etK+8qmMaJIjufwKBw9O039nuN0f60UGAunscJbrDoISZ2+I
7aNepbTQAh42S4MNbxt7uW44FgVQg8KhuRzPe+29LagGnZl6n6wGG16EFJaacvI3
23Tw/nHqEoAn0q/xDo3S205IF9jazBNTT/x3phUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSM/DX567oOThSKot5JELSVRK6bFDAfBgNVHSMEGDAWgBSnOdtg+fxxsaRE
qUU8hltGQiY6cjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3B6bmJZUG44Y2JHa1JLbEZQSVpiUmtJbU9uSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDYvNzMwNmE4LTdlNDktNGM5NS1hY2M1LTU3MzVlMDQ1ZDRjMS8x
L2pQdzEtZXU2RGs0VWlxTGVTUkMwbFVTdW14US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDYv
NzMwNmE4LTdlNDktNGM5NS1hY2M1LTU3MzVlMDQ1ZDRjMS8xL3B6bmJZUG44Y2JH
a1JLbEZQSVpiUmtJbU9uSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANQSYTANBgkqhkiG9w0BAQsFAAOC
AQEAI22ctuFzlm2MjLPLKCt9JWgtbyX1+aUzcTAyeXAiS6rtavMQgKQQIRj4j290
y3yy1NhgnU0r1+fS6j4R4ORep5xadaSFLoJJYUqvlMhmSO+YUQOjg7sXePAAvSbC
03ydEpWnlxSmeBFEkSAXuGaO5/d3y6RSvwQq9gRvTrQcodbc2V58zjeRSGrUNnU2
SdaWWqU5OwvIvPfvAqYuAlmSJ4d3/y7MeIg62nzK5qr+N4a0Cke6GnbasaTnRGaM
Uloh3U8NeiuT512Ck79hgMaD5V7tGEiEbLwNPCvuVJlKw7ZmdJlYUV5Dvi3VITSQ
QH10O03hLNmJQF5XIveGnFRzQw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:03 2023 by rpki-client on console-fra.rpki-client.org