Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e8f727-cb23-43ce-85d2-d48b7d2624db/1/pVMReptCareaIpAKbKwXEYA5ZvY.roa
File: pVMReptCareaIpAKbKwXEYA5ZvY.roa (raw, json)
Hash identifier: Qn1IgczX44DIUWlmcJ1WhNt+WINUG8Ou4A23QDm1Yxg=
Subject key identifier: A5:53:11:7A:9B:42:6A:B7:9A:22:90:0A:6C:AC:17:11:80:39:66:F6
Certificate issuer: /CN=e3011f0859d06a084975f4e8bd2b556710dd8c30
Certificate serial: 01BE4E79
Authority key identifier: E3:01:1F:08:59:D0:6A:08:49:75:F4:E8:BD:2B:55:67:10:DD:8C:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4wEfCFnQaghJdfTovStVZxDdjDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e8f727-cb23-43ce-85d2-d48b7d2624db/1/pVMReptCareaIpAKbKwXEYA5ZvY.roa
Signing time: Sat 01 Jan 2022 10:56:23 +0000
ROA not before: Sat 01 Jan 2022 10:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211696
IP address blocks: 2001:67c:2724::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29249145 (0x1be4e79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3011f0859d06a084975f4e8bd2b556710dd8c30
Validity
Not Before: Jan 1 10:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a553117a9b426ab79a22900a6cac1711803966f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:25:2f:2d:5a:7f:67:c5:b7:0c:38:8b:56:ce:
9a:1e:dc:0f:2f:6d:20:f7:f8:67:17:40:9a:bd:9e:
46:be:77:5e:91:69:96:5d:bf:60:45:a7:2e:19:90:
79:2a:23:96:9b:a1:af:8a:52:da:62:60:41:9d:e7:
b7:e2:18:6e:51:ea:e0:80:d5:3a:7f:03:71:85:d5:
41:76:43:1a:4a:e2:86:d7:35:3b:d6:32:3e:39:96:
5c:37:69:0f:2a:66:14:cc:4d:df:62:06:f0:51:4c:
91:c2:69:c4:ba:68:7f:4f:d6:8e:ad:92:1c:64:9f:
b7:c4:40:7f:8b:47:e8:e5:68:18:cf:d3:19:fe:88:
5b:8e:d4:c1:a7:ee:df:3c:19:f5:4b:f1:b9:b2:83:
70:f5:8b:d6:46:a8:99:dd:3d:fb:d1:a9:45:a5:fc:
b2:56:e3:48:97:e3:66:84:a7:68:fc:91:c9:83:6d:
29:67:8b:fa:f5:07:30:55:72:50:79:db:38:52:af:
c3:00:6c:e5:e3:58:a6:80:89:a7:02:09:44:e9:a5:
bc:89:cb:18:86:1f:e4:0f:5d:4b:f6:3d:33:bb:89:
c8:ee:a1:7a:c7:f7:76:5c:84:e3:19:db:95:a3:57:
e4:e6:55:d5:14:39:f3:de:c6:81:27:1d:ee:40:b6:
24:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:53:11:7A:9B:42:6A:B7:9A:22:90:0A:6C:AC:17:11:80:39:66:F6
X509v3 Authority Key Identifier:
keyid:E3:01:1F:08:59:D0:6A:08:49:75:F4:E8:BD:2B:55:67:10:DD:8C:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4wEfCFnQaghJdfTovStVZxDdjDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e8f727-cb23-43ce-85d2-d48b7d2624db/1/pVMReptCareaIpAKbKwXEYA5ZvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e8f727-cb23-43ce-85d2-d48b7d2624db/1/4wEfCFnQaghJdfTovStVZxDdjDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2724::/48
Signature Algorithm: sha256WithRSAEncryption
4b:7d:9b:78:b1:ac:bf:3d:a1:e3:95:56:80:74:37:9a:30:6d:
81:87:2b:e6:e7:38:e0:79:bc:cc:7c:1c:f5:19:23:fa:e9:14:
c7:80:50:80:f9:10:83:34:96:0c:cd:9e:6d:8e:d4:77:13:65:
7e:6e:db:5e:90:b7:aa:30:14:51:91:7b:44:a3:c0:52:99:c8:
eb:42:e3:52:dd:7f:be:71:59:6e:8c:24:ba:dd:68:72:67:70:
3f:55:7f:b7:3a:34:96:f6:6b:fc:e4:3e:d0:ac:d5:f8:5a:bf:
52:46:6a:bc:de:53:c7:07:9c:78:f5:0e:f2:e8:b7:07:34:3d:
7e:7c:eb:bc:c5:48:08:36:d0:5a:60:52:ea:7d:e9:9c:9e:60:
96:fc:75:2c:9c:8c:61:9d:86:f4:0a:61:6b:d7:b7:f4:c9:a8:
a3:7b:69:b0:4c:3f:8b:9f:0e:15:1a:da:d9:09:40:3c:76:2c:
0c:56:62:ab:a9:e1:e8:af:35:db:8c:59:04:16:e3:8f:e2:24:
d2:1f:de:27:26:ec:d5:ea:64:42:72:d4:e0:61:39:93:30:f3:
e3:2b:d5:45:02:59:f3:2c:f5:53:7b:b5:42:87:77:28:f9:52:
e3:1f:c8:ed:a3:4f:45:51:a2:8a:d6:e0:2d:96:89:8b:51:d3:
06:14:94:dd
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEAb5OeTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MzAxMWYwODU5ZDA2YTA4NDk3NWY0ZThiZDJiNTU2NzEwZGQ4YzMwMB4XDTIyMDEw
MTEwNTYyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTU1MzExN2E5YjQy
NmFiNzlhMjI5MDBhNmNhYzE3MTE4MDM5NjZmNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJwlLy1af2fFtww4i1bOmh7cDy9tIPf4ZxdAmr2eRr53XpFp
ll2/YEWnLhmQeSojlpuhr4pS2mJgQZ3nt+IYblHq4IDVOn8DcYXVQXZDGkrihtc1
O9YyPjmWXDdpDypmFMxN32IG8FFMkcJpxLpof0/Wjq2SHGSft8RAf4tH6OVoGM/T
Gf6IW47Uwafu3zwZ9UvxubKDcPWL1kaomd09+9GpRaX8slbjSJfjZoSnaPyRyYNt
KWeL+vUHMFVyUHnbOFKvwwBs5eNYpoCJpwIJROmlvInLGIYf5A9dS/Y9M7uJyO6h
esf3dlyE4xnblaNX5OZV1RQ5897GgScd7kC2JOUCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSlUxF6m0Jqt5oikApsrBcRgDlm9jAfBgNVHSMEGDAWgBTjAR8IWdBqCEl1
9Oi9K1VnEN2MMDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzR3RWZDRm5RYWdoSmRmVG92U3RWWnhEZGpEQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvZThmNzI3LWNiMjMtNDNjZS04NWQyLWQ0OGI3ZDI2MjRkYi8x
L3BWTVJlcHRDYXJlYUlwQUtiS3dYRVlBNVp2WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
ZThmNzI3LWNiMjMtNDNjZS04NWQyLWQ0OGI3ZDI2MjRkYi8xLzR3RWZDRm5RYWdo
SmRmVG92U3RWWnhEZGpEQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBnwnJDANBgkqhkiG9w0BAQsF
AAOCAQEAS32beLGsvz2h45VWgHQ3mjBtgYcr5uc44Hm8zHwc9Rkj+ukUx4BQgPkQ
gzSWDM2ebY7UdxNlfm7bXpC3qjAUUZF7RKPAUpnI60LjUt1/vnFZbowkut1ocmdw
P1V/tzo0lvZr/OQ+0KzV+Fq/UkZqvN5TxwecePUO8ui3BzQ9fnzrvMVICDbQWmBS
6n3pnJ5glvx1LJyMYZ2G9Apha9e39Mmoo3tpsEw/i58OFRra2QlAPHYsDFZiq6nh
6K8124xZBBbjj+Ik0h/eJybs1epkQnLU4GE5kzDz4yvVRQJZ8yz1U3u1Qod3KPlS
4x/I7aNPRVGiitbgLZaJi1HTBhSU3Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:59 2024 by rpki-client on console-ams.rpki-client.org