Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/jUxQSTUvqJCqgBG2jHpwaRpB1jA.roa
File: jUxQSTUvqJCqgBG2jHpwaRpB1jA.roa (raw, json)
Hash identifier: KRAhSGVWyl3qtbkFWiI9O6rFqpKhj/w9CBv1a4ZYVp4=
Subject key identifier: 8D:4C:50:49:35:2F:A8:90:AA:80:11:B6:8C:7A:70:69:1A:41:D6:30
Certificate issuer: /CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54
Certificate serial: 0B25FD53
Authority key identifier: 3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/jUxQSTUvqJCqgBG2jHpwaRpB1jA.roa
Signing time: Sat 01 Jan 2022 09:58:47 +0000
ROA not before: Sat 01 Jan 2022 09:58:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200301
IP address blocks: 2001:678:7e4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187039059 (0xb25fd53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54
Validity
Not Before: Jan 1 09:58:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d4c5049352fa890aa8011b68c7a70691a41d630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:86:86:ad:17:eb:2c:5b:96:ab:c5:a9:9c:d3:
ac:23:ae:8a:e2:64:8f:ed:30:58:c2:1a:9c:d9:ac:
7c:f1:12:6e:86:7e:5c:29:02:85:ba:ce:58:8a:dd:
41:a7:6d:94:29:d7:a2:d0:14:7e:af:d2:ed:31:12:
ef:97:38:67:c7:37:49:d2:e4:99:ab:7c:de:7c:c8:
aa:66:c6:61:e2:01:11:df:9f:4c:be:d3:2b:14:b3:
9a:d3:cf:0b:9e:5e:38:2c:43:11:49:66:81:9a:aa:
fe:99:09:5e:71:d4:16:0e:81:58:ee:b2:a7:5d:41:
42:0a:3e:cf:fc:9f:a8:cf:79:80:81:8b:a0:4c:91:
39:ca:98:f7:e6:42:80:65:18:c6:9b:a5:ca:48:3b:
22:fc:1d:8c:1a:20:f0:c6:bc:76:97:a7:48:fe:59:
33:78:e2:8a:5e:ea:93:d5:86:60:15:36:19:4c:b2:
ae:d6:eb:17:a6:da:9c:b7:ae:c2:c3:3f:9e:7d:f6:
7e:ff:06:3a:47:db:62:63:68:f8:c3:37:4e:fb:21:
a1:4d:d3:61:ed:e1:23:1e:d1:39:50:d8:01:01:c7:
2a:03:a3:6b:85:1f:d4:30:ee:29:e3:8e:21:33:ff:
36:3c:0b:b8:1e:62:11:76:1c:86:2c:d5:b1:8a:7d:
c4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:4C:50:49:35:2F:A8:90:AA:80:11:B6:8C:7A:70:69:1A:41:D6:30
X509v3 Authority Key Identifier:
keyid:3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/jUxQSTUvqJCqgBG2jHpwaRpB1jA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:7e4::/48
Signature Algorithm: sha256WithRSAEncryption
33:c8:b7:f6:3b:c5:cb:45:31:85:fb:5d:e2:52:7d:5f:0e:d0:
a9:23:0d:17:2d:fa:4e:d1:15:33:90:60:63:27:90:71:f7:f9:
91:c0:e1:ec:01:b9:1d:eb:59:81:3a:34:09:09:8c:d1:3a:af:
99:97:fa:89:98:4b:52:f3:26:c6:81:b9:70:98:c3:b8:2e:d4:
a7:01:8c:c8:ed:d3:13:d3:5b:57:8f:73:85:35:cd:71:4b:28:
76:d6:6f:89:43:7c:59:f1:8c:a8:28:4c:d6:04:68:c9:f3:c8:
76:1d:34:da:55:e6:0f:b9:d4:3c:ec:3b:76:ed:9e:38:8c:f9:
a2:b0:24:db:a2:76:38:0d:c6:02:cb:20:7b:cb:64:95:b5:24:
2c:1a:fb:3a:27:d4:af:5f:62:2f:83:9b:58:69:07:b0:fe:18:
ab:32:c7:a4:b4:23:7b:90:7e:46:82:42:55:dc:d4:a6:9c:0f:
12:b3:b3:d3:d1:b0:41:ea:ef:7c:cb:69:28:3f:44:9c:a6:28:
8e:12:9f:05:fa:15:07:3e:2a:f6:5e:d9:db:55:8e:ed:e2:05:
73:4d:e8:ac:44:85:58:be:ef:bc:97:21:a8:2f:16:93:41:0f:
28:60:e0:30:f8:a3:9b:0d:4c:37:38:a5:b7:70:ef:7a:94:96:
f3:76:92:bb
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIECyX9UzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YThjZmNmZWI4M2U4OGYzNmJhMmJmMjQ0NWRiOWVjMWU4MmYwZDU0MB4XDTIyMDEw
MTA5NTg0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGQ0YzUwNDkzNTJm
YTg5MGFhODAxMWI2OGM3YTcwNjkxYTQxZDYzMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN6Ghq0X6yxblqvFqZzTrCOuiuJkj+0wWMIanNmsfPESboZ+
XCkChbrOWIrdQadtlCnXotAUfq/S7TES75c4Z8c3SdLkmat83nzIqmbGYeIBEd+f
TL7TKxSzmtPPC55eOCxDEUlmgZqq/pkJXnHUFg6BWO6yp11BQgo+z/yfqM95gIGL
oEyROcqY9+ZCgGUYxpulykg7IvwdjBog8Ma8dpenSP5ZM3jiil7qk9WGYBU2GUyy
rtbrF6banLeuwsM/nn32fv8GOkfbYmNo+MM3TvshoU3TYe3hIx7ROVDYAQHHKgOj
a4Uf1DDuKeOOITP/NjwLuB5iEXYchizVsYp9xJcCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSNTFBJNS+okKqAEbaMenBpGkHWMDAfBgNVHSMEGDAWgBQ6jPz+uD6I82ui
vyRF257B6C8NVDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09vejhfcmctaVBOcm9yOGtSZHVld2VndkRWUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvOTAyYzFhLTI5ZjUtNDhkZC1hZGExLTZhNGViMzdhMzNjYy8x
L2pVeFFTVFV2cUpDcWdCRzJqSHB3YVJwQjFqQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
OTAyYzFhLTI5ZjUtNDhkZC1hZGExLTZhNGViMzdhMzNjYy8xL09vejhfcmctaVBO
cm9yOGtSZHVld2VndkRWUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBngH5DANBgkqhkiG9w0BAQsF
AAOCAQEAM8i39jvFy0Uxhftd4lJ9Xw7QqSMNFy36TtEVM5BgYyeQcff5kcDh7AG5
HetZgTo0CQmM0TqvmZf6iZhLUvMmxoG5cJjDuC7UpwGMyO3TE9NbV49zhTXNcUso
dtZviUN8WfGMqChM1gRoyfPIdh002lXmD7nUPOw7du2eOIz5orAk26J2OA3GAssg
e8tklbUkLBr7OifUr19iL4ObWGkHsP4YqzLHpLQje5B+RoJCVdzUppwPErOz09Gw
QervfMtpKD9EnKYojhKfBfoVBz4q9l7Z21WO7eIFc03orESFWL7vvJchqC8Wk0EP
KGDgMPijmw1MNzilt3DvepSW83aSuw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:21 2023 by rpki-client on console-ams.rpki-client.org