Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/c78df3-fc47-4edb-a9a0-94fd9e2969af/1/V0o7MFpfWX2OTkEL_fY4_6x35vk.roa
File: V0o7MFpfWX2OTkEL_fY4_6x35vk.roa (raw, json)
Hash identifier: QLUmQfSUbS151Vfh91+v5cMkUQqonmCS2IGUlaf/PVY=
Subject key identifier: 57:4A:3B:30:5A:5F:59:7D:8E:4E:41:0B:FD:F6:38:FF:AC:77:E6:F9
Certificate issuer: /CN=2e1d2457e0be54dc78fc1f6687db3e94b068ac9b
Certificate serial: 01547731
Authority key identifier: 2E:1D:24:57:E0:BE:54:DC:78:FC:1F:66:87:DB:3E:94:B0:68:AC:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lh0kV-C-VNx4_B9mh9s-lLBorJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/c78df3-fc47-4edb-a9a0-94fd9e2969af/1/V0o7MFpfWX2OTkEL_fY4_6x35vk.roa
Signing time: Sat 01 Jan 2022 12:04:22 +0000
ROA not before: Sat 01 Jan 2022 12:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211514
IP address blocks: 2001:678:f24::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22312753 (0x1547731)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e1d2457e0be54dc78fc1f6687db3e94b068ac9b
Validity
Not Before: Jan 1 12:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=574a3b305a5f597d8e4e410bfdf638ffac77e6f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4a:09:ce:b5:71:c3:c7:84:bc:a3:9f:b0:48:
23:3a:d6:40:61:f7:46:aa:7f:73:ba:32:e3:76:1b:
06:92:0f:11:76:08:aa:5b:b1:74:c1:24:31:c5:69:
4e:a9:11:fe:cf:55:73:44:3b:60:36:4c:b8:6c:0d:
b2:4c:95:f7:6f:8d:12:c6:7a:77:e4:c4:70:1a:33:
2c:67:53:ab:1e:26:c5:2e:a8:89:22:6e:21:5d:c0:
df:fd:70:83:92:e7:34:91:91:b2:2d:1f:3b:ef:3e:
c8:81:1e:8c:d3:18:98:36:5e:be:e8:fc:56:30:45:
01:94:3a:cd:81:d0:c5:9f:50:ec:1a:89:11:2d:10:
79:61:a0:15:8c:82:f8:68:24:a1:e4:aa:c2:a2:2a:
1c:69:af:86:d7:7f:4b:fe:c9:68:60:4c:1a:4c:b1:
f9:b1:30:7e:7b:10:64:52:a2:4d:74:42:8c:a6:c7:
3e:1b:ec:b8:ad:27:8a:1d:37:58:c9:df:be:f3:a1:
eb:f3:85:79:26:19:d7:c1:cf:98:8b:99:21:16:e1:
07:0c:c8:24:48:6f:fd:e7:1d:3b:88:86:12:a8:88:
6e:df:3b:36:3d:72:67:63:0d:37:ab:50:b1:27:69:
d4:6e:70:3c:36:89:29:3d:75:99:6d:37:8f:4d:a2:
73:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:4A:3B:30:5A:5F:59:7D:8E:4E:41:0B:FD:F6:38:FF:AC:77:E6:F9
X509v3 Authority Key Identifier:
keyid:2E:1D:24:57:E0:BE:54:DC:78:FC:1F:66:87:DB:3E:94:B0:68:AC:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lh0kV-C-VNx4_B9mh9s-lLBorJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c78df3-fc47-4edb-a9a0-94fd9e2969af/1/V0o7MFpfWX2OTkEL_fY4_6x35vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c78df3-fc47-4edb-a9a0-94fd9e2969af/1/Lh0kV-C-VNx4_B9mh9s-lLBorJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f24::/48
Signature Algorithm: sha256WithRSAEncryption
73:6d:b2:56:c5:3c:3e:e7:97:93:ae:8f:a0:ae:55:c6:ab:f1:
2a:00:c0:2c:c7:62:33:52:63:dc:08:d3:47:d0:f0:5f:c7:95:
47:6a:93:58:92:bf:b5:06:c8:23:37:51:17:9e:1a:4d:00:00:
0b:fb:a4:ff:81:24:b2:72:be:9c:28:ee:82:83:7a:99:05:ad:
8d:44:86:c8:43:5f:c5:cf:c6:89:7d:98:34:5f:91:e5:d3:22:
56:f7:eb:e0:ee:ca:a9:72:2e:ae:d7:64:06:bc:12:59:70:89:
2f:f8:60:05:1d:e5:d5:af:cc:67:6f:35:42:3f:89:d9:ea:28:
be:0b:1e:a6:66:cf:00:26:bb:04:48:1c:9d:1c:bf:fb:c8:f1:
79:0c:96:b9:bb:a2:cb:88:31:c4:bd:f5:b3:16:f1:8c:5d:d4:
a9:66:c9:bd:72:bc:1b:14:01:e9:b7:cf:c5:9a:3f:75:b6:f2:
f7:3b:1f:99:5e:ae:84:c2:1c:cd:9b:cd:aa:76:e4:9d:77:d8:
48:1d:11:24:d1:4c:8c:49:85:7f:61:0f:46:91:d2:a6:96:32:
30:66:35:7c:16:ff:26:43:0f:12:6f:88:60:90:07:53:c4:64:
ee:c4:cf:b9:b4:db:dd:eb:f0:7c:eb:9e:22:5d:a0:2c:f8:96:
15:7e:09:e3
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEAVR3MTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ZTFkMjQ1N2UwYmU1NGRjNzhmYzFmNjY4N2RiM2U5NGIwNjhhYzliMB4XDTIyMDEw
MTEyMDQyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTc0YTNiMzA1YTVm
NTk3ZDhlNGU0MTBiZmRmNjM4ZmZhYzc3ZTZmOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKxKCc61ccPHhLyjn7BIIzrWQGH3Rqp/c7oy43YbBpIPEXYI
qluxdMEkMcVpTqkR/s9Vc0Q7YDZMuGwNskyV92+NEsZ6d+TEcBozLGdTqx4mxS6o
iSJuIV3A3/1wg5LnNJGRsi0fO+8+yIEejNMYmDZevuj8VjBFAZQ6zYHQxZ9Q7BqJ
ES0QeWGgFYyC+GgkoeSqwqIqHGmvhtd/S/7JaGBMGkyx+bEwfnsQZFKiTXRCjKbH
PhvsuK0nih03WMnfvvOh6/OFeSYZ18HPmIuZIRbhBwzIJEhv/ecdO4iGEqiIbt87
Nj1yZ2MNN6tQsSdp1G5wPDaJKT11mW03j02ic98CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBRXSjswWl9ZfY5OQQv99jj/rHfm+TAfBgNVHSMEGDAWgBQuHSRX4L5U3Hj8
H2aH2z6UsGismzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0xoMGtWLUMtVk54NF9COW1oOXMtbExCb3JKcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmUvYzc4ZGYzLWZjNDctNGVkYi1hOWEwLTk0ZmQ5ZTI5NjlhZi8x
L1YwbzdNRnBmV1gyT1RrRUxfZlk0XzZ4MzV2ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmUv
Yzc4ZGYzLWZjNDctNGVkYi1hOWEwLTk0ZmQ5ZTI5NjlhZi8xL0xoMGtWLUMtVk54
NF9COW1oOXMtbExCb3JKcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBngPJDANBgkqhkiG9w0BAQsF
AAOCAQEAc22yVsU8PueXk66PoK5VxqvxKgDALMdiM1Jj3AjTR9DwX8eVR2qTWJK/
tQbIIzdRF54aTQAAC/uk/4EksnK+nCjugoN6mQWtjUSGyENfxc/GiX2YNF+R5dMi
Vvfr4O7KqXIurtdkBrwSWXCJL/hgBR3l1a/MZ281Qj+J2eoovgsepmbPACa7BEgc
nRy/+8jxeQyWubuiy4gxxL31sxbxjF3UqWbJvXK8GxQB6bfPxZo/dbby9zsfmV6u
hMIczZvNqnbknXfYSB0RJNFMjEmFf2EPRpHSppYyMGY1fBb/JkMPEm+IYJAHU8Rk
7sTPubTb3evwfOueIl2gLPiWFX4J4w==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:21 2025 by rpki-client