Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/JMs_S1DcY8Eo4dNLFb1eNKN_OYo.roa
File: JMs_S1DcY8Eo4dNLFb1eNKN_OYo.roa (raw, json)
Hash identifier: yl8W1bApIlUlP+kfS5qev4VAytGRcjKIhha7Y0XLto0=
Subject key identifier: 24:CB:3F:4B:50:DC:63:C1:28:E1:D3:4B:15:BD:5E:34:A3:7F:39:8A
Certificate issuer: /CN=fd74deb4184426fa62225b6120c36706f737b8e2
Certificate serial: 01856CC15CB5CD94C7DEAED961EC3E7AA917
Authority key identifier: FD:74:DE:B4:18:44:26:FA:62:22:5B:61:20:C3:67:06:F7:37:B8:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/JMs_S1DcY8Eo4dNLFb1eNKN_OYo.roa
Signing time: Sun 01 Jan 2023 09:54:49 +0000
ROA not before: Sun 01 Jan 2023 09:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47616
IP address blocks: 160.40.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:5c:b5:cd:94:c7:de:ae:d9:61:ec:3e:7a:a9:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd74deb4184426fa62225b6120c36706f737b8e2
Validity
Not Before: Jan 1 09:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24cb3f4b50dc63c128e1d34b15bd5e34a37f398a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d7:a2:40:6d:33:04:8c:40:82:12:f9:a6:d7:
da:e2:0f:b3:92:2b:ba:e9:97:2e:c1:49:72:0d:5d:
95:ee:89:7c:88:2c:2e:45:cb:5a:76:46:f7:a6:7a:
b9:eb:bb:1c:13:69:51:ab:69:c5:37:5f:45:6c:57:
4a:90:d6:f4:14:44:00:0b:67:f8:a3:d4:cb:ab:bc:
53:8c:24:62:d3:aa:66:c0:59:f1:fb:bd:f2:51:ed:
48:c7:a7:08:15:14:60:12:70:c4:4e:d1:ce:36:39:
e2:af:8f:30:0d:a8:30:95:04:37:8d:91:9d:e5:ed:
06:c3:30:93:a6:a7:55:77:6d:b5:6e:b7:1c:91:c4:
89:ea:e3:33:63:cd:b0:3a:63:5b:7e:fb:47:4c:9a:
0a:26:8c:69:2e:c4:a1:ed:ee:f7:29:89:bb:d0:94:
2d:bd:17:f6:54:1d:75:eb:4e:71:8c:19:2e:6f:b7:
fa:7f:eb:93:6f:54:02:5c:55:f1:22:f4:8d:2c:ed:
e9:2e:39:ef:b1:ef:61:df:60:8f:b1:81:f3:8d:1f:
6a:0a:9d:6c:b8:d9:72:a1:4a:40:47:78:19:f7:65:
99:98:4f:b3:ab:38:68:58:f8:76:4b:00:e3:b6:6a:
08:73:93:34:e5:31:6c:fc:72:fd:b8:22:f9:bd:f8:
b7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:CB:3F:4B:50:DC:63:C1:28:E1:D3:4B:15:BD:5E:34:A3:7F:39:8A
X509v3 Authority Key Identifier:
keyid:FD:74:DE:B4:18:44:26:FA:62:22:5B:61:20:C3:67:06:F7:37:B8:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/JMs_S1DcY8Eo4dNLFb1eNKN_OYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.40.0.0/16
Signature Algorithm: sha256WithRSAEncryption
cb:0c:cc:9f:77:5d:b7:59:c2:3a:c8:ef:4f:35:2e:64:59:ac:
99:02:f3:33:46:ea:68:3f:a9:8c:3b:4e:88:8f:69:8b:f7:a9:
3c:69:40:ff:6f:f7:00:53:cb:19:79:d8:75:3f:d1:1e:0c:53:
52:0f:c3:92:43:ef:23:5f:a4:2b:8d:ee:37:be:7d:43:56:ea:
5d:75:49:ad:69:01:e2:a7:de:7e:9d:5b:bd:c0:56:dd:56:c5:
ac:9e:e3:8f:0f:da:d8:06:eb:ad:45:ae:04:34:7d:c7:45:ef:
5a:9f:e9:63:b4:38:97:8c:16:cc:f1:8b:d9:4e:28:36:a3:ce:
a8:0f:7a:d0:d1:34:7d:c1:43:29:6e:a2:bd:36:ad:fc:26:f1:
91:47:a2:4f:24:e0:2d:06:4c:5e:bc:53:ec:fa:36:f8:33:6d:
6b:65:84:f4:47:9e:60:22:64:51:83:fc:8a:d0:cd:16:b9:17:
b5:2c:07:98:e7:ef:f3:7c:bf:7b:f3:5e:99:92:bf:b7:2f:e9:
db:cf:3b:fe:a2:d9:cf:83:6f:59:f7:e1:1f:8e:8a:67:e8:67:
1c:b5:0b:ee:ee:12:dd:0b:e5:5a:e1:b8:c9:f6:89:af:d2:2d:
ba:fe:78:d3:b8:dc:ac:6c:64:a7:a3:18:25:16:e6:d2:46:91:
bf:e6:7d:7d
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVswVy1zZTH3q7ZYew+eqkXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkNzRkZWI0MTg0NDI2ZmE2MjIyNWI2MTIwYzM2NzA2Zjcz
N2I4ZTIwHhcNMjMwMTAxMDk1NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNGNiM2Y0YjUwZGM2M2MxMjhlMWQzNGIxNWJkNWUzNGEzN2YzOThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj9eiQG0zBIxAghL5ptfa4g+zkiu6
6ZcuwUlyDV2V7ol8iCwuRctadkb3pnq567scE2lRq2nFN19FbFdKkNb0FEQAC2f4
o9TLq7xTjCRi06pmwFnx+73yUe1Ix6cIFRRgEnDETtHONjnir48wDagwlQQ3jZGd
5e0GwzCTpqdVd221brcckcSJ6uMzY82wOmNbfvtHTJoKJoxpLsSh7e73KYm70JQt
vRf2VB11605xjBkub7f6f+uTb1QCXFXxIvSNLO3pLjnvse9h32CPsYHzjR9qCp1s
uNlyoUpAR3gZ92WZmE+zqzhoWPh2SwDjtmoIc5M05TFs/HL9uCL5vfi3qQIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFCTLP0tQ3GPBKOHTSxW9XjSjfzmKMB8GA1UdIwQY
MBaAFP103rQYRCb6YiJbYSDDZwb3N7jiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX1hUZXRCaEVKdnBpSWx0aElNTm5CdmMzdU9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8xODQ5MWYtYjA0ZC00YjBkLTkwN2It
ZDU3MDVhZTM3MDE0LzEvSk1zX1MxRGNZOEVvNGROTEZiMWVOS05fT1lvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi8xODQ5MWYtYjA0ZC00YjBkLTkwN2ItZDU3MDVhZTM3MDE0
LzEvX1hUZXRCaEVKdnBpSWx0aElNTm5CdmMzdU9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAoCgwDQYJ
KoZIhvcNAQELBQADggEBAMsMzJ93XbdZwjrI7081LmRZrJkC8zNG6mg/qYw7ToiP
aYv3qTxpQP9v9wBTyxl52HU/0R4MU1IPw5JD7yNfpCuN7je+fUNW6l11Sa1pAeKn
3n6dW73AVt1Wxaye448P2tgG661FrgQ0fcdF71qf6WO0OJeMFszxi9lOKDajzqgP
etDRNH3BQyluor02rfwm8ZFHok8k4C0GTF68U+z6NvgzbWtlhPRHnmAiZFGD/IrQ
zRa5F7UsB5jn7/N8v3vzXpmSv7cv6dvPO/6i2c+Db1n34R+OimfoZxy1C+7uEt0L
5VrhuMn2ia/SLbr+eNO43KxsZKejGCUW5tJGkb/mfX0=
-----END CERTIFICATE-----
Generated at Mon Apr 21 10:50:58 2025 by rpki-client