Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/FzHe40hEcQ59xjvvxcV7iHjsz_Y.roa
File: FzHe40hEcQ59xjvvxcV7iHjsz_Y.roa (raw, json)
Hash identifier: Iv0Bk0tI1GPK/F5F+Ceer03JR/Y7QMMOVBEipGbsugI=
Subject key identifier: 17:31:DE:E3:48:44:71:0E:7D:C6:3B:EF:C5:C5:7B:88:78:EC:CF:F6
Certificate issuer: /CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Certificate serial: 018487D5C369E332C575335ECC04E88B087E
Authority key identifier: 25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/FzHe40hEcQ59xjvvxcV7iHjsz_Y.roa
Signing time: Thu 17 Nov 2022 23:04:04 +0000
ROA not before: Thu 17 Nov 2022 23:04:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200968
IP address blocks: 2a0e:ec00::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:87:d5:c3:69:e3:32:c5:75:33:5e:cc:04:e8:8b:08:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Validity
Not Before: Nov 17 23:04:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1731dee34844710e7dc63befc5c57b8878eccff6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7c:04:37:05:e3:57:a9:83:76:28:92:1c:a9:
9e:76:a8:ac:11:1c:ff:46:cf:25:b5:56:a7:ec:cc:
66:d0:01:76:1f:75:a5:bb:bb:14:30:a9:a5:05:2f:
66:cc:c9:75:01:f0:bf:50:f2:78:d7:cb:23:32:a9:
1b:7d:db:d9:c1:0b:22:e6:7d:2b:a8:57:43:45:06:
9c:33:d2:b9:c8:ce:21:73:bd:bd:6d:03:00:35:d8:
69:b5:d0:5e:d6:0d:f8:30:99:02:10:ca:a5:f4:39:
22:f5:4a:81:78:35:fe:18:bd:c3:46:1d:81:46:99:
1d:0d:fa:a8:71:39:ae:58:50:46:4c:b4:e7:ce:56:
1d:41:d6:64:ae:36:6a:0d:1b:03:4d:58:54:56:50:
e5:7e:98:ed:3c:af:9f:7f:84:cb:a2:04:39:d9:66:
3e:4f:9c:8d:a5:bd:47:9a:23:96:3c:e8:c1:31:bd:
15:8e:93:4a:d9:7c:aa:25:a5:82:de:78:41:68:0a:
2b:64:ee:bb:49:14:4d:64:15:5d:ed:6e:39:96:f6:
b7:17:97:45:e2:b4:da:25:1e:75:2d:bc:ee:35:5c:
19:2c:d3:e8:01:49:a2:64:09:4c:b9:ab:ab:4f:24:
9a:c4:f0:a1:5e:82:70:7e:6a:d5:a7:cc:5b:18:b2:
99:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:31:DE:E3:48:44:71:0E:7D:C6:3B:EF:C5:C5:7B:88:78:EC:CF:F6
X509v3 Authority Key Identifier:
keyid:25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/FzHe40hEcQ59xjvvxcV7iHjsz_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/JZSQxdvPv1kNozv703lwoHY0ack.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:ec00::/32
Signature Algorithm: sha256WithRSAEncryption
40:40:1a:2a:eb:43:ed:22:de:93:f9:fc:9e:5d:dd:47:9f:d0:
a0:9e:a2:fb:43:ed:55:e5:92:ca:4f:61:87:9f:d6:2f:98:9a:
1d:13:7a:0b:3e:55:19:a4:d9:1e:5f:d9:0b:4c:f5:76:7a:db:
67:31:99:c3:85:a4:d6:f7:b5:f4:15:c9:6b:06:10:c9:d9:22:
3d:b3:80:17:30:cd:bf:d6:19:61:0c:f4:1d:e7:13:a2:68:fa:
8e:ee:67:02:b1:41:4f:8e:ae:7a:06:42:0f:f5:ab:ea:71:46:
3a:b2:a1:c1:8e:cc:99:f4:f3:85:f4:29:51:e0:83:14:d1:0a:
4b:0e:ad:c1:e7:4f:b6:05:a5:1d:c6:49:19:25:ef:d9:b2:37:
b2:cb:51:15:a5:43:34:c9:1a:8d:57:95:2b:1e:12:3f:48:ee:
47:5e:66:bf:97:83:b6:6d:04:74:a3:dc:d0:77:7f:83:65:c6:
12:84:45:69:6b:46:d0:c9:5c:7d:44:15:3a:07:68:fd:be:91:
4b:b6:eb:07:3c:ad:8f:5d:f6:03:24:78:38:83:07:8e:ae:d8:
1e:aa:9d:1f:57:13:53:35:6a:7f:8b:27:af:b9:61:ed:22:85:
3b:e5:1b:9b:cd:99:a3:da:a5:ad:44:6c:a9:8d:41:a4:73:5b:
d1:c1:c1:f7
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYSH1cNp4zLFdTNezAToiwh+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1OTQ5MGM1ZGJjZmJmNTkwZGEzM2JmYmQzNzk3MGEwNzYz
NDY5YzkwHhcNMjIxMTE3MjMwNDA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzMxZGVlMzQ4NDQ3MTBlN2RjNjNiZWZjNWM1N2I4ODc4ZWNjZmY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyXwENwXjV6mDdiiSHKmedqisERz/
Rs8ltVan7Mxm0AF2H3Wlu7sUMKmlBS9mzMl1AfC/UPJ418sjMqkbfdvZwQsi5n0r
qFdDRQacM9K5yM4hc729bQMANdhptdBe1g34MJkCEMql9Dki9UqBeDX+GL3DRh2B
RpkdDfqocTmuWFBGTLTnzlYdQdZkrjZqDRsDTVhUVlDlfpjtPK+ff4TLogQ52WY+
T5yNpb1HmiOWPOjBMb0VjpNK2XyqJaWC3nhBaAorZO67SRRNZBVd7W45lva3F5dF
4rTaJR51LbzuNVwZLNPoAUmiZAlMuaurTySaxPChXoJwfmrVp8xbGLKZ2wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFBcx3uNIRHEOfcY778XFe4h47M/2MB8GA1UdIwQY
MBaAFCWUkMXbz79ZDaM7+9N5cKB2NGnJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlpTUXhkdlB2MWtOb3p2NzAzbHdvSFkwYWNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9lZGFkMmQtOTVjYy00OWQwLTg2ZjQt
M2NlM2NmOGIxYzQ5LzEvRnpIZTQwaEVjUTU5eGp2dnhjVjdpSGpzel9ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9lZGFkMmQtOTVjYy00OWQwLTg2ZjQtM2NlM2NmOGIxYzQ5
LzEvSlpTUXhkdlB2MWtOb3p2NzAzbHdvSFkwYWNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg7sADAN
BgkqhkiG9w0BAQsFAAOCAQEAQEAaKutD7SLek/n8nl3dR5/QoJ6i+0PtVeWSyk9h
h5/WL5iaHRN6Cz5VGaTZHl/ZC0z1dnrbZzGZw4Wk1ve19BXJawYQydkiPbOAFzDN
v9YZYQz0HecTomj6ju5nArFBT46uegZCD/Wr6nFGOrKhwY7MmfTzhfQpUeCDFNEK
Sw6twedPtgWlHcZJGSXv2bI3sstRFaVDNMkajVeVKx4SP0juR15mv5eDtm0EdKPc
0Hd/g2XGEoRFaWtG0MlcfUQVOgdo/b6RS7brBzytj132AyR4OIMHjq7YHqqdH1cT
UzVqf4snr7lh7SKFO+Ubm82Zo9qlrURsqY1BpHNb0cHB9w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:50 2024 by rpki-client on console-fra.rpki-client.org