Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/IvM50oyjxkSYKKWNx9E6DR9MFtc.roa
File: IvM50oyjxkSYKKWNx9E6DR9MFtc.roa (raw, json)
Hash identifier: BiIgPvxvAVLxFnCQCG/rLPL9sNZrMwRm6Z9ige42hXY=
Subject key identifier: 22:F3:39:D2:8C:A3:C6:44:98:28:A5:8D:C7:D1:3A:0D:1F:4C:16:D7
Certificate issuer: /CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Certificate serial: 018292C860CE091FC509D00136C1A1BE91D9
Authority key identifier: 25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/IvM50oyjxkSYKKWNx9E6DR9MFtc.roa
Signing time: Fri 12 Aug 2022 15:59:41 +0000
ROA not before: Fri 12 Aug 2022 15:59:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 2a0e:ec01::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:92:c8:60:ce:09:1f:c5:09:d0:01:36:c1:a1:be:91:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=259490c5dbcfbf590da33bfbd37970a0763469c9
Validity
Not Before: Aug 12 15:59:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22f339d28ca3c6449828a58dc7d13a0d1f4c16d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bf:a3:b3:b2:5e:93:e5:76:72:a0:db:15:0d:
ce:3d:50:be:f7:0c:ec:f5:73:c0:d4:3f:e6:86:02:
3a:00:d5:77:98:51:77:02:31:f1:15:3e:55:28:57:
ed:28:6d:80:a5:6a:b0:0a:07:e2:56:8d:c8:08:aa:
02:33:6a:6d:21:40:f9:28:c0:3c:c5:38:64:b6:ec:
61:41:6e:b9:66:5e:6f:e6:5f:1e:b3:84:52:12:de:
71:83:db:11:c3:32:22:ed:12:3c:7b:b5:e9:9c:3f:
0b:fc:90:c5:70:2a:1b:e9:ba:9c:12:9b:08:4a:8e:
46:93:29:b9:f1:45:6a:08:77:85:a1:da:c6:74:fa:
aa:ad:c2:eb:02:cc:e1:6f:99:40:d5:3f:50:4a:34:
2f:82:0a:f3:cb:58:5d:5f:55:56:df:94:06:f7:cc:
4e:a6:5a:2d:ff:42:e7:45:1b:48:4e:49:e3:31:aa:
f9:eb:dd:31:95:ce:f1:4c:aa:2f:3a:49:db:3b:d9:
a1:9a:0b:54:3f:be:29:5e:c3:6c:3b:e8:e4:3b:2b:
ab:f7:69:d4:80:0c:3c:4a:06:c4:e3:0b:bd:15:92:
fb:18:bb:bb:6b:db:42:7e:b7:b5:ac:19:5b:b2:2d:
e1:3e:81:6c:6e:4a:7c:83:a2:2b:8b:33:2b:1b:59:
5a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:F3:39:D2:8C:A3:C6:44:98:28:A5:8D:C7:D1:3A:0D:1F:4C:16:D7
X509v3 Authority Key Identifier:
keyid:25:94:90:C5:DB:CF:BF:59:0D:A3:3B:FB:D3:79:70:A0:76:34:69:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JZSQxdvPv1kNozv703lwoHY0ack.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/IvM50oyjxkSYKKWNx9E6DR9MFtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/edad2d-95cc-49d0-86f4-3ce3cf8b1c49/1/JZSQxdvPv1kNozv703lwoHY0ack.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:ec01::/32
Signature Algorithm: sha256WithRSAEncryption
03:a9:9a:32:1f:47:08:3e:8c:ad:58:de:65:e5:8c:2a:72:35:
8c:24:6b:04:7a:cd:64:9c:ed:22:0e:34:41:0c:e1:f3:bb:55:
19:e7:e9:57:6a:29:54:f7:c2:b3:47:31:3d:42:2b:44:2c:f1:
54:31:2c:d1:ec:62:3c:c3:d2:d5:df:06:cb:b5:72:2e:94:fc:
fd:dd:a8:50:75:96:f8:f3:d5:de:61:15:b1:96:f1:c9:24:33:
d5:54:36:48:7e:5e:c4:cf:04:e4:51:6b:5d:22:92:1c:f9:cc:
bc:c4:45:2f:e3:65:58:9e:61:71:47:be:75:7b:ba:65:7a:37:
a6:02:a6:61:b9:b6:06:ee:fa:0c:2e:79:04:6c:2f:fa:63:11:
25:17:9e:fc:b3:d5:90:9d:36:62:d1:e1:c7:35:44:28:8f:50:
6b:2f:a6:ae:81:50:77:be:33:83:77:6e:9b:92:9b:a0:ca:78:
0b:82:09:cc:62:cb:99:99:d5:84:34:0d:ce:9d:71:75:1b:c0:
1b:74:97:81:bc:f6:51:f0:d5:d7:ab:be:bd:77:e2:c9:a2:6e:
37:53:ea:c8:9f:8b:67:ca:6d:ef:7b:d2:7c:8a:ca:c0:4d:01:
fb:7c:e7:7b:a7:04:66:11:64:2d:76:ea:7a:a4:36:3b:e1:ca:
39:51:20:ae
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYKSyGDOCR/FCdABNsGhvpHZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1OTQ5MGM1ZGJjZmJmNTkwZGEzM2JmYmQzNzk3MGEwNzYz
NDY5YzkwHhcNMjIwODEyMTU1OTQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMmYzMzlkMjhjYTNjNjQ0OTgyOGE1OGRjN2QxM2EwZDFmNGMxNmQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxb+js7Jek+V2cqDbFQ3OPVC+9wzs
9XPA1D/mhgI6ANV3mFF3AjHxFT5VKFftKG2ApWqwCgfiVo3ICKoCM2ptIUD5KMA8
xThktuxhQW65Zl5v5l8es4RSEt5xg9sRwzIi7RI8e7XpnD8L/JDFcCob6bqcEpsI
So5Gkym58UVqCHeFodrGdPqqrcLrAszhb5lA1T9QSjQvggrzy1hdX1VW35QG98xO
plot/0LnRRtITknjMar5690xlc7xTKovOknbO9mhmgtUP74pXsNsO+jkOyur92nU
gAw8SgbE4wu9FZL7GLu7a9tCfre1rBlbsi3hPoFsbkp8g6IrizMrG1laPwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFCLzOdKMo8ZEmCiljcfROg0fTBbXMB8GA1UdIwQY
MBaAFCWUkMXbz79ZDaM7+9N5cKB2NGnJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlpTUXhkdlB2MWtOb3p2NzAzbHdvSFkwYWNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9lZGFkMmQtOTVjYy00OWQwLTg2ZjQt
M2NlM2NmOGIxYzQ5LzEvSXZNNTBveWp4a1NZS0tXTng5RTZEUjlNRnRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9lZGFkMmQtOTVjYy00OWQwLTg2ZjQtM2NlM2NmOGIxYzQ5
LzEvSlpTUXhkdlB2MWtOb3p2NzAzbHdvSFkwYWNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg7sATAN
BgkqhkiG9w0BAQsFAAOCAQEAA6maMh9HCD6MrVjeZeWMKnI1jCRrBHrNZJztIg40
QQzh87tVGefpV2opVPfCs0cxPUIrRCzxVDEs0exiPMPS1d8Gy7VyLpT8/d2oUHWW
+PPV3mEVsZbxySQz1VQ2SH5exM8E5FFrXSKSHPnMvMRFL+NlWJ5hcUe+dXu6ZXo3
pgKmYbm2Bu76DC55BGwv+mMRJRee/LPVkJ02YtHhxzVEKI9Qay+mroFQd74zg3du
m5KboMp4C4IJzGLLmZnVhDQNzp1xdRvAG3SXgbz2UfDV16u+vXfiyaJuN1PqyJ+L
Z8pt73vSfIrKwE0B+3zne6cEZhFkLXbqeqQ2O+HKOVEgrg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:34 2023 by rpki-client on console-ams.rpki-client.org