Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/ee1d76-59bb-40b9-bc31-b06e20997889/1/JvGn_vAim88WlRqCQE0w1XUyazc.roa
File: JvGn_vAim88WlRqCQE0w1XUyazc.roa (raw, json)
Hash identifier: raGnX/VWjODfDrMYmlvUeWN8pp+NvElw3ZVbNNEUBlE=
Subject key identifier: 26:F1:A7:FE:F0:22:9B:CF:16:95:1A:82:40:4D:30:D5:75:32:6B:37
Certificate issuer: /CN=07447a5109aa95f5b55803a552ce9ec9bb7aede1
Certificate serial: 02FC678B
Authority key identifier: 07:44:7A:51:09:AA:95:F5:B5:58:03:A5:52:CE:9E:C9:BB:7A:ED:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B0R6UQmqlfW1WAOlUs6eybt67eE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/ee1d76-59bb-40b9-bc31-b06e20997889/1/JvGn_vAim88WlRqCQE0w1XUyazc.roa
Signing time: Sat 01 Jan 2022 10:00:57 +0000
ROA not before: Sat 01 Jan 2022 10:00:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211939
IP address blocks: 2001:678:ab0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50096011 (0x2fc678b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07447a5109aa95f5b55803a552ce9ec9bb7aede1
Validity
Not Before: Jan 1 10:00:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26f1a7fef0229bcf16951a82404d30d575326b37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:42:20:50:0d:c8:0d:76:27:e2:b2:80:dd:a1:
c1:ab:e0:3f:f6:bf:5b:a9:cc:59:b5:b8:08:6d:21:
91:42:2d:44:3d:7c:31:3c:5f:47:04:07:50:30:e2:
62:0a:03:27:75:1c:33:62:6d:74:ee:ca:c0:e2:b5:
a7:1e:8f:39:07:85:b5:b2:c0:f9:60:7b:26:63:80:
a1:1e:1c:a9:5d:8e:d0:9c:2d:30:b0:6d:7d:13:bd:
33:57:cd:19:cb:2c:be:72:73:97:ff:76:69:31:a1:
07:74:5e:88:02:42:1b:e4:eb:38:fc:34:d9:12:4d:
af:e1:9f:0d:de:bc:81:1a:e2:1c:08:0c:7c:05:e8:
15:4c:91:3a:47:5c:ba:10:fb:ff:bc:9d:2c:ae:f5:
d8:b3:01:35:67:dd:7a:f6:e0:b0:92:69:0d:1b:20:
27:97:46:ab:18:71:02:8d:7b:79:52:d9:c9:98:50:
9a:f7:b2:b8:f0:e6:27:10:a4:6c:46:41:0a:93:06:
06:07:55:f3:ce:0a:83:d3:c2:be:e8:f0:15:48:00:
db:bd:ea:70:1d:fc:44:5b:4f:99:5c:d1:03:03:c9:
db:02:5d:31:64:b4:7a:98:e1:fb:ff:14:e2:bb:59:
52:22:92:22:10:29:6a:55:c0:e1:25:1c:e2:d2:a0:
b1:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:F1:A7:FE:F0:22:9B:CF:16:95:1A:82:40:4D:30:D5:75:32:6B:37
X509v3 Authority Key Identifier:
keyid:07:44:7A:51:09:AA:95:F5:B5:58:03:A5:52:CE:9E:C9:BB:7A:ED:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B0R6UQmqlfW1WAOlUs6eybt67eE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/ee1d76-59bb-40b9-bc31-b06e20997889/1/JvGn_vAim88WlRqCQE0w1XUyazc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/ee1d76-59bb-40b9-bc31-b06e20997889/1/B0R6UQmqlfW1WAOlUs6eybt67eE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:ab0::/48
Signature Algorithm: sha256WithRSAEncryption
81:98:ce:30:05:97:cf:03:8a:37:40:a2:e1:90:d5:ea:58:dc:
59:1e:48:1c:e6:34:63:57:c5:2f:c2:82:d0:a8:d6:52:44:ae:
15:18:b7:ac:d2:6d:ca:95:91:c5:27:dc:38:95:33:47:71:11:
b1:5b:52:89:9a:23:28:21:25:4d:2b:55:e3:cb:6c:d0:65:23:
fd:3e:8c:ff:fc:12:9a:17:9a:f6:6b:74:0c:0b:0b:fb:1a:3c:
93:b2:1f:77:ac:95:4b:10:b4:bc:9e:90:da:5d:87:4e:8a:fe:
8d:4c:9e:22:f6:9c:8e:6c:48:11:bf:bf:39:99:4e:84:e6:61:
d3:fa:8a:a3:91:45:58:79:3c:ac:d0:7f:25:ec:85:49:4c:fd:
80:25:62:fb:a4:6a:d5:d1:1b:22:3a:dc:e3:99:7c:ed:93:b6:
94:97:97:cb:b5:d6:0c:89:ed:4a:09:bd:23:2c:9a:3a:12:70:
95:9c:ed:a3:42:7b:16:e5:92:58:4c:9a:f0:6a:d3:ec:22:c8:
4f:98:93:a1:2c:d5:34:6a:a2:f0:a9:a1:74:12:0c:45:16:33:
b3:00:eb:24:16:b2:04:a8:18:23:01:aa:8e:28:55:15:97:00:
4f:9b:da:e8:c6:e3:6d:73:0c:71:3b:1f:73:7d:95:b5:4b:f0:
1a:42:ea:d5
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEAvxnizANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NzQ0N2E1MTA5YWE5NWY1YjU1ODAzYTU1MmNlOWVjOWJiN2FlZGUxMB4XDTIyMDEw
MTEwMDA1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjZmMWE3ZmVmMDIy
OWJjZjE2OTUxYTgyNDA0ZDMwZDU3NTMyNmIzNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMpCIFANyA12J+KygN2hwavgP/a/W6nMWbW4CG0hkUItRD18
MTxfRwQHUDDiYgoDJ3UcM2JtdO7KwOK1px6POQeFtbLA+WB7JmOAoR4cqV2O0Jwt
MLBtfRO9M1fNGcssvnJzl/92aTGhB3ReiAJCG+TrOPw02RJNr+GfDd68gRriHAgM
fAXoFUyROkdcuhD7/7ydLK712LMBNWfdevbgsJJpDRsgJ5dGqxhxAo17eVLZyZhQ
mveyuPDmJxCkbEZBCpMGBgdV884Kg9PCvujwFUgA273qcB38RFtPmVzRAwPJ2wJd
MWS0epjh+/8U4rtZUiKSIhApalXA4SUc4tKgsU0CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQm8af+8CKbzxaVGoJATTDVdTJrNzAfBgNVHSMEGDAWgBQHRHpRCaqV9bVY
A6VSzp7Ju3rt4TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0IwUjZVUW1xbGZXMVdBT2xVczZleWJ0NjdlRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvZWUxZDc2LTU5YmItNDBiOS1iYzMxLWIwNmUyMDk5Nzg4OS8x
L0p2R25fdkFpbTg4V2xScUNRRTB3MVhVeWF6Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
ZWUxZDc2LTU5YmItNDBiOS1iYzMxLWIwNmUyMDk5Nzg4OS8xL0IwUjZVUW1xbGZX
MVdBT2xVczZleWJ0NjdlRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBngKsDANBgkqhkiG9w0BAQsF
AAOCAQEAgZjOMAWXzwOKN0Ci4ZDV6ljcWR5IHOY0Y1fFL8KC0KjWUkSuFRi3rNJt
ypWRxSfcOJUzR3ERsVtSiZojKCElTStV48ts0GUj/T6M//wSmhea9mt0DAsL+xo8
k7Ifd6yVSxC0vJ6Q2l2HTor+jUyeIvacjmxIEb+/OZlOhOZh0/qKo5FFWHk8rNB/
JeyFSUz9gCVi+6Rq1dEbIjrc45l87ZO2lJeXy7XWDIntSgm9IyyaOhJwlZzto0J7
FuWSWEya8GrT7CLIT5iToSzVNGqi8KmhdBIMRRYzswDrJBayBKgYIwGqjihVFZcA
T5va6MbjbXMMcTsfc32VtUvwGkLq1Q==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:38 2023 by rpki-client on console-ams.rpki-client.org