Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/319c7b-28c6-49a3-ac1b-fae0e5d2eebf/1/JQDPWst-t_ZgpcHY75AVoJAw1MI.roa
File: JQDPWst-t_ZgpcHY75AVoJAw1MI.roa (raw, json)
Hash identifier: KOpSYWJIzeKxX4yZIlo9P2AF7mB8Beyg9vO2PxWLTDg=
Subject key identifier: 25:00:CF:5A:CB:7E:B7:F6:60:A5:C1:D8:EF:90:15:A0:90:30:D4:C2
Certificate issuer: /CN=e777bc8e3ec250ce85fb90913c2c49051043ebc5
Certificate serial: FDB2
Authority key identifier: E7:77:BC:8E:3E:C2:50:CE:85:FB:90:91:3C:2C:49:05:10:43:EB:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53e8jj7CUM6F-5CRPCxJBRBD68U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/319c7b-28c6-49a3-ac1b-fae0e5d2eebf/1/JQDPWst-t_ZgpcHY75AVoJAw1MI.roa
Signing time: Sat 30 Apr 2022 12:48:27 +0000
ROA not before: Sat 30 Apr 2022 12:48:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35365
IP address blocks: 2a0c:6580:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64946 (0xfdb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e777bc8e3ec250ce85fb90913c2c49051043ebc5
Validity
Not Before: Apr 30 12:48:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2500cf5acb7eb7f660a5c1d8ef9015a09030d4c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:87:a9:1f:4b:df:fc:d3:10:70:bd:b5:c2:b0:
8e:e8:05:23:f5:be:75:34:7b:37:12:d2:26:d9:d0:
8b:01:f2:12:25:44:84:21:b9:67:62:78:ab:27:21:
74:2c:06:22:ed:f2:ce:d4:39:9e:37:e9:5d:ab:c0:
90:a4:81:30:33:09:74:ac:13:21:0b:6d:53:2c:20:
89:c2:00:47:df:ba:8a:0f:aa:12:c8:31:e2:fd:5f:
c4:f2:d0:36:3e:38:4d:83:50:95:b5:1d:8d:28:8c:
de:4b:6b:c9:3b:5c:66:50:9d:e9:05:c8:87:e0:de:
39:bc:b7:44:12:7e:8b:12:68:ce:6a:ba:7e:c8:7e:
18:b3:48:47:6e:09:5a:c9:b5:84:17:cd:c2:24:0e:
e7:00:f8:5b:f9:78:28:2a:8a:55:d0:c3:d9:7f:27:
cc:00:02:30:d4:0b:f8:7c:47:47:5f:e1:d7:e9:18:
97:c6:c2:63:8b:a3:a9:64:da:49:2e:13:68:e5:93:
f8:e5:e7:45:4e:9d:e5:46:f4:be:4c:ff:97:62:a9:
ae:77:0f:22:76:e1:77:ec:48:4f:66:cc:ba:05:03:
ba:47:10:55:0a:86:0e:57:ba:cd:51:f4:72:17:af:
23:b5:5e:2f:08:e9:00:43:a9:61:fb:9e:46:76:22:
a1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:00:CF:5A:CB:7E:B7:F6:60:A5:C1:D8:EF:90:15:A0:90:30:D4:C2
X509v3 Authority Key Identifier:
keyid:E7:77:BC:8E:3E:C2:50:CE:85:FB:90:91:3C:2C:49:05:10:43:EB:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53e8jj7CUM6F-5CRPCxJBRBD68U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/319c7b-28c6-49a3-ac1b-fae0e5d2eebf/1/JQDPWst-t_ZgpcHY75AVoJAw1MI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/319c7b-28c6-49a3-ac1b-fae0e5d2eebf/1/53e8jj7CUM6F-5CRPCxJBRBD68U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:6580:2::/48
Signature Algorithm: sha256WithRSAEncryption
1a:44:91:be:19:80:f0:9b:9a:fc:38:fe:aa:1e:6a:d0:63:8b:
a1:48:43:a9:48:13:cb:4d:b6:d6:ac:49:cd:b1:4d:9a:19:21:
27:ec:fe:ce:bf:5c:87:65:49:dd:c2:d4:ef:06:9b:21:46:aa:
c3:6b:58:05:7e:1b:51:fc:b7:1c:6c:f2:d5:9d:20:52:5b:3e:
4b:cd:d0:c3:6a:c1:5f:42:0e:68:4c:4f:f1:9d:22:da:b0:d3:
39:77:9d:5f:b0:c0:15:7f:b5:2b:df:76:81:d4:6d:6f:e7:12:
50:42:9f:7b:3a:f6:c4:be:4c:41:6a:73:f1:cf:00:66:be:65:
13:e6:c5:8f:1b:ae:15:21:14:9a:cb:89:3a:f7:db:b0:49:1d:
23:84:fc:13:12:1d:28:14:6e:d6:ed:a8:69:0f:12:49:df:13:
e3:33:63:02:08:9c:31:f7:36:83:7c:d7:f3:e0:e5:35:f1:40:
17:25:63:3d:99:26:85:00:7c:56:d5:26:7b:65:df:ff:a6:31:
66:38:67:2d:22:5f:52:42:41:25:c1:f1:a9:ab:c8:12:43:6f:
50:26:d0:f5:8c:c2:97:5d:65:f5:4a:ac:8d:c2:5d:b6:b2:41:
e8:96:46:f6:3e:ad:c9:5f:f6:aa:d8:9b:04:89:5d:65:1c:45:
2b:85:47:bb
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIDAP2yMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGU3
NzdiYzhlM2VjMjUwY2U4NWZiOTA5MTNjMmM0OTA1MTA0M2ViYzUwHhcNMjIwNDMw
MTI0ODI3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygyNTAwY2Y1YWNiN2Vi
N2Y2NjBhNWMxZDhlZjkwMTVhMDkwMzBkNGMyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAqIepH0vf/NMQcL21wrCO6AUj9b51NHs3EtIm2dCLAfISJUSE
IblnYnirJyF0LAYi7fLO1DmeN+ldq8CQpIEwMwl0rBMhC21TLCCJwgBH37qKD6oS
yDHi/V/E8tA2PjhNg1CVtR2NKIzeS2vJO1xmUJ3pBciH4N45vLdEEn6LEmjOarp+
yH4Ys0hHbglaybWEF83CJA7nAPhb+XgoKopV0MPZfyfMAAIw1Av4fEdHX+HX6RiX
xsJji6OpZNpJLhNo5ZP45edFTp3lRvS+TP+XYqmudw8iduF37EhPZsy6BQO6RxBV
CoYOV7rNUfRyF68jtV4vCOkAQ6lh+55GdiKhfQIDAQABo4ICDDCCAggwHQYDVR0O
BBYEFCUAz1rLfrf2YKXB2O+QFaCQMNTCMB8GA1UdIwQYMBaAFOd3vI4+wlDOhfuQ
kTwsSQUQQ+vFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NTNlOGpqN0NVTTZGLTVDUlBDeEpCUkJENjhVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC83NC8zMTljN2ItMjhjNi00OWEzLWFjMWItZmFlMGU1ZDJlZWJmLzEv
SlFEUFdzdC10X1pncGNIWTc1QVZvSkF3MU1JLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8z
MTljN2ItMjhjNi00OWEzLWFjMWItZmFlMGU1ZDJlZWJmLzEvNTNlOGpqN0NVTTZG
LTVDUlBDeEpCUkJENjhVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIG
CCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgxlgAACMA0GCSqGSIb3DQEBCwUA
A4IBAQAaRJG+GYDwm5r8OP6qHmrQY4uhSEOpSBPLTbbWrEnNsU2aGSEn7P7Ov1yH
ZUndwtTvBpshRqrDa1gFfhtR/LccbPLVnSBSWz5LzdDDasFfQg5oTE/xnSLasNM5
d51fsMAVf7Ur33aB1G1v5xJQQp97OvbEvkxBanPxzwBmvmUT5sWPG64VIRSay4k6
99uwSR0jhPwTEh0oFG7W7ahpDxJJ3xPjM2MCCJwx9zaDfNfz4OU18UAXJWM9mSaF
AHxW1SZ7Zd//pjFmOGctIl9SQkElwfGpq8gSQ29QJtD1jMKXXWX1SqyNwl22skHo
lkb2Pq3JX/aq2JsEiV1lHEUrhUe7
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:58 2023 by rpki-client on console-fra.rpki-client.org