Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/62001a-a313-4e33-bb04-914b4b34f981/1/VE6IiQsIb5kuBx5Q_KNc50O76Jg.roa
File: VE6IiQsIb5kuBx5Q_KNc50O76Jg.roa (raw, json)
Hash identifier: pGUXsJvMUNVhHGLuOBm4XjFeAI8oQ/D2oNr7GSd4wh0=
Subject key identifier: 54:4E:88:89:0B:08:6F:99:2E:07:1E:50:FC:A3:5C:E7:43:BB:E8:98
Certificate issuer: /CN=970ebd0469a5c69c1098971caab36fe032ece311
Certificate serial: 0A23A25C
Authority key identifier: 97:0E:BD:04:69:A5:C6:9C:10:98:97:1C:AA:B3:6F:E0:32:EC:E3:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lw69BGmlxpwQmJccqrNv4DLs4xE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/62001a-a313-4e33-bb04-914b4b34f981/1/VE6IiQsIb5kuBx5Q_KNc50O76Jg.roa
Signing time: Sat 01 Jan 2022 06:53:14 +0000
ROA not before: Sat 01 Jan 2022 06:53:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1213
IP address blocks: 149.157.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170107484 (0xa23a25c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=970ebd0469a5c69c1098971caab36fe032ece311
Validity
Not Before: Jan 1 06:53:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=544e88890b086f992e071e50fca35ce743bbe898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b5:7f:ca:2c:90:98:ae:27:ce:d2:67:7b:47:
db:5c:d9:fb:54:8a:ce:4a:12:3f:02:44:a5:e5:4b:
8d:b1:18:dc:bd:c8:73:0d:66:51:25:8d:28:97:83:
7d:5c:a6:dc:f4:67:ea:50:3e:fe:2d:9d:67:3a:fc:
b9:9f:2a:32:ee:b3:e2:ce:f7:05:b2:ed:4f:18:fb:
f5:e3:ee:48:b0:dd:fd:bc:37:2b:75:10:61:ee:7f:
04:04:62:20:6d:40:bb:f1:cc:42:99:fb:98:63:39:
fd:99:e5:dc:49:68:67:e3:a0:1c:4a:10:74:ea:ba:
c5:d1:e2:ba:0c:dd:e8:a2:52:09:82:1a:a2:12:82:
c8:86:4b:bb:8d:66:00:a4:79:4e:22:07:65:6d:c6:
e7:c7:c6:eb:04:67:2a:0b:c9:8e:d1:cc:2d:66:05:
f2:62:6a:a8:27:37:72:b8:0a:1e:67:04:1f:9d:e8:
e3:d5:3b:14:ba:9c:8d:ce:68:d8:b0:ca:f2:b2:2d:
48:e9:bc:ed:34:af:87:4d:0c:be:02:11:70:55:c4:
1c:d1:e2:03:5e:7f:7a:30:23:8e:35:20:89:a3:87:
d2:2c:1e:d5:ef:89:a7:64:d4:7a:63:0c:03:e8:18:
75:fb:f4:af:3e:a9:ef:3b:b7:c3:f4:aa:a4:8c:0a:
89:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:4E:88:89:0B:08:6F:99:2E:07:1E:50:FC:A3:5C:E7:43:BB:E8:98
X509v3 Authority Key Identifier:
keyid:97:0E:BD:04:69:A5:C6:9C:10:98:97:1C:AA:B3:6F:E0:32:EC:E3:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lw69BGmlxpwQmJccqrNv4DLs4xE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/62001a-a313-4e33-bb04-914b4b34f981/1/VE6IiQsIb5kuBx5Q_KNc50O76Jg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/62001a-a313-4e33-bb04-914b4b34f981/1/lw69BGmlxpwQmJccqrNv4DLs4xE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.157.0.0/16
Signature Algorithm: sha256WithRSAEncryption
33:f5:7a:b4:1a:e1:ff:79:ca:24:48:f1:2a:57:81:94:86:fb:
39:2a:3c:c6:ef:4b:db:c5:57:6c:d8:6d:af:36:6d:60:e9:f0:
d2:92:75:94:0a:da:1a:30:fd:f8:e3:86:1f:58:8e:7f:77:28:
ee:f1:d8:91:58:7c:5c:bf:99:e9:45:b3:10:b2:5f:ba:74:dc:
aa:cd:cf:54:7e:23:df:d7:0a:5e:f0:6e:b9:58:d6:d8:8a:0e:
6f:90:3d:56:eb:3d:1c:a6:46:95:ba:86:87:ca:e2:5b:6a:58:
88:34:af:57:a9:50:76:25:dc:6b:cc:48:aa:9d:35:78:57:e9:
f9:89:3d:b9:26:1e:ac:53:95:1f:a8:99:10:5d:21:d5:03:e2:
f9:61:56:a4:59:be:29:f9:90:49:69:07:19:dc:b9:3c:42:6c:
91:4e:5f:7c:71:b9:d5:29:5c:c5:c2:a3:76:1d:ca:01:4d:7b:
e6:a5:e1:f2:ad:c7:56:ac:ba:b7:3a:eb:4a:0e:fc:77:e6:c9:
c0:0a:5b:db:41:9f:3d:43:74:ab:a7:ef:60:96:c8:4c:91:9a:
b0:5d:f8:34:0d:f1:f3:92:a8:73:e5:c3:72:ba:56:13:d7:47:
a4:31:96:0d:76:3a:82:1e:d7:21:de:75:5d:52:5a:79:a1:28:
9c:1f:70:fa
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIECiOiXDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NzBlYmQwNDY5YTVjNjljMTA5ODk3MWNhYWIzNmZlMDMyZWNlMzExMB4XDTIyMDEw
MTA2NTMxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTQ0ZTg4ODkwYjA4
NmY5OTJlMDcxZTUwZmNhMzVjZTc0M2JiZTg5ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJG1f8oskJiuJ87SZ3tH21zZ+1SKzkoSPwJEpeVLjbEY3L3I
cw1mUSWNKJeDfVym3PRn6lA+/i2dZzr8uZ8qMu6z4s73BbLtTxj79ePuSLDd/bw3
K3UQYe5/BARiIG1Au/HMQpn7mGM5/Znl3EloZ+OgHEoQdOq6xdHiugzd6KJSCYIa
ohKCyIZLu41mAKR5TiIHZW3G58fG6wRnKgvJjtHMLWYF8mJqqCc3crgKHmcEH53o
49U7FLqcjc5o2LDK8rItSOm87TSvh00MvgIRcFXEHNHiA15/ejAjjjUgiaOH0iwe
1e+Jp2TUemMMA+gYdfv0rz6p7zu3w/SqpIwKibMCAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBRUToiJCwhvmS4HHlD8o1znQ7vomDAfBgNVHSMEGDAWgBSXDr0EaaXGnBCY
lxyqs2/gMuzjETAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2x3NjlCR21seHB3UW1KY2Nxck52NERMczR4RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2UvNjIwMDFhLWEzMTMtNGUzMy1iYjA0LTkxNGI0YjM0Zjk4MS8x
L1ZFNklpUXNJYjVrdUJ4NVFfS05jNTBPNzZKZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Uv
NjIwMDFhLWEzMTMtNGUzMy1iYjA0LTkxNGI0YjM0Zjk4MS8xL2x3NjlCR21seHB3
UW1KY2Nxck52NERMczR4RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAJWdMA0GCSqGSIb3DQEBCwUAA4IB
AQAz9Xq0GuH/ecokSPEqV4GUhvs5KjzG70vbxVds2G2vNm1g6fDSknWUCtoaMP34
44YfWI5/dyju8diRWHxcv5npRbMQsl+6dNyqzc9UfiPf1wpe8G65WNbYig5vkD1W
6z0cpkaVuoaHyuJbaliINK9XqVB2JdxrzEiqnTV4V+n5iT25Jh6sU5UfqJkQXSHV
A+L5YVakWb4p+ZBJaQcZ3Lk8QmyRTl98cbnVKVzFwqN2HcoBTXvmpeHyrcdWrLq3
OutKDvx35snAClvbQZ89Q3Srp+9glshMkZqwXfg0DfHzkqhz5cNyulYT10ekMZYN
djqCHtch3nVdUlp5oSicH3D6
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:59 2024 by rpki-client on console-ams.rpki-client.org