Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/48157e-d4f8-4f2d-b96d-2d6d56d9ff4e/1/JWrT4fiUZcVD17JeltG6nHdhovw.roa
File: JWrT4fiUZcVD17JeltG6nHdhovw.roa (raw, json)
Hash identifier: QNW2FIJaazw/MfJaoKY41Et9L/E/V1gIQ7V1CvfLZUs=
Subject key identifier: 25:6A:D3:E1:F8:94:65:C5:43:D7:B2:5E:96:D1:BA:9C:77:61:A2:FC
Certificate issuer: /CN=83dce373c18b940a978390b272700279b32fee3a
Certificate serial: 077DD5BF
Authority key identifier: 83:DC:E3:73:C1:8B:94:0A:97:83:90:B2:72:70:02:79:B3:2F:EE:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g9zjc8GLlAqXg5CycnACebMv7jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/48157e-d4f8-4f2d-b96d-2d6d56d9ff4e/1/JWrT4fiUZcVD17JeltG6nHdhovw.roa
Signing time: Sat 01 Jan 2022 05:59:39 +0000
ROA not before: Sat 01 Jan 2022 05:59:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207910
IP address blocks: 2001:678:984::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125687231 (0x77dd5bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83dce373c18b940a978390b272700279b32fee3a
Validity
Not Before: Jan 1 05:59:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=256ad3e1f89465c543d7b25e96d1ba9c7761a2fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:17:11:8c:16:19:9e:8b:d0:fe:78:6c:91:49:
e9:d4:3f:20:2f:e1:a6:db:66:85:ff:44:67:43:5a:
30:0c:8f:a6:05:2e:82:47:f3:f2:cc:21:70:49:9b:
6e:53:cd:2d:9e:31:c5:95:c5:40:98:6e:a5:99:9b:
57:76:e6:b4:40:f8:e5:77:5d:44:fa:c5:2d:16:b0:
ad:8f:7c:79:f8:ed:37:7c:10:2d:45:db:80:10:37:
2a:0f:f9:ef:3e:94:28:3a:88:70:c0:6c:47:9d:cf:
8b:c3:04:9a:05:3d:69:ca:16:98:13:b6:e2:9e:0d:
f3:a6:ca:36:7e:7e:e3:00:80:fd:f0:8e:49:18:60:
19:9f:ee:7d:d2:98:43:13:65:34:27:b7:4d:07:07:
5a:8e:ae:48:98:4c:11:17:01:5d:a2:8f:24:74:d5:
d1:68:16:c4:fc:d6:68:08:a9:75:f5:ea:ea:5a:a6:
ea:4d:1a:13:21:05:73:7c:fc:8f:59:14:75:84:04:
11:56:be:05:bc:8e:f4:c4:cd:16:af:25:c9:48:d4:
bb:c0:ca:db:cf:09:11:77:e9:fe:74:8f:a0:09:3d:
b6:3c:35:09:d4:52:7a:ad:5c:53:d4:68:39:76:63:
fa:50:02:01:9d:50:5b:97:9c:24:fa:9d:68:38:e3:
2e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:6A:D3:E1:F8:94:65:C5:43:D7:B2:5E:96:D1:BA:9C:77:61:A2:FC
X509v3 Authority Key Identifier:
keyid:83:DC:E3:73:C1:8B:94:0A:97:83:90:B2:72:70:02:79:B3:2F:EE:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g9zjc8GLlAqXg5CycnACebMv7jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/48157e-d4f8-4f2d-b96d-2d6d56d9ff4e/1/JWrT4fiUZcVD17JeltG6nHdhovw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/48157e-d4f8-4f2d-b96d-2d6d56d9ff4e/1/g9zjc8GLlAqXg5CycnACebMv7jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:984::/48
Signature Algorithm: sha256WithRSAEncryption
72:4c:2d:33:b2:b9:ad:ea:35:90:97:04:6d:19:da:a9:17:7a:
c2:bf:7b:96:54:54:41:9e:79:9b:99:0b:12:a2:62:72:17:c9:
ab:ce:79:32:6d:aa:f7:d0:dd:00:05:8b:f4:ba:62:89:89:a8:
66:1d:64:01:d2:4a:e3:2d:d6:09:45:0b:4a:dc:9f:f0:30:b0:
02:1e:5b:42:a0:f5:cf:af:0a:48:d0:91:2a:52:98:8e:6b:79:
6b:61:03:4f:ef:b0:de:dc:a1:37:74:68:cf:a5:fe:08:98:ad:
ae:0d:9e:b6:50:23:ab:47:3d:42:c2:a7:54:6b:27:62:3e:18:
96:87:48:a7:c4:e0:cc:e2:cd:7e:a9:ff:db:ed:50:ee:45:62:
38:ba:1d:bb:68:fa:04:03:01:1e:52:07:3e:e0:c8:47:54:a6:
c6:95:71:e5:7a:e2:44:80:85:f0:6a:00:58:17:3e:01:23:47:
82:57:4b:b0:be:ef:b2:77:e9:4b:f1:c5:38:40:52:eb:f7:79:
82:ed:db:0d:4e:58:9b:d2:e1:59:a1:6a:b3:02:7d:b8:37:0a:
dd:5f:00:c3:fa:70:72:3c:ea:ae:89:4e:a1:e2:9c:a6:5e:2f:
7c:d0:28:51:fc:bd:69:11:b3:89:32:46:71:72:c7:95:0e:0c:
38:da:44:a1
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEB33VvzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
M2RjZTM3M2MxOGI5NDBhOTc4MzkwYjI3MjcwMDI3OWIzMmZlZTNhMB4XDTIyMDEw
MTA1NTkzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjU2YWQzZTFmODk0
NjVjNTQzZDdiMjVlOTZkMWJhOWM3NzYxYTJmYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO8XEYwWGZ6L0P54bJFJ6dQ/IC/hpttmhf9EZ0NaMAyPpgUu
gkfz8swhcEmbblPNLZ4xxZXFQJhupZmbV3bmtED45XddRPrFLRawrY98efjtN3wQ
LUXbgBA3Kg/57z6UKDqIcMBsR53Pi8MEmgU9acoWmBO24p4N86bKNn5+4wCA/fCO
SRhgGZ/ufdKYQxNlNCe3TQcHWo6uSJhMERcBXaKPJHTV0WgWxPzWaAipdfXq6lqm
6k0aEyEFc3z8j1kUdYQEEVa+BbyO9MTNFq8lyUjUu8DK288JEXfp/nSPoAk9tjw1
CdRSeq1cU9RoOXZj+lACAZ1QW5ecJPqdaDjjLgMCAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBQlatPh+JRlxUPXsl6W0bqcd2Gi/DAfBgNVHSMEGDAWgBSD3ONzwYuUCpeD
kLJycAJ5sy/uOjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2c5empjOEdMbEFxWGc1Q3ljbkFDZWJNdjdqby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODAvNDgxNTdlLWQ0ZjgtNGYyZC1iOTZkLTJkNmQ1NmQ5ZmY0ZS8x
L0pXclQ0ZmlVWmNWRDE3SmVsdEc2bkhkaG92dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODAv
NDgxNTdlLWQ0ZjgtNGYyZC1iOTZkLTJkNmQ1NmQ5ZmY0ZS8xL2c5empjOEdMbEFx
WGc1Q3ljbkFDZWJNdjdqby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBngJhDANBgkqhkiG9w0BAQsF
AAOCAQEAckwtM7K5reo1kJcEbRnaqRd6wr97llRUQZ55m5kLEqJichfJq855Mm2q
99DdAAWL9LpiiYmoZh1kAdJK4y3WCUULStyf8DCwAh5bQqD1z68KSNCRKlKYjmt5
a2EDT++w3tyhN3Roz6X+CJitrg2etlAjq0c9QsKnVGsnYj4YlodIp8TgzOLNfqn/
2+1Q7kViOLodu2j6BAMBHlIHPuDIR1SmxpVx5XriRICF8GoAWBc+ASNHgldLsL7v
snfpS/HFOEBS6/d5gu3bDU5Ym9LhWaFqswJ9uDcK3V8Aw/pwcjzqrolOoeKcpl4v
fNAoUfy9aRGziTJGcXLHlQ4MONpEoQ==
-----END CERTIFICATE-----
Generated at Sat Apr 19 00:56:26 2025 by rpki-client