Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/j0vGwuzxrTNl9gfgvEyttQFl7Gk.roa
File: j0vGwuzxrTNl9gfgvEyttQFl7Gk.roa (raw, json)
Hash identifier: Q5DgZyI0iCqwRImKMgU3N/BpJy8k2QOvPyITdpWM6n4=
Subject key identifier: 8F:4B:C6:C2:EC:F1:AD:33:65:F6:07:E0:BC:4C:AD:B5:01:65:EC:69
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 07A10B82
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/j0vGwuzxrTNl9gfgvEyttQFl7Gk.roa
Signing time: Sat 01 Jan 2022 08:01:43 +0000
ROA not before: Sat 01 Jan 2022 08:01:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24013
IP address blocks: 2a09:7:1000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127994754 (0x7a10b82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 08:01:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f4bc6c2ecf1ad3365f607e0bc4cadb50165ec69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:19:0d:28:c1:dc:82:b8:b5:c9:b9:1d:36:84:
51:5f:1a:5c:d6:60:71:37:9a:ff:6c:fa:04:98:79:
e6:02:7c:25:7b:5b:43:29:cc:b3:d1:3d:85:46:02:
d1:c8:28:9a:08:eb:16:ad:50:1f:fa:5d:da:1d:7d:
2a:e2:8d:3c:36:90:91:cc:a2:df:47:88:f1:85:97:
39:50:42:31:16:e8:49:30:2b:74:dd:3b:60:4f:39:
29:5a:04:34:35:b6:05:33:e3:5e:05:67:6d:0c:05:
ca:19:a4:07:72:6e:2f:af:b9:dd:65:f6:60:f9:d9:
5a:94:4a:c5:b8:91:da:a9:7c:0c:fd:46:27:bd:53:
8f:b5:42:f9:6c:cf:f5:be:52:29:9a:73:bc:e9:59:
4b:cd:fa:13:a3:5e:cf:a0:ef:14:3a:36:4e:d5:8c:
3b:6d:12:9a:9f:a3:3d:43:69:7c:da:2b:ce:18:c8:
42:d1:24:c6:d0:42:8b:2f:6b:41:ba:1e:c4:6c:07:
96:63:50:d0:85:ed:a7:df:08:51:03:22:ec:49:78:
c9:9a:e5:76:e0:17:b1:0c:42:34:cc:c2:e2:09:ac:
d9:98:32:66:21:21:5f:58:00:f4:2b:2b:83:99:ef:
d4:c2:ad:e0:01:93:ab:44:19:71:ef:75:71:54:7b:
1d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:4B:C6:C2:EC:F1:AD:33:65:F6:07:E0:BC:4C:AD:B5:01:65:EC:69
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/j0vGwuzxrTNl9gfgvEyttQFl7Gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7:1000::/36
Signature Algorithm: sha256WithRSAEncryption
05:0c:8a:da:17:93:0a:3c:4b:55:d5:18:2b:b0:ed:6a:aa:03:
bd:ae:ed:ab:5a:40:1c:6e:1c:4e:fc:76:e7:0c:f4:71:d9:44:
ff:cf:9a:8a:cf:aa:45:a0:6f:9e:2c:e5:4b:54:fc:35:e0:cb:
da:2c:e2:6a:2e:7f:63:df:f3:31:c2:e4:5c:6a:f1:b2:a4:5a:
dd:b3:25:7d:62:23:43:39:c4:e2:d9:93:cd:1b:bb:0f:7a:02:
5b:98:49:6e:82:e5:5b:ac:04:f2:eb:8b:26:6a:3f:1b:d3:61:
1d:ab:29:be:ca:5a:4d:4b:1f:3c:41:5d:50:55:54:c0:78:e6:
fe:e9:f6:50:e8:21:7f:72:5e:30:ea:0b:66:0d:2a:c3:b7:9a:
35:a8:5f:65:f4:60:2a:4a:87:05:74:b4:c4:cf:e1:a0:c7:44:
e8:da:56:d1:f2:44:1d:70:8d:39:1f:c3:3a:a1:f8:9c:ca:c8:
80:b3:c9:66:5b:89:a3:e6:de:8d:55:74:84:bf:1c:0a:0c:fe:
f9:94:15:7d:94:5d:0e:50:94:de:fb:b4:f5:68:0a:67:6e:5e:
bc:00:0e:14:85:63:53:f7:e8:97:c1:8e:82:2d:b0:41:4b:4a:
1a:f4:aa:4a:4c:f2:c6:d4:0e:0a:76:a5:84:89:d1:c4:4b:c6:
84:49:d8:3e
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEB6ELgjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NTc2ZWIyY2M0NjJlNmU0YmYwZGU2OWI5ZjYzNDg3NWRlYmJhYWUyMB4XDTIyMDEw
MTA4MDE0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGY0YmM2YzJlY2Yx
YWQzMzY1ZjYwN2UwYmM0Y2FkYjUwMTY1ZWM2OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKMZDSjB3IK4tcm5HTaEUV8aXNZgcTea/2z6BJh55gJ8JXtb
QynMs9E9hUYC0cgomgjrFq1QH/pd2h19KuKNPDaQkcyi30eI8YWXOVBCMRboSTAr
dN07YE85KVoENDW2BTPjXgVnbQwFyhmkB3JuL6+53WX2YPnZWpRKxbiR2ql8DP1G
J71Tj7VC+WzP9b5SKZpzvOlZS836E6Nez6DvFDo2TtWMO20Smp+jPUNpfNorzhjI
QtEkxtBCiy9rQboexGwHlmNQ0IXtp98IUQMi7El4yZrlduAXsQxCNMzC4gms2Zgy
ZiEhX1gA9Csrg5nv1MKt4AGTq0QZce91cVR7HaECAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBSPS8bC7PGtM2X2B+C8TK21AWXsaTAfBgNVHSMEGDAWgBSldussxGLm5L8N
5pufY0h13ruq4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BYYnJMTVJpNXVTX0RlYWJuMk5JZGQ2N3F1SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODcvOTMxOTI3LTlmMzgtNDFiNi04N2ZhLTI1NGFjZDkyYjRlMS8x
L2owdkd3dXp4clRObDlnZmd2RXl0dFFGbDdHay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcv
OTMxOTI3LTlmMzgtNDFiNi04N2ZhLTI1NGFjZDkyYjRlMS8xL3BYYnJMTVJpNXVT
X0RlYWJuMk5JZGQ2N3F1SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoJAAcQMA0GCSqGSIb3DQEBCwUA
A4IBAQAFDIraF5MKPEtV1RgrsO1qqgO9ru2rWkAcbhxO/HbnDPRx2UT/z5qKz6pF
oG+eLOVLVPw14MvaLOJqLn9j3/MxwuRcavGypFrdsyV9YiNDOcTi2ZPNG7sPegJb
mEluguVbrATy64smaj8b02Edqym+ylpNSx88QV1QVVTAeOb+6fZQ6CF/cl4w6gtm
DSrDt5o1qF9l9GAqSocFdLTEz+Ggx0To2lbR8kQdcI05H8M6oficysiAs8lmW4mj
5t6NVXSEvxwKDP75lBV9lF0OUJTe+7T1aApnbl68AA4UhWNT9+iXwY6CLbBBS0oa
9KpKTPLG1A4KdqWEidHES8aESdg+
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:59 2023 by rpki-client on console-fra.rpki-client.org