Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/jYrrWPm6b-pq3CZe1RCfGMBIc_c.roa
File: jYrrWPm6b-pq3CZe1RCfGMBIc_c.roa (raw, json)
Hash identifier: 31oyr27uOgE8GuJuT7pDbXd/6Ryg/738JxqnZFEUllk=
Subject key identifier: 8D:8A:EB:58:F9:BA:6F:EA:6A:DC:26:5E:D5:10:9F:18:C0:48:73:F7
Certificate issuer: /CN=bde75079618691bae1f47bcbed52314496963891
Certificate serial: 02E1C292
Authority key identifier: BD:E7:50:79:61:86:91:BA:E1:F4:7B:CB:ED:52:31:44:96:96:38:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vedQeWGGkbrh9HvL7VIxRJaWOJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/jYrrWPm6b-pq3CZe1RCfGMBIc_c.roa
Signing time: Sat 01 Jan 2022 10:01:47 +0000
ROA not before: Sat 01 Jan 2022 10:01:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39334
IP address blocks: 2001:678:6d8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48349842 (0x2e1c292)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bde75079618691bae1f47bcbed52314496963891
Validity
Not Before: Jan 1 10:01:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d8aeb58f9ba6fea6adc265ed5109f18c04873f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:81:eb:11:e0:a8:d6:58:c2:48:71:0c:9e:25:
71:04:d2:d8:12:a0:f6:69:f3:a6:ea:c9:b9:ee:9b:
cf:0d:11:4c:69:fb:41:42:4f:c8:29:93:0d:3d:4f:
52:21:a5:71:ea:48:2c:01:d4:f3:fe:96:b5:b8:90:
e4:34:f7:9f:a1:30:5d:4b:a7:41:a2:82:2c:a1:18:
99:c3:1e:af:86:c0:05:49:6c:c4:3d:12:d0:39:d6:
3e:d5:5e:f9:66:c2:dc:e0:31:ae:53:11:a1:a0:8c:
43:16:7b:de:9e:b0:d6:26:6f:31:05:22:b8:73:a2:
16:de:62:14:7b:dd:c1:e5:ec:44:3b:d3:9e:bd:f2:
73:7f:d2:1b:c7:8a:93:24:2e:43:46:8b:e6:f3:0b:
2b:f4:92:b0:f3:ab:90:5f:91:8a:6a:5d:25:c9:55:
54:20:7b:45:28:67:e7:a6:66:a3:64:fb:1c:54:83:
05:f0:df:34:eb:f0:54:f0:9d:cd:5e:a2:1f:45:7f:
36:4e:06:aa:61:d1:a6:e2:89:fe:3c:74:fd:22:c0:
bb:79:e6:4b:ee:1f:d6:0c:79:23:19:1a:b4:af:02:
c8:c9:b2:be:1f:da:d3:5a:ac:ce:3a:2b:d8:15:8c:
02:6a:73:c9:93:83:28:4c:45:5e:88:73:6a:28:15:
9e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:8A:EB:58:F9:BA:6F:EA:6A:DC:26:5E:D5:10:9F:18:C0:48:73:F7
X509v3 Authority Key Identifier:
keyid:BD:E7:50:79:61:86:91:BA:E1:F4:7B:CB:ED:52:31:44:96:96:38:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vedQeWGGkbrh9HvL7VIxRJaWOJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/jYrrWPm6b-pq3CZe1RCfGMBIc_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/vedQeWGGkbrh9HvL7VIxRJaWOJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:6d8::/48
Signature Algorithm: sha256WithRSAEncryption
85:fc:a5:0d:85:e3:ec:8f:a0:e2:f9:63:88:93:f7:d6:12:b8:
4a:d4:4b:70:c6:ad:67:c9:f1:9b:ba:4b:d8:67:54:8b:43:07:
00:f6:21:37:37:bd:ff:d1:38:d0:57:9f:3b:02:66:07:88:10:
df:dc:26:be:63:56:35:6d:88:80:6a:99:91:0a:c0:9f:68:60:
61:33:ff:15:24:40:29:45:b9:17:07:ad:40:1e:1e:45:61:67:
f2:25:f3:b3:0f:a9:8d:63:3d:da:30:dc:9b:b8:df:a1:eb:24:
5a:06:bb:3b:c3:aa:cf:52:47:0d:5c:4d:a0:76:d1:b7:02:f0:
11:5f:23:15:79:8d:65:39:96:92:c0:26:5f:1c:ab:36:20:8a:
80:87:80:4b:31:26:48:12:9a:d7:ce:91:ad:64:c7:a3:a4:c8:
87:63:0b:ef:b2:bc:e4:1c:f6:28:ce:78:f0:0f:e3:96:dd:d3:
30:41:03:69:41:78:9e:27:b6:cf:d9:c5:5e:64:3d:e6:88:8c:
3b:52:dc:cd:1c:3b:f3:2e:e1:9a:1e:14:ee:92:70:87:58:ce:
a3:b9:a6:75:cd:8f:30:f1:11:22:78:78:18:bd:8e:b6:a8:4b:
e5:c6:be:f6:e2:1e:f3:46:c3:6f:54:31:8d:8c:2d:ca:f8:96:
96:de:f9:8d
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEAuHCkjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZGU3NTA3OTYxODY5MWJhZTFmNDdiY2JlZDUyMzE0NDk2OTYzODkxMB4XDTIyMDEw
MTEwMDE0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGQ4YWViNThmOWJh
NmZlYTZhZGMyNjVlZDUxMDlmMThjMDQ4NzNmNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL2B6xHgqNZYwkhxDJ4lcQTS2BKg9mnzpurJue6bzw0RTGn7
QUJPyCmTDT1PUiGlcepILAHU8/6WtbiQ5DT3n6EwXUunQaKCLKEYmcMer4bABUls
xD0S0DnWPtVe+WbC3OAxrlMRoaCMQxZ73p6w1iZvMQUiuHOiFt5iFHvdweXsRDvT
nr3yc3/SG8eKkyQuQ0aL5vMLK/SSsPOrkF+RimpdJclVVCB7RShn56Zmo2T7HFSD
BfDfNOvwVPCdzV6iH0V/Nk4GqmHRpuKJ/jx0/SLAu3nmS+4f1gx5IxkatK8CyMmy
vh/a01qszjor2BWMAmpzyZODKExFXohzaigVnq8CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSNiutY+bpv6mrcJl7VEJ8YwEhz9zAfBgNVHSMEGDAWgBS951B5YYaRuuH0
e8vtUjFElpY4kTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZlZFFlV0dHa2JyaDlIdkw3Vkl4UkphV09KRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGIvOGYyMDkzLTAzMTgtNDc2Yy05ZTljLTUzZmM0OTA1NjI5Yi8x
L2pZcnJXUG02Yi1wcTNDWmUxUkNmR01CSWNfYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGIv
OGYyMDkzLTAzMTgtNDc2Yy05ZTljLTUzZmM0OTA1NjI5Yi8xL3ZlZFFlV0dHa2Jy
aDlIdkw3Vkl4UkphV09KRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBngG2DANBgkqhkiG9w0BAQsF
AAOCAQEAhfylDYXj7I+g4vljiJP31hK4StRLcMatZ8nxm7pL2GdUi0MHAPYhNze9
/9E40FefOwJmB4gQ39wmvmNWNW2IgGqZkQrAn2hgYTP/FSRAKUW5FwetQB4eRWFn
8iXzsw+pjWM92jDcm7jfoeskWga7O8Oqz1JHDVxNoHbRtwLwEV8jFXmNZTmWksAm
XxyrNiCKgIeASzEmSBKa186RrWTHo6TIh2ML77K85Bz2KM548A/jlt3TMEEDaUF4
nie2z9nFXmQ95oiMO1LczRw78y7hmh4U7pJwh1jOo7mmdc2PMPERInh4GL2OtqhL
5ca+9uIe80bDb1QxjYwtyviWlt75jQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:50 2025 by rpki-client