Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/JyavwdCFmFwHK4RjTO5hKxj9PCg.roa
File: JyavwdCFmFwHK4RjTO5hKxj9PCg.roa (raw, json)
Hash identifier: 0l3A6LPSlOTRUVJO/LZ2R55xV5WEh0spRCXTiYFVpwM=
Subject key identifier: 27:26:AF:C1:D0:85:98:5C:07:2B:84:63:4C:EE:61:2B:18:FD:3C:28
Certificate issuer: /CN=a6562d0869480dc11b74a552cd167b6f6339c8ba
Certificate serial: 0770281F
Authority key identifier: A6:56:2D:08:69:48:0D:C1:1B:74:A5:52:CD:16:7B:6F:63:39:C8:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/plYtCGlIDcEbdKVSzRZ7b2M5yLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/JyavwdCFmFwHK4RjTO5hKxj9PCg.roa
Signing time: Sat 01 Jan 2022 00:50:36 +0000
ROA not before: Sat 01 Jan 2022 00:50:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213110
IP address blocks: 2a0f:b104::/48 maxlen: 48
2a0f:b105::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124790815 (0x770281f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6562d0869480dc11b74a552cd167b6f6339c8ba
Validity
Not Before: Jan 1 00:50:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2726afc1d085985c072b84634cee612b18fd3c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:6c:40:0d:76:43:57:c3:d3:dd:ba:f3:0b:dd:
3b:86:a4:9a:4b:5c:af:17:0e:ca:65:79:e3:e1:53:
6b:c2:fc:ad:ce:28:60:cb:bf:10:d6:b7:ba:77:cc:
f2:64:80:91:0f:3b:ae:52:31:b4:4b:1e:41:de:23:
dd:50:87:12:c0:eb:eb:e6:dd:71:b6:13:95:38:62:
ee:1a:22:a1:51:04:35:c3:91:c6:45:e9:a9:6c:18:
90:87:f9:5a:76:3c:d4:16:b8:a4:00:be:78:97:9c:
72:66:d5:2a:cd:82:c7:f3:9d:72:88:a1:cd:bc:2c:
b3:b6:23:40:5a:1a:d8:cd:87:3e:8a:4d:6d:72:2b:
a3:e0:ba:12:29:54:60:b8:92:8f:75:14:e4:8f:1f:
d0:3f:3b:33:0d:26:c3:2b:0b:cc:1a:ad:99:79:b8:
57:d9:c9:84:92:ed:3e:c7:b3:3e:74:f3:75:df:7d:
fd:31:7a:6e:39:0b:44:a3:d0:cd:ff:50:d1:81:40:
2c:04:ff:0c:a8:db:a5:df:47:d3:0b:51:f2:80:58:
d6:8b:99:db:e5:13:f7:2e:8f:71:81:f2:af:f3:fa:
fc:9e:28:ad:a6:b2:2f:be:16:30:86:dd:b6:35:94:
90:6a:d6:24:ba:25:90:3b:98:bf:17:9f:48:fd:7b:
f7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:26:AF:C1:D0:85:98:5C:07:2B:84:63:4C:EE:61:2B:18:FD:3C:28
X509v3 Authority Key Identifier:
keyid:A6:56:2D:08:69:48:0D:C1:1B:74:A5:52:CD:16:7B:6F:63:39:C8:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/plYtCGlIDcEbdKVSzRZ7b2M5yLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/JyavwdCFmFwHK4RjTO5hKxj9PCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/plYtCGlIDcEbdKVSzRZ7b2M5yLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b104::/48
2a0f:b105::/32
Signature Algorithm: sha256WithRSAEncryption
d0:6e:71:e6:4e:45:1e:8c:46:39:94:61:4e:94:49:2c:fb:fd:
67:1c:07:9d:5b:bf:15:23:16:0b:7c:2d:5c:80:39:15:35:06:
3d:27:9d:e0:a1:51:41:31:51:91:14:be:72:25:db:35:86:3b:
f4:d7:02:30:65:1a:6c:41:3f:28:2f:9a:b8:e2:ae:3d:0e:34:
f1:99:10:2a:9c:4b:92:ed:c0:d3:74:c2:26:b6:1e:7a:00:b8:
27:00:5a:37:51:cf:4f:d1:8d:42:00:fd:7c:07:7d:ca:77:36:
99:be:24:39:53:b4:d7:8e:3d:60:38:9c:cc:b1:fd:3a:63:7b:
3f:1a:1c:fa:80:0b:85:93:e8:8a:4b:08:03:83:9f:de:d0:ed:
f0:c6:3e:70:d9:ff:ac:0e:23:ed:92:50:5c:da:37:56:8c:35:
4f:94:b5:77:82:b4:3e:64:d3:05:c6:c8:0e:78:99:08:b0:72:
b9:1c:d5:13:91:68:73:9a:a6:ca:65:f2:39:45:14:bc:07:d3:
d9:ab:aa:6f:16:b5:e5:15:70:fc:61:a0:ab:27:4f:c2:89:50:
e2:4a:84:d7:eb:ee:10:bd:36:8b:fb:c4:05:56:6b:df:5e:91:
1e:73:b2:be:ea:0b:52:40:f0:8e:f0:5b:f6:de:57:42:8c:d1:
10:ca:cd:a7
-----BEGIN CERTIFICATE-----
MIIE+TCCA+GgAwIBAgIEB3AoHzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NjU2MmQwODY5NDgwZGMxMWI3NGE1NTJjZDE2N2I2ZjYzMzljOGJhMB4XDTIyMDEw
MTAwNTAzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjcyNmFmYzFkMDg1
OTg1YzA3MmI4NDYzNGNlZTYxMmIxOGZkM2MyODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO5sQA12Q1fD09268wvdO4akmktcrxcOymV54+FTa8L8rc4o
YMu/ENa3unfM8mSAkQ87rlIxtEseQd4j3VCHEsDr6+bdcbYTlThi7hoioVEENcOR
xkXpqWwYkIf5WnY81Ba4pAC+eJeccmbVKs2Cx/Odcoihzbwss7YjQFoa2M2HPopN
bXIro+C6EilUYLiSj3UU5I8f0D87Mw0mwysLzBqtmXm4V9nJhJLtPsezPnTzdd99
/TF6bjkLRKPQzf9Q0YFALAT/DKjbpd9H0wtR8oBY1ouZ2+UT9y6PcYHyr/P6/J4o
raayL74WMIbdtjWUkGrWJLolkDuYvxefSP17990CAwEAAaOCAhMwggIPMB0GA1Ud
DgQWBBQnJq/B0IWYXAcrhGNM7mErGP08KDAfBgNVHSMEGDAWgBSmVi0IaUgNwRt0
pVLNFntvYznIujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BsWXRDR2xJRGNFYmRLVlN6Ulo3YjJNNXlMby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTcvMjEyZGQyLWRhOGQtNDA0OC05MTZhLTQ1YThmZWQzYTJhNS8x
L0p5YXZ3ZENGbUZ3SEs0UmpUTzVoS3hqOVBDZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTcv
MjEyZGQyLWRhOGQtNDA0OC05MTZhLTQ1YThmZWQzYTJhNS8xL3BsWXRDR2xJRGNF
YmRLVlN6Ulo3YjJNNXlMby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAp
BggrBgEFBQcBBwEB/wQaMBgwFgQCAAIwEAMHACoPsQQAAAMFACoPsQUwDQYJKoZI
hvcNAQELBQADggEBANBuceZORR6MRjmUYU6USSz7/WccB51bvxUjFgt8LVyAORU1
Bj0nneChUUExUZEUvnIl2zWGO/TXAjBlGmxBPygvmrjirj0ONPGZECqcS5LtwNN0
wia2HnoAuCcAWjdRz0/RjUIA/XwHfcp3Npm+JDlTtNeOPWA4nMyx/Tpjez8aHPqA
C4WT6IpLCAODn97Q7fDGPnDZ/6wOI+2SUFzaN1aMNU+UtXeCtD5k0wXGyA54mQiw
crkc1RORaHOapspl8jlFFLwH09mrqm8WteUVcPxhoKsnT8KJUOJKhNfr7hC9Nov7
xAVWa99ekR5zsr7qC1JA8I7wW/beV0KM0RDKzac=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:59 2025 by rpki-client