Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/JN7h9UpG-NtFUFcazcSnamwlvMo.roa
File: JN7h9UpG-NtFUFcazcSnamwlvMo.roa (raw, json)
Hash identifier: 0RIh6Dv+bH+ozKclrpCG32hSwwbWYdr6tE0u5ZK8jpo=
Subject key identifier: 24:DE:E1:F5:4A:46:F8:DB:45:50:57:1A:CD:C4:A7:6A:6C:25:BC:CA
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 0897A041
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/JN7h9UpG-NtFUFcazcSnamwlvMo.roa
Signing time: Wed 02 Mar 2022 20:12:08 +0000
ROA not before: Wed 02 Mar 2022 20:12:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 2a0e:2b00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144154689 (0x897a041)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Mar 2 20:12:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24dee1f54a46f8db4550571acdc4a76a6c25bcca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1d:af:80:ab:ed:5d:d9:72:fa:4b:1f:28:7a:
f9:65:53:eb:d6:5d:27:0b:f0:8e:ab:6f:bb:4c:04:
72:c9:c6:ec:b4:e5:75:bb:e9:56:56:50:f7:55:a4:
85:c7:63:29:8d:5e:a4:06:56:06:95:a0:fd:4d:59:
ef:2c:1c:33:a4:3b:cf:f6:4d:71:f4:1c:a8:f9:ea:
cb:6a:71:37:da:f1:0b:96:3e:b7:65:1d:47:ad:78:
e6:fa:89:7b:ac:53:d8:fe:65:9e:47:81:53:c0:d2:
76:95:01:08:e1:a4:47:f8:81:1b:09:19:26:a0:ce:
e0:70:de:26:aa:ad:3c:43:bf:6c:31:d5:72:4c:98:
f8:d2:7d:fb:a0:df:e5:61:88:7c:8a:9c:7b:43:88:
a0:85:23:80:15:6f:12:40:32:3b:60:cf:3c:ec:67:
69:03:b5:49:3e:3a:ae:4c:fb:63:e0:fc:b9:dd:56:
ea:65:6d:87:63:a8:85:ce:1e:1b:37:28:82:73:9a:
8f:ce:34:08:79:36:9e:33:50:c9:df:99:d5:76:51:
58:83:0d:b3:86:bb:7c:4b:d8:9a:33:84:e4:51:ea:
9d:38:9e:f0:9d:53:be:3b:f5:ca:a6:a2:f0:0a:8c:
dd:08:07:06:51:b9:cf:66:c5:63:e2:0f:6a:b9:a6:
0e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:DE:E1:F5:4A:46:F8:DB:45:50:57:1A:CD:C4:A7:6A:6C:25:BC:CA
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/JN7h9UpG-NtFUFcazcSnamwlvMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:2b00::/29
Signature Algorithm: sha256WithRSAEncryption
3c:75:83:9f:cc:b8:22:6d:52:79:72:a9:44:5c:3c:ba:ee:88:
e7:f3:9e:1f:01:55:cc:51:84:4b:b0:7d:3f:40:e1:cc:da:40:
da:2b:3c:40:9c:c2:c5:55:39:ce:44:70:cf:fb:e7:fc:3d:ab:
7f:74:70:ee:7b:cc:2c:0e:8a:fd:e2:56:5d:2f:2c:9f:d9:54:
4d:03:58:be:48:e0:13:ae:7e:63:fc:30:b1:7c:55:ed:09:5e:
c7:7c:0c:b6:27:0b:f3:41:bf:71:3f:75:07:14:ff:27:6e:e9:
8f:7b:a6:31:db:21:db:d4:9c:77:b6:c2:09:c3:0a:47:6b:cc:
ce:47:bd:b1:9b:e1:d1:9b:e0:c8:45:f1:21:9d:18:ae:29:78:
8b:b4:d2:33:94:42:10:a0:ed:03:6d:88:a5:fe:1e:4e:9f:c0:
df:aa:0d:f4:58:af:05:f5:1d:8f:95:33:ea:6e:cd:e8:da:dd:
87:82:ca:d8:c6:b1:4e:93:24:b1:1c:2e:6a:e3:ea:82:a5:bd:
83:45:ac:3a:e9:f6:cc:5a:a5:5a:ea:78:8a:d1:77:42:5b:4f:
15:db:12:73:66:a0:a7:0f:a5:a8:92:8a:75:5a:8d:d3:7a:56:
c5:83:b1:1e:2d:95:f3:23:ef:24:b1:3b:24:0c:e1:89:67:dd:
1c:86:e8:65
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIECJegQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
Mjc2MDNhOTNiY2EzMWIwMThmNTExZjZkNGIwYjc1NDZlOTYzMzYyMB4XDTIyMDMw
MjIwMTIwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjRkZWUxZjU0YTQ2
ZjhkYjQ1NTA1NzFhY2RjNGE3NmE2YzI1YmNjYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJMdr4Cr7V3ZcvpLHyh6+WVT69ZdJwvwjqtvu0wEcsnG7LTl
dbvpVlZQ91WkhcdjKY1epAZWBpWg/U1Z7ywcM6Q7z/ZNcfQcqPnqy2pxN9rxC5Y+
t2UdR6145vqJe6xT2P5lnkeBU8DSdpUBCOGkR/iBGwkZJqDO4HDeJqqtPEO/bDHV
ckyY+NJ9+6Df5WGIfIqce0OIoIUjgBVvEkAyO2DPPOxnaQO1ST46rkz7Y+D8ud1W
6mVth2Oohc4eGzcognOaj840CHk2njNQyd+Z1XZRWIMNs4a7fEvYmjOE5FHqnTie
8J1Tvjv1yqai8AqM3QgHBlG5z2bFY+IParmmDjsCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBQk3uH1Skb420VQVxrNxKdqbCW8yjAfBgNVHSMEGDAWgBSCdgOpO8oxsBj1
EfbUsLdUbpYzYjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2duWURxVHZLTWJBWTlSSDIxTEMzVkc2V00ySS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWIvOTFhZjY2LWQzOTQtNDJmYS1hMGM2LWIxNmNiNGRmYWRkMy8x
L0pON2g5VXBHLU50RlVGY2F6Y1NuYW13bHZNby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWIv
OTFhZjY2LWQzOTQtNDJmYS1hMGM2LWIxNmNiNGRmYWRkMy8xL2duWURxVHZLTWJB
WTlSSDIxTEMzVkc2V00ySS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoOKwAwDQYJKoZIhvcNAQELBQAD
ggEBADx1g5/MuCJtUnlyqURcPLruiOfznh8BVcxRhEuwfT9A4czaQNorPECcwsVV
Oc5EcM/75/w9q390cO57zCwOiv3iVl0vLJ/ZVE0DWL5I4BOufmP8MLF8Ve0JXsd8
DLYnC/NBv3E/dQcU/ydu6Y97pjHbIdvUnHe2wgnDCkdrzM5HvbGb4dGb4MhF8SGd
GK4peIu00jOUQhCg7QNtiKX+Hk6fwN+qDfRYrwX1HY+VM+puzeja3YeCytjGsU6T
JLEcLmrj6oKlvYNFrDrp9sxapVrqeIrRd0JbTxXbEnNmoKcPpaiSinVajdN6VsWD
sR4tlfMj7ySxOyQM4Yln3RyG6GU=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:44 2023 by rpki-client on console-ams.rpki-client.org