Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/JUMUrKXTKNQDc9DBG3DeFkMytJE.roa
File: JUMUrKXTKNQDc9DBG3DeFkMytJE.roa (raw, json)
Hash identifier: CslygFppY69ea24dwx6ESPWkyVc1K4KJ2C5DGeCdcvg=
Subject key identifier: 25:43:14:AC:A5:D3:28:D4:03:73:D0:C1:1B:70:DE:16:43:32:B4:91
Certificate issuer: /CN=90f25e6a6893f466d2695e90670c047443643701
Certificate serial: 33EE1016
Authority key identifier: 90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/JUMUrKXTKNQDc9DBG3DeFkMytJE.roa
Signing time: Thu 10 Feb 2022 08:15:06 +0000
ROA not before: Thu 10 Feb 2022 08:15:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 62.179.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 871239702 (0x33ee1016)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90f25e6a6893f466d2695e90670c047443643701
Validity
Not Before: Feb 10 08:15:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=254314aca5d328d40373d0c11b70de164332b491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:4b:11:a5:ca:13:b6:a6:fd:c4:e6:ab:87:99:
85:34:8a:1d:46:28:65:42:83:c2:9f:27:98:41:5e:
07:a7:c9:d2:d6:55:ed:3a:71:81:52:9d:fc:2e:70:
f5:8b:94:2a:df:b1:1a:b8:19:cf:17:89:9f:b6:74:
4a:3f:e6:bc:95:64:a3:68:82:a4:7d:98:a0:19:68:
f5:be:1a:bd:6c:63:3f:71:97:67:92:f2:5e:8d:ce:
86:e5:0e:5c:ed:01:73:f4:3f:8f:aa:ad:59:00:d1:
04:a2:7e:63:4c:52:73:66:28:7c:51:f5:3c:25:84:
80:79:0b:2a:f7:3b:18:11:e2:49:9c:83:03:fa:89:
49:2f:e2:11:e1:99:22:fe:b2:07:a6:15:af:ac:14:
18:3d:f9:05:1d:68:85:17:e9:88:8e:c5:6a:b7:41:
ce:81:0c:bd:ca:3d:f3:11:85:70:51:af:7e:23:d7:
31:d5:68:be:70:e0:46:a5:f4:be:84:79:6f:b3:2c:
48:19:1a:8a:1b:00:8b:1c:dd:f2:db:02:55:6a:49:
e7:75:dd:b8:72:36:a4:6d:ac:0f:9a:f3:0f:a1:46:
ba:ac:bf:29:cc:dd:59:fb:e7:25:31:a1:ad:af:8b:
86:0a:b7:78:7f:25:a7:8a:a3:a0:ae:0c:2d:a3:9d:
58:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:43:14:AC:A5:D3:28:D4:03:73:D0:C1:1B:70:DE:16:43:32:B4:91
X509v3 Authority Key Identifier:
keyid:90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/JUMUrKXTKNQDc9DBG3DeFkMytJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/kPJeamiT9GbSaV6QZwwEdENkNwE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.179.128.0/17
Signature Algorithm: sha256WithRSAEncryption
02:d0:22:d0:d8:fc:32:44:2b:0e:90:40:c9:67:03:67:53:c8:
3d:02:3f:75:ce:1f:1f:fd:65:b1:f4:38:a1:d5:41:9a:e1:1e:
5e:54:af:0c:25:39:22:60:28:33:7c:8e:45:c0:b5:6f:b9:f3:
de:a4:94:74:c5:5d:65:80:75:59:a2:c0:e0:48:82:cc:cb:d3:
e9:11:db:9b:59:34:e5:c2:4a:75:6d:10:9b:ff:f4:28:94:b9:
cb:24:d1:52:e3:fb:dc:83:6e:86:d6:2f:eb:98:f5:ee:57:03:
ba:b1:2e:be:6d:f4:39:76:bc:fd:dc:00:ee:f4:25:ab:9e:8e:
4c:97:22:21:5a:4d:dd:45:32:f1:c5:b4:79:06:46:c5:dc:de:
23:39:32:34:6f:3b:35:d8:92:ff:5c:b7:c0:4c:f7:c6:f5:44:
49:6d:78:d1:43:8d:2c:90:b2:4a:e2:4b:bc:c7:93:e0:07:c2:
e4:c3:ac:8a:11:6b:c6:22:0c:6c:3b:26:8e:72:95:ba:91:c7:
ff:89:f6:3e:96:35:e8:58:d0:48:1f:b1:45:c4:6b:42:65:fd:
36:1d:83:57:ee:ee:7e:c1:00:ea:35:ab:3b:4f:e8:ac:86:7a:
71:56:b6:bf:9d:ca:c2:4f:55:08:92:49:e6:82:e2:5a:b9:35:
a4:02:77:f9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEM+4QFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MGYyNWU2YTY4OTNmNDY2ZDI2OTVlOTA2NzBjMDQ3NDQzNjQzNzAxMB4XDTIyMDIx
MDA4MTUwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjU0MzE0YWNhNWQz
MjhkNDAzNzNkMGMxMWI3MGRlMTY0MzMyYjQ5MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOlLEaXKE7am/cTmq4eZhTSKHUYoZUKDwp8nmEFeB6fJ0tZV
7TpxgVKd/C5w9YuUKt+xGrgZzxeJn7Z0Sj/mvJVko2iCpH2YoBlo9b4avWxjP3GX
Z5LyXo3OhuUOXO0Bc/Q/j6qtWQDRBKJ+Y0xSc2YofFH1PCWEgHkLKvc7GBHiSZyD
A/qJSS/iEeGZIv6yB6YVr6wUGD35BR1ohRfpiI7FardBzoEMvco98xGFcFGvfiPX
MdVovnDgRqX0voR5b7MsSBkaihsAixzd8tsCVWpJ53XduHI2pG2sD5rzD6FGuqy/
KczdWfvnJTGhra+Lhgq3eH8lp4qjoK4MLaOdWIMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQlQxSspdMo1ANz0MEbcN4WQzK0kTAfBgNVHSMEGDAWgBSQ8l5qaJP0ZtJp
XpBnDAR0Q2Q3ATAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2tQSmVhbWlUOUdiU2FWNlFad3dFZEVOa053RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTIvMDRiMTYyLTcwOTktNDA0ZC04MzkxLTNiMGI0YjhhMjk4My8x
L0pVTVVyS1hUS05RRGM5REJHM0RlRmtNeXRKRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTIv
MDRiMTYyLTcwOTktNDA0ZC04MzkxLTNiMGI0YjhhMjk4My8xL2tQSmVhbWlUOUdi
U2FWNlFad3dFZEVOa053RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBz6zgDANBgkqhkiG9w0BAQsFAAOC
AQEAAtAi0Nj8MkQrDpBAyWcDZ1PIPQI/dc4fH/1lsfQ4odVBmuEeXlSvDCU5ImAo
M3yORcC1b7nz3qSUdMVdZYB1WaLA4EiCzMvT6RHbm1k05cJKdW0Qm//0KJS5yyTR
UuP73INuhtYv65j17lcDurEuvm30OXa8/dwA7vQlq56OTJciIVpN3UUy8cW0eQZG
xdzeIzkyNG87NdiS/1y3wEz3xvVESW140UONLJCySuJLvMeT4AfC5MOsihFrxiIM
bDsmjnKVupHH/4n2PpY16FjQSB+xRcRrQmX9Nh2DV+7ufsEA6jWrO0/orIZ6cVa2
v53Kwk9VCJJJ5oLiWrk1pAJ3+Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:02 2024 by rpki-client on console-ams.rpki-client.org