Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/dd1ea6-ccbf-4df1-92ef-d61df33c431b/1/jYCzNBIovsAA34DiOkXUNpiCJE0.roa
File: jYCzNBIovsAA34DiOkXUNpiCJE0.roa (raw, json)
Hash identifier: JcKyp52PVGvopEKd83R7nQW1Ze5DSsBBPhzU4Us235Q=
Subject key identifier: 8D:80:B3:34:12:28:BE:C0:00:DF:80:E2:3A:45:D4:36:98:82:24:4D
Certificate issuer: /CN=544194f8249773d3cd6fb654b239de769c42e864
Certificate serial: 07A1306F
Authority key identifier: 54:41:94:F8:24:97:73:D3:CD:6F:B6:54:B2:39:DE:76:9C:42:E8:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VEGU-CSXc9PNb7ZUsjnedpxC6GQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/dd1ea6-ccbf-4df1-92ef-d61df33c431b/1/jYCzNBIovsAA34DiOkXUNpiCJE0.roa
Signing time: Sat 01 Jan 2022 14:04:51 +0000
ROA not before: Sat 01 Jan 2022 14:04:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207537
IP address blocks: 2001:67c:2bb4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128004207 (0x7a1306f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=544194f8249773d3cd6fb654b239de769c42e864
Validity
Not Before: Jan 1 14:04:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d80b3341228bec000df80e23a45d4369882244d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:df:33:ce:ac:92:11:44:44:40:d5:8b:c4:ce:
7f:c4:3c:90:1c:19:54:ea:59:5b:5e:a9:02:73:c5:
5f:e5:f3:03:9d:56:1e:57:51:a6:7b:b5:de:93:bd:
a8:5d:7d:67:e6:64:2c:31:30:c8:c5:21:38:a8:c4:
71:7f:2a:e1:16:17:22:c2:d2:ad:ae:b9:ff:87:cc:
d0:01:3e:ea:0d:4c:39:c2:b6:91:9d:10:5a:b5:8b:
82:6d:66:91:3c:ea:ff:22:0e:e9:62:56:8c:83:ce:
0c:e2:82:72:e8:27:9a:5b:d2:13:8a:58:b5:82:83:
56:a8:31:1c:e9:53:be:d1:98:d4:b9:d8:22:11:9a:
b5:c4:b7:a0:fe:20:21:0f:0f:80:ad:bc:d2:9f:5b:
ab:46:cb:f3:b7:52:05:84:e0:cc:4c:73:08:63:7f:
99:39:e6:1d:a6:2c:14:cd:05:0e:c3:8e:79:a2:68:
70:55:b2:31:78:0d:07:3c:23:5e:be:5d:5c:e1:ab:
3a:2d:1a:c3:61:3e:36:6d:a7:ca:d9:02:3b:e1:e1:
29:cb:be:ad:06:87:05:62:b4:61:86:b9:bc:3e:2f:
a7:d5:36:93:12:3e:c0:0e:78:41:86:28:f4:43:e7:
08:9e:92:0b:45:13:70:9f:81:67:d0:a0:e9:c5:29:
68:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:80:B3:34:12:28:BE:C0:00:DF:80:E2:3A:45:D4:36:98:82:24:4D
X509v3 Authority Key Identifier:
keyid:54:41:94:F8:24:97:73:D3:CD:6F:B6:54:B2:39:DE:76:9C:42:E8:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VEGU-CSXc9PNb7ZUsjnedpxC6GQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/dd1ea6-ccbf-4df1-92ef-d61df33c431b/1/jYCzNBIovsAA34DiOkXUNpiCJE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/dd1ea6-ccbf-4df1-92ef-d61df33c431b/1/VEGU-CSXc9PNb7ZUsjnedpxC6GQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2bb4::/48
Signature Algorithm: sha256WithRSAEncryption
ba:16:1a:9f:67:4d:8e:bb:6b:79:dd:6e:91:e1:c1:00:73:f0:
4c:fa:49:b6:14:d9:62:42:a9:cb:12:5c:c8:35:0d:6c:a0:54:
05:b6:2c:ad:ce:d9:61:18:78:a5:af:00:03:9c:91:6a:6b:ec:
95:cf:b8:0e:ca:52:42:8f:62:f0:79:da:55:07:41:95:0f:a6:
04:e1:23:7a:05:58:04:2e:e8:c0:4a:6f:3a:8b:16:e0:07:29:
d6:7c:83:ad:61:77:91:51:40:0b:1c:81:a4:b5:f4:57:e8:27:
c3:9f:a9:54:29:db:9f:29:ac:ba:e2:22:09:03:c9:6c:b9:dd:
4a:2b:11:8a:6f:fe:e0:90:eb:89:11:e9:72:a2:a3:6a:ef:9e:
10:d0:bc:10:45:92:55:0c:84:19:4e:5b:f8:58:53:80:8a:ba:
45:a1:43:15:8d:1c:f6:d3:6d:1a:af:d8:45:25:1c:2f:b2:e1:
aa:57:0a:dd:08:e0:f8:2e:b2:4f:b2:f7:b8:46:ad:d9:32:64:
3c:43:3b:4c:7d:95:ef:7d:76:38:d1:4d:4b:5a:de:08:40:36:
cb:2a:40:33:62:d2:63:3a:fe:fe:ac:88:47:79:ce:7a:7e:f9:
7a:5d:41:c2:31:96:40:5d:84:16:9f:9a:08:50:0c:15:09:a9:
ab:8f:c5:ec
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEB6EwbzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NDQxOTRmODI0OTc3M2QzY2Q2ZmI2NTRiMjM5ZGU3NjljNDJlODY0MB4XDTIyMDEw
MTE0MDQ1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGQ4MGIzMzQxMjI4
YmVjMDAwZGY4MGUyM2E0NWQ0MzY5ODgyMjQ0ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJzfM86skhFEREDVi8TOf8Q8kBwZVOpZW16pAnPFX+XzA51W
HldRpnu13pO9qF19Z+ZkLDEwyMUhOKjEcX8q4RYXIsLSra65/4fM0AE+6g1MOcK2
kZ0QWrWLgm1mkTzq/yIO6WJWjIPODOKCcugnmlvSE4pYtYKDVqgxHOlTvtGY1LnY
IhGatcS3oP4gIQ8PgK280p9bq0bL87dSBYTgzExzCGN/mTnmHaYsFM0FDsOOeaJo
cFWyMXgNBzwjXr5dXOGrOi0aw2E+Nm2nytkCO+HhKcu+rQaHBWK0YYa5vD4vp9U2
kxI+wA54QYYo9EPnCJ6SC0UTcJ+BZ9Cg6cUpaJ0CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBSNgLM0Eii+wADfgOI6RdQ2mIIkTTAfBgNVHSMEGDAWgBRUQZT4JJdz081v
tlSyOd52nELoZDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZFR1UtQ1NYYzlQTmI3WlVzam5lZHB4QzZHUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTMvZGQxZWE2LWNjYmYtNGRmMS05MmVmLWQ2MWRmMzNjNDMxYi8x
L2pZQ3pOQklvdnNBQTM0RGlPa1hVTnBpQ0pFMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTMv
ZGQxZWE2LWNjYmYtNGRmMS05MmVmLWQ2MWRmMzNjNDMxYi8xL1ZFR1UtQ1NYYzlQ
TmI3WlVzam5lZHB4QzZHUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBnwrtDANBgkqhkiG9w0BAQsF
AAOCAQEAuhYan2dNjrtred1ukeHBAHPwTPpJthTZYkKpyxJcyDUNbKBUBbYsrc7Z
YRh4pa8AA5yRamvslc+4DspSQo9i8HnaVQdBlQ+mBOEjegVYBC7owEpvOosW4Acp
1nyDrWF3kVFACxyBpLX0V+gnw5+pVCnbnymsuuIiCQPJbLndSisRim/+4JDriRHp
cqKjau+eENC8EEWSVQyEGU5b+FhTgIq6RaFDFY0c9tNtGq/YRSUcL7LhqlcK3Qjg
+C6yT7L3uEat2TJkPEM7TH2V7312ONFNS1reCEA2yypAM2LSYzr+/qyIR3nOen75
el1BwjGWQF2EFp+aCFAMFQmpq4/F7A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:14 2024 by rpki-client on console-fra.rpki-client.org