Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/vpp_rAAs4PSsAfdK3eWLuQQoR2Q.roa
File: vpp_rAAs4PSsAfdK3eWLuQQoR2Q.roa (raw, json)
Hash identifier: Yk3poggW7S2HjoxniLh/Cc56ljj7t0UCVbu/kgF8WRE=
Subject key identifier: BE:9A:7F:AC:00:2C:E0:F4:AC:01:F7:4A:DD:E5:8B:B9:04:28:47:64
Certificate issuer: /CN=86daaf4e68d322248230544cd8db29568e6cf003
Certificate serial: 146F3197
Authority key identifier: 86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/vpp_rAAs4PSsAfdK3eWLuQQoR2Q.roa
Signing time: Sat 01 Jan 2022 06:58:12 +0000
ROA not before: Sat 01 Jan 2022 06:58:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204088
IP address blocks: 2001:67c:2d14::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 342831511 (0x146f3197)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86daaf4e68d322248230544cd8db29568e6cf003
Validity
Not Before: Jan 1 06:58:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be9a7fac002ce0f4ac01f74adde58bb904284764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:08:6f:99:f1:cf:30:b2:83:08:b1:80:d5:fe:
06:da:35:41:34:38:25:c9:eb:fa:67:8c:6f:11:f5:
87:e5:e2:cf:5d:d1:3a:87:3f:73:f2:17:be:3d:6e:
3e:fd:09:8f:ea:57:7c:93:9e:18:39:62:bb:3f:d9:
20:b4:07:6e:ca:2d:e1:e6:57:f3:88:98:3b:a1:4e:
e4:3e:61:a0:0b:cb:fa:54:e5:60:34:47:3a:94:1a:
0c:bd:d7:81:cb:72:e1:01:97:cd:18:4e:ba:90:d7:
e2:25:ed:89:c3:c1:94:57:07:79:6b:e0:ef:2d:21:
73:e0:18:8a:9f:cd:c1:67:ef:00:81:a5:23:09:de:
2e:09:05:1f:c5:4a:7b:f3:22:6b:fb:67:a2:b2:6e:
b6:cd:40:8c:ba:12:fb:3d:df:a2:25:30:f6:4f:12:
b4:87:99:7c:71:c2:00:38:df:15:ee:a8:bf:8a:22:
3c:d4:94:b7:e3:50:69:d8:d0:a7:2f:65:a3:ee:e0:
5e:b9:cb:1c:4b:bb:f8:5e:ed:4a:b6:ce:a0:67:c6:
1b:0d:c3:64:a8:6f:1f:ea:bc:7c:bd:44:c4:1c:84:
96:f1:0e:8d:18:4a:96:40:f5:61:b7:e0:61:14:0e:
45:de:72:09:90:5c:72:8b:92:4d:e0:01:04:39:ce:
7b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:9A:7F:AC:00:2C:E0:F4:AC:01:F7:4A:DD:E5:8B:B9:04:28:47:64
X509v3 Authority Key Identifier:
keyid:86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/vpp_rAAs4PSsAfdK3eWLuQQoR2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2d14::/48
Signature Algorithm: sha256WithRSAEncryption
94:80:61:f6:eb:12:76:68:f3:ae:86:7c:68:ca:9c:80:e9:f8:
f1:f0:5c:f4:7e:2a:84:2a:76:42:2b:a5:84:13:3b:30:18:c4:
43:1e:e9:f6:e5:3a:a8:79:bc:c4:a7:e2:d2:2e:28:af:74:32:
87:28:7c:f7:a7:4d:99:45:3a:a3:3b:3c:b9:fc:09:c9:81:5a:
f7:46:06:df:24:d2:28:5f:02:98:6f:66:4b:0d:57:77:69:6e:
c3:f9:2e:b2:2a:05:87:29:f4:85:ce:9e:2d:4f:81:75:83:8b:
74:19:e1:72:50:96:50:bc:39:e7:c2:94:29:18:84:40:02:c0:
ed:7c:aa:a4:f8:45:dc:61:27:f0:b7:dc:91:bf:a7:5e:1a:42:
5d:2f:59:05:e4:f5:c2:d9:b3:16:68:66:f1:d0:b3:f9:6a:24:
33:66:9b:36:12:7d:39:86:7b:9f:6a:ea:d2:9e:d5:06:11:f2:
17:80:e7:74:7a:c6:0e:0b:4d:91:fa:93:07:b6:aa:9b:15:cb:
ab:11:30:cf:78:0b:9e:83:49:4b:b8:72:e7:85:60:11:23:bb:
b7:86:0d:8c:37:d0:ef:dc:69:e8:de:a4:b4:f3:82:ef:d1:81:
e4:fd:5c:bc:a5:c5:44:27:8a:1d:ca:6e:f9:92:64:ca:af:4d:
dc:94:33:d2
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIEFG8xlzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NmRhYWY0ZTY4ZDMyMjI0ODIzMDU0NGNkOGRiMjk1NjhlNmNmMDAzMB4XDTIyMDEw
MTA2NTgxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmU5YTdmYWMwMDJj
ZTBmNGFjMDFmNzRhZGRlNThiYjkwNDI4NDc2NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM8Ib5nxzzCygwixgNX+Bto1QTQ4Jcnr+meMbxH1h+Xiz13R
Ooc/c/IXvj1uPv0Jj+pXfJOeGDliuz/ZILQHbsot4eZX84iYO6FO5D5hoAvL+lTl
YDRHOpQaDL3Xgcty4QGXzRhOupDX4iXticPBlFcHeWvg7y0hc+AYip/NwWfvAIGl
IwneLgkFH8VKe/Mia/tnorJuts1AjLoS+z3foiUw9k8StIeZfHHCADjfFe6ov4oi
PNSUt+NQadjQpy9lo+7gXrnLHEu7+F7tSrbOoGfGGw3DZKhvH+q8fL1ExByElvEO
jRhKlkD1YbfgYRQORd5yCZBccouSTeABBDnOez0CAwEAAaOCAgwwggIIMB0GA1Ud
DgQWBBS+mn+sACzg9KwB90rd5Yu5BChHZDAfBgNVHSMEGDAWgBSG2q9OaNMiJIIw
VEzY2ylWjmzwAzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2h0cXZUbWpUSWlTQ01GUk0yTnNwVm81czhBTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTUvNTdkMWRiLWQ4ZWItNDllMC04MTMzLTViYzkwNTA1ZDhjYS8x
L3ZwcF9yQUFzNFBTc0FmZEszZVdMdVFRb1IyUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTUv
NTdkMWRiLWQ4ZWItNDllMC04MTMzLTViYzkwNTA1ZDhjYS8xL2h0cXZUbWpUSWlT
Q01GUk0yTnNwVm81czhBTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABBnwtFDANBgkqhkiG9w0BAQsF
AAOCAQEAlIBh9usSdmjzroZ8aMqcgOn48fBc9H4qhCp2QiulhBM7MBjEQx7p9uU6
qHm8xKfi0i4or3Qyhyh896dNmUU6ozs8ufwJyYFa90YG3yTSKF8CmG9mSw1Xd2lu
w/kusioFhyn0hc6eLU+BdYOLdBnhclCWULw558KUKRiEQALA7XyqpPhF3GEn8Lfc
kb+nXhpCXS9ZBeT1wtmzFmhm8dCz+WokM2abNhJ9OYZ7n2rq0p7VBhHyF4DndHrG
DgtNkfqTB7aqmxXLqxEwz3gLnoNJS7hy54VgESO7t4YNjDfQ79xp6N6ktPOC79GB
5P1cvKXFRCeKHcpu+ZJkyq9N3JQz0g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:37 2024 by rpki-client on console-ams.rpki-client.org