Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/J4ThuWeFMmztzOt5FzzuNl2zkZc.roa
File: J4ThuWeFMmztzOt5FzzuNl2zkZc.roa (raw, json)
Hash identifier: +tXhdU5HY6ZOnyZk+vNe9WQcx2TfZEaVfBH7SLT30+o=
Subject key identifier: 27:84:E1:B9:67:85:32:6C:ED:CC:EB:79:17:3C:EE:36:5D:B3:91:97
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17F8B9DE
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/J4ThuWeFMmztzOt5FzzuNl2zkZc.roa
Signing time: Sat 01 Jan 2022 04:54:54 +0000
ROA not before: Sat 01 Jan 2022 04:54:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213018
IP address blocks: 2.57.253.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402176478 (0x17f8b9de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2784e1b96785326cedcceb79173cee365db39197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e9:05:ef:56:ce:c7:d4:ff:d8:55:71:8d:75:
ed:9e:90:8b:ed:a5:c7:46:89:28:46:2c:63:b4:22:
86:dc:a3:98:02:fe:c4:15:23:92:8f:b1:92:16:4e:
a1:22:e1:47:4f:4b:04:4f:26:17:e8:05:cd:f4:20:
1e:8a:58:e9:5a:66:af:d9:e8:c1:2f:9f:95:64:79:
df:a4:90:bb:87:b1:52:80:f9:e3:5d:f5:8c:8c:6d:
74:74:9b:4c:d3:67:cf:13:23:e5:8f:68:7b:4f:de:
4c:df:0a:86:a8:1b:8e:a6:ba:c0:34:95:f5:05:77:
e4:c9:91:fb:36:5b:5d:83:d5:5d:fc:82:3c:89:76:
25:e7:ae:c0:1f:40:c2:99:f0:85:00:3f:0c:e8:7c:
7d:86:a6:2f:9a:8d:2b:19:1b:26:3b:59:71:50:ec:
93:19:4f:2e:a9:c9:bc:98:1d:51:d4:ca:8a:e1:19:
0f:e4:cb:19:3a:82:87:bb:eb:b5:14:56:f1:c1:48:
69:b6:ce:fd:12:19:fc:ac:07:62:f8:9a:3b:d5:c3:
29:22:27:3c:89:16:3e:72:d3:eb:16:4c:31:b9:2f:
22:18:e5:37:1b:5f:25:ab:4e:78:f4:16:8c:5f:88:
ba:c6:44:f2:2e:8f:3e:ed:b2:e9:0a:24:fe:7c:7b:
3c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:84:E1:B9:67:85:32:6C:ED:CC:EB:79:17:3C:EE:36:5D:B3:91:97
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/J4ThuWeFMmztzOt5FzzuNl2zkZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.253.0/24
Signature Algorithm: sha256WithRSAEncryption
19:23:69:30:61:9f:78:12:7e:bd:e2:fc:c1:de:02:7a:9b:d4:
d3:ac:70:35:49:77:0a:f1:1a:c2:e8:70:f7:ca:13:a7:2d:53:
78:47:40:ae:58:d1:6d:4c:f0:e9:9a:ff:44:ea:73:a2:25:9a:
5c:12:ea:dc:3a:ad:ca:59:4a:14:eb:ba:cf:f3:22:ee:76:61:
39:b3:2d:0c:b0:70:1e:0a:e6:8b:9c:31:d1:d0:94:81:dc:07:
c9:8d:b9:8b:cd:3d:eb:ea:83:ef:b8:ce:c3:6a:ce:58:e8:67:
50:4f:92:ee:0c:ff:a2:3b:90:5c:ed:f6:63:5e:b3:79:e0:75:
3e:6a:e6:cc:c8:8c:41:49:70:11:a5:9b:db:89:57:74:65:d6:
1e:fd:66:74:0f:4d:b5:3d:64:2a:28:3e:ff:6e:bf:1b:54:d2:
46:d0:d7:80:05:05:28:01:18:3e:95:ed:09:f2:0b:f7:e8:18:
56:c9:89:09:d5:ce:1d:b9:8f:a6:d4:18:d7:5d:99:de:34:97:
db:0d:13:dd:d4:5e:2e:f4:45:c3:02:05:bb:d0:3c:1b:1c:06:
ca:3e:cb:41:5e:7e:7a:e1:7a:ea:b2:e1:7c:91:8a:63:d6:eb:
cf:6f:69:2f:5d:50:49:80:01:a0:f9:27:36:e9:a0:8f:dd:a8:
1e:b3:3c:a7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF/i53jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDEw
MTA0NTQ1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjc4NGUxYjk2Nzg1
MzI2Y2VkY2NlYjc5MTczY2VlMzY1ZGIzOTE5NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANHpBe9WzsfU/9hVcY117Z6Qi+2lx0aJKEYsY7QihtyjmAL+
xBUjko+xkhZOoSLhR09LBE8mF+gFzfQgHopY6Vpmr9nowS+flWR536SQu4exUoD5
4131jIxtdHSbTNNnzxMj5Y9oe0/eTN8Khqgbjqa6wDSV9QV35MmR+zZbXYPVXfyC
PIl2JeeuwB9AwpnwhQA/DOh8fYamL5qNKxkbJjtZcVDskxlPLqnJvJgdUdTKiuEZ
D+TLGTqCh7vrtRRW8cFIabbO/RIZ/KwHYviaO9XDKSInPIkWPnLT6xZMMbkvIhjl
NxtfJatOePQWjF+IusZE8i6PPu2y6Qok/nx7PFUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQnhOG5Z4UybO3M63kXPO42XbORlzAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L0o0VGh1V2VGTW16dHpPdDVGenp1TmwyemtaYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAI5/TANBgkqhkiG9w0BAQsFAAOC
AQEAGSNpMGGfeBJ+veL8wd4CepvU06xwNUl3CvEawuhw98oTpy1TeEdArljRbUzw
6Zr/ROpzoiWaXBLq3DqtyllKFOu6z/Mi7nZhObMtDLBwHgrmi5wx0dCUgdwHyY25
i8096+qD77jOw2rOWOhnUE+S7gz/ojuQXO32Y16zeeB1PmrmzMiMQUlwEaWb24lX
dGXWHv1mdA9NtT1kKig+/26/G1TSRtDXgAUFKAEYPpXtCfIL9+gYVsmJCdXOHbmP
ptQY112Z3jSX2w0T3dReLvRFwwIFu9A8GxwGyj7LQV5+euF66rLhfJGKY9brz29p
L11QSYABoPknNumgj92oHrM8pw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org