Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/107195-cc51-471b-8da2-e005543f0374/1/Vj8g-CiMhjGzSVYhCgIRSV0FzaY.roa
File: Vj8g-CiMhjGzSVYhCgIRSV0FzaY.roa (raw, json)
Hash identifier: ZTgjoEX3ooRvx9Ojmw5I7MRUSwGho9DMYO4bEQ276Vs=
Subject key identifier: 56:3F:20:F8:28:8C:86:31:B3:49:56:21:0A:02:11:49:5D:05:CD:A6
Certificate issuer: /CN=780de16eee947b0a8c75714fc5da6a0259ca1b90
Certificate serial: 01856D785C56EC3093DBB7B0F1CB875A7228
Authority key identifier: 78:0D:E1:6E:EE:94:7B:0A:8C:75:71:4F:C5:DA:6A:02:59:CA:1B:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eA3hbu6UewqMdXFPxdpqAlnKG5A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/107195-cc51-471b-8da2-e005543f0374/1/Vj8g-CiMhjGzSVYhCgIRSV0FzaY.roa
Signing time: Sun 01 Jan 2023 13:14:42 +0000
ROA not before: Sun 01 Jan 2023 13:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39004
IP address blocks: 2001:67c:2854::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:5c:56:ec:30:93:db:b7:b0:f1:cb:87:5a:72:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=780de16eee947b0a8c75714fc5da6a0259ca1b90
Validity
Not Before: Jan 1 13:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=563f20f8288c8631b34956210a0211495d05cda6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:88:96:c1:e5:57:21:42:ab:36:ce:e5:84:ef:
13:d5:7c:b2:39:20:51:cf:7e:02:01:7a:7c:32:ba:
ba:cd:36:5c:6c:41:1b:29:cb:dd:83:12:a5:9e:59:
63:32:5e:3a:64:5d:47:d9:b0:47:28:fc:21:66:05:
a9:39:4a:a3:8e:1f:aa:94:75:8e:91:9b:c7:25:48:
86:ac:84:a5:24:57:30:df:f6:39:6d:de:d4:98:75:
d1:3d:98:a5:ac:cf:b8:71:ff:ce:67:fb:55:e9:be:
87:44:cf:db:79:68:b3:5b:8b:08:4f:d4:2c:41:de:
e8:ee:f6:71:f1:bd:62:98:3d:ff:7b:83:ea:98:66:
72:0d:ac:6a:a6:f6:94:52:37:01:d0:10:4a:e7:97:
ca:c1:e0:db:5b:07:42:c2:f3:d4:2b:75:3c:05:e2:
e1:2b:39:34:79:29:2d:58:49:56:40:b4:fd:08:40:
3c:ca:b0:01:0a:d3:ba:15:a7:98:60:42:4e:fa:39:
1c:27:6b:7e:5d:e2:07:2c:e9:56:aa:bb:f7:5b:4a:
d0:c8:bb:60:4b:52:e7:b6:ec:cf:ea:2e:7f:13:1f:
66:9f:d5:91:de:d8:4d:01:ea:4a:2d:87:16:0c:75:
40:f2:34:27:f1:2d:bc:5d:02:84:32:cb:c8:93:88:
4e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:3F:20:F8:28:8C:86:31:B3:49:56:21:0A:02:11:49:5D:05:CD:A6
X509v3 Authority Key Identifier:
keyid:78:0D:E1:6E:EE:94:7B:0A:8C:75:71:4F:C5:DA:6A:02:59:CA:1B:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eA3hbu6UewqMdXFPxdpqAlnKG5A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/107195-cc51-471b-8da2-e005543f0374/1/Vj8g-CiMhjGzSVYhCgIRSV0FzaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/107195-cc51-471b-8da2-e005543f0374/1/eA3hbu6UewqMdXFPxdpqAlnKG5A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2854::/48
Signature Algorithm: sha256WithRSAEncryption
1b:10:52:62:fa:45:98:c1:63:1c:38:2d:a7:2a:25:63:f3:f4:
8c:3d:db:50:78:a8:c1:ae:0a:32:71:6a:da:f9:e1:27:42:02:
52:81:4d:a6:a2:d5:bc:67:56:58:4f:bf:66:99:b0:6e:f8:23:
4f:c3:7a:e3:c8:79:03:d9:7a:6c:85:a7:cd:80:a7:ec:3a:24:
28:b2:cc:9d:18:66:48:d5:0e:ae:c6:ec:7e:c8:e2:21:14:3a:
3a:3d:d9:db:a2:9e:eb:a8:05:6d:12:38:a4:65:1d:b2:84:13:
22:e4:7a:78:07:f7:8b:dc:0b:8d:11:00:f2:e8:fb:0f:c4:d0:
00:f8:28:83:ce:9a:fa:90:66:07:87:63:31:2f:74:ab:e3:f9:
4e:ee:d4:31:10:1b:f4:dc:2a:a8:d0:e4:92:a6:2e:16:e6:c8:
35:3a:2c:dc:50:3e:2d:b5:d4:68:63:ab:e6:e6:13:21:b9:3a:
6d:37:7b:a3:4b:a3:f6:8e:bc:8e:9d:7e:c1:26:84:10:65:54:
53:55:21:eb:48:db:c3:36:1c:29:80:2b:46:b6:99:f9:18:53:
e4:94:8a:93:f4:cc:1e:46:b9:78:a2:1e:7e:f1:76:1c:02:f2:
ba:37:f0:0a:3b:a3:c8:69:d6:ea:59:4d:45:e9:e9:c4:d5:6e:
eb:49:33:30
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVteFxW7DCT27ew8cuHWnIoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4MGRlMTZlZWU5NDdiMGE4Yzc1NzE0ZmM1ZGE2YTAyNTlj
YTFiOTAwHhcNMjMwMTAxMTMxNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NjNmMjBmODI4OGM4NjMxYjM0OTU2MjEwYTAyMTE0OTVkMDVjZGE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYiWweVXIUKrNs7lhO8T1XyyOSBR
z34CAXp8Mrq6zTZcbEEbKcvdgxKlnlljMl46ZF1H2bBHKPwhZgWpOUqjjh+qlHWO
kZvHJUiGrISlJFcw3/Y5bd7UmHXRPZilrM+4cf/OZ/tV6b6HRM/beWizW4sIT9Qs
Qd7o7vZx8b1imD3/e4PqmGZyDaxqpvaUUjcB0BBK55fKweDbWwdCwvPUK3U8BeLh
Kzk0eSktWElWQLT9CEA8yrABCtO6FaeYYEJO+jkcJ2t+XeIHLOlWqrv3W0rQyLtg
S1LntuzP6i5/Ex9mn9WR3thNAepKLYcWDHVA8jQn8S28XQKEMsvIk4hOlwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFY/IPgojIYxs0lWIQoCEUldBc2mMB8GA1UdIwQY
MBaAFHgN4W7ulHsKjHVxT8XaagJZyhuQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUEzaGJ1NlVld3FNZFhGUHhkcHFBbG5LRzVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8xMDcxOTUtY2M1MS00NzFiLThkYTIt
ZTAwNTU0M2YwMzc0LzEvVmo4Zy1DaU1oakd6U1ZZaENnSVJTVjBGemFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi8xMDcxOTUtY2M1MS00NzFiLThkYTItZTAwNTU0M2YwMzc0
LzEvZUEzaGJ1NlVld3FNZFhGUHhkcHFBbG5LRzVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfChU
MA0GCSqGSIb3DQEBCwUAA4IBAQAbEFJi+kWYwWMcOC2nKiVj8/SMPdtQeKjBrgoy
cWra+eEnQgJSgU2motW8Z1ZYT79mmbBu+CNPw3rjyHkD2XpshafNgKfsOiQossyd
GGZI1Q6uxux+yOIhFDo6Pdnbop7rqAVtEjikZR2yhBMi5Hp4B/eL3AuNEQDy6PsP
xNAA+CiDzpr6kGYHh2MxL3Sr4/lO7tQxEBv03Cqo0OSSpi4W5sg1OizcUD4ttdRo
Y6vm5hMhuTptN3ujS6P2jryOnX7BJoQQZVRTVSHrSNvDNhwpgCtGtpn5GFPklIqT
9MweRrl4oh5+8XYcAvK6N/AKO6PIadbqWU1F6enE1W7rSTMw
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:34 2025 by rpki-client