Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-VDkpJQWSaK__xvuSO11MTMVO7g.roa
File: 1-VDkpJQWSaK__xvuSO11MTMVO7g.roa (raw, json)
Hash identifier: VharSCsCP2d8/bNp5LYp+mrtiQQbjSvnXtJ6/RS0g0o=
Subject key identifier: F9:50:E4:A4:94:16:49:A2:BF:FF:1B:EE:48:ED:75:31:33:15:3B:B8
Certificate issuer: /CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Certificate serial: 0183AC1DB4980EA32DA4D29F8EDBAF78AE4D
Authority key identifier: F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-VDkpJQWSaK__xvuSO11MTMVO7g.roa
Signing time: Thu 06 Oct 2022 07:06:11 +0000
ROA not before: Thu 06 Oct 2022 07:06:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 83.136.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ac:1d:b4:98:0e:a3:2d:a4:d2:9f:8e:db:af:78:ae:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Validity
Not Before: Oct 6 07:06:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f950e4a4941649a2bfff1bee48ed753133153bb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:79:1d:a1:f1:a9:c7:f0:3b:ed:6c:c8:17:87:
b5:80:8c:bd:32:80:67:e9:a8:97:cc:aa:c3:db:b5:
9a:ca:d3:17:c2:f9:99:7e:88:19:0b:2a:63:26:f1:
bf:46:52:6f:72:bd:a5:7e:44:78:d3:73:f4:7d:eb:
06:8c:fd:97:e2:bb:cd:7a:4f:5e:00:5c:d3:41:23:
00:0f:2a:0d:a6:14:08:bb:30:31:ce:fb:66:3f:c3:
4d:c7:1c:27:3f:a0:1c:74:2f:55:4c:46:24:15:8e:
fc:4e:78:28:bc:74:38:d9:c4:f3:e6:dd:e3:63:fd:
f5:30:bf:75:e9:c4:d5:80:aa:5e:98:71:f2:fa:41:
a7:51:04:1a:21:67:35:f6:af:21:1a:be:0e:27:3d:
4f:5c:b8:cc:89:ad:af:95:3d:fd:ff:e4:e1:87:a2:
7d:0a:bf:43:80:c3:4a:f4:51:30:77:7e:cd:95:d4:
62:96:94:fd:48:e9:09:17:4d:21:98:91:30:00:c0:
7f:a5:a6:d9:bd:eb:26:71:c5:b3:ad:18:e7:bd:4e:
04:8d:cc:e8:7e:47:44:99:a8:55:27:34:4d:7b:33:
21:e3:3c:cc:d3:e6:c5:68:de:b7:1c:b3:e7:0b:05:
7f:a7:09:4e:cd:64:f0:f8:fa:d2:61:0a:06:45:9a:
ea:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:50:E4:A4:94:16:49:A2:BF:FF:1B:EE:48:ED:75:31:33:15:3B:B8
X509v3 Authority Key Identifier:
keyid:F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-VDkpJQWSaK__xvuSO11MTMVO7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.212.0/24
Signature Algorithm: sha256WithRSAEncryption
76:58:fc:14:ed:44:85:7a:c0:e6:b4:22:0d:66:54:ab:c0:fb:
a5:d0:d7:de:c7:18:ac:79:3c:a6:12:3e:36:e3:4c:49:59:68:
53:9b:d0:24:a3:03:bf:98:e4:f0:ab:8a:88:c9:37:f1:e3:af:
9d:73:92:ad:d2:ad:03:13:c1:0d:5d:bf:b0:78:bd:2d:08:e4:
80:0f:4c:6f:d6:d4:6d:c0:5d:7b:78:27:62:2b:af:e8:30:37:
23:af:dc:38:6a:d8:99:c1:1f:e9:58:1f:7d:89:85:c4:31:9a:
24:13:1b:f8:6a:5d:3e:ac:45:16:91:e5:88:a8:4a:a9:5e:5c:
18:14:0a:64:ef:11:36:22:2e:9b:6b:e3:78:a3:5e:bd:df:81:
91:3b:20:66:df:e9:f9:e1:73:3d:34:5c:a2:d5:92:26:f5:30:
37:23:2b:73:98:df:d2:af:62:8c:f0:a0:d1:7c:92:c8:0a:8f:
c1:7b:c0:be:59:02:f0:0e:33:b1:d9:f8:b6:ce:e0:36:eb:df:
77:ac:99:c4:06:ec:d8:b4:64:de:f2:2d:74:81:6f:4b:21:33:
cb:fa:73:79:fc:22:ee:eb:e3:d4:33:71:98:1d:fc:4f:9d:6c:
7e:31:40:29:df:33:ce:42:89:5f:72:e6:87:39:b6:fc:d6:cc:
5d:3b:e3:70
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYOsHbSYDqMtpNKfjtuveK5NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4Nzk5ODhlMGY0OTk3MWEzMjZmNDE5ZTVjZmFjYmZkZGNj
OTkzZTcwHhcNMjIxMDA2MDcwNjExWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOTUwZTRhNDk0MTY0OWEyYmZmZjFiZWU0OGVkNzUzMTMzMTUzYmI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnHkdofGpx/A77WzIF4e1gIy9MoBn
6aiXzKrD27WaytMXwvmZfogZCypjJvG/RlJvcr2lfkR403P0fesGjP2X4rvNek9e
AFzTQSMADyoNphQIuzAxzvtmP8NNxxwnP6AcdC9VTEYkFY78TngovHQ42cTz5t3j
Y/31ML916cTVgKpemHHy+kGnUQQaIWc19q8hGr4OJz1PXLjMia2vlT39/+Thh6J9
Cr9DgMNK9FEwd37NldRilpT9SOkJF00hmJEwAMB/pabZvesmccWzrRjnvU4Ejczo
fkdEmahVJzRNezMh4zzM0+bFaN63HLPnCwV/pwlOzWTw+PrSYQoGRZrqHwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFPlQ5KSUFkmiv/8b7kjtdTEzFTu4MB8GA1UdIwQY
MBaAFPh5mI4PSZcaMm9Bnlz6y/3cyZPnMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1IbVlqZzlKbHhveWIwR2VYUHJMX2R6SmstYy5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDUvYWYzZDgxLTAwNDctNDEzYy05MWY0
LTA0NzBiNGJiMzBkYi8xLzEtVkRrcEpRV1NhS19feHZ1U08xMU1UTVZPN2cucm9h
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxULzA1L2FmM2Q4MS0wMDQ3LTQxM2MtOTFmNC0wNDcwYjRiYjMw
ZGIvMS8xLUhtWWpnOUpseG95YjBHZVhQckxfZHpKay1jLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU4jU
MA0GCSqGSIb3DQEBCwUAA4IBAQB2WPwU7USFesDmtCINZlSrwPul0NfexxiseTym
Ej4240xJWWhTm9AkowO/mOTwq4qIyTfx46+dc5Kt0q0DE8ENXb+weL0tCOSAD0xv
1tRtwF17eCdiK6/oMDcjr9w4atiZwR/pWB99iYXEMZokExv4al0+rEUWkeWIqEqp
XlwYFApk7xE2Ii6ba+N4o16934GROyBm3+n54XM9NFyi1ZIm9TA3IytzmN/Sr2KM
8KDRfJLICo/Be8C+WQLwDjOx2fi2zuA26993rJnEBuzYtGTe8i10gW9LITPL+nN5
/CLu6+PUM3GYHfxPnWx+MUAp3zPOQolfcuaHObb81sxdO+Nw
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:13 2024 by rpki-client on console-ams.rpki-client.org