Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/Am_kEaqS5hDUzMxj-x8E0bVLnYg.roa
File: Am_kEaqS5hDUzMxj-x8E0bVLnYg.roa (raw, json)
Hash identifier: S9mR4CkWz/wwFiaunWXEcV7nuhNovyxA7DpbAlZdIPo=
Subject key identifier: 02:6F:E4:11:AA:92:E6:10:D4:CC:CC:63:FB:1F:04:D1:B5:4B:9D:88
Certificate issuer: /CN=951bb490e09df1467e4eec43d8f20484cee839fe
Certificate serial: 01849ABC809517855867D91E08C8DCC075F3
Authority key identifier: 95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/Am_kEaqS5hDUzMxj-x8E0bVLnYg.roa
Signing time: Mon 21 Nov 2022 15:09:15 +0000
ROA not before: Mon 21 Nov 2022 15:09:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 213.218.48.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9a:bc:80:95:17:85:58:67:d9:1e:08:c8:dc:c0:75:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951bb490e09df1467e4eec43d8f20484cee839fe
Validity
Not Before: Nov 21 15:09:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=026fe411aa92e610d4cccc63fb1f04d1b54b9d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a9:e5:88:63:33:b8:0f:80:63:4c:f1:ea:8f:
66:25:bb:ca:2a:1d:9e:d8:bc:5a:f3:21:0a:c4:85:
67:2b:f1:99:3f:0a:e1:3f:bc:45:72:9b:fe:d4:a9:
01:c0:34:31:64:c0:23:12:c5:ae:90:8b:4a:8a:34:
6a:76:73:79:05:a0:16:34:08:90:9f:58:7e:81:4b:
75:8d:2e:c6:2b:58:93:d5:38:2c:fe:3a:d4:9a:70:
7e:d8:d3:b7:84:df:da:12:d8:0c:bc:c6:e1:1b:73:
bd:0d:72:b6:f7:51:cd:1c:0f:46:2d:74:a1:3b:99:
6b:3f:3c:3c:4f:92:3a:07:0b:0a:8d:76:17:ae:5e:
18:fd:de:67:18:89:4a:e2:6b:88:6e:1f:31:d7:51:
08:8d:24:2f:49:5b:16:eb:f8:22:05:8b:8d:77:c6:
6e:6b:b2:ac:6f:18:22:1a:9f:e7:37:4e:2c:d7:a6:
c8:6c:4f:f3:d3:25:45:7a:23:f5:c9:b3:04:cd:09:
d9:08:8e:1a:f1:5e:8f:38:99:d0:df:99:30:c4:24:
76:e5:20:e3:b7:a9:24:d7:43:ff:2f:11:f5:7d:35:
b6:92:80:2d:68:81:6c:7f:25:e9:2d:1a:27:14:12:
b8:b1:d5:13:25:43:8b:68:6f:42:67:fb:9f:93:07:
89:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:6F:E4:11:AA:92:E6:10:D4:CC:CC:63:FB:1F:04:D1:B5:4B:9D:88
X509v3 Authority Key Identifier:
keyid:95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/Am_kEaqS5hDUzMxj-x8E0bVLnYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.218.48.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:55:55:1b:a3:7e:40:6d:10:03:ba:6d:34:de:9d:08:6c:8c:
42:3b:70:f7:40:54:43:fb:30:af:aa:de:b5:a5:50:ea:60:90:
99:b3:d3:fc:9c:0f:79:2e:5e:1c:a5:ce:6d:45:31:53:1e:2c:
a0:a5:02:a0:a1:2f:94:32:6c:6f:92:1e:a7:98:df:84:3e:a6:
15:22:08:44:68:38:12:7f:28:d9:05:9a:76:b3:90:5f:64:39:
37:58:5d:96:c8:47:30:37:63:77:a8:8c:e4:5d:44:ae:5b:86:
87:68:ce:5e:f9:db:06:74:11:9c:73:61:1b:22:77:58:01:6d:
f5:64:f1:12:e3:59:28:b4:8e:73:25:6c:03:50:c9:0d:39:15:
e7:41:65:4d:07:af:be:9a:d9:85:e9:43:b5:b3:8d:be:e4:8d:
c1:f2:a3:32:56:c3:33:9e:65:ef:29:1d:51:b5:93:7e:3d:15:
f5:02:ad:ed:e9:58:04:38:d3:b9:02:1b:f3:4f:73:29:81:b1:
cb:c5:7e:98:c9:b6:ea:5b:d7:3a:01:87:fb:47:a4:30:d5:64:
54:47:e2:2e:e6:3f:2e:a8:6f:c1:d2:13:fa:14:e2:fd:fd:02:
2b:aa:a1:62:c8:b3:65:cf:bd:07:08:6f:8c:d6:3d:85:be:b3:
38:09:b8:43
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSavICVF4VYZ9keCMjcwHXzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MWJiNDkwZTA5ZGYxNDY3ZTRlZWM0M2Q4ZjIwNDg0Y2Vl
ODM5ZmUwHhcNMjIxMTIxMTUwOTE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjZmZTQxMWFhOTJlNjEwZDRjY2NjNjNmYjFmMDRkMWI1NGI5ZDg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoKnliGMzuA+AY0zx6o9mJbvKKh2e
2Lxa8yEKxIVnK/GZPwrhP7xFcpv+1KkBwDQxZMAjEsWukItKijRqdnN5BaAWNAiQ
n1h+gUt1jS7GK1iT1Tgs/jrUmnB+2NO3hN/aEtgMvMbhG3O9DXK291HNHA9GLXSh
O5lrPzw8T5I6BwsKjXYXrl4Y/d5nGIlK4muIbh8x11EIjSQvSVsW6/giBYuNd8Zu
a7KsbxgiGp/nN04s16bIbE/z0yVFeiP1ybMEzQnZCI4a8V6POJnQ35kwxCR25SDj
t6kk10P/LxH1fTW2koAtaIFsfyXpLRonFBK4sdUTJUOLaG9CZ/ufkweJWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAJv5BGqkuYQ1MzMY/sfBNG1S52IMB8GA1UdIwQY
MBaAFJUbtJDgnfFGfk7sQ9jyBITO6Dn+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lYTZmNjEtYTlkMi00YzZiLWI3MTct
MWRiNGVkMTMxYmMzLzEvQW1fa0VhcVM1aERVek14ai14OEUwYlZMbllnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9lYTZmNjEtYTlkMi00YzZiLWI3MTctMWRiNGVkMTMxYmMz
LzEvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1dowMA0G
CSqGSIb3DQEBCwUAA4IBAQAcVVUbo35AbRADum003p0IbIxCO3D3QFRD+zCvqt61
pVDqYJCZs9P8nA95Ll4cpc5tRTFTHiygpQKgoS+UMmxvkh6nmN+EPqYVIghEaDgS
fyjZBZp2s5BfZDk3WF2WyEcwN2N3qIzkXUSuW4aHaM5e+dsGdBGcc2EbIndYAW31
ZPES41kotI5zJWwDUMkNORXnQWVNB6++mtmF6UO1s42+5I3B8qMyVsMznmXvKR1R
tZN+PRX1Aq3t6VgEONO5AhvzT3MpgbHLxX6YybbqW9c6AYf7R6Qw1WRUR+Iu5j8u
qG/B0hP6FOL9/QIrqqFiyLNlz70HCG+M1j2FvrM4CbhD
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:12 2024 by rpki-client on console-fra.rpki-client.org