Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/D21xDkIt2ThZnEMSIJB3lNnxAig.roa
File: D21xDkIt2ThZnEMSIJB3lNnxAig.roa (raw, json)
Hash identifier: IvssNxZwni4LXHGs449RPk0hTy8XYtm3bUDIJkAReC0=
Subject key identifier: 0F:6D:71:0E:42:2D:D9:38:59:9C:43:12:20:90:77:94:D9:F1:02:28
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 3691BCC9
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/D21xDkIt2ThZnEMSIJB3lNnxAig.roa
Signing time: Sat 01 Jan 2022 01:01:05 +0000
ROA not before: Sat 01 Jan 2022 01:01:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33517
IP address blocks: 80.231.219.0/24 maxlen: 24
80.231.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 915520713 (0x3691bcc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Jan 1 01:01:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f6d710e422dd938599c431220907794d9f10228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ad:52:4e:e4:98:04:e8:fc:89:95:af:77:08:
2d:37:6f:81:eb:18:10:24:5a:77:f5:f9:f3:01:d6:
6e:d9:fb:5d:a3:ee:1c:f3:b1:25:a3:43:90:98:d0:
15:0e:f9:64:71:b5:4a:b3:81:4c:94:37:78:15:f6:
98:86:32:5f:34:b7:a5:cc:5d:9c:76:f5:8e:8d:16:
e8:6e:99:d4:a6:64:84:56:05:ca:4c:86:36:98:43:
cd:5e:8a:2e:a8:f7:86:75:0c:c2:00:5f:23:a5:78:
0c:55:ea:59:8e:ad:7d:56:4f:da:a4:85:3c:a9:9e:
c3:89:84:3c:80:b5:86:5a:e9:0e:ee:12:7f:da:85:
b1:72:34:43:b0:6a:00:d3:4a:ce:1c:85:4c:1c:01:
83:42:70:ed:47:18:f3:56:e3:19:63:d4:6e:3c:f2:
26:29:0e:d8:0e:cd:4f:5e:75:96:f1:70:00:39:ca:
35:2d:75:f0:91:ef:12:03:4c:01:f3:4d:31:6a:2e:
4e:56:ad:a9:52:c7:b2:9c:30:7f:6f:e7:79:52:4d:
5c:8e:29:66:9c:b1:6b:3f:be:28:88:a9:b9:72:a0:
33:f0:8e:f2:7d:5b:05:e1:87:1d:1c:9d:f0:7e:9c:
93:64:8d:56:ab:8a:db:07:89:58:a7:15:75:b1:b4:
34:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:6D:71:0E:42:2D:D9:38:59:9C:43:12:20:90:77:94:D9:F1:02:28
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/D21xDkIt2ThZnEMSIJB3lNnxAig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.231.25.0/24
80.231.219.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:20:9f:05:2b:af:e7:c8:b4:fc:53:a4:58:54:06:48:c1:b3:
80:c9:0d:4f:7e:c1:e2:71:eb:d3:d8:ee:48:fb:70:2e:ec:53:
b5:d8:c8:73:2b:76:86:b8:6f:e5:bc:45:c7:02:6d:3e:59:44:
e6:e9:33:2b:91:eb:5f:ab:93:e4:f1:c0:62:db:a1:c3:f8:90:
1c:97:8d:87:98:c9:2a:8d:04:cf:20:20:95:66:7d:44:d3:c2:
99:ce:fb:06:fc:18:d3:6d:6f:28:05:89:2f:7c:0d:33:1d:8b:
08:5c:ec:98:48:2f:40:67:d1:85:85:6c:63:fd:ef:42:c2:1f:
a9:53:ca:30:bc:6d:00:c7:a6:57:be:98:d4:76:72:3c:fb:a5:
13:fe:16:fb:fc:88:a4:d3:7a:78:c4:8d:65:23:7c:36:5d:16:
a1:45:33:d2:9b:2b:0c:d1:d3:5d:62:18:0f:88:60:10:ea:fa:
4b:a3:15:63:8e:c4:ad:c8:25:76:6b:2c:2a:c4:59:4c:77:4b:
38:ce:ed:dc:6e:ec:fc:83:ff:8a:99:82:d6:20:45:37:70:77:
02:e4:e7:9d:e8:af:4f:d0:dd:bf:c6:49:25:1e:25:63:f2:3c:
54:7f:7f:56:4f:2e:35:84:fd:06:b8:f0:43:bb:08:30:c6:d6:
b8:33:80:51
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIENpG8yTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZGQxYjI1ODc0OTBhZDA2MWNiMjA3MTc2YmRlZWM4MWE1MzE1ODhjMB4XDTIyMDEw
MTAxMDEwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGY2ZDcxMGU0MjJk
ZDkzODU5OWM0MzEyMjA5MDc3OTRkOWYxMDIyODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALGtUk7kmATo/ImVr3cILTdvgesYECRad/X58wHWbtn7XaPu
HPOxJaNDkJjQFQ75ZHG1SrOBTJQ3eBX2mIYyXzS3pcxdnHb1jo0W6G6Z1KZkhFYF
ykyGNphDzV6KLqj3hnUMwgBfI6V4DFXqWY6tfVZP2qSFPKmew4mEPIC1hlrpDu4S
f9qFsXI0Q7BqANNKzhyFTBwBg0Jw7UcY81bjGWPUbjzyJikO2A7NT151lvFwADnK
NS118JHvEgNMAfNNMWouTlatqVLHspwwf2/neVJNXI4pZpyxaz++KIipuXKgM/CO
8n1bBeGHHRyd8H6ck2SNVquK2weJWKcVdbG0NCUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQPbXEOQi3ZOFmcQxIgkHeU2fECKDAfBgNVHSMEGDAWgBRN0bJYdJCtBhyy
Bxdr3uyBpTFYjDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RkR3lXSFNRclFZY3NnY1hhOTdzZ2FVeFdJdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvMDFkMmFmLTFmMjEtNGI4MC1iNjY1LWRiNDYzYzVmYjBiNC8x
L0QyMXhEa0l0MlRoWm5FTVNJSkIzbE5ueEFpZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
MDFkMmFmLTFmMjEtNGI4MC1iNjY1LWRiNDYzYzVmYjBiNC8xL1RkR3lXSFNRclFZ
Y3NnY1hhOTdzZ2FVeFdJdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFDnGQMEAFDn2zANBgkqhkiG9w0B
AQsFAAOCAQEAHyCfBSuv58i0/FOkWFQGSMGzgMkNT37B4nHr09juSPtwLuxTtdjI
cyt2hrhv5bxFxwJtPllE5ukzK5HrX6uT5PHAYtuhw/iQHJeNh5jJKo0EzyAglWZ9
RNPCmc77BvwY021vKAWJL3wNMx2LCFzsmEgvQGfRhYVsY/3vQsIfqVPKMLxtAMem
V76Y1HZyPPulE/4W+/yIpNN6eMSNZSN8Nl0WoUUz0psrDNHTXWIYD4hgEOr6S6MV
Y47ErcgldmssKsRZTHdLOM7t3G7s/IP/ipmC1iBFN3B3AuTnneivT9Ddv8ZJJR4l
Y/I8VH9/Vk8uNYT9BrjwQ7sIMMbWuDOAUQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:19 2024 by rpki-client on console-ams.rpki-client.org