Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/wTuF-pzDQpadYDPByJzLGr8mTT8.roa
File: wTuF-pzDQpadYDPByJzLGr8mTT8.roa (raw, json)
Hash identifier: ZjuOCrACgHryh3svB4apucw5fl/qqRYjIXdZgM9XsiY=
Subject key identifier: C1:3B:85:FA:9C:C3:42:96:9D:60:33:C1:C8:9C:CB:1A:BF:26:4D:3F
Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Certificate serial: 018538B08F9CF33A68C08578E692D908A2F4
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/wTuF-pzDQpadYDPByJzLGr8mTT8.roa
Signing time: Thu 22 Dec 2022 07:16:13 +0000
ROA not before: Thu 22 Dec 2022 07:16:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 212.113.117.0/24 maxlen: 24
212.113.118.0/24 maxlen: 24
212.113.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:38:b0:8f:9c:f3:3a:68:c0:85:78:e6:92:d9:08:a2:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Validity
Not Before: Dec 22 07:16:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c13b85fa9cc342969d6033c1c89ccb1abf264d3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1e:36:cb:85:87:ac:2b:36:2e:3b:e6:ef:de:
42:db:ac:7a:bf:95:6a:0c:22:3d:74:7c:21:a5:d1:
8c:73:9e:a1:f7:bd:30:0a:6e:bf:d4:a8:db:79:e8:
73:d6:82:6f:54:fc:b6:df:2d:a7:60:5d:6b:a7:4d:
04:e7:70:12:28:3f:96:8f:fe:15:b4:d5:23:44:89:
95:42:ed:0b:7e:94:de:8d:91:bf:ee:fc:01:1b:fe:
32:67:6f:8c:25:82:b0:9b:dc:8d:17:61:65:06:90:
3c:eb:57:dc:a3:9e:6c:43:a3:44:92:ca:42:e2:b1:
c5:aa:f1:d4:3b:98:52:8d:0d:22:06:7e:01:fb:1b:
93:6a:d1:a0:1c:d8:85:3a:13:e3:40:e5:05:00:e2:
7c:72:e1:20:32:9a:f8:a1:0d:0d:ee:11:b8:0e:ee:
33:77:86:c8:9d:2b:24:ac:a3:45:9b:8f:63:ec:c0:
fe:c4:88:4b:4c:9d:c0:6a:03:44:0e:ee:0c:c0:02:
c8:52:81:32:27:b0:ea:79:29:3c:ca:d5:83:95:04:
af:ed:f8:a5:a7:da:85:50:b3:9c:30:c0:eb:f6:91:
5b:3c:14:86:07:b9:68:20:af:b6:c2:a2:1e:21:d5:
12:1a:70:3f:74:b2:9e:19:d4:18:17:3f:b3:f7:fc:
4a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:3B:85:FA:9C:C3:42:96:9D:60:33:C1:C8:9C:CB:1A:BF:26:4D:3F
X509v3 Authority Key Identifier:
keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/wTuF-pzDQpadYDPByJzLGr8mTT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.113.116.0-212.113.118.255
Signature Algorithm: sha256WithRSAEncryption
68:7b:ef:a7:f5:73:ae:29:32:ef:ad:50:4a:69:06:74:cd:e7:
65:b7:02:31:46:65:96:86:cf:f4:f6:88:8f:94:a4:f2:18:ab:
87:0e:e7:b8:13:9b:25:31:c2:15:02:d0:d6:3a:c5:c8:78:a4:
eb:84:dd:74:5c:11:b1:02:86:bb:54:3d:46:28:fb:59:db:47:
50:a6:e9:84:07:ac:95:84:3f:2b:9e:e8:2d:12:57:b2:82:de:
13:5b:42:23:ba:2b:e3:1d:0d:4f:f4:17:6f:c9:77:9c:5b:10:
1c:a4:cf:74:4c:dd:f4:5f:81:e4:6a:cb:3a:96:98:f7:8c:df:
24:3b:3a:ae:61:09:43:20:fb:06:a4:67:e5:eb:05:a3:95:19:
c3:28:57:69:12:4a:50:94:01:d5:89:c8:b9:b3:19:54:a6:21:
09:4e:db:49:6f:3d:b3:79:91:af:78:4e:7e:71:22:d0:e6:50:
67:50:cb:b4:36:e8:a3:20:5a:a3:f6:4b:cc:d8:7f:19:2b:89:
b8:88:a5:dc:f8:e4:db:d7:f6:03:04:26:b5:39:0f:bf:dc:55:
1d:0a:19:09:c2:d6:b9:f8:6d:c7:4a:68:5d:36:a5:7d:76:f0:
81:f9:20:66:20:ed:49:ed:86:37:fc:96:56:4e:eb:1b:e9:44:
3a:52:09:6d
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYU4sI+c8zpowIV45pLZCKL0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0Y2JlNWI0NjIzZGFiNDJmMTVhOTA1MDAyZGI3Y2U2MmU4
NTRmMjkwHhcNMjIxMjIyMDcxNjEzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMTNiODVmYTljYzM0Mjk2OWQ2MDMzYzFjODljY2IxYWJmMjY0ZDNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoB42y4WHrCs2Ljvm795C26x6v5Vq
DCI9dHwhpdGMc56h970wCm6/1Kjbeehz1oJvVPy23y2nYF1rp00E53ASKD+Wj/4V
tNUjRImVQu0LfpTejZG/7vwBG/4yZ2+MJYKwm9yNF2FlBpA861fco55sQ6NEkspC
4rHFqvHUO5hSjQ0iBn4B+xuTatGgHNiFOhPjQOUFAOJ8cuEgMpr4oQ0N7hG4Du4z
d4bInSskrKNFm49j7MD+xIhLTJ3AagNEDu4MwALIUoEyJ7DqeSk8ytWDlQSv7fil
p9qFULOcMMDr9pFbPBSGB7loIK+2wqIeIdUSGnA/dLKeGdQYFz+z9/xKIwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFME7hfqcw0KWnWAzwcicyxq/Jk0/MB8GA1UdIwQY
MBaAFATL5bRiPatC8VqQUALbfOYuhU8pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQk12bHRHSTlxMEx4V3BCUUF0dDg1aTZGVHlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8zZDNhMmQtYTAzOS00NmY0LTg2ODct
MDU3ODE3YmE5ZmI3LzEvd1R1Ri1wekRRcGFkWURQQnlKekxHcjhtVFQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS8zZDNhMmQtYTAzOS00NmY0LTg2ODctMDU3ODE3YmE5ZmI3
LzEvQk12bHRHSTlxMEx4V3BCUUF0dDg1aTZGVHlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBALUcXQD
BADUcXYwDQYJKoZIhvcNAQELBQADggEBAGh776f1c64pMu+tUEppBnTN52W3AjFG
ZZaGz/T2iI+UpPIYq4cO57gTmyUxwhUC0NY6xch4pOuE3XRcEbEChrtUPUYo+1nb
R1Cm6YQHrJWEPyue6C0SV7KC3hNbQiO6K+MdDU/0F2/Jd5xbEBykz3RM3fRfgeRq
yzqWmPeM3yQ7Oq5hCUMg+wakZ+XrBaOVGcMoV2kSSlCUAdWJyLmzGVSmIQlO20lv
PbN5ka94Tn5xItDmUGdQy7Q26KMgWqP2S8zYfxkribiIpdz45NvX9gMEJrU5D7/c
VR0KGQnC1rn4bcdKaF02pX128IH5IGYg7Unthjf8llZO6xvpRDpSCW0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:33 2024 by rpki-client on console-fra.rpki-client.org