Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/I8v0Inn8hZICwQohpC9cwEDV37M.roa
File: I8v0Inn8hZICwQohpC9cwEDV37M.roa (raw, json)
Hash identifier: BH2fxBn0jgRvhwFUf723SuIh8KQDRQoyJfVj9naPXro=
Subject key identifier: 23:CB:F4:22:79:FC:85:92:02:C1:0A:21:A4:2F:5C:C0:40:D5:DF:B3
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 083E79F7
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/I8v0Inn8hZICwQohpC9cwEDV37M.roa
Signing time: Sat 01 Jan 2022 07:56:18 +0000
ROA not before: Sat 01 Jan 2022 07:56:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211209
IP address blocks: 212.22.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138312183 (0x83e79f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 07:56:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23cbf42279fc859202c10a21a42f5cc040d5dfb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cc:3f:5a:34:e7:56:8f:8c:09:86:3c:0e:a4:
b2:f7:51:3d:46:45:71:a0:47:e7:2b:ed:35:64:ae:
98:5a:c5:92:95:97:ff:cb:1f:44:6c:17:79:91:19:
98:75:85:6a:18:90:6c:0a:b0:d2:2c:79:09:6b:b6:
ca:b8:b0:70:7c:30:ef:64:5c:91:f1:3f:c3:de:56:
25:be:bb:ab:fe:b6:ff:3d:1f:30:0a:6d:9a:8e:21:
b7:a9:c5:3f:39:91:4c:51:d4:fa:81:a1:cb:10:7e:
23:d2:c1:cf:96:ba:df:48:5d:aa:c2:e0:4e:71:bd:
1c:09:3c:6f:49:32:2c:72:7b:b4:bc:4d:dd:9c:38:
8f:58:f2:7e:20:89:13:d8:d6:cc:c9:9d:2e:07:ce:
60:0b:79:e2:ac:16:fe:3f:a7:62:b5:00:c0:33:8e:
1e:d1:8f:98:a7:79:93:9c:ab:00:23:ec:46:3f:2e:
5d:55:c3:21:c5:46:b3:94:de:10:6d:5f:e9:f4:93:
01:e1:8d:25:b3:ec:25:76:e2:e6:63:fc:2d:b9:d7:
cb:e5:56:9b:26:c7:d0:84:ec:97:52:81:18:eb:7a:
e5:6c:be:2e:74:3a:cc:e9:ac:b7:11:c9:1e:81:d2:
c3:b5:d7:97:aa:d7:36:40:d7:69:6f:06:1f:31:48:
ab:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:CB:F4:22:79:FC:85:92:02:C1:0A:21:A4:2F:5C:C0:40:D5:DF:B3
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/I8v0Inn8hZICwQohpC9cwEDV37M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.78.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:34:e4:09:45:fc:14:a3:e4:b8:0e:2d:7a:09:e9:bc:09:52:
53:9c:3b:e1:bd:a7:5f:6a:ec:be:5a:b2:5e:44:74:20:b2:b4:
8d:7e:28:03:cb:44:8c:4a:05:fe:24:40:b9:c8:6a:9a:35:57:
5a:78:7d:8c:36:d1:39:dd:5e:a3:99:56:fd:b1:8b:2c:b3:ff:
ab:92:78:18:48:83:dd:3f:e3:fd:30:44:ea:1c:71:17:d7:57:
35:76:30:76:3d:50:f5:f9:ad:f0:17:83:6c:03:14:dd:b9:08:
8e:58:f4:53:b0:86:75:6f:98:e0:d5:b1:15:3c:7b:8a:59:21:
23:02:ac:e4:c9:a1:82:dd:2d:32:5d:07:4d:a7:52:f6:ee:41:
6f:77:c6:7b:c3:67:b1:3b:b2:fd:71:da:24:34:b8:7f:45:e7:
0e:6b:15:51:6d:c7:e4:77:37:98:4c:97:d9:3e:41:1f:71:53:
b9:a7:a4:5e:ed:ed:67:c4:4c:e5:27:a8:d0:a6:b2:f6:2e:6a:
53:ee:ba:83:b6:99:12:63:b7:94:6d:15:48:a3:b3:19:3f:e6:
14:11:a2:b9:c3:c8:99:a7:26:b9:b2:ac:05:d2:55:03:a8:79:
6b:fc:c9:7f:88:e2:f7:52:06:f0:12:95:ec:6e:cc:6c:9b:e7:
ad:58:03:89
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECD559zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDYzNjUzNTViNjY1NTY0YTIxMGMzNThjNjhhMDExN2I3ZmJlYjlhMB4XDTIyMDEw
MTA3NTYxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjNjYmY0MjI3OWZj
ODU5MjAyYzEwYTIxYTQyZjVjYzA0MGQ1ZGZiMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALrMP1o051aPjAmGPA6ksvdRPUZFcaBH5yvtNWSumFrFkpWX
/8sfRGwXeZEZmHWFahiQbAqw0ix5CWu2yriwcHww72RckfE/w95WJb67q/62/z0f
MAptmo4ht6nFPzmRTFHU+oGhyxB+I9LBz5a630hdqsLgTnG9HAk8b0kyLHJ7tLxN
3Zw4j1jyfiCJE9jWzMmdLgfOYAt54qwW/j+nYrUAwDOOHtGPmKd5k5yrACPsRj8u
XVXDIcVGs5TeEG1f6fSTAeGNJbPsJXbi5mP8LbnXy+VWmybH0ITsl1KBGOt65Wy+
LnQ6zOmstxHJHoHSw7XXl6rXNkDXaW8GHzFIq6UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQjy/QiefyFkgLBCiGkL1zAQNXfszAfBgNVHSMEGDAWgBR0Y2U1W2ZVZKIQ
w1jGigEXt/vrmjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RHTmxOVnRtVldTaUVNTll4b29CRjdmNzY1by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjIvYWVhMzZkLWJhYmYtNDQ3NC1hNzhiLTZhNGVjYWY4YjNiMS8x
L0k4djBJbm44aFpJQ3dRb2hwQzljd0VEVjM3TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjIv
YWVhMzZkLWJhYmYtNDQ3NC1hNzhiLTZhNGVjYWY4YjNiMS8xL2RHTmxOVnRtVldT
aUVNTll4b29CRjdmNzY1by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANQWTjANBgkqhkiG9w0BAQsFAAOC
AQEAmzTkCUX8FKPkuA4tegnpvAlSU5w74b2nX2rsvlqyXkR0ILK0jX4oA8tEjEoF
/iRAuchqmjVXWnh9jDbROd1eo5lW/bGLLLP/q5J4GEiD3T/j/TBE6hxxF9dXNXYw
dj1Q9fmt8BeDbAMU3bkIjlj0U7CGdW+Y4NWxFTx7ilkhIwKs5Mmhgt0tMl0HTadS
9u5Bb3fGe8NnsTuy/XHaJDS4f0XnDmsVUW3H5Hc3mEyX2T5BH3FTuaekXu3tZ8RM
5Seo0Kay9i5qU+66g7aZEmO3lG0VSKOzGT/mFBGiucPImacmubKsBdJVA6h5a/zJ
f4ji91IG8BKV7G7MbJvnrVgDiQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org