Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/1-B6NFMHpjUDk6AskmhMIVhvn7Lc.roa
File: 1-B6NFMHpjUDk6AskmhMIVhvn7Lc.roa (raw, json)
Hash identifier: shlnmhQyoIANMtW7Rhd/KwpGOFC/0P0CNf9tiMDu+SM=
Subject key identifier: F8:1E:8D:14:C1:E9:8D:40:E4:E8:0B:24:9A:13:08:56:1B:E7:EC:B7
Certificate issuer: /CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Certificate serial: 0A02BE52
Authority key identifier: 39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/1-B6NFMHpjUDk6AskmhMIVhvn7Lc.roa
Signing time: Sat 01 Jan 2022 13:55:07 +0000
ROA not before: Sat 01 Jan 2022 13:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20864
IP address blocks: 213.143.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167951954 (0xa02be52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Validity
Not Before: Jan 1 13:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f81e8d14c1e98d40e4e80b249a1308561be7ecb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:eb:93:87:4f:fb:e8:dc:45:bc:f2:16:1e:78:
6f:19:71:44:26:c4:8f:2b:bb:c3:25:f1:df:71:07:
09:b5:63:44:20:f0:fe:91:e7:66:9a:74:ec:b3:f6:
76:f0:da:40:66:c6:5d:4f:dd:78:ec:47:55:e0:aa:
62:37:60:35:f0:c7:fd:a0:66:4e:04:50:99:05:52:
0f:30:15:96:39:03:e6:ed:3d:42:b1:c8:42:8c:0c:
4c:f9:1d:94:18:48:e8:3f:3a:ce:7b:3f:7e:93:3d:
54:57:c9:3e:9b:3a:08:11:a8:f5:55:29:d5:cf:dc:
a7:bc:2a:39:d9:ed:0a:35:a7:99:73:dc:65:f4:85:
41:22:5e:06:a1:2b:74:79:b6:ca:91:ad:79:5f:82:
6c:d4:08:11:d1:4c:c3:cf:16:71:c7:fd:fe:34:e4:
81:34:b0:2b:e1:d6:27:d4:01:82:47:a1:fe:c4:88:
b4:64:cb:2a:4b:66:47:12:c0:d3:87:b0:80:07:17:
24:39:2f:ad:6a:33:51:1f:27:3f:f5:98:74:ea:5e:
aa:63:b8:ba:6a:e9:f2:ca:47:8b:e3:80:9c:4b:27:
35:4e:d9:ef:db:fe:3c:84:3d:88:bf:4d:f1:f9:d4:
1d:0b:8b:14:a5:cd:cc:ba:6a:d0:1c:ff:85:e8:ff:
e5:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:1E:8D:14:C1:E9:8D:40:E4:E8:0B:24:9A:13:08:56:1B:E7:EC:B7
X509v3 Authority Key Identifier:
keyid:39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/1-B6NFMHpjUDk6AskmhMIVhvn7Lc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.143.224.0/24
Signature Algorithm: sha256WithRSAEncryption
17:77:a5:79:8d:43:55:aa:09:83:a7:e7:4a:a8:8f:a8:c2:f9:
43:df:6a:76:9f:21:03:13:2e:2b:ab:85:a2:32:26:6a:aa:96:
a9:ff:b9:90:cf:38:5b:8d:a1:8c:2a:16:58:f0:1f:5e:3e:e4:
4d:7b:11:65:05:00:d9:67:39:2c:28:cb:57:17:88:06:91:6a:
df:b7:8a:29:b7:68:f9:7d:a8:00:2d:f5:d1:e3:c8:65:dd:1a:
ad:fa:b5:5f:ee:97:6b:2f:0a:8f:ef:a2:c2:77:6b:ce:3f:04:
e5:70:3d:4a:2b:c4:85:bc:1f:29:d0:36:f8:77:93:e0:ae:b0:
40:83:b1:64:9f:43:ea:11:7f:66:ff:35:fa:58:c4:93:4f:0f:
90:92:ff:6d:06:d3:ea:3d:93:10:91:9d:83:97:7b:bd:28:2c:
62:89:c7:60:b6:82:18:e0:c1:01:86:d2:5c:de:89:af:1d:6f:
a4:51:e0:a1:42:4d:39:4d:23:22:59:0e:1e:e2:29:39:4c:d4:
94:f6:f7:95:a6:7d:60:64:94:15:61:53:f7:2e:10:d0:d7:09:
d7:04:a9:df:d6:6e:5f:2f:1e:56:dc:4a:4b:d4:6d:9c:87:53:
7b:d8:29:bd:82:29:ef:8b:a8:c0:27:08:5a:6d:56:01:58:b3:
fd:4c:21:88
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIECgK+UjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
OTE5ZjJhZDkxNTg0YmFmZjA0Njc0NDdiYWM4ZmI5NzhkMWY5ZGQzMB4XDTIyMDEw
MTEzNTUwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjgxZThkMTRjMWU5
OGQ0MGU0ZTgwYjI0OWExMzA4NTYxYmU3ZWNiNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL3rk4dP++jcRbzyFh54bxlxRCbEjyu7wyXx33EHCbVjRCDw
/pHnZpp07LP2dvDaQGbGXU/deOxHVeCqYjdgNfDH/aBmTgRQmQVSDzAVljkD5u09
QrHIQowMTPkdlBhI6D86zns/fpM9VFfJPps6CBGo9VUp1c/cp7wqOdntCjWnmXPc
ZfSFQSJeBqErdHm2ypGteV+CbNQIEdFMw88Wccf9/jTkgTSwK+HWJ9QBgkeh/sSI
tGTLKktmRxLA04ewgAcXJDkvrWozUR8nP/WYdOpeqmO4umrp8spHi+OAnEsnNU7Z
79v+PIQ9iL9N8fnUHQuLFKXNzLpq0Bz/hej/5TcCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT4Ho0UwemNQOToCySaEwhWG+fstzAfBgNVHSMEGDAWgBQ5GfKtkVhLr/BG
dEe6yPuXjR+d0zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L09SbnlyWkZZUzZfd1JuUkh1c2o3bDQwZm5kTS5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzUvOTExOGUyLWFlNzQtNGMyNC1hNzc1LTMyYWE2NzMxYzI5MS8x
LzEtQjZORk1IcGpVRGs2QXNrbWhNSVZodm43TGMucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc1
LzkxMThlMi1hZTc0LTRjMjQtYTc3NS0zMmFhNjczMWMyOTEvMS9PUm55clpGWVM2
X3dSblJIdXNqN2w0MGZuZE0uY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADVj+AwDQYJKoZIhvcNAQELBQAD
ggEBABd3pXmNQ1WqCYOn50qoj6jC+UPfanafIQMTLiurhaIyJmqqlqn/uZDPOFuN
oYwqFljwH14+5E17EWUFANlnOSwoy1cXiAaRat+3iim3aPl9qAAt9dHjyGXdGq36
tV/ul2svCo/vosJ3a84/BOVwPUorxIW8HynQNvh3k+CusECDsWSfQ+oRf2b/NfpY
xJNPD5CS/20G0+o9kxCRnYOXe70oLGKJx2C2ghjgwQGG0lzeia8db6RR4KFCTTlN
IyJZDh7iKTlM1JT295WmfWBklBVhU/cuENDXCdcEqd/Wbl8vHlbcSkvUbZyHU3vY
Kb2CKe+LqMAnCFptVgFYs/1MIYg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:16 2024 by rpki-client on console-ams.rpki-client.org