Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/38a401-f27b-497a-bbfa-e7bb50bc081b/1/Tdq-mcnOnGHfl-fHOSq1DxY5Fqc.roa
File: Tdq-mcnOnGHfl-fHOSq1DxY5Fqc.roa (raw, json)
Hash identifier: ash7e2m7BtXIpfkUyjxvIgiOd48jV86t2EiToN2Maec=
Subject key identifier: 4D:DA:BE:99:C9:CE:9C:61:DF:97:E7:C7:39:2A:B5:0F:16:39:16:A7
Certificate issuer: /CN=5e6d2c2b69c24851623bf91476902635a4ce09ea
Certificate serial: 06BD0A32
Authority key identifier: 5E:6D:2C:2B:69:C2:48:51:62:3B:F9:14:76:90:26:35:A4:CE:09:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xm0sK2nCSFFiO_kUdpAmNaTOCeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/38a401-f27b-497a-bbfa-e7bb50bc081b/1/Tdq-mcnOnGHfl-fHOSq1DxY5Fqc.roa
Signing time: Sat 01 Jan 2022 00:58:35 +0000
ROA not before: Sat 01 Jan 2022 00:58:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49736
IP address blocks: 213.108.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113052210 (0x6bd0a32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e6d2c2b69c24851623bf91476902635a4ce09ea
Validity
Not Before: Jan 1 00:58:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ddabe99c9ce9c61df97e7c7392ab50f163916a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3b:e2:14:b2:3c:99:c4:c7:4a:2d:50:d8:43:
db:ce:0c:8a:a1:30:88:2a:e9:27:6d:2f:a3:e8:a6:
89:02:16:6a:fa:8b:8e:e6:0f:5f:6e:72:55:18:9b:
b5:8f:60:19:06:53:5b:3d:55:fc:2b:3c:8c:22:26:
93:92:85:a7:cc:5b:fd:73:f7:c9:64:80:1c:15:60:
ca:99:be:5e:f5:a6:50:71:ac:be:c7:b5:50:79:87:
92:04:4b:18:b8:b3:dd:0b:d1:45:f1:c9:b4:c1:a2:
6f:b5:38:eb:1d:84:a0:d4:d5:7e:9c:79:7f:4d:3a:
e1:9f:5f:1e:ec:9e:c1:23:c8:e0:63:ef:da:40:13:
43:fe:c3:79:44:4b:3f:ab:bb:7e:b7:d6:09:79:b7:
b4:a6:35:e8:9b:1f:9f:f7:8f:bf:3e:34:51:d1:f8:
96:41:1b:1c:73:9c:8e:0c:fb:bc:5e:1e:05:f5:fb:
59:4c:4b:40:16:2f:be:a0:dd:4f:f4:52:4b:d2:a1:
f8:c5:c0:15:06:8a:97:d4:d3:ec:c7:bb:36:43:70:
45:ed:97:3d:f9:6d:9b:a4:9d:4e:87:ac:b9:d9:48:
02:b6:5f:88:d9:ff:54:a1:8f:e4:64:2f:d1:58:99:
f1:7f:e1:65:85:20:40:7c:e8:c5:64:10:68:57:ed:
eb:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:DA:BE:99:C9:CE:9C:61:DF:97:E7:C7:39:2A:B5:0F:16:39:16:A7
X509v3 Authority Key Identifier:
keyid:5E:6D:2C:2B:69:C2:48:51:62:3B:F9:14:76:90:26:35:A4:CE:09:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xm0sK2nCSFFiO_kUdpAmNaTOCeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/38a401-f27b-497a-bbfa-e7bb50bc081b/1/Tdq-mcnOnGHfl-fHOSq1DxY5Fqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/38a401-f27b-497a-bbfa-e7bb50bc081b/1/Xm0sK2nCSFFiO_kUdpAmNaTOCeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.108.184.0/21
Signature Algorithm: sha256WithRSAEncryption
3a:24:90:01:3c:bb:89:e1:e0:12:5a:e4:7e:91:cc:81:74:ff:
7d:48:66:04:d7:a9:28:2d:4f:f1:cb:6c:55:98:ce:d3:fe:7b:
80:16:f6:a3:4c:be:bf:0e:a1:b7:1b:53:b9:6d:dd:6c:17:b7:
0a:50:38:c1:e9:df:91:0b:e5:d2:d1:c7:9c:0a:2f:20:9a:54:
31:8f:c7:95:59:09:32:3c:a4:4a:ff:bd:0b:e7:29:55:49:0a:
ea:b7:08:d8:eb:81:bc:fc:f8:a9:7d:85:b6:78:d8:3c:7f:ea:
06:bf:b7:3d:9c:75:8c:6b:48:db:c4:5a:32:4b:7c:85:08:9b:
a0:ab:1d:ce:ca:d6:25:aa:21:bf:89:5e:55:5b:86:8b:d0:7a:
86:77:c5:6d:8f:a2:23:4a:d1:45:04:e6:63:74:1b:49:6a:6e:
28:8b:16:f0:16:75:20:9a:7d:db:e0:03:c0:73:1f:33:f3:f3:
b9:48:28:7e:c8:52:24:b0:67:9c:35:7f:14:99:2a:a0:aa:99:
a0:3d:8c:8c:0d:9e:ba:2b:23:b2:31:74:fa:52:2c:7a:d8:89:
98:41:b5:6d:05:03:af:28:e3:1a:5a:e3:17:b3:3d:d9:34:e4:
3d:e9:48:14:60:bb:4d:50:63:33:51:f7:02:ce:00:38:77:39:
75:eb:0d:54
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBr0KMjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZTZkMmMyYjY5YzI0ODUxNjIzYmY5MTQ3NjkwMjYzNWE0Y2UwOWVhMB4XDTIyMDEw
MTAwNTgzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGRkYWJlOTljOWNl
OWM2MWRmOTdlN2M3MzkyYWI1MGYxNjM5MTZhNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK474hSyPJnEx0otUNhD284MiqEwiCrpJ20vo+imiQIWavqL
juYPX25yVRibtY9gGQZTWz1V/Cs8jCImk5KFp8xb/XP3yWSAHBVgypm+XvWmUHGs
vse1UHmHkgRLGLiz3QvRRfHJtMGib7U46x2EoNTVfpx5f0064Z9fHuyewSPI4GPv
2kATQ/7DeURLP6u7frfWCXm3tKY16Jsfn/ePvz40UdH4lkEbHHOcjgz7vF4eBfX7
WUxLQBYvvqDdT/RSS9Kh+MXAFQaKl9TT7Me7NkNwRe2XPfltm6SdToesudlIArZf
iNn/VKGP5GQv0ViZ8X/hZYUgQHzoxWQQaFft600CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRN2r6Zyc6cYd+X58c5KrUPFjkWpzAfBgNVHSMEGDAWgBRebSwracJIUWI7
+RR2kCY1pM4J6jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1htMHNLMm5DU0ZGaU9fa1VkcEFtTmFUT0Nlby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2YvMzhhNDAxLWYyN2ItNDk3YS1iYmZhLWU3YmI1MGJjMDgxYi8x
L1RkcS1tY25PbkdIZmwtZkhPU3ExRHhZNUZxYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Yv
MzhhNDAxLWYyN2ItNDk3YS1iYmZhLWU3YmI1MGJjMDgxYi8xL1htMHNLMm5DU0ZG
aU9fa1VkcEFtTmFUT0Nlby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9VsuDANBgkqhkiG9w0BAQsFAAOC
AQEAOiSQATy7ieHgElrkfpHMgXT/fUhmBNepKC1P8ctsVZjO0/57gBb2o0y+vw6h
txtTuW3dbBe3ClA4wenfkQvl0tHHnAovIJpUMY/HlVkJMjykSv+9C+cpVUkK6rcI
2OuBvPz4qX2FtnjYPH/qBr+3PZx1jGtI28RaMkt8hQiboKsdzsrWJaohv4leVVuG
i9B6hnfFbY+iI0rRRQTmY3QbSWpuKIsW8BZ1IJp92+ADwHMfM/PzuUgofshSJLBn
nDV/FJkqoKqZoD2MjA2euisjsjF0+lIsetiJmEG1bQUDryjjGlrjF7M92TTkPelI
FGC7TVBjM1H3As4AOHc5desNVA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:08 2024 by rpki-client on console-ams.rpki-client.org