Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/1-k4SM_04ee_6eSjOGkD8XV7xxVg.roa
File: 1-k4SM_04ee_6eSjOGkD8XV7xxVg.roa (raw, json)
Hash identifier: 4KO+W4Bp7bP5ITnrAP6Vana8bKHSx6c6Q8yZKicwXog=
Subject key identifier: FA:4E:12:33:FD:38:79:EF:FA:79:28:CE:1A:40:FC:5D:5E:F1:C5:58
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17F07C5B
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/1-k4SM_04ee_6eSjOGkD8XV7xxVg.roa
Signing time: Sat 01 Jan 2022 03:59:58 +0000
ROA not before: Sat 01 Jan 2022 03:59:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39177
IP address blocks: 213.91.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401636443 (0x17f07c5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 03:59:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa4e1233fd3879effa7928ce1a40fc5d5ef1c558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:36:48:ea:52:7f:e7:39:94:19:ca:07:de:7a:
41:70:7f:8e:54:ef:a9:45:46:80:9c:2d:fd:ea:04:
eb:bd:33:62:75:54:8c:e5:d2:5a:39:9c:1a:46:ea:
ee:36:f6:42:bf:44:ae:15:7e:5b:94:b1:f5:6f:21:
41:83:f6:5a:02:a1:52:33:44:44:b5:59:7e:7f:18:
0e:9a:f7:a6:dc:4b:ee:13:db:09:68:cf:89:e1:34:
ab:67:3d:d1:32:5c:76:56:c1:4d:2b:f6:34:ae:0a:
90:6f:27:90:c2:7c:59:98:43:98:84:f8:e8:3f:d0:
67:67:98:5b:a4:ae:03:76:07:ee:8d:7d:60:6d:fb:
81:d4:ce:42:c8:77:7a:e1:fb:c1:96:fd:04:6a:ab:
85:8d:86:54:2b:7c:2d:d7:b8:fc:f0:69:96:f3:cc:
5a:22:41:d1:33:37:e8:d8:75:73:46:73:7d:c7:8a:
96:71:25:47:58:20:4a:58:7c:f0:67:0d:f5:0e:14:
09:10:b3:d3:42:77:30:f0:a8:b3:2b:8b:b6:40:33:
8c:06:6a:5d:62:b3:ad:06:44:64:c3:f1:51:38:67:
39:3e:2c:2c:a7:a0:2d:2a:f9:05:97:8a:78:f9:51:
28:2a:9c:4a:d7:e5:c7:cb:3f:d1:17:82:dc:03:d3:
31:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:4E:12:33:FD:38:79:EF:FA:79:28:CE:1A:40:FC:5D:5E:F1:C5:58
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/1-k4SM_04ee_6eSjOGkD8XV7xxVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.196.0/24
Signature Algorithm: sha256WithRSAEncryption
77:07:a2:04:40:2c:86:68:f5:c9:74:f4:33:03:7a:1c:f9:26:
b6:df:67:48:f7:ea:a0:02:51:72:5b:b3:24:5e:09:79:97:4f:
e7:e9:b5:fa:75:dc:ad:b6:9d:9a:f8:66:ad:70:55:a9:e7:91:
fe:4c:fe:84:15:d0:27:f2:1b:44:09:ba:51:39:e5:9a:01:30:
1a:2c:5b:f8:bc:ef:f5:cb:d2:bb:15:a0:0d:d1:55:33:e6:1a:
5f:4d:ba:81:59:33:0a:15:7f:9a:b1:d1:20:ea:28:de:d9:4b:
5f:42:17:33:4e:f2:44:70:90:f5:c9:93:85:dd:99:c7:5e:f4:
d3:7e:82:96:e8:bc:b5:c7:d3:60:78:e6:4e:14:9f:25:b0:b9:
91:8b:7a:91:ef:c9:57:03:a7:33:44:b5:b5:a3:8f:9b:f8:f9:
bc:27:ab:f8:03:9c:8c:31:db:39:96:48:38:59:43:1f:5e:36:
cb:bd:17:69:73:17:a1:9f:c5:a9:53:0c:24:d3:82:fa:a6:8f:
cb:33:b1:74:11:9b:a4:4d:59:49:a8:5f:00:e5:3d:ac:3f:69:
11:68:5b:77:73:62:61:ef:10:c5:0d:fc:c5:df:c2:67:99:20:
bd:df:5e:0d:6e:77:42:e3:d1:02:a7:9e:6b:9f:15:85:d5:44:
40:6e:3c:3d
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEF/B8WzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NGIyZjRmYTUxNjNhZjk2MTY4ZTg4ZmJmOWNiNGVkMWVkOGZiNGM0MB4XDTIyMDEw
MTAzNTk1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmE0ZTEyMzNmZDM4
NzllZmZhNzkyOGNlMWE0MGZjNWQ1ZWYxYzU1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ82SOpSf+c5lBnKB956QXB/jlTvqUVGgJwt/eoE670zYnVU
jOXSWjmcGkbq7jb2Qr9ErhV+W5Sx9W8hQYP2WgKhUjNERLVZfn8YDpr3ptxL7hPb
CWjPieE0q2c90TJcdlbBTSv2NK4KkG8nkMJ8WZhDmIT46D/QZ2eYW6SuA3YH7o19
YG37gdTOQsh3euH7wZb9BGqrhY2GVCt8Lde4/PBplvPMWiJB0TM36Nh1c0ZzfceK
lnElR1ggSlh88GcN9Q4UCRCz00J3MPCosyuLtkAzjAZqXWKzrQZEZMPxUThnOT4s
LKegLSr5BZeKePlRKCqcStflx8s/0ReC3APTMb8CAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT6ThIz/Th57/p5KM4aQPxdXvHFWDAfBgNVHSMEGDAWgBSEsvT6UWOvlhaO
iPv5y07R7Y+0xDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hMTDAtbEZqcjVZV2pvajctY3RPMGUyUHRNUS5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvNGFhNzg5LTg3OGItNDcyYi1iODQ3LTg3MmJhMmQ5ZjQ0Yy8x
LzEtazRTTV8wNGVlXzZlU2pPR2tEOFhWN3h4Vmcucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Iw
LzRhYTc4OS04NzhiLTQ3MmItYjg0Ny04NzJiYTJkOWY0NGMvMS9oTEwwLWxGanI1
WVdqb2o3LWN0TzBlMlB0TVEuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADVW8QwDQYJKoZIhvcNAQELBQAD
ggEBAHcHogRALIZo9cl09DMDehz5JrbfZ0j36qACUXJbsyReCXmXT+fptfp13K22
nZr4Zq1wVannkf5M/oQV0CfyG0QJulE55ZoBMBosW/i87/XL0rsVoA3RVTPmGl9N
uoFZMwoVf5qx0SDqKN7ZS19CFzNO8kRwkPXJk4Xdmcde9NN+gpbovLXH02B45k4U
nyWwuZGLepHvyVcDpzNEtbWjj5v4+bwnq/gDnIwx2zmWSDhZQx9eNsu9F2lzF6Gf
xalTDCTTgvqmj8szsXQRm6RNWUmoXwDlPaw/aRFoW3dzYmHvEMUN/MXfwmeZIL3f
Xg1ud0Lj0QKnnmufFYXVREBuPD0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org