Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/bl93toehBhUM2hB0Y4p1O1foOyc.roa
File: bl93toehBhUM2hB0Y4p1O1foOyc.roa (raw, json)
Hash identifier: Ub++F6s3hUFpUBoNMp0maRL1d0ABp5Yqi2ynb84Z49I=
Subject key identifier: 6E:5F:77:B6:87:A1:06:15:0C:DA:10:74:63:8A:75:3B:57:E8:3B:27
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17E21537
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/bl93toehBhUM2hB0Y4p1O1foOyc.roa
Signing time: Sat 01 Jan 2022 03:59:52 +0000
ROA not before: Sat 01 Jan 2022 03:59:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24693
IP address blocks: 213.16.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400692535 (0x17e21537)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 03:59:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e5f77b687a106150cda1074638a753b57e83b27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:32:49:09:32:a6:7d:9d:a9:61:4d:cd:db:a5:
22:44:00:08:4a:27:c5:2b:1c:ee:14:4b:41:f5:06:
13:1b:72:01:72:ca:ea:7a:d9:43:51:3f:f0:2d:e4:
c7:88:12:9a:2b:42:fa:51:1a:a8:90:9f:22:d9:5a:
a8:20:d6:4b:98:42:bc:d8:85:07:ba:8a:f8:b7:dc:
5f:84:e3:76:3d:7b:6c:b5:72:2f:dc:67:42:e9:93:
1a:82:00:28:1a:16:3f:f9:98:4b:75:66:c9:fb:ae:
2c:a2:25:0e:be:a9:6d:ff:20:b2:1a:cf:15:a6:d9:
75:75:31:41:29:95:2d:de:3d:de:5c:6c:45:19:9c:
39:6a:15:4c:93:94:d3:3f:4f:58:81:58:29:0f:32:
05:14:18:eb:e6:68:43:97:50:cb:ca:1a:18:d0:34:
cd:ef:59:7f:5e:e0:4e:7a:d9:3d:34:fe:b4:8c:74:
22:36:11:ad:95:c5:9f:bb:18:76:49:68:fa:8d:8e:
b1:a5:83:07:7a:3f:f4:e1:fb:b3:9a:32:ed:08:8d:
ec:64:5f:2f:9c:a4:c6:e4:d4:2c:7d:e2:cd:16:38:
c8:f0:7c:4b:d4:a1:45:44:3d:d9:d8:9d:a2:79:d2:
cb:83:f3:53:91:b2:dc:c4:4c:87:ec:d8:57:6d:a6:
44:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:5F:77:B6:87:A1:06:15:0C:DA:10:74:63:8A:75:3B:57:E8:3B:27
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/bl93toehBhUM2hB0Y4p1O1foOyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.16.36.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:47:c3:8c:38:91:7a:86:27:33:89:64:ef:7e:15:38:8e:5c:
2a:62:1c:cb:75:be:6a:be:bc:39:b9:46:07:b7:ee:87:e6:5a:
46:b5:40:2b:fd:d9:1d:43:d7:b5:08:ec:b3:e4:b0:29:26:eb:
e4:2a:d8:62:65:28:ef:92:c7:e3:b2:63:66:cb:be:53:ee:db:
ad:67:35:f3:53:a2:4c:53:3e:f0:5e:2f:78:68:21:2e:d2:ed:
22:51:57:42:e8:aa:43:61:85:1d:e2:a6:c2:79:32:6f:11:5e:
b0:74:a5:bd:a1:18:ed:be:18:0b:07:01:82:bd:89:bd:fd:1e:
13:c7:a3:8f:34:4c:08:27:86:c3:48:3d:95:bc:bd:a0:c2:02:
c9:44:33:86:45:dd:25:97:62:57:05:d3:3d:0d:8b:a2:f7:97:
6d:74:e1:56:fb:90:d7:ce:7a:62:5f:85:56:46:da:73:0f:2d:
26:f9:2c:fd:11:95:7f:fb:66:f6:25:48:b3:53:3c:76:cb:de:
1a:6f:40:32:e9:09:f4:4e:41:87:7f:52:92:f2:01:e8:cb:85:
2b:c4:4f:be:16:c1:fc:4f:1c:74:94:69:cf:9c:6c:17:53:1e:
a0:27:39:4a:c7:4f:77:45:3e:40:b8:1b:b8:89:ac:0e:32:30:
a3:81:c8:04
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF+IVNzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NGIyZjRmYTUxNjNhZjk2MTY4ZTg4ZmJmOWNiNGVkMWVkOGZiNGM0MB4XDTIyMDEw
MTAzNTk1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmU1Zjc3YjY4N2Ex
MDYxNTBjZGExMDc0NjM4YTc1M2I1N2U4M2IyNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI0ySQkypn2dqWFNzdulIkQACEonxSsc7hRLQfUGExtyAXLK
6nrZQ1E/8C3kx4gSmitC+lEaqJCfItlaqCDWS5hCvNiFB7qK+LfcX4Tjdj17bLVy
L9xnQumTGoIAKBoWP/mYS3VmyfuuLKIlDr6pbf8gshrPFabZdXUxQSmVLd493lxs
RRmcOWoVTJOU0z9PWIFYKQ8yBRQY6+ZoQ5dQy8oaGNA0ze9Zf17gTnrZPTT+tIx0
IjYRrZXFn7sYdklo+o2OsaWDB3o/9OH7s5oy7QiN7GRfL5ykxuTULH3izRY4yPB8
S9ShRUQ92didonnSy4PzU5Gy3MRMh+zYV22mRMMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRuX3e2h6EGFQzaEHRjinU7V+g7JzAfBgNVHSMEGDAWgBSEsvT6UWOvlhaO
iPv5y07R7Y+0xDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hMTDAtbEZqcjVZV2pvajctY3RPMGUyUHRNUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvNGFhNzg5LTg3OGItNDcyYi1iODQ3LTg3MmJhMmQ5ZjQ0Yy8x
L2JsOTN0b2VoQmhVTTJoQjBZNHAxTzFmb095Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
NGFhNzg5LTg3OGItNDcyYi1iODQ3LTg3MmJhMmQ5ZjQ0Yy8xL2hMTDAtbEZqcjVZ
V2pvajctY3RPMGUyUHRNUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANUQJDANBgkqhkiG9w0BAQsFAAOC
AQEAsUfDjDiReoYnM4lk734VOI5cKmIcy3W+ar68OblGB7fuh+ZaRrVAK/3ZHUPX
tQjss+SwKSbr5CrYYmUo75LH47JjZsu+U+7brWc181OiTFM+8F4veGghLtLtIlFX
QuiqQ2GFHeKmwnkybxFesHSlvaEY7b4YCwcBgr2Jvf0eE8ejjzRMCCeGw0g9lby9
oMICyUQzhkXdJZdiVwXTPQ2LoveXbXThVvuQ1856Yl+FVkbacw8tJvks/RGVf/tm
9iVIs1M8dsveGm9AMukJ9E5Bh39SkvIB6MuFK8RPvhbB/E8cdJRpz5xsF1MeoCc5
SsdPd0U+QLgbuImsDjIwo4HIBA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org