Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/gTBbIE8VUm4eud-f82DoXD_0VhQ.roa
File: gTBbIE8VUm4eud-f82DoXD_0VhQ.roa (raw, json)
Hash identifier: NwUsVoMV2UzeXSQWSK+GJAoMhHsK0iDr8Wq/bFcXOvw=
Subject key identifier: 81:30:5B:20:4F:15:52:6E:1E:B9:DF:9F:F3:60:E8:5C:3F:F4:56:14
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17E10A31
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/gTBbIE8VUm4eud-f82DoXD_0VhQ.roa
Signing time: Sat 01 Jan 2022 03:59:51 +0000
ROA not before: Sat 01 Jan 2022 03:59:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21337
IP address blocks: 213.91.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400624177 (0x17e10a31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 03:59:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81305b204f15526e1eb9df9ff360e85c3ff45614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1e:ad:ad:21:10:71:21:a1:fd:ea:93:de:aa:
3a:dc:5d:e9:b5:be:ec:bc:d1:22:4c:60:fd:e3:28:
a7:32:ea:89:9b:b2:13:b0:82:41:19:b0:7d:1b:b9:
b9:bf:3a:25:01:f9:9d:80:d9:37:c3:96:0f:51:5a:
9d:22:a1:1b:51:69:04:ed:02:6f:3c:fb:90:dd:ac:
05:61:42:90:fc:19:f1:a0:b3:9f:d3:ed:36:7a:52:
ff:40:67:c7:65:72:a0:ce:53:b4:9f:85:98:ca:72:
24:3f:20:b0:9f:21:00:9e:2b:f6:09:80:4b:2b:2a:
e7:9b:64:a5:85:0e:ba:af:d4:76:ed:f7:d9:d8:be:
71:82:2a:53:54:3f:8a:74:8f:df:9f:34:be:da:70:
38:fd:15:a8:86:02:34:3a:ae:16:29:a0:81:1d:ee:
b6:5a:f7:7f:b0:a4:87:4a:3a:67:18:f8:51:f1:96:
9b:2a:3a:1e:db:c0:d4:1f:c4:a7:6f:0d:95:f9:6e:
af:cc:70:93:fe:54:a6:e5:92:60:36:af:bf:dc:8d:
4a:a3:07:88:4d:fd:ef:81:3c:96:89:16:3d:cd:33:
28:eb:7b:02:74:e0:c4:b8:e1:cd:9f:5b:be:88:85:
ef:1e:59:19:a5:e4:8d:a6:55:a9:2a:7c:c7:07:51:
54:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:30:5B:20:4F:15:52:6E:1E:B9:DF:9F:F3:60:E8:5C:3F:F4:56:14
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/gTBbIE8VUm4eud-f82DoXD_0VhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.196.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:ac:98:31:f0:12:24:97:4a:ea:f0:40:2f:74:e4:c3:a1:9a:
68:7f:0d:f3:b2:fb:b2:4e:fd:b3:1f:05:24:5d:d0:f6:1f:94:
9e:b5:ed:0f:9d:96:63:4d:62:00:c2:be:10:7f:e7:4f:d6:26:
ed:30:97:9e:fa:d6:bf:d1:d3:3e:34:ce:16:50:54:93:d4:7b:
77:c5:89:0e:5d:78:2a:f6:de:f8:33:0b:a7:bf:ba:fd:5f:2a:
d1:4b:49:5e:12:6b:33:e6:90:63:9e:9b:66:b1:ee:0e:eb:e9:
07:85:3f:f9:2e:0c:ea:1b:31:b2:d9:cd:22:1b:85:85:2c:0f:
61:66:51:15:0c:aa:57:cb:50:59:3b:56:35:4f:ca:5e:66:85:
6c:30:38:2d:a4:81:d5:99:79:0d:07:4d:dd:43:77:17:fb:f2:
11:b2:99:88:0f:86:33:a2:18:e1:c1:6b:14:cd:68:c5:69:9b:
d7:37:60:ea:27:d1:90:ec:d0:ec:df:80:a9:66:c4:5c:ef:f5:
25:a0:36:e5:d5:64:2a:1f:b9:0d:cd:15:ab:86:9c:56:74:a0:
0f:9d:ff:2b:35:ed:a9:5a:62:86:8c:da:41:03:b3:cd:dc:87:
fd:9e:1e:d8:ab:ce:7b:cb:37:68:a4:32:a9:f1:99:1b:4b:07:
2a:5a:e7:36
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF+EKMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NGIyZjRmYTUxNjNhZjk2MTY4ZTg4ZmJmOWNiNGVkMWVkOGZiNGM0MB4XDTIyMDEw
MTAzNTk1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODEzMDViMjA0ZjE1
NTI2ZTFlYjlkZjlmZjM2MGU4NWMzZmY0NTYxNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK8era0hEHEhof3qk96qOtxd6bW+7LzRIkxg/eMopzLqiZuy
E7CCQRmwfRu5ub86JQH5nYDZN8OWD1FanSKhG1FpBO0Cbzz7kN2sBWFCkPwZ8aCz
n9PtNnpS/0Bnx2VyoM5TtJ+FmMpyJD8gsJ8hAJ4r9gmASysq55tkpYUOuq/Udu33
2di+cYIqU1Q/inSP3580vtpwOP0VqIYCNDquFimggR3utlr3f7Ckh0o6Zxj4UfGW
myo6HtvA1B/Ep28Nlflur8xwk/5UpuWSYDavv9yNSqMHiE3974E8lokWPc0zKOt7
AnTgxLjhzZ9bvoiF7x5ZGaXkjaZVqSp8xwdRVAkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSBMFsgTxVSbh6535/zYOhcP/RWFDAfBgNVHSMEGDAWgBSEsvT6UWOvlhaO
iPv5y07R7Y+0xDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hMTDAtbEZqcjVZV2pvajctY3RPMGUyUHRNUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvNGFhNzg5LTg3OGItNDcyYi1iODQ3LTg3MmJhMmQ5ZjQ0Yy8x
L2dUQmJJRThWVW00ZXVkLWY4MkRvWERfMFZoUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
NGFhNzg5LTg3OGItNDcyYi1iODQ3LTg3MmJhMmQ5ZjQ0Yy8xL2hMTDAtbEZqcjVZ
V2pvajctY3RPMGUyUHRNUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANVbxDANBgkqhkiG9w0BAQsFAAOC
AQEAoKyYMfASJJdK6vBAL3Tkw6GaaH8N87L7sk79sx8FJF3Q9h+UnrXtD52WY01i
AMK+EH/nT9Ym7TCXnvrWv9HTPjTOFlBUk9R7d8WJDl14Kvbe+DMLp7+6/V8q0UtJ
XhJrM+aQY56bZrHuDuvpB4U/+S4M6hsxstnNIhuFhSwPYWZRFQyqV8tQWTtWNU/K
XmaFbDA4LaSB1Zl5DQdN3UN3F/vyEbKZiA+GM6IY4cFrFM1oxWmb1zdg6ifRkOzQ
7N+AqWbEXO/1JaA25dVkKh+5Dc0Vq4acVnSgD53/KzXtqVpihozaQQOzzdyH/Z4e
2KvOe8s3aKQyqfGZG0sHKlrnNg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org