Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/aAqttZ4P95013YSv6rWI9qXN4PA.roa
File: aAqttZ4P95013YSv6rWI9qXN4PA.roa (raw, json)
Hash identifier: G9K/Dsf8oLsvaPltDSJbYwEmuta1cSsfnUGXHD3GHJg=
Subject key identifier: 68:0A:AD:B5:9E:0F:F7:9D:35:DD:84:AF:EA:B5:88:F6:A5:CD:E0:F0
Certificate issuer: /CN=75e05bc21b2a6f1033711ffca6491c6c30ce5a4a
Certificate serial: 1A97A6A9
Authority key identifier: 75:E0:5B:C2:1B:2A:6F:10:33:71:1F:FC:A6:49:1C:6C:30:CE:5A:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/deBbwhsqbxAzcR_8pkkcbDDOWko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/aAqttZ4P95013YSv6rWI9qXN4PA.roa
Signing time: Sat 01 Jan 2022 09:55:15 +0000
ROA not before: Sat 01 Jan 2022 09:55:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 327712
IP address blocks: 213.140.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 446146217 (0x1a97a6a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75e05bc21b2a6f1033711ffca6491c6c30ce5a4a
Validity
Not Before: Jan 1 09:55:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=680aadb59e0ff79d35dd84afeab588f6a5cde0f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:7a:99:67:31:9e:d9:60:12:67:c9:65:01:82:
42:7f:a1:86:c3:66:70:ed:b1:2a:ca:f2:f6:68:6a:
f0:4e:2a:da:d0:7e:a6:55:c3:2a:e9:cf:94:c5:d8:
26:bb:60:90:ba:2b:2a:87:bb:21:cc:84:82:bf:d3:
72:e0:d1:db:b5:f9:29:58:ef:c3:34:53:d5:b4:89:
6d:d5:f3:2c:88:d4:cd:2c:b6:dd:91:60:5e:3a:93:
a7:21:82:e5:77:6e:89:81:27:89:c6:73:de:ea:7f:
56:78:f8:31:5a:5d:8f:a0:08:fd:6b:7e:17:0e:bf:
25:21:ba:5b:f1:c1:6b:48:c3:99:d5:e8:bc:88:c8:
c7:dd:59:da:cb:07:54:f9:27:00:df:41:14:3f:32:
7a:32:a8:33:f0:fb:f8:b1:ec:b4:1b:a1:11:80:6f:
08:8f:e8:20:b5:25:57:f4:03:90:35:89:b9:30:fe:
5c:d0:1a:77:99:f0:9d:df:33:b2:86:93:e5:1e:c4:
60:ed:66:2a:35:16:36:03:fa:97:5a:fd:5a:d3:ac:
e5:c8:7c:5b:a4:af:5c:d0:b6:4c:75:a1:6d:42:a7:
b8:0b:d4:78:70:48:80:5b:f4:27:f1:1b:7b:14:f1:
64:f0:be:14:a5:d2:c4:a9:1c:55:0e:0c:3b:28:15:
36:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:0A:AD:B5:9E:0F:F7:9D:35:DD:84:AF:EA:B5:88:F6:A5:CD:E0:F0
X509v3 Authority Key Identifier:
keyid:75:E0:5B:C2:1B:2A:6F:10:33:71:1F:FC:A6:49:1C:6C:30:CE:5A:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/deBbwhsqbxAzcR_8pkkcbDDOWko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/aAqttZ4P95013YSv6rWI9qXN4PA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/deBbwhsqbxAzcR_8pkkcbDDOWko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.140.59.0/24
Signature Algorithm: sha256WithRSAEncryption
72:a5:61:7f:97:83:d9:09:5c:53:f6:ae:cf:b1:ea:3e:4f:45:
ca:e5:86:6b:3d:21:6d:0c:94:32:82:92:7d:7e:c0:1a:ba:a6:
10:fb:2d:bb:de:da:36:b3:ce:53:00:1e:b7:1a:a9:12:b5:ea:
0e:fe:37:35:3a:e9:24:e2:49:e2:27:2f:ed:4f:17:64:5e:47:
f1:8f:cb:f3:8b:46:85:bc:70:cc:be:7a:2d:19:13:b5:5d:99:
45:35:61:fe:ea:f4:22:e1:d2:c1:93:79:74:f5:19:7d:53:8c:
22:e6:81:ea:ba:53:1c:cf:ed:57:00:7e:9a:f9:ec:cf:de:9f:
28:11:41:c9:84:16:83:43:7a:ef:f9:ae:54:0e:4d:f7:83:55:
4e:c8:8b:e4:3a:20:5f:0a:24:77:ca:55:e5:3f:c5:a1:34:6d:
31:15:6c:d9:5e:f8:9f:22:07:2c:9f:bd:9f:98:69:95:d5:a9:
cc:49:db:f8:73:98:8d:38:e5:fd:5f:fa:82:c1:10:8e:65:dd:
55:05:be:26:d4:f8:74:bb:41:62:77:b7:d5:f2:8f:c1:29:c4:
99:51:9d:8e:61:d4:4a:01:11:f5:d0:a5:1b:b9:56:76:10:08:
b3:47:b0:c6:10:2f:64:50:aa:ba:1a:20:b8:ed:b4:37:66:fc:
95:70:f8:9e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGpemqTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NWUwNWJjMjFiMmE2ZjEwMzM3MTFmZmNhNjQ5MWM2YzMwY2U1YTRhMB4XDTIyMDEw
MTA5NTUxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjgwYWFkYjU5ZTBm
Zjc5ZDM1ZGQ4NGFmZWFiNTg4ZjZhNWNkZTBmMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ96mWcxntlgEmfJZQGCQn+hhsNmcO2xKsry9mhq8E4q2tB+
plXDKunPlMXYJrtgkLorKoe7IcyEgr/TcuDR27X5KVjvwzRT1bSJbdXzLIjUzSy2
3ZFgXjqTpyGC5XduiYEnicZz3up/Vnj4MVpdj6AI/Wt+Fw6/JSG6W/HBa0jDmdXo
vIjIx91Z2ssHVPknAN9BFD8yejKoM/D7+LHstBuhEYBvCI/oILUlV/QDkDWJuTD+
XNAad5nwnd8zsoaT5R7EYO1mKjUWNgP6l1r9WtOs5ch8W6SvXNC2THWhbUKnuAvU
eHBIgFv0J/EbexTxZPC+FKXSxKkcVQ4MOygVNm0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRoCq21ng/3nTXdhK/qtYj2pc3g8DAfBgNVHSMEGDAWgBR14FvCGypvEDNx
H/ymSRxsMM5aSjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RlQmJ3aHNxYnhBemNSXzhwa2tjYkRET1drby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTIvMmI0OTM0LTRlYTItNDVjMS1hZTA3LWQ0NWFiN2RmMmRlMS8x
L2FBcXR0WjRQOTUwMTNZU3Y2cldJOXFYTjRQQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTIv
MmI0OTM0LTRlYTItNDVjMS1hZTA3LWQ0NWFiN2RmMmRlMS8xL2RlQmJ3aHNxYnhB
emNSXzhwa2tjYkRET1drby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANWMOzANBgkqhkiG9w0BAQsFAAOC
AQEAcqVhf5eD2QlcU/auz7HqPk9FyuWGaz0hbQyUMoKSfX7AGrqmEPstu97aNrPO
UwAetxqpErXqDv43NTrpJOJJ4icv7U8XZF5H8Y/L84tGhbxwzL56LRkTtV2ZRTVh
/ur0IuHSwZN5dPUZfVOMIuaB6rpTHM/tVwB+mvnsz96fKBFByYQWg0N67/muVA5N
94NVTsiL5DogXwokd8pV5T/FoTRtMRVs2V74nyIHLJ+9n5hpldWpzEnb+HOYjTjl
/V/6gsEQjmXdVQW+JtT4dLtBYne31fKPwSnEmVGdjmHUSgER9dClG7lWdhAIs0ew
xhAvZFCquhoguO20N2b8lXD4ng==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:57 2024 by rpki-client on console-ams.rpki-client.org