Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/738801-ddc6-4843-936c-20acc38bc8ff/1/Cp9QTtmOLjLyxcQ84RcI5Z7G4_M.roa
File: Cp9QTtmOLjLyxcQ84RcI5Z7G4_M.roa (raw, json)
Hash identifier: Db5tEt0FapPLp0vd8fny8btbZXZmXV/mqv7lRNWdOk4=
Subject key identifier: 0A:9F:50:4E:D9:8E:2E:32:F2:C5:C4:3C:E1:17:08:E5:9E:C6:E3:F3
Certificate issuer: /CN=c55085005d0e449d3bafa31c5cb429ff89d2c4b7
Certificate serial: 1A4B9710
Authority key identifier: C5:50:85:00:5D:0E:44:9D:3B:AF:A3:1C:5C:B4:29:FF:89:D2:C4:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xVCFAF0ORJ07r6McXLQp_4nSxLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/738801-ddc6-4843-936c-20acc38bc8ff/1/Cp9QTtmOLjLyxcQ84RcI5Z7G4_M.roa
Signing time: Sat 01 Jan 2022 04:57:30 +0000
ROA not before: Sat 01 Jan 2022 04:57:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44845
IP address blocks: 213.159.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 441161488 (0x1a4b9710)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c55085005d0e449d3bafa31c5cb429ff89d2c4b7
Validity
Not Before: Jan 1 04:57:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a9f504ed98e2e32f2c5c43ce11708e59ec6e3f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:53:7e:b1:66:20:ce:db:61:43:7e:ff:32:ee:
81:6a:0c:11:2b:74:dd:57:aa:f5:d9:95:63:6c:7c:
99:70:02:b4:ea:1a:39:e9:b0:81:73:81:54:92:64:
64:44:dc:5a:c6:d3:63:10:a5:bf:ee:ce:65:ba:2f:
b5:58:5e:00:56:f6:9e:2e:16:c6:40:9b:37:3d:3d:
99:6c:7f:4c:4d:a9:6b:84:de:16:67:de:41:be:0c:
0c:48:0c:fb:f6:1c:c1:6c:18:22:2b:3a:aa:f1:15:
85:65:c0:27:32:36:80:72:7d:5d:e3:03:fa:f4:ed:
c7:be:e4:87:8c:3a:d6:5f:32:22:21:59:6e:6a:bd:
36:f8:2a:87:8b:ad:c0:77:a2:ce:d3:5e:6e:09:a6:
d5:b1:24:3c:a1:0c:0a:5a:89:e1:8e:21:74:ca:7e:
75:a7:45:a5:90:9b:7d:17:fc:74:12:7f:da:25:89:
b6:59:58:ec:c6:12:db:fd:1b:9c:c7:fc:49:9c:9e:
6a:87:2e:3d:26:62:9b:dd:47:bd:ca:e4:9e:6a:60:
64:ca:7b:68:c3:43:3b:a9:8c:7c:ca:63:12:60:84:
0a:b2:fc:31:65:52:d2:db:c8:e0:43:e7:b0:01:d5:
49:b0:df:3a:bd:4d:70:39:f6:e1:4e:e7:7c:19:2a:
81:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:9F:50:4E:D9:8E:2E:32:F2:C5:C4:3C:E1:17:08:E5:9E:C6:E3:F3
X509v3 Authority Key Identifier:
keyid:C5:50:85:00:5D:0E:44:9D:3B:AF:A3:1C:5C:B4:29:FF:89:D2:C4:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xVCFAF0ORJ07r6McXLQp_4nSxLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/738801-ddc6-4843-936c-20acc38bc8ff/1/Cp9QTtmOLjLyxcQ84RcI5Z7G4_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/738801-ddc6-4843-936c-20acc38bc8ff/1/xVCFAF0ORJ07r6McXLQp_4nSxLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.159.199.0/24
Signature Algorithm: sha256WithRSAEncryption
75:5e:36:cf:24:aa:37:62:15:d3:96:7a:2d:e1:13:7e:32:34:
f2:11:d1:b6:06:e5:67:0b:9e:fc:07:24:4b:78:a3:73:46:e5:
3f:ee:61:ee:74:96:c1:38:15:11:8f:57:b2:2f:e3:9b:99:07:
9f:1f:3a:58:5d:7e:59:c1:a4:a0:52:53:19:70:8b:6b:54:2d:
07:9f:d4:45:69:36:56:02:f7:a4:d8:1b:90:63:06:d8:be:10:
c9:9c:aa:f2:e4:68:57:b2:b3:d0:63:17:a3:52:af:40:0a:bc:
8d:fe:f0:d8:b4:5d:5a:e4:bd:6d:ce:cd:e1:6e:6f:58:59:c4:
c2:59:52:87:d7:a5:7e:00:05:31:6c:d4:c7:dc:f9:3e:c9:b5:
a4:90:8d:2b:de:28:89:fd:f0:98:17:a8:61:a8:22:eb:ab:f9:
08:3f:09:08:7b:b3:66:37:1a:71:95:75:07:07:93:65:66:14:
2e:9e:8b:a3:ad:f9:1a:bb:fc:56:96:98:2e:7f:40:e3:52:ec:
f2:c0:87:ea:9b:6e:1e:26:ed:5a:3f:8d:c5:1e:c8:3a:d2:d4:
bc:e6:85:f7:56:50:fb:83:7b:09:bf:14:2b:6e:bd:b3:75:77:
78:60:5e:3d:c7:b7:65:ac:82:61:65:8a:a8:69:aa:1a:32:b3:
92:15:ee:6f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGkuXEDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NTUwODUwMDVkMGU0NDlkM2JhZmEzMWM1Y2I0MjlmZjg5ZDJjNGI3MB4XDTIyMDEw
MTA0NTczMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGE5ZjUwNGVkOThl
MmUzMmYyYzVjNDNjZTExNzA4ZTU5ZWM2ZTNmMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMhTfrFmIM7bYUN+/zLugWoMESt03Veq9dmVY2x8mXACtOoa
OemwgXOBVJJkZETcWsbTYxClv+7OZbovtVheAFb2ni4WxkCbNz09mWx/TE2pa4Te
FmfeQb4MDEgM+/YcwWwYIis6qvEVhWXAJzI2gHJ9XeMD+vTtx77kh4w61l8yIiFZ
bmq9Nvgqh4utwHeiztNebgmm1bEkPKEMClqJ4Y4hdMp+dadFpZCbfRf8dBJ/2iWJ
tllY7MYS2/0bnMf8SZyeaocuPSZim91HvcrknmpgZMp7aMNDO6mMfMpjEmCECrL8
MWVS0tvI4EPnsAHVSbDfOr1NcDn24U7nfBkqgdECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQKn1BO2Y4uMvLFxDzhFwjlnsbj8zAfBgNVHSMEGDAWgBTFUIUAXQ5EnTuv
oxxctCn/idLEtzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hWQ0ZBRjBPUkowN3I2TWNYTFFwXzRuU3hMYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDAvNzM4ODAxLWRkYzYtNDg0My05MzZjLTIwYWNjMzhiYzhmZi8x
L0NwOVFUdG1PTGpMeXhjUTg0UmNJNVo3RzRfTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDAv
NzM4ODAxLWRkYzYtNDg0My05MzZjLTIwYWNjMzhiYzhmZi8xL3hWQ0ZBRjBPUkow
N3I2TWNYTFFwXzRuU3hMYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANWfxzANBgkqhkiG9w0BAQsFAAOC
AQEAdV42zySqN2IV05Z6LeETfjI08hHRtgblZwue/AckS3ijc0blP+5h7nSWwTgV
EY9Xsi/jm5kHnx86WF1+WcGkoFJTGXCLa1QtB5/URWk2VgL3pNgbkGMG2L4QyZyq
8uRoV7Kz0GMXo1KvQAq8jf7w2LRdWuS9bc7N4W5vWFnEwllSh9elfgAFMWzUx9z5
Psm1pJCNK94oif3wmBeoYagi66v5CD8JCHuzZjcacZV1BweTZWYULp6Lo635Grv8
VpaYLn9A41Ls8sCH6ptuHibtWj+NxR7IOtLUvOaF91ZQ+4N7Cb8UK269s3V3eGBe
Pce3ZayCYWWKqGmqGjKzkhXubw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:51 2023 by rpki-client on console-fra.rpki-client.org