Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/738801-ddc6-4843-936c-20acc38bc8ff/1/tb33R8P1cRsWb4It38SI_laj3po.roa
File: tb33R8P1cRsWb4It38SI_laj3po.roa (raw, json)
Hash identifier: pDTgaawT2Q9vfJGhufqsCAQSCJfa4R3nx9pcnlZU2T0=
Subject key identifier: B5:BD:F7:47:C3:F5:71:1B:16:6F:82:2D:DF:C4:88:FE:56:A3:DE:9A
Certificate issuer: /CN=c55085005d0e449d3bafa31c5cb429ff89d2c4b7
Certificate serial: 1AD249B3
Authority key identifier: C5:50:85:00:5D:0E:44:9D:3B:AF:A3:1C:5C:B4:29:FF:89:D2:C4:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xVCFAF0ORJ07r6McXLQp_4nSxLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/738801-ddc6-4843-936c-20acc38bc8ff/1/tb33R8P1cRsWb4It38SI_laj3po.roa
Signing time: Tue 01 Mar 2022 05:30:14 +0000
ROA not before: Tue 01 Mar 2022 05:30:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44845
IP address blocks: 213.159.197.0/24 maxlen: 24
213.159.196.0/24 maxlen: 24
213.159.199.0/24 maxlen: 24
213.159.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 449989043 (0x1ad249b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c55085005d0e449d3bafa31c5cb429ff89d2c4b7
Validity
Not Before: Mar 1 05:30:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5bdf747c3f5711b166f822ddfc488fe56a3de9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:09:73:ac:da:c0:c2:64:57:f3:37:bd:a0:e2:
9f:d9:be:e2:9d:4a:af:4c:28:87:1e:74:50:e3:6a:
03:52:8e:69:2b:35:bb:0d:51:3d:c7:7f:8e:c8:e7:
93:c5:80:24:9f:78:df:fe:ec:6d:44:9f:a8:7f:7e:
3a:ff:b7:ea:3d:33:c2:0e:63:65:54:77:89:55:bc:
85:3f:3d:f7:32:14:14:a1:73:b1:32:d0:5c:f8:e3:
d2:aa:a6:47:e3:12:05:6d:b5:e8:6e:22:1b:c7:26:
5b:45:0d:c5:e2:f3:dd:e0:7e:dd:1a:ab:da:c3:04:
bf:6b:28:f7:f6:d6:f4:e3:55:43:49:95:ee:f9:2a:
97:f3:6d:80:d4:d5:11:53:75:4d:cb:91:1f:6d:bb:
65:e5:d7:fc:a6:a8:1e:17:f7:c3:3f:06:a3:44:56:
85:bb:5b:55:76:41:b1:a4:af:cc:91:1b:aa:f1:de:
86:88:9b:73:c5:57:eb:2d:5e:59:d3:e7:dd:ee:04:
d8:e6:55:9d:7d:e1:bb:94:91:2f:f2:99:ce:31:b1:
11:f6:b2:61:90:41:57:b1:a7:35:42:db:57:30:5e:
63:b6:4c:d9:82:5a:6b:38:e5:ff:54:da:a5:5e:c9:
84:3f:27:bd:d3:3f:c6:10:83:00:ac:28:08:c7:a1:
c6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:BD:F7:47:C3:F5:71:1B:16:6F:82:2D:DF:C4:88:FE:56:A3:DE:9A
X509v3 Authority Key Identifier:
keyid:C5:50:85:00:5D:0E:44:9D:3B:AF:A3:1C:5C:B4:29:FF:89:D2:C4:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xVCFAF0ORJ07r6McXLQp_4nSxLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/738801-ddc6-4843-936c-20acc38bc8ff/1/tb33R8P1cRsWb4It38SI_laj3po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/738801-ddc6-4843-936c-20acc38bc8ff/1/xVCFAF0ORJ07r6McXLQp_4nSxLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.159.196.0/22
Signature Algorithm: sha256WithRSAEncryption
05:fb:34:88:15:4a:10:5e:0d:5b:87:0a:c3:7f:82:33:8c:f6:
57:96:4e:c7:3c:78:86:9b:40:93:2f:32:9e:e2:a1:ce:59:00:
47:6d:cb:b2:4a:97:df:e7:17:f1:c6:1a:f4:ce:97:bb:9e:b8:
be:f7:c3:35:0e:fa:f5:8b:6c:e3:b5:2b:5c:48:39:cb:4a:12:
f5:fa:41:ad:d7:b0:10:d7:cf:2f:1e:cc:45:49:0b:a1:9d:f1:
a7:e2:d3:ad:6b:b4:8b:45:79:9f:87:f9:76:5c:d3:e8:ce:66:
10:65:22:8d:9f:18:9d:fa:76:a5:ce:c7:68:39:68:48:f7:8b:
8c:27:c2:60:89:2a:8d:39:ad:b4:23:46:67:e2:ce:b9:6a:f6:
27:1f:bb:88:97:0f:bd:eb:ad:dd:73:74:e8:04:71:52:2d:89:
58:d1:ea:10:ed:7d:35:ed:cc:fd:33:07:e2:c1:d2:0b:4a:e4:
06:5a:40:2f:cd:d6:fa:ee:84:fe:39:27:48:94:e4:6c:1d:ec:
19:14:74:8d:8e:02:04:1d:aa:1c:98:18:9a:55:0a:a0:a9:89:
5e:12:c2:cc:89:76:60:85:98:30:dc:32:9b:38:fb:51:01:cf:
0d:80:b9:df:87:0b:1e:61:29:f1:e8:87:08:d7:fa:fc:b6:a4:
87:4e:1b:8b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGtJJszANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NTUwODUwMDVkMGU0NDlkM2JhZmEzMWM1Y2I0MjlmZjg5ZDJjNGI3MB4XDTIyMDMw
MTA1MzAxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjViZGY3NDdjM2Y1
NzExYjE2NmY4MjJkZGZjNDg4ZmU1NmEzZGU5YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALIJc6zawMJkV/M3vaDin9m+4p1Kr0wohx50UONqA1KOaSs1
uw1RPcd/jsjnk8WAJJ943/7sbUSfqH9+Ov+36j0zwg5jZVR3iVW8hT899zIUFKFz
sTLQXPjj0qqmR+MSBW216G4iG8cmW0UNxeLz3eB+3Rqr2sMEv2so9/bW9ONVQ0mV
7vkql/NtgNTVEVN1TcuRH227ZeXX/KaoHhf3wz8Go0RWhbtbVXZBsaSvzJEbqvHe
hoibc8VX6y1eWdPn3e4E2OZVnX3hu5SRL/KZzjGxEfayYZBBV7GnNULbVzBeY7ZM
2YJaazjl/1TapV7JhD8nvdM/xhCDAKwoCMehxuECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS1vfdHw/VxGxZvgi3fxIj+VqPemjAfBgNVHSMEGDAWgBTFUIUAXQ5EnTuv
oxxctCn/idLEtzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hWQ0ZBRjBPUkowN3I2TWNYTFFwXzRuU3hMYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDAvNzM4ODAxLWRkYzYtNDg0My05MzZjLTIwYWNjMzhiYzhmZi8x
L3RiMzNSOFAxY1JzV2I0SXQzOFNJX2xhajNwby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDAv
NzM4ODAxLWRkYzYtNDg0My05MzZjLTIwYWNjMzhiYzhmZi8xL3hWQ0ZBRjBPUkow
N3I2TWNYTFFwXzRuU3hMYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtWfxDANBgkqhkiG9w0BAQsFAAOC
AQEABfs0iBVKEF4NW4cKw3+CM4z2V5ZOxzx4hptAky8ynuKhzlkAR23LskqX3+cX
8cYa9M6Xu564vvfDNQ769Yts47UrXEg5y0oS9fpBrdewENfPLx7MRUkLoZ3xp+LT
rWu0i0V5n4f5dlzT6M5mEGUijZ8Ynfp2pc7HaDloSPeLjCfCYIkqjTmttCNGZ+LO
uWr2Jx+7iJcPveut3XN06ARxUi2JWNHqEO19Ne3M/TMH4sHSC0rkBlpAL83W+u6E
/jknSJTkbB3sGRR0jY4CBB2qHJgYmlUKoKmJXhLCzIl2YIWYMNwymzj7UQHPDYC5
34cLHmEp8eiHCNf6/Lakh04biw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:46 2023 by rpki-client on console-ams.rpki-client.org