Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/T68PsE_Yrk2KIqYtcDK5jg8qIJ4.roa
File: T68PsE_Yrk2KIqYtcDK5jg8qIJ4.roa (raw, json)
Hash identifier: Ak8kXjSp0JMbKBhFbL03EJHQmi/iznnQvRXosTFFF3Y=
Subject key identifier: 4F:AF:0F:B0:4F:D8:AE:4D:8A:22:A6:2D:70:32:B9:8E:0F:2A:20:9E
Certificate issuer: /CN=0dd441c3ffae829842249e944b03851081f4d9e0
Certificate serial: 21D41F
Authority key identifier: 0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/T68PsE_Yrk2KIqYtcDK5jg8qIJ4.roa
Signing time: Sat 01 Jan 2022 01:53:07 +0000
ROA not before: Sat 01 Jan 2022 01:53:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 37.140.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2216991 (0x21d41f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd441c3ffae829842249e944b03851081f4d9e0
Validity
Not Before: Jan 1 01:53:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4faf0fb04fd8ae4d8a22a62d7032b98e0f2a209e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8e:e5:ad:d0:fd:95:3a:ba:93:60:ff:0d:09:
13:6f:ce:27:58:39:66:4b:46:c0:45:31:88:79:d5:
5b:8b:a9:d0:a3:e7:14:8c:c7:4c:dd:91:54:ec:e4:
92:43:72:97:29:a1:fa:ce:dd:ed:66:4f:5a:a1:bf:
0f:f2:fb:d1:03:21:40:b9:24:7b:fd:40:a7:97:f9:
4b:ec:f4:5c:b8:df:83:e9:27:3f:08:24:3b:3b:f3:
f0:10:e4:09:36:49:0a:63:36:c4:e4:35:6d:8e:40:
d5:51:48:92:a0:7c:83:23:f5:73:5a:27:cd:d5:d5:
ec:94:91:49:62:fe:94:1f:9f:e4:5c:52:a3:d8:6f:
15:45:29:10:27:48:a0:66:e6:5f:04:63:f8:3a:fe:
0c:39:b8:a1:ed:f1:bf:10:12:a9:87:77:9d:10:dd:
a0:16:8d:f7:a0:48:37:09:06:e0:20:90:0f:3a:51:
c9:d3:ff:1c:c1:c3:49:c1:04:af:c3:96:dc:a3:59:
6a:ee:09:d5:94:83:8b:fc:d3:f6:63:1b:58:65:c9:
7c:35:b4:a4:cb:0d:79:7f:21:fe:b3:7b:e0:77:65:
8f:a3:08:29:7f:60:45:60:a1:b2:b3:9b:73:d3:c6:
0c:25:6f:45:aa:11:ff:f3:da:16:ce:fb:37:89:f0:
e1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:AF:0F:B0:4F:D8:AE:4D:8A:22:A6:2D:70:32:B9:8E:0F:2A:20:9E
X509v3 Authority Key Identifier:
keyid:0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/T68PsE_Yrk2KIqYtcDK5jg8qIJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/DdRBw_-ugphCJJ6USwOFEIH02eA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.254.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:16:5a:34:47:35:bf:ff:62:fd:ac:f3:88:0c:94:34:87:f5:
5c:9e:ee:21:66:4c:a9:86:3e:01:2d:56:a8:b3:e2:9b:33:a4:
b2:ea:17:ed:9d:c5:a0:65:df:f0:9e:77:71:2d:45:e8:aa:ae:
ac:87:a4:f6:c8:ba:bc:87:14:69:73:07:4e:c5:ae:80:6f:28:
5d:28:84:bf:7e:0f:12:55:d8:59:e0:61:86:59:1a:7f:2d:78:
78:18:53:51:ba:0c:49:cb:3f:59:fd:9e:81:df:9e:88:0d:76:
03:42:0a:44:a8:dd:c1:e7:6a:e0:33:03:17:5e:c6:08:fd:48:
d9:33:70:1f:5d:51:6b:10:4b:2a:ee:19:d7:70:58:59:53:82:
9d:e0:b8:2d:fe:9c:c0:04:ab:65:e6:51:48:c0:c4:74:16:22:
8b:65:2a:a3:c1:2c:47:b7:d1:cd:c7:ff:c5:c9:88:01:6b:b3:
c9:74:78:89:ef:0e:ff:03:f3:07:f9:5d:57:f7:73:9e:d2:9b:
09:ce:0b:2c:24:44:99:27:02:da:6f:64:1e:ba:2c:db:4c:c3:
7a:1c:c9:15:a9:1b:34:7d:f6:de:0f:e3:c4:0c:03:0a:9d:c5:
7b:05:25:1a:8a:9b:94:30:e6:11:e3:ac:be:cb:82:a1:65:90:
9f:bc:ca:27
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDIdQfMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDBk
ZDQ0MWMzZmZhZTgyOTg0MjI0OWU5NDRiMDM4NTEwODFmNGQ5ZTAwHhcNMjIwMTAx
MDE1MzA3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0ZmFmMGZiMDRmZDhh
ZTRkOGEyMmE2MmQ3MDMyYjk4ZTBmMmEyMDllMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtI7lrdD9lTq6k2D/DQkTb84nWDlmS0bARTGIedVbi6nQo+cU
jMdM3ZFU7OSSQ3KXKaH6zt3tZk9aob8P8vvRAyFAuSR7/UCnl/lL7PRcuN+D6Sc/
CCQ7O/PwEOQJNkkKYzbE5DVtjkDVUUiSoHyDI/VzWifN1dXslJFJYv6UH5/kXFKj
2G8VRSkQJ0igZuZfBGP4Ov4MObih7fG/EBKph3edEN2gFo33oEg3CQbgIJAPOlHJ
0/8cwcNJwQSvw5bco1lq7gnVlIOL/NP2YxtYZcl8NbSkyw15fyH+s3vgd2WPowgp
f2BFYKGys5tz08YMJW9FqhH/89oWzvs3ifDhbwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFE+vD7BP2K5NiiKmLXAyuY4PKiCeMB8GA1UdIwQYMBaAFA3UQcP/roKYQiSe
lEsDhRCB9NngMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
RGRSQndfLXVncGhDSko2VVN3T0ZFSUgwMmVBLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8wMS9hN2VmNGQtZGM0NC00ZmFmLTk1MTMtZTljOTEzMjgzNmZmLzEv
VDY4UHNFX1lyazJLSXFZdGNESzVqZzhxSUo0LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9h
N2VmNGQtZGM0NC00ZmFmLTk1MTMtZTljOTEzMjgzNmZmLzEvRGRSQndfLXVncGhD
Sko2VVN3T0ZFSUgwMmVBLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJYz+MA0GCSqGSIb3DQEBCwUAA4IB
AQB+Flo0RzW//2L9rPOIDJQ0h/Vcnu4hZkyphj4BLVaos+KbM6Sy6hftncWgZd/w
nndxLUXoqq6sh6T2yLq8hxRpcwdOxa6AbyhdKIS/fg8SVdhZ4GGGWRp/LXh4GFNR
ugxJyz9Z/Z6B356IDXYDQgpEqN3B52rgMwMXXsYI/UjZM3AfXVFrEEsq7hnXcFhZ
U4Kd4Lgt/pzABKtl5lFIwMR0FiKLZSqjwSxHt9HNx//FyYgBa7PJdHiJ7w7/A/MH
+V1X93Oe0psJzgssJESZJwLab2QeuizbTMN6HMkVqRs0ffbeD+PEDAMKncV7BSUa
ipuUMOYR46y+y4KhZZCfvMon
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:00 2024 by rpki-client on console-ams.rpki-client.org