Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/9df8fe-e68e-49c9-8371-e456cb60fbe6/1/1-ZaTOsWKGWhFObd2gmZrvbYqM70.roa
File: 1-ZaTOsWKGWhFObd2gmZrvbYqM70.roa (raw, json)
Hash identifier: BqdJP4Bdia0FvR7/nulfj8iFvbPsvQs/HARfAWP0G/k=
Subject key identifier: F9:96:93:3A:C5:8A:19:68:45:39:B7:76:82:66:6B:BD:B6:2A:33:BD
Certificate issuer: /CN=f0e206ce6d53f04908a36463d89e9b21a70c438e
Certificate serial: B358AA
Authority key identifier: F0:E2:06:CE:6D:53:F0:49:08:A3:64:63:D8:9E:9B:21:A7:0C:43:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8OIGzm1T8EkIo2Rj2J6bIacMQ44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/9df8fe-e68e-49c9-8371-e456cb60fbe6/1/1-ZaTOsWKGWhFObd2gmZrvbYqM70.roa
Signing time: Sun 20 Feb 2022 10:44:11 +0000
ROA not before: Sun 20 Feb 2022 10:44:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201942
IP address blocks: 212.23.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11753642 (0xb358aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0e206ce6d53f04908a36463d89e9b21a70c438e
Validity
Not Before: Feb 20 10:44:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f996933ac58a19684539b77682666bbdb62a33bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:67:54:3c:0a:ab:29:98:5b:23:97:1e:5c:ee:
2c:34:6b:51:73:d1:41:29:44:cc:d0:e4:28:e4:82:
da:64:ca:8f:d0:81:2d:13:5c:a3:85:72:c7:cf:2a:
ea:d1:30:38:af:84:c7:e0:8d:42:44:0b:c2:14:86:
77:66:fb:f2:b4:48:2a:32:86:8a:4c:9d:bb:b8:81:
4d:6c:66:de:98:e2:ab:a6:7e:81:2d:04:9a:3f:08:
76:15:f4:28:0c:9a:2b:24:e4:bb:0e:5b:42:a0:58:
e5:24:2b:44:b0:f9:ca:e6:a2:c1:81:75:23:50:48:
52:36:cb:85:4b:f1:ce:c3:91:5f:4c:88:eb:12:9a:
df:80:fd:83:ed:72:fe:5b:6b:5c:09:10:9c:69:6d:
8c:4e:ca:b4:12:1a:1a:51:f9:b1:a4:71:a8:66:4d:
6f:d1:78:28:8d:11:53:27:53:3d:ed:e9:58:d1:3b:
27:3d:0e:ab:97:de:d7:bc:6f:fd:73:12:10:e6:b1:
5d:e5:f6:f1:38:00:2e:dd:3d:c4:bc:35:b9:04:c4:
ec:04:f6:05:2b:f0:2a:59:d0:7c:bf:86:5f:b8:d8:
78:c6:71:89:ca:fa:39:fe:28:41:26:86:ee:82:04:
82:ad:45:4f:56:0e:d4:73:1f:eb:70:32:9e:b6:4a:
bb:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:96:93:3A:C5:8A:19:68:45:39:B7:76:82:66:6B:BD:B6:2A:33:BD
X509v3 Authority Key Identifier:
keyid:F0:E2:06:CE:6D:53:F0:49:08:A3:64:63:D8:9E:9B:21:A7:0C:43:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8OIGzm1T8EkIo2Rj2J6bIacMQ44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/9df8fe-e68e-49c9-8371-e456cb60fbe6/1/1-ZaTOsWKGWhFObd2gmZrvbYqM70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/9df8fe-e68e-49c9-8371-e456cb60fbe6/1/8OIGzm1T8EkIo2Rj2J6bIacMQ44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.223.0/24
Signature Algorithm: sha256WithRSAEncryption
60:8b:25:53:0b:b6:82:af:eb:8d:99:2c:1e:90:b2:c2:5a:35:
e2:69:bb:ec:f7:07:96:7f:73:f4:41:3a:78:71:3e:e8:c2:93:
8c:b0:06:a3:10:c7:64:94:3d:f9:65:0f:d7:d0:1b:8d:7e:a1:
d2:c0:c8:86:dd:ae:74:ff:d9:48:56:15:e5:71:0f:15:e2:99:
a9:67:08:f4:39:ea:b6:79:03:b0:51:ba:8a:aa:fa:2b:88:a0:
0e:42:12:26:ad:28:45:0b:2c:69:0f:89:5b:ea:64:c3:37:3c:
6d:16:71:ae:f2:e3:e5:a1:bb:5f:c4:8c:78:74:5a:8b:cf:ed:
b0:0d:f9:af:a8:d6:fc:98:ce:20:d2:b8:62:81:ab:21:1b:4f:
b6:af:61:b2:08:48:42:bb:77:ed:6c:54:59:ff:c5:18:b1:a1:
20:38:0a:b5:14:60:b1:05:2d:11:e1:33:32:2f:fc:15:79:33:
d8:f5:4f:f0:9f:4a:f6:bd:af:a7:b4:9b:f2:df:1e:67:c6:1f:
8a:53:88:c8:4a:b6:6c:ee:24:0d:ca:89:72:62:ff:7e:78:4c:
12:29:64:5f:39:ad:07:17:38:39:1f:01:6a:d1:bb:c5:71:4d:
d4:77:af:87:6f:84:41:70:66:81:be:ff:db:39:fd:d6:d7:1d:
b2:1d:f3:81
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEALNYqjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
MGUyMDZjZTZkNTNmMDQ5MDhhMzY0NjNkODllOWIyMWE3MGM0MzhlMB4XDTIyMDIy
MDEwNDQxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjk5NjkzM2FjNThh
MTk2ODQ1MzliNzc2ODI2NjZiYmRiNjJhMzNiZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK5nVDwKqymYWyOXHlzuLDRrUXPRQSlEzNDkKOSC2mTKj9CB
LRNco4Vyx88q6tEwOK+Ex+CNQkQLwhSGd2b78rRIKjKGikydu7iBTWxm3pjiq6Z+
gS0Emj8IdhX0KAyaKyTkuw5bQqBY5SQrRLD5yuaiwYF1I1BIUjbLhUvxzsORX0yI
6xKa34D9g+1y/ltrXAkQnGltjE7KtBIaGlH5saRxqGZNb9F4KI0RUydTPe3pWNE7
Jz0Oq5fe17xv/XMSEOaxXeX28TgALt09xLw1uQTE7AT2BSvwKlnQfL+GX7jYeMZx
icr6Of4oQSaG7oIEgq1FT1YO1HMf63AynrZKuxUCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT5lpM6xYoZaEU5t3aCZmu9tiozvTAfBgNVHSMEGDAWgBTw4gbObVPwSQij
ZGPYnpshpwxDjjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzhPSUd6bTFUOEVrSW8yUmoySjZiSWFjTVE0NC5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDIvOWRmOGZlLWU2OGUtNDljOS04MzcxLWU0NTZjYjYwZmJlNi8x
LzEtWmFUT3NXS0dXaEZPYmQyZ21acnZiWXFNNzAucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzAy
LzlkZjhmZS1lNjhlLTQ5YzktODM3MS1lNDU2Y2I2MGZiZTYvMS84T0lHem0xVDhF
a0lvMlJqMko2YklhY01RNDQuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADUF98wDQYJKoZIhvcNAQELBQAD
ggEBAGCLJVMLtoKv642ZLB6QssJaNeJpu+z3B5Z/c/RBOnhxPujCk4ywBqMQx2SU
PfllD9fQG41+odLAyIbdrnT/2UhWFeVxDxXimalnCPQ56rZ5A7BRuoqq+iuIoA5C
EiatKEULLGkPiVvqZMM3PG0Wca7y4+Whu1/EjHh0WovP7bAN+a+o1vyYziDSuGKB
qyEbT7avYbIISEK7d+1sVFn/xRixoSA4CrUUYLEFLRHhMzIv/BV5M9j1T/CfSva9
r6e0m/LfHmfGH4pTiMhKtmzuJA3KiXJi/354TBIpZF85rQcXODkfAWrRu8VxTdR3
r4dvhEFwZoG+/9s5/dbXHbId84E=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:32 2023 by rpki-client on console-fra.rpki-client.org