Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/mV6VIoMclqxwLWZhz1aSzoIL2pI.roa
File: mV6VIoMclqxwLWZhz1aSzoIL2pI.roa (raw, json)
Hash identifier: ni0qzXORU2k6Q0d0/rTlZrxWSWgpHFst2ZQqsli7DzE=
Subject key identifier: 99:5E:95:22:83:1C:96:AC:70:2D:66:61:CF:56:92:CE:82:0B:DA:92
Certificate issuer: /CN=c3fb403a241883e58fced52d39d80eabd52bb36f
Certificate serial: 03BC8BA3
Authority key identifier: C3:FB:40:3A:24:18:83:E5:8F:CE:D5:2D:39:D8:0E:AB:D5:2B:B3:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w_tAOiQYg-WPztUtOdgOq9Urs28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/mV6VIoMclqxwLWZhz1aSzoIL2pI.roa
Signing time: Sat 01 Jan 2022 06:54:57 +0000
ROA not before: Sat 01 Jan 2022 06:54:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42014
IP address blocks: 213.174.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62688163 (0x3bc8ba3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3fb403a241883e58fced52d39d80eabd52bb36f
Validity
Not Before: Jan 1 06:54:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=995e9522831c96ac702d6661cf5692ce820bda92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c0:ed:13:77:3e:9c:fd:22:66:e0:c3:80:cb:
42:47:67:69:2d:cf:eb:6d:f5:77:c1:29:e6:3f:e8:
20:31:fe:7f:e1:44:47:a4:c7:d1:82:13:50:e9:2a:
25:8b:19:f8:2f:2a:6d:76:14:3e:47:46:b7:07:ba:
8e:8a:a4:62:c8:59:11:2b:d9:1e:73:24:42:8c:03:
99:85:3b:61:19:fd:aa:64:6e:a0:34:65:3c:b9:73:
22:66:d5:b8:2b:18:c6:37:10:97:3a:90:94:29:e6:
0c:92:f7:64:92:0f:ae:0d:59:80:a8:60:63:00:c4:
39:49:49:3f:db:da:5c:e5:70:87:30:e2:67:66:33:
f4:a8:ac:c3:97:0b:5f:de:d9:35:55:72:03:ff:83:
d4:3a:41:c0:70:80:bc:95:38:02:5a:7a:39:8e:57:
00:26:b5:8b:d5:e2:a8:a6:b9:23:bc:cd:b0:5a:aa:
96:69:95:c4:fd:f5:15:83:e6:b4:83:42:9c:79:39:
eb:c1:5d:bd:82:1e:c2:15:ba:f3:61:70:49:96:02:
c5:49:93:2a:8c:cf:99:11:b6:a5:e3:10:c6:47:3f:
c6:1b:0e:1e:06:c7:8e:8d:5a:dc:00:94:4b:d4:58:
56:ce:40:86:b0:03:5e:73:21:a2:24:32:53:55:55:
f0:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:5E:95:22:83:1C:96:AC:70:2D:66:61:CF:56:92:CE:82:0B:DA:92
X509v3 Authority Key Identifier:
keyid:C3:FB:40:3A:24:18:83:E5:8F:CE:D5:2D:39:D8:0E:AB:D5:2B:B3:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w_tAOiQYg-WPztUtOdgOq9Urs28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/mV6VIoMclqxwLWZhz1aSzoIL2pI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/w_tAOiQYg-WPztUtOdgOq9Urs28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.174.21.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:d8:83:ee:9d:c4:19:f1:91:7e:37:e3:89:fb:2e:da:2e:07:
15:f7:cd:a1:e5:4c:87:de:8b:85:04:70:6e:0d:b3:f5:ee:c4:
8f:dc:79:bc:3b:c1:0f:89:28:d7:f2:35:00:7a:22:ba:c3:fa:
ef:be:98:a1:e9:ec:7b:52:f4:18:29:7b:bf:82:54:26:75:ab:
e8:2f:96:04:ac:e6:6e:81:62:da:5e:3c:4a:8a:34:a6:ea:3e:
cb:e4:69:d1:e4:70:02:28:68:89:cc:59:c5:5d:a7:99:43:2f:
05:aa:2f:dd:d0:c2:b4:b6:ee:22:b9:7d:fc:45:12:45:a6:c2:
31:4e:aa:25:0a:ea:62:a5:90:09:df:21:5b:fa:99:b2:38:61:
04:d1:e3:e2:68:f1:6e:4f:38:07:14:8d:e2:55:b1:c9:79:f8:
6c:4b:2d:93:02:ef:d7:02:e9:96:cf:1f:81:64:aa:5c:ee:12:
ef:e8:c9:a0:ce:7a:79:64:e1:fc:c7:32:54:43:ab:60:90:a0:
16:85:ca:9a:14:2e:5f:1f:15:f8:a1:54:9c:bc:af:31:74:64:
5e:bb:cd:5b:e9:ff:e5:be:25:e2:33:2c:8d:fb:57:98:4e:52:
b5:60:68:33:2c:aa:d0:f0:1b:66:ea:f2:0e:f7:bd:c3:5b:38:
43:d1:6b:91
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA7yLozANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
M2ZiNDAzYTI0MTg4M2U1OGZjZWQ1MmQzOWQ4MGVhYmQ1MmJiMzZmMB4XDTIyMDEw
MTA2NTQ1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTk1ZTk1MjI4MzFj
OTZhYzcwMmQ2NjYxY2Y1NjkyY2U4MjBiZGE5MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALfA7RN3Ppz9Imbgw4DLQkdnaS3P6231d8Ep5j/oIDH+f+FE
R6TH0YITUOkqJYsZ+C8qbXYUPkdGtwe6joqkYshZESvZHnMkQowDmYU7YRn9qmRu
oDRlPLlzImbVuCsYxjcQlzqQlCnmDJL3ZJIPrg1ZgKhgYwDEOUlJP9vaXOVwhzDi
Z2Yz9Kisw5cLX97ZNVVyA/+D1DpBwHCAvJU4Alp6OY5XACa1i9XiqKa5I7zNsFqq
lmmVxP31FYPmtINCnHk568FdvYIewhW682FwSZYCxUmTKozPmRG2peMQxkc/xhsO
HgbHjo1a3ACUS9RYVs5AhrADXnMhoiQyU1VV8C8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSZXpUigxyWrHAtZmHPVpLOggvakjAfBgNVHSMEGDAWgBTD+0A6JBiD5Y/O
1S052A6r1SuzbzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3dfdEFPaVFZZy1XUHp0VXRPZGdPcTlVcnMyOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDQvNGRjNjI1LTdjMWMtNGRhYy04OTllLWE5YTc3OTAyNmYwYS8x
L21WNlZJb01jbHF4d0xXWmh6MWFTem9JTDJwSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDQv
NGRjNjI1LTdjMWMtNGRhYy04OTllLWE5YTc3OTAyNmYwYS8xL3dfdEFPaVFZZy1X
UHp0VXRPZGdPcTlVcnMyOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANWuFTANBgkqhkiG9w0BAQsFAAOC
AQEAjdiD7p3EGfGRfjfjifsu2i4HFffNoeVMh96LhQRwbg2z9e7Ej9x5vDvBD4ko
1/I1AHoiusP6776Yoense1L0GCl7v4JUJnWr6C+WBKzmboFi2l48Soo0puo+y+Rp
0eRwAihoicxZxV2nmUMvBaov3dDCtLbuIrl9/EUSRabCMU6qJQrqYqWQCd8hW/qZ
sjhhBNHj4mjxbk84BxSN4lWxyXn4bEstkwLv1wLpls8fgWSqXO4S7+jJoM56eWTh
/McyVEOrYJCgFoXKmhQuXx8V+KFUnLyvMXRkXrvNW+n/5b4l4jMsjftXmE5StWBo
Myyq0PAbZuryDve9w1s4Q9FrkQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:28 2024 by rpki-client on console-fra.rpki-client.org