Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/b9fce7-0927-4847-b605-3e30a4c4b826/1/y0K6fTz-v0Mptpm4HQospvA9xvY.roa
File: y0K6fTz-v0Mptpm4HQospvA9xvY.roa (raw, json)
Hash identifier: 7gVk4nCQWwqK/RcAHFC851r/Ebk4Z4tI1pW/kwdM964=
Subject key identifier: CB:42:BA:7D:3C:FE:BF:43:29:B6:99:B8:1D:0A:2C:A6:F0:3D:C6:F6
Certificate issuer: /CN=3250d58d77b0fa5dcec4f42ae96f347bc80daa3e
Certificate serial: 15933B88
Authority key identifier: 32:50:D5:8D:77:B0:FA:5D:CE:C4:F4:2A:E9:6F:34:7B:C8:0D:AA:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlDVjXew-l3OxPQq6W80e8gNqj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/b9fce7-0927-4847-b605-3e30a4c4b826/1/y0K6fTz-v0Mptpm4HQospvA9xvY.roa
Signing time: Sat 01 Jan 2022 01:03:23 +0000
ROA not before: Sat 01 Jan 2022 01:03:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12610
IP address blocks: 213.214.24.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 361970568 (0x15933b88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3250d58d77b0fa5dcec4f42ae96f347bc80daa3e
Validity
Not Before: Jan 1 01:03:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb42ba7d3cfebf4329b699b81d0a2ca6f03dc6f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:49:0e:16:8b:29:9e:61:a1:e5:46:b5:89:d1:
03:c4:04:e7:9c:3c:d3:d5:8d:82:dc:51:3b:bc:28:
93:97:61:29:b9:9b:4f:58:e8:9a:f8:2e:2e:37:32:
0d:70:bb:a1:98:c4:ff:1c:c7:81:4e:5c:52:ba:b9:
a9:98:8b:25:36:a7:eb:09:9c:45:2a:cd:ed:ec:93:
f3:6b:4c:8b:a4:76:47:40:fe:13:7c:bd:33:30:e0:
f0:dd:ad:fa:fe:c7:d5:e3:d6:21:85:2e:93:95:39:
b4:b7:e4:93:6a:f6:bd:5a:87:05:79:c2:29:df:6c:
e0:b4:da:9d:12:2d:af:c7:dd:31:a1:e7:0e:0e:b1:
12:ed:f1:37:45:15:0b:07:51:48:d9:9d:35:dd:dd:
62:52:17:34:af:db:ee:56:b3:bb:ac:d7:0e:f8:9f:
bc:c3:b6:d7:2b:fc:09:66:3b:a4:97:7e:79:d8:74:
b4:6e:2b:2d:d3:14:bd:5e:f4:aa:44:5d:16:3b:80:
43:e3:92:64:55:9d:80:e3:83:f3:51:51:42:e6:06:
d0:1f:28:59:18:c8:30:e1:42:6e:4f:47:4a:61:d8:
46:77:d4:30:ef:91:de:fc:87:7d:d7:42:52:d1:85:
59:9b:96:ed:d3:d3:fb:f2:8b:98:b6:ea:1b:04:4b:
2e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:42:BA:7D:3C:FE:BF:43:29:B6:99:B8:1D:0A:2C:A6:F0:3D:C6:F6
X509v3 Authority Key Identifier:
keyid:32:50:D5:8D:77:B0:FA:5D:CE:C4:F4:2A:E9:6F:34:7B:C8:0D:AA:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlDVjXew-l3OxPQq6W80e8gNqj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b9fce7-0927-4847-b605-3e30a4c4b826/1/y0K6fTz-v0Mptpm4HQospvA9xvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b9fce7-0927-4847-b605-3e30a4c4b826/1/MlDVjXew-l3OxPQq6W80e8gNqj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.214.24.0/21
Signature Algorithm: sha256WithRSAEncryption
39:53:93:7b:40:45:90:26:1f:b1:b1:f4:6b:eb:27:81:de:3e:
1d:14:04:47:d6:c4:65:21:44:c0:13:ee:5c:4b:9c:46:8c:6b:
31:dd:01:79:c0:4f:3a:97:6b:08:88:db:c1:3e:08:68:c0:d3:
6e:00:5e:3b:e7:8f:ec:cd:74:df:c8:13:10:2d:a5:05:ef:6d:
53:9c:69:97:d2:aa:18:2d:04:fd:4c:74:2d:e8:62:7e:3e:17:
14:b1:ed:8c:16:ac:b1:ea:01:30:1a:07:b0:f2:af:0c:89:2c:
c0:ee:9f:99:35:17:cf:f7:3c:c6:a1:bb:41:40:50:ce:3d:19:
96:28:8f:f5:ed:5e:25:2b:fd:74:b5:66:96:53:63:07:b0:87:
31:ed:ca:c4:ed:07:1b:d2:00:83:7a:48:30:51:50:55:82:76:
e6:c3:e4:89:e3:25:b0:36:0b:65:48:9d:dd:80:36:74:82:64:
af:9c:70:64:95:2a:ae:85:b4:a5:66:63:9b:ed:4f:b1:c2:db:
eb:bb:9e:d8:3c:09:f4:9f:0e:36:81:2e:25:0c:d5:3c:4b:db:
e5:33:57:20:1e:73:08:74:59:10:5f:90:29:bf:53:90:b5:8a:
3b:df:40:70:e1:41:1a:e7:a1:2e:7f:5c:03:e3:72:65:05:28:
02:2b:5e:e8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFZM7iDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MjUwZDU4ZDc3YjBmYTVkY2VjNGY0MmFlOTZmMzQ3YmM4MGRhYTNlMB4XDTIyMDEw
MTAxMDMyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2I0MmJhN2QzY2Zl
YmY0MzI5YjY5OWI4MWQwYTJjYTZmMDNkYzZmNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALpJDhaLKZ5hoeVGtYnRA8QE55w809WNgtxRO7wok5dhKbmb
T1jomvguLjcyDXC7oZjE/xzHgU5cUrq5qZiLJTan6wmcRSrN7eyT82tMi6R2R0D+
E3y9MzDg8N2t+v7H1ePWIYUuk5U5tLfkk2r2vVqHBXnCKd9s4LTanRItr8fdMaHn
Dg6xEu3xN0UVCwdRSNmdNd3dYlIXNK/b7lazu6zXDvifvMO21yv8CWY7pJd+edh0
tG4rLdMUvV70qkRdFjuAQ+OSZFWdgOOD81FRQuYG0B8oWRjIMOFCbk9HSmHYRnfU
MO+R3vyHfddCUtGFWZuW7dPT+/KLmLbqGwRLLlcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTLQrp9PP6/Qym2mbgdCiym8D3G9jAfBgNVHSMEGDAWgBQyUNWNd7D6Xc7E
9CrpbzR7yA2qPjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01sRFZqWGV3LWwzT3hQUXE2VzgwZThnTnFqNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvYjlmY2U3LTA5MjctNDg0Ny1iNjA1LTNlMzBhNGM0YjgyNi8x
L3kwSzZmVHotdjBNcHRwbTRIUW9zcHZBOXh2WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
YjlmY2U3LTA5MjctNDg0Ny1iNjA1LTNlMzBhNGM0YjgyNi8xL01sRFZqWGV3LWwz
T3hQUXE2VzgwZThnTnFqNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9XWGDANBgkqhkiG9w0BAQsFAAOC
AQEAOVOTe0BFkCYfsbH0a+sngd4+HRQER9bEZSFEwBPuXEucRoxrMd0BecBPOpdr
CIjbwT4IaMDTbgBeO+eP7M1038gTEC2lBe9tU5xpl9KqGC0E/Ux0Lehifj4XFLHt
jBasseoBMBoHsPKvDIkswO6fmTUXz/c8xqG7QUBQzj0ZliiP9e1eJSv9dLVmllNj
B7CHMe3KxO0HG9IAg3pIMFFQVYJ25sPkieMlsDYLZUid3YA2dIJkr5xwZJUqroW0
pWZjm+1PscLb67ue2DwJ9J8ONoEuJQzVPEvb5TNXIB5zCHRZEF+QKb9TkLWKO99A
cOFBGuehLn9cA+NyZQUoAite6A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:36 2024 by rpki-client on console-fra.rpki-client.org