Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Llk4TMP05vG_D-nXY67paoEUql0.roa
File: Llk4TMP05vG_D-nXY67paoEUql0.roa (raw, json)
Hash identifier: 0QLeB+h0J3QPLE9ikqR6iqXYVOUzmX3UE1+9xbOayxY=
Subject key identifier: 2E:59:38:4C:C3:F4:E6:F1:BF:0F:E9:D7:63:AE:E9:6A:81:14:AA:5D
Certificate issuer: /CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Certificate serial: 03A79096
Authority key identifier: 52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Llk4TMP05vG_D-nXY67paoEUql0.roa
Signing time: Sat 01 Jan 2022 10:56:04 +0000
ROA not before: Sat 01 Jan 2022 10:56:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25210
IP address blocks: 212.82.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61313174 (0x3a79096)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Validity
Not Before: Jan 1 10:56:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e59384cc3f4e6f1bf0fe9d763aee96a8114aa5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f4:fe:20:8c:f3:bb:7d:7f:83:54:02:63:d3:
5c:e2:6a:98:35:2f:a1:27:1e:fb:76:f4:fd:c9:87:
b3:95:4a:c9:2a:ec:c5:39:80:f8:b4:30:44:22:74:
d2:06:8c:b8:1f:22:20:3b:bb:fe:e7:00:9c:a2:ef:
b0:a6:ed:dc:2e:a1:ed:6e:ad:94:6c:ec:b2:d4:f2:
c6:22:6c:92:d3:74:f5:36:4a:e7:04:b9:45:fb:c6:
cf:4b:df:7f:8e:c7:82:50:e5:6f:70:ee:56:ce:0e:
14:99:23:a7:e0:1e:38:a9:25:c7:34:2d:a0:fd:79:
ca:c3:57:a5:3b:c4:1b:d9:57:e9:fb:2e:18:fa:1a:
a0:f6:0d:c9:92:39:98:08:db:b3:d5:8a:83:90:6a:
67:d0:18:5a:a4:52:0a:2f:c1:fa:99:cb:4d:e2:e4:
72:d9:8d:a0:59:31:66:63:01:41:1d:4e:e3:4e:13:
6d:82:30:e5:42:0b:81:fb:e0:58:38:67:96:d0:eb:
a4:f3:b5:e9:7d:3b:f4:0f:d0:bf:32:67:34:48:f8:
f6:03:8d:e2:4b:0e:f3:7a:15:c1:2d:2a:88:9d:f9:
ae:e1:63:5c:d3:ea:60:8f:8b:2d:bc:5a:8e:ec:10:
29:67:1f:eb:a4:a7:79:6e:e7:68:b8:c5:37:90:42:
1d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:59:38:4C:C3:F4:E6:F1:BF:0F:E9:D7:63:AE:E9:6A:81:14:AA:5D
X509v3 Authority Key Identifier:
keyid:52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Llk4TMP05vG_D-nXY67paoEUql0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Urm54lZYDENEuyQURbTVLlT91Qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.82.217.0/24
Signature Algorithm: sha256WithRSAEncryption
53:51:20:21:bf:06:e2:18:61:ad:a8:35:9e:42:33:c2:93:84:
3c:24:11:95:76:5e:2f:d3:7b:3b:67:c2:39:6b:2e:fd:bc:e9:
61:e4:b7:a4:1c:61:e9:f6:f0:43:8f:f3:4e:3a:83:68:6b:48:
7b:a6:be:ea:1e:44:0c:e2:30:1d:b7:70:de:6e:ad:44:bf:90:
e2:50:9e:7f:8b:df:3f:5d:94:a6:b2:b2:90:20:16:eb:8f:13:
02:61:f0:be:51:d5:53:85:00:4c:fa:67:ca:29:65:aa:f7:63:
14:eb:ba:e6:13:ea:55:05:f2:f5:07:fb:0b:d6:3f:8d:c8:a3:
79:65:1f:8b:fc:bc:93:c1:17:c2:82:ae:f4:9b:e8:5b:d4:29:
4c:7c:4a:39:5d:92:8b:f3:b0:a7:f4:00:9d:25:46:01:97:58:
17:30:59:e6:15:33:44:10:24:3b:fd:53:15:5e:73:bd:c9:91:
72:3d:b2:17:4a:6b:91:7f:71:12:60:1b:62:7d:5b:f9:74:58:
84:46:2c:fd:01:5d:6f:f6:fa:5b:ae:d1:4a:da:76:5c:0c:9f:
5d:d7:d2:af:3d:29:10:c9:ca:fc:a2:55:7a:d8:7e:0f:43:7c:
a0:ce:1f:4d:98:c6:27:6c:ea:64:41:97:a9:d6:d4:7f:84:eb:
1d:3e:f5:34
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA6eQljANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MmI5YjllMjU2NTgwYzQzNDRiYjI0MTQ0NWI0ZDUyZTU0ZmRkNTBiMB4XDTIyMDEw
MTEwNTYwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmU1OTM4NGNjM2Y0
ZTZmMWJmMGZlOWQ3NjNhZWU5NmE4MTE0YWE1ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKX0/iCM87t9f4NUAmPTXOJqmDUvoSce+3b0/cmHs5VKySrs
xTmA+LQwRCJ00gaMuB8iIDu7/ucAnKLvsKbt3C6h7W6tlGzsstTyxiJsktN09TZK
5wS5RfvGz0vff47HglDlb3DuVs4OFJkjp+AeOKklxzQtoP15ysNXpTvEG9lX6fsu
GPoaoPYNyZI5mAjbs9WKg5BqZ9AYWqRSCi/B+pnLTeLkctmNoFkxZmMBQR1O404T
bYIw5UILgfvgWDhnltDrpPO16X079A/QvzJnNEj49gON4ksO83oVwS0qiJ35ruFj
XNPqYI+LLbxajuwQKWcf66SneW7naLjFN5BCHQcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQuWThMw/Tm8b8P6ddjrulqgRSqXTAfBgNVHSMEGDAWgBRSubniVlgMQ0S7
JBRFtNUuVP3VCzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VybTU0bFpZREVORXV5UVVSYlRWTGxUOTFRcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvZWFmODFkLWE5ZGYtNGE2YS1iNjEwLWRlMDVjNTQwNDViYi8x
L0xsazRUTVAwNXZHX0QtblhZNjdwYW9FVXFsMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
ZWFmODFkLWE5ZGYtNGE2YS1iNjEwLWRlMDVjNTQwNDViYi8xL1VybTU0bFpZREVO
RXV5UVVSYlRWTGxUOTFRcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANRS2TANBgkqhkiG9w0BAQsFAAOC
AQEAU1EgIb8G4hhhrag1nkIzwpOEPCQRlXZeL9N7O2fCOWsu/bzpYeS3pBxh6fbw
Q4/zTjqDaGtIe6a+6h5EDOIwHbdw3m6tRL+Q4lCef4vfP12UprKykCAW648TAmHw
vlHVU4UATPpnyillqvdjFOu65hPqVQXy9Qf7C9Y/jcijeWUfi/y8k8EXwoKu9Jvo
W9QpTHxKOV2Si/Owp/QAnSVGAZdYFzBZ5hUzRBAkO/1TFV5zvcmRcj2yF0prkX9x
EmAbYn1b+XRYhEYs/QFdb/b6W67RStp2XAyfXdfSrz0pEMnK/KJVeth+D0N8oM4f
TZjGJ2zqZEGXqdbUf4TrHT71NA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org