Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/990513-f49c-45fb-a7bb-5f045688bb99/1/0k7kwyL6NwS_fWWnYHlibDpYbLc.roa
File: 0k7kwyL6NwS_fWWnYHlibDpYbLc.roa (raw, json)
Hash identifier: ZI7uzaT2ZL0bHZPIjgcToIvS9O7wYJdK+SD1f60CasA=
Subject key identifier: D2:4E:E4:C3:22:FA:37:04:BF:7D:65:A7:60:79:62:6C:3A:58:6C:B7
Certificate issuer: /CN=7020f9115d194031fc5c849f15abbfd80e08622b
Certificate serial: 0101B138
Authority key identifier: 70:20:F9:11:5D:19:40:31:FC:5C:84:9F:15:AB:BF:D8:0E:08:62:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cCD5EV0ZQDH8XISfFau_2A4IYis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/990513-f49c-45fb-a7bb-5f045688bb99/1/0k7kwyL6NwS_fWWnYHlibDpYbLc.roa
Signing time: Sat 01 Jan 2022 07:03:18 +0000
ROA not before: Sat 01 Jan 2022 07:03:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211453
IP address blocks: 176.113.44.0/24 maxlen: 24
2a0c:8840:1000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16888120 (0x101b138)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7020f9115d194031fc5c849f15abbfd80e08622b
Validity
Not Before: Jan 1 07:03:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d24ee4c322fa3704bf7d65a76079626c3a586cb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4e:2f:47:3c:10:76:de:78:38:40:3c:a8:f7:
6e:a0:3c:83:fe:e7:e2:18:bb:99:3f:b8:a0:60:39:
5f:f1:0a:54:14:86:2d:77:40:c9:82:e7:da:8c:1b:
61:26:2a:43:04:12:64:a9:84:12:96:b5:ca:c8:66:
0b:e1:07:dd:ae:2f:7e:55:99:b7:fd:ef:f7:4e:be:
03:b5:02:4c:66:d7:7a:a7:8d:fe:23:86:a0:46:d9:
8a:67:6b:09:9a:41:88:80:22:f3:98:a3:d4:0c:27:
8d:41:1d:99:fd:1c:6c:15:81:85:1b:e9:38:b6:58:
3a:8f:63:25:b8:88:a5:d0:5b:4a:d5:62:99:ff:c6:
1a:71:25:77:f2:28:f8:2b:a2:07:83:52:fa:1e:f6:
d7:ed:3a:9b:6c:75:05:58:10:fc:1c:b4:48:33:b1:
01:15:9b:27:f6:51:6f:ec:2c:ef:43:ae:55:e2:1b:
1a:ef:72:0b:c9:bd:a2:ee:73:aa:24:20:a2:08:05:
27:bb:bd:0e:dd:d5:6b:e8:c3:20:db:c9:e1:6b:ec:
a8:52:7b:de:ed:95:8b:6e:9d:37:dd:d8:b2:cc:a4:
bb:d3:df:0d:6d:a9:1c:5b:be:cf:95:57:cb:20:6d:
a6:1c:f7:ea:4f:4d:20:d4:92:9d:c0:53:ce:8f:15:
39:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:4E:E4:C3:22:FA:37:04:BF:7D:65:A7:60:79:62:6C:3A:58:6C:B7
X509v3 Authority Key Identifier:
keyid:70:20:F9:11:5D:19:40:31:FC:5C:84:9F:15:AB:BF:D8:0E:08:62:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cCD5EV0ZQDH8XISfFau_2A4IYis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/990513-f49c-45fb-a7bb-5f045688bb99/1/0k7kwyL6NwS_fWWnYHlibDpYbLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/990513-f49c-45fb-a7bb-5f045688bb99/1/cCD5EV0ZQDH8XISfFau_2A4IYis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.113.44.0/24
IPv6:
2a0c:8840:1000::/36
Signature Algorithm: sha256WithRSAEncryption
39:f9:52:b6:36:a0:cb:68:3b:7a:7d:89:b9:5b:4e:a8:d3:7e:
74:7b:0b:8b:96:02:9a:49:58:a4:13:f7:b5:e0:ad:4c:93:da:
98:50:db:8c:31:bb:b0:1c:b2:36:d5:40:80:b5:32:25:d2:7b:
ce:30:ab:b6:8a:59:e2:23:1f:5c:25:22:14:14:da:85:ec:b0:
12:cb:09:9b:e5:01:fc:30:dc:72:07:e1:14:c6:41:7e:72:41:
f6:e6:ee:e8:a0:e8:26:4b:83:06:4b:fd:80:f6:78:39:2f:86:
96:bf:ae:86:de:45:52:05:11:58:79:59:8e:95:ab:a8:14:6d:
52:98:43:62:05:8d:72:f5:7d:4d:f5:80:3f:42:5f:e2:b4:af:
01:64:11:5a:a3:14:9a:dd:0e:9f:7b:43:8a:4c:d7:f6:f2:2c:
35:23:08:b4:a6:dc:6c:59:c1:ed:16:54:7c:84:84:0b:f8:05:
55:07:db:52:b8:b4:57:b1:9f:b7:ab:7c:64:dd:f8:a9:0a:03:
f4:fa:ff:c9:cc:6b:43:5a:3d:a4:d1:cb:40:49:c7:62:ca:94:
b0:4c:bb:1e:59:f8:ed:62:78:dc:86:fd:ca:38:3c:4a:9f:b5:
ae:c6:f7:07:bc:09:19:db:60:b3:9d:ac:11:28:ac:8d:c4:21:
56:60:73:4f
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIEAQGxODANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MDIwZjkxMTVkMTk0MDMxZmM1Yzg0OWYxNWFiYmZkODBlMDg2MjJiMB4XDTIyMDEw
MTA3MDMxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDI0ZWU0YzMyMmZh
MzcwNGJmN2Q2NWE3NjA3OTYyNmMzYTU4NmNiNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALVOL0c8EHbeeDhAPKj3bqA8g/7n4hi7mT+4oGA5X/EKVBSG
LXdAyYLn2owbYSYqQwQSZKmEEpa1yshmC+EH3a4vflWZt/3v906+A7UCTGbXeqeN
/iOGoEbZimdrCZpBiIAi85ij1AwnjUEdmf0cbBWBhRvpOLZYOo9jJbiIpdBbStVi
mf/GGnEld/Io+CuiB4NS+h721+06m2x1BVgQ/By0SDOxARWbJ/ZRb+ws70OuVeIb
Gu9yC8m9ou5zqiQgoggFJ7u9Dt3Va+jDINvJ4WvsqFJ73u2Vi26dN93Yssyku9Pf
DW2pHFu+z5VXyyBtphz36k9NINSSncBTzo8VObkCAwEAAaOCAhkwggIVMB0GA1Ud
DgQWBBTSTuTDIvo3BL99ZadgeWJsOlhstzAfBgNVHSMEGDAWgBRwIPkRXRlAMfxc
hJ8Vq7/YDghiKzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NDRDVFVjBaUURIOFhJU2ZGYXVfMkE0SVlpcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjQvOTkwNTEzLWY0OWMtNDVmYi1hN2JiLTVmMDQ1Njg4YmI5OS8x
LzBrN2t3eUw2TndTX2ZXV25ZSGxpYkRwWWJMYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQv
OTkwNTEzLWY0OWMtNDVmYi1hN2JiLTVmMDQ1Njg4YmI5OS8xL2NDRDVFVjBaUURI
OFhJU2ZGYXVfMkE0SVlpcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAv
BggrBgEFBQcBBwEB/wQgMB4wDAQCAAEwBgMEALBxLDAOBAIAAjAIAwYEKgyIQBAw
DQYJKoZIhvcNAQELBQADggEBADn5UrY2oMtoO3p9iblbTqjTfnR7C4uWAppJWKQT
97XgrUyT2phQ24wxu7AcsjbVQIC1MiXSe84wq7aKWeIjH1wlIhQU2oXssBLLCZvl
Afww3HIH4RTGQX5yQfbm7uig6CZLgwZL/YD2eDkvhpa/robeRVIFEVh5WY6Vq6gU
bVKYQ2IFjXL1fU31gD9CX+K0rwFkEVqjFJrdDp97Q4pM1/byLDUjCLSm3GxZwe0W
VHyEhAv4BVUH21K4tFexn7erfGTd+KkKA/T6/8nMa0NaPaTRy0BJx2LKlLBMux5Z
+O1ieNyG/co4PEqfta7G9we8CRnbYLOdrBEorI3EIVZgc08=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:35 2024 by rpki-client on console-fra.rpki-client.org