Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/G4l4zehPdpnu1iHWsqPCv37CeKU.roa
File: G4l4zehPdpnu1iHWsqPCv37CeKU.roa (raw, json)
Hash identifier: ECeeNDbLX/dw/srGjr5FmjyoFd1XpTArn6qzh21eI1Q=
Subject key identifier: 1B:89:78:CD:E8:4F:76:99:EE:D6:21:D6:B2:A3:C2:BF:7E:C2:78:A5
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 3327BE11
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/G4l4zehPdpnu1iHWsqPCv37CeKU.roa
Signing time: Sat 01 Jan 2022 10:59:11 +0000
ROA not before: Sat 01 Jan 2022 10:59:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200940
IP address blocks: 213.16.92.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 858242577 (0x3327be11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 10:59:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b8978cde84f7699eed621d6b2a3c2bf7ec278a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:8c:f3:02:b1:4c:b8:39:14:52:d8:fb:89:53:
8a:73:ce:70:e4:f2:98:0f:25:b9:c2:52:89:b9:2e:
78:4f:a4:a3:eb:a1:e2:dc:a8:c0:18:6c:1e:0c:5e:
9a:c2:aa:03:06:1d:c3:05:ae:43:a4:24:3b:ad:c7:
ed:c1:ea:e9:7d:e9:98:8e:4b:30:58:e7:8f:3b:f6:
f3:e0:99:1e:f1:80:af:25:a1:c5:ae:f2:b7:ed:cb:
34:1a:6a:dc:3d:f3:6e:6d:8a:c9:ba:4b:f1:25:66:
34:f6:9c:f5:86:db:64:cf:38:a2:d9:ed:b6:6f:eb:
95:05:27:0e:6d:aa:e1:8c:55:a3:92:e2:6a:5d:fc:
22:4b:8a:fa:91:21:09:d7:fc:cb:f1:eb:84:c6:14:
03:8b:97:b2:58:e3:43:29:84:09:5c:c0:6f:7f:98:
e9:4b:26:98:dc:51:78:3f:f9:bb:2a:f8:d6:9b:c3:
af:66:6c:71:6e:7c:fc:be:b2:62:8a:32:56:27:ee:
6c:d5:fc:35:2f:26:d2:a6:82:a1:61:00:8f:5b:91:
98:82:b1:8f:29:e8:23:25:58:80:53:2d:3c:8d:70:
63:cf:77:11:1d:d8:ae:ff:26:bc:73:5b:10:e2:42:
45:60:c3:df:18:3f:79:a2:c3:b4:07:dc:64:6b:f7:
c2:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:89:78:CD:E8:4F:76:99:EE:D6:21:D6:B2:A3:C2:BF:7E:C2:78:A5
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/G4l4zehPdpnu1iHWsqPCv37CeKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.16.92.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:f0:20:7e:ae:68:d0:cd:6c:d5:5d:1d:9e:57:27:f2:8f:51:
cb:77:0a:f1:0a:9a:74:98:c2:30:ee:70:e8:0e:60:49:79:9b:
f8:fe:8d:78:3f:e2:32:2b:aa:dd:90:16:82:c5:5d:26:b8:4f:
b8:04:ce:7b:5d:46:4d:ef:ba:32:d1:91:ad:3c:e5:44:d9:1d:
4d:4d:df:01:b1:6d:02:8e:59:0f:4a:90:89:3b:68:17:eb:f2:
0d:dd:7f:61:d2:df:17:77:c1:70:14:e5:72:e7:dc:36:83:8e:
4e:f8:2f:3a:ac:07:d5:fd:96:4f:98:c7:7e:e6:fb:56:e9:58:
e7:e0:2a:b4:f7:4b:e2:fe:68:06:4d:82:f9:a8:e2:7d:b9:09:
30:47:23:24:18:50:0e:1d:db:31:f9:06:db:cb:a3:e4:e5:47:
c3:a6:26:b9:fd:a9:8a:9f:d0:4d:30:d2:a2:f9:40:75:52:cd:
82:86:83:31:b0:07:0d:47:35:70:e4:19:fd:8d:f4:4a:4d:93:
a8:38:01:d8:c9:71:97:63:3a:ee:a3:98:b5:d7:2b:5e:4b:09:
05:75:9b:31:fd:13:e9:ea:d1:9e:15:a3:a8:fc:df:56:82:de:
06:62:20:e8:ad:1b:3f:6d:76:20:3a:92:db:0b:24:6d:f3:20:
20:b5:1f:4e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEMye+ETANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZmIwOTdhMzZjMjMyNWQxMDMxZmY0MDkxYmEwMGE4NjQ1OWQ0Mjg4MB4XDTIyMDEw
MTEwNTkxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWI4OTc4Y2RlODRm
NzY5OWVlZDYyMWQ2YjJhM2MyYmY3ZWMyNzhhNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJuM8wKxTLg5FFLY+4lTinPOcOTymA8lucJSibkueE+ko+uh
4tyowBhsHgxemsKqAwYdwwWuQ6QkO63H7cHq6X3pmI5LMFjnjzv28+CZHvGAryWh
xa7yt+3LNBpq3D3zbm2KybpL8SVmNPac9YbbZM84otnttm/rlQUnDm2q4YxVo5Li
al38IkuK+pEhCdf8y/HrhMYUA4uXsljjQymECVzAb3+Y6UsmmNxReD/5uyr41pvD
r2ZscW58/L6yYooyVifubNX8NS8m0qaCoWEAj1uRmIKxjynoIyVYgFMtPI1wY893
ER3Yrv8mvHNbEOJCRWDD3xg/eaLDtAfcZGv3wgkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQbiXjN6E92me7WIdayo8K/fsJ4pTAfBgNVHSMEGDAWgBS/sJejbCMl0QMf
9AkboAqGRZ1CiDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Y3Q1hvMndqSmRFREhfUUpHNkFLaGtXZFFvZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvZjJjNWU4LThkMzctNDgzOC1hMzNiLWVjYzQ5YmRjMmFkOC8x
L0c0bDR6ZWhQZHBudTFpSFdzcVBDdjM3Q2VLVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
ZjJjNWU4LThkMzctNDgzOC1hMzNiLWVjYzQ5YmRjMmFkOC8xL3Y3Q1hvMndqSmRF
REhfUUpHNkFLaGtXZFFvZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtUQXDANBgkqhkiG9w0BAQsFAAOC
AQEAb/Agfq5o0M1s1V0dnlcn8o9Ry3cK8QqadJjCMO5w6A5gSXmb+P6NeD/iMiuq
3ZAWgsVdJrhPuATOe11GTe+6MtGRrTzlRNkdTU3fAbFtAo5ZD0qQiTtoF+vyDd1/
YdLfF3fBcBTlcufcNoOOTvgvOqwH1f2WT5jHfub7VulY5+AqtPdL4v5oBk2C+aji
fbkJMEcjJBhQDh3bMfkG28uj5OVHw6Ymuf2pip/QTTDSovlAdVLNgoaDMbAHDUc1
cOQZ/Y30Sk2TqDgB2Mlxl2M67qOYtdcrXksJBXWbMf0T6erRnhWjqPzfVoLeBmIg
6K0bP212IDqS2wskbfMgILUfTg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:49 2025 by rpki-client