Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/YRRVDDl7d7BP2H9jQv3HCKFg_bU.roa
File: YRRVDDl7d7BP2H9jQv3HCKFg_bU.roa (raw, json)
Hash identifier: ssP0ipjcWZf28Blz9yP8hu547W3MSOOtuYC5R4v6oM4=
Subject key identifier: 61:14:55:0C:39:7B:77:B0:4F:D8:7F:63:42:FD:C7:08:A1:60:FD:B5
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 0FA610CA
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/YRRVDDl7d7BP2H9jQv3HCKFg_bU.roa
Signing time: Sat 01 Jan 2022 00:51:10 +0000
ROA not before: Sat 01 Jan 2022 00:51:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208305
IP address blocks: 217.111.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 262541514 (0xfa610ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Jan 1 00:51:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6114550c397b77b04fd87f6342fdc708a160fdb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:29:f1:3c:c7:f9:6b:0a:bf:3c:e5:4e:e3:15:
b7:74:ae:0c:41:3d:36:9d:0f:60:2b:21:72:a2:ee:
6e:f2:a6:19:31:ea:13:5b:4c:61:24:34:98:71:3f:
93:52:04:3c:26:4f:2c:28:28:de:26:e4:82:45:57:
de:f3:5a:49:83:ec:88:2f:3a:8b:63:b4:4d:4b:75:
2c:e0:3b:1e:5b:aa:44:d5:31:2f:e0:35:9c:84:10:
c0:f4:e2:32:4e:b5:cb:01:2f:b2:59:74:bb:2d:0f:
45:2c:d1:50:fc:fe:71:28:ed:c0:79:e6:32:ea:8b:
85:65:50:ea:64:79:ec:ac:49:ea:ef:5f:87:8d:78:
f1:cd:d9:6b:50:2c:46:3d:59:01:64:ae:1b:ba:8b:
be:29:46:a4:69:65:52:0e:7c:1a:4c:d2:e8:3c:5d:
3c:17:91:1b:22:47:f6:ca:10:cc:3c:e2:e0:91:5d:
69:c8:1c:5b:fd:32:56:54:d6:82:36:32:64:1d:d0:
c8:68:b6:21:de:a8:7e:35:a3:13:ab:04:9e:bb:cb:
d9:75:f3:17:83:de:a8:6c:fa:04:cf:ef:e0:ed:97:
ff:6f:94:58:20:f5:e2:e4:5d:62:de:cc:84:c6:14:
b0:30:9f:7b:42:d2:11:ae:a9:f1:97:81:73:9c:9b:
53:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:14:55:0C:39:7B:77:B0:4F:D8:7F:63:42:FD:C7:08:A1:60:FD:B5
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/YRRVDDl7d7BP2H9jQv3HCKFg_bU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.111.139.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:6c:7e:3e:d0:6c:eb:82:78:1d:4d:15:ff:4e:95:dd:53:44:
41:5b:93:20:c5:d0:5a:e5:3d:fc:80:b5:cb:c2:5c:d1:80:5b:
c9:4f:ec:12:13:c3:90:42:73:1e:c2:bc:a8:42:59:37:8d:a3:
78:c0:f4:cc:34:b3:2b:b3:48:4c:0e:97:84:c3:38:0f:dd:0d:
d7:c6:af:9f:58:fe:a6:56:57:3f:19:d2:82:e7:7f:b1:6e:27:
eb:9c:a9:c5:54:ed:48:55:a1:e9:a9:9f:4b:fa:b6:e4:5a:b3:
32:42:12:87:a1:9a:72:e5:b9:33:88:dd:05:87:fe:70:eb:cb:
fc:51:1c:5b:96:88:e4:c5:29:cd:ee:79:bd:0a:75:41:ef:9d:
c7:db:95:30:91:f4:62:68:f5:fa:d2:6f:b3:d9:ac:0d:80:06:
36:13:fa:b9:fe:d1:f9:8c:d2:5b:d9:5f:ba:f2:b4:c4:73:1e:
45:6f:0b:3a:80:ca:af:c6:97:84:35:a3:17:98:50:aa:63:5f:
8a:c1:ee:f1:1a:eb:5f:c4:b0:19:7f:6c:9f:91:18:19:16:41:
8b:9a:27:52:0e:47:28:64:00:b6:dd:f2:86:32:f3:1d:2e:7c:
6f:ac:47:f2:2e:0f:d3:52:b5:71:b3:99:3e:92:16:55:15:73:
c2:fb:c9:08
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIED6YQyjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
Y2Y4ZmZjMDg4NTkxZTRmMjQzYmFhZmEyMWI0Mjk4YmZiMzY2MDI2MB4XDTIyMDEw
MTAwNTExMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjExNDU1MGMzOTdi
NzdiMDRmZDg3ZjYzNDJmZGM3MDhhMTYwZmRiNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANwp8TzH+WsKvzzlTuMVt3SuDEE9Np0PYCshcqLubvKmGTHq
E1tMYSQ0mHE/k1IEPCZPLCgo3ibkgkVX3vNaSYPsiC86i2O0TUt1LOA7HluqRNUx
L+A1nIQQwPTiMk61ywEvsll0uy0PRSzRUPz+cSjtwHnmMuqLhWVQ6mR57KxJ6u9f
h4148c3Za1AsRj1ZAWSuG7qLvilGpGllUg58GkzS6DxdPBeRGyJH9soQzDzi4JFd
acgcW/0yVlTWgjYyZB3QyGi2Id6ofjWjE6sEnrvL2XXzF4PeqGz6BM/v4O2X/2+U
WCD14uRdYt7MhMYUsDCfe0LSEa6p8ZeBc5ybU4MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRhFFUMOXt3sE/Yf2NC/ccIoWD9tTAfBgNVHSMEGDAWgBRM+P/AiFkeTyQ7
qvohtCmL+zZgJjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RQal93SWhaSGs4a082cjZJYlFwaV9zMllDWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmIvYTBhMzljLWJlMDMtNDdiYi1iZGIzLWIzYjc4YjBiNjZlYS8x
L1lSUlZERGw3ZDdCUDJIOWpRdjNIQ0tGZ19iVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmIv
YTBhMzljLWJlMDMtNDdiYi1iZGIzLWIzYjc4YjBiNjZlYS8xL1RQal93SWhaSGs4
a082cjZJYlFwaV9zMllDWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANlvizANBgkqhkiG9w0BAQsFAAOC
AQEAH2x+PtBs64J4HU0V/06V3VNEQVuTIMXQWuU9/IC1y8Jc0YBbyU/sEhPDkEJz
HsK8qEJZN42jeMD0zDSzK7NITA6XhMM4D90N18avn1j+plZXPxnSgud/sW4n65yp
xVTtSFWh6amfS/q25FqzMkISh6GacuW5M4jdBYf+cOvL/FEcW5aI5MUpze55vQp1
Qe+dx9uVMJH0Ymj1+tJvs9msDYAGNhP6uf7R+YzSW9lfuvK0xHMeRW8LOoDKr8aX
hDWjF5hQqmNfisHu8RrrX8SwGX9sn5EYGRZBi5onUg5HKGQAtt3yhjLzHS58b6xH
8i4P01K1cbOZPpIWVRVzwvvJCA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:42 2024 by rpki-client on console-fra.rpki-client.org