Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/y1tlWKW2qqm4RPkVYvFhAYvSPJM.roa
File: y1tlWKW2qqm4RPkVYvFhAYvSPJM.roa (raw, json)
Hash identifier: ZinoT2G14qJ3nFbRB9czSrdzJS0TBQEW+ChtAXMJa9Y=
Subject key identifier: CB:5B:65:58:A5:B6:AA:A9:B8:44:F9:15:62:F1:61:01:8B:D2:3C:93
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 0FA0CF40
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/y1tlWKW2qqm4RPkVYvFhAYvSPJM.roa
Signing time: Sat 01 Jan 2022 00:51:07 +0000
ROA not before: Sat 01 Jan 2022 00:51:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60845
IP address blocks: 212.121.139.0/24 maxlen: 24
62.96.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 262197056 (0xfa0cf40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Jan 1 00:51:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb5b6558a5b6aaa9b844f91562f161018bd23c93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6c:89:6b:09:dd:d5:fc:14:bb:6d:11:1c:1e:
45:22:40:27:21:56:49:a6:fd:88:b7:4b:10:ce:8b:
03:d6:cf:38:6d:e5:b1:c0:a1:27:77:aa:cd:93:9a:
d4:97:c6:62:8b:71:7c:e6:58:0c:e1:2c:5a:4f:5d:
ec:f0:02:ee:6e:5e:f8:a5:87:90:a5:68:2c:be:ec:
4a:a5:23:e8:1e:be:31:05:99:e4:3f:ec:cc:41:ba:
fe:bb:54:2f:d8:e9:6e:8d:3c:40:c2:be:ed:b1:dc:
76:14:a2:19:d3:66:a7:72:db:24:54:c6:60:2b:c2:
25:e2:b5:62:da:22:c2:5d:e6:0e:c3:a1:2f:15:29:
3c:29:8e:fa:4a:ed:e4:76:3b:b4:1d:2f:a4:01:2c:
2b:1c:a5:fb:fc:39:80:0d:4d:f3:ba:61:0a:31:59:
1b:6c:fd:b7:06:a6:65:32:08:3a:6a:ca:46:2b:f7:
44:3e:e1:84:bc:56:8a:db:8c:3d:32:c0:c1:9f:01:
f1:4e:a7:ad:76:69:dd:a3:28:a0:4f:6d:48:4f:17:
e2:cf:31:a4:2e:66:3b:75:33:58:f2:44:19:9f:7e:
fd:c7:4d:d1:95:cc:2a:e5:75:80:31:c5:5e:23:9b:
dc:74:d6:ac:d6:47:96:3b:1d:44:eb:4a:a3:5c:b3:
c1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:5B:65:58:A5:B6:AA:A9:B8:44:F9:15:62:F1:61:01:8B:D2:3C:93
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/y1tlWKW2qqm4RPkVYvFhAYvSPJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.96.212.0/24
212.121.139.0/24
Signature Algorithm: sha256WithRSAEncryption
03:62:48:a4:da:46:16:80:e7:d3:44:a1:41:b8:76:66:a7:3c:
f9:f4:8b:32:04:77:fb:16:68:10:b6:64:37:16:91:f9:48:bd:
00:3a:d4:87:75:fc:37:80:32:98:66:83:9c:07:32:0b:ba:f3:
f4:81:64:9b:f4:69:8b:50:07:4c:4d:ef:34:cb:0b:88:f9:a8:
6b:5d:d2:e3:83:a5:4a:75:b2:49:43:e5:69:7f:c8:c0:0b:af:
fc:cd:64:9f:8f:16:dc:60:fd:78:c9:e4:c8:d0:b1:2b:40:88:
2e:86:08:cc:d6:72:c8:e6:58:69:38:1c:47:d0:56:91:16:31:
49:4d:95:df:6a:84:26:2b:1b:db:62:9c:c6:6a:44:b7:11:62:
43:df:d9:a2:7d:d8:33:22:3c:5d:70:fb:ab:e1:44:16:4a:49:
e2:e5:5e:6e:3c:71:e0:fc:f0:fc:1f:99:c7:e9:d0:6d:f1:47:
6a:00:5c:ba:3b:52:5f:f7:04:85:3f:98:8a:a0:8b:0f:1f:4b:
b5:59:78:43:74:dd:e8:30:4f:e8:5d:d2:7d:db:aa:19:fd:9a:
85:98:40:a2:cd:8b:b5:be:64:30:2e:2e:4d:31:c1:df:35:e2:
9c:17:9c:87:10:2b:9c:66:ac:a6:c5:ee:f9:bb:8b:ba:fb:55:
ee:b5:73:87
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIED6DPQDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
Y2Y4ZmZjMDg4NTkxZTRmMjQzYmFhZmEyMWI0Mjk4YmZiMzY2MDI2MB4XDTIyMDEw
MTAwNTEwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2I1YjY1NThhNWI2
YWFhOWI4NDRmOTE1NjJmMTYxMDE4YmQyM2M5MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM1siWsJ3dX8FLttERweRSJAJyFWSab9iLdLEM6LA9bPOG3l
scChJ3eqzZOa1JfGYotxfOZYDOEsWk9d7PAC7m5e+KWHkKVoLL7sSqUj6B6+MQWZ
5D/szEG6/rtUL9jpbo08QMK+7bHcdhSiGdNmp3LbJFTGYCvCJeK1Ytoiwl3mDsOh
LxUpPCmO+krt5HY7tB0vpAEsKxyl+/w5gA1N87phCjFZG2z9twamZTIIOmrKRiv3
RD7hhLxWituMPTLAwZ8B8U6nrXZp3aMooE9tSE8X4s8xpC5mO3UzWPJEGZ9+/cdN
0ZXMKuV1gDHFXiOb3HTWrNZHljsdROtKo1yzwe8CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTLW2VYpbaqqbhE+RVi8WEBi9I8kzAfBgNVHSMEGDAWgBRM+P/AiFkeTyQ7
qvohtCmL+zZgJjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RQal93SWhaSGs4a082cjZJYlFwaV9zMllDWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmIvYTBhMzljLWJlMDMtNDdiYi1iZGIzLWIzYjc4YjBiNjZlYS8x
L3kxdGxXS1cycXFtNFJQa1ZZdkZoQVl2U1BKTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmIv
YTBhMzljLWJlMDMtNDdiYi1iZGIzLWIzYjc4YjBiNjZlYS8xL1RQal93SWhaSGs4
a082cjZJYlFwaV9zMllDWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAD5g1AMEANR5izANBgkqhkiG9w0B
AQsFAAOCAQEAA2JIpNpGFoDn00ShQbh2Zqc8+fSLMgR3+xZoELZkNxaR+Ui9ADrU
h3X8N4AymGaDnAcyC7rz9IFkm/Rpi1AHTE3vNMsLiPmoa13S44OlSnWySUPlaX/I
wAuv/M1kn48W3GD9eMnkyNCxK0CILoYIzNZyyOZYaTgcR9BWkRYxSU2V32qEJisb
22KcxmpEtxFiQ9/Zon3YMyI8XXD7q+FEFkpJ4uVebjxx4Pzw/B+Zx+nQbfFHagBc
ujtSX/cEhT+YiqCLDx9LtVl4Q3Td6DBP6F3SfduqGf2ahZhAos2Ltb5kMC4uTTHB
3zXinBechxArnGaspsXu+buLuvtV7rVzhw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:28 2024 by rpki-client on console-ams.rpki-client.org