Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/3a20d8-e902-41f5-befa-ab5f39fb8d36/1/ZTVov4BQUgDqkaBegS-1MRG_IlQ.roa
File: ZTVov4BQUgDqkaBegS-1MRG_IlQ.roa (raw, json)
Hash identifier: gKfdQ1LHiE/lW+dq2oFmQ/rGabBSWFU08swQ9Q5ZcQw=
Subject key identifier: 65:35:68:BF:80:50:52:00:EA:91:A0:5E:81:2F:B5:31:11:BF:22:54
Certificate issuer: /CN=7ed08c0ccda802cf20ce7abdeea20214e05e47af
Certificate serial: 05FE9CA8
Authority key identifier: 7E:D0:8C:0C:CD:A8:02:CF:20:CE:7A:BD:EE:A2:02:14:E0:5E:47:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ftCMDM2oAs8gznq97qICFOBeR68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/3a20d8-e902-41f5-befa-ab5f39fb8d36/1/ZTVov4BQUgDqkaBegS-1MRG_IlQ.roa
Signing time: Sat 01 Jan 2022 08:06:10 +0000
ROA not before: Sat 01 Jan 2022 08:06:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21478
IP address blocks: 213.129.192.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100572328 (0x5fe9ca8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ed08c0ccda802cf20ce7abdeea20214e05e47af
Validity
Not Before: Jan 1 08:06:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=653568bf80505200ea91a05e812fb53111bf2254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:fd:d3:f4:fa:40:ac:00:0d:83:fc:00:b5:91:
2a:cf:c6:ad:88:01:01:60:87:8f:b3:0d:6d:49:0a:
1e:76:7f:e6:8a:94:2e:da:15:82:08:d6:4b:84:3c:
47:c4:9f:cd:2e:0b:17:ea:74:74:31:a5:48:93:a0:
6c:e0:50:2b:bb:38:8a:e5:8b:91:66:30:39:fa:fc:
86:da:8b:4d:e4:4f:e1:da:60:99:ca:5d:9e:eb:60:
01:95:e9:c4:7c:43:c4:da:f9:a7:1a:bf:ea:27:08:
cb:30:6f:28:0a:e7:23:2e:63:ca:e2:6a:bb:72:c2:
21:87:ca:20:e0:93:06:c8:35:a8:e5:e3:74:68:b8:
75:f2:b0:f4:aa:1a:b9:03:a0:f5:d2:74:37:14:f1:
e1:84:f7:dc:08:d8:e9:56:92:9e:03:a7:b4:7b:2e:
83:25:d1:4c:09:a9:cb:85:a4:1b:6b:64:c9:ab:0b:
5b:8d:25:9d:2d:8e:3b:e9:57:57:fb:93:e7:ea:c3:
33:dd:8e:16:12:07:f2:e3:a6:89:6e:54:25:6f:c4:
7c:82:fc:14:20:8e:ec:de:d1:46:d6:31:ea:7c:b2:
5e:cc:e4:c0:98:40:b2:31:35:b3:05:b9:42:be:18:
c1:d3:38:b8:6d:5d:f6:7d:b2:b8:f7:0a:18:c3:d2:
da:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:35:68:BF:80:50:52:00:EA:91:A0:5E:81:2F:B5:31:11:BF:22:54
X509v3 Authority Key Identifier:
keyid:7E:D0:8C:0C:CD:A8:02:CF:20:CE:7A:BD:EE:A2:02:14:E0:5E:47:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ftCMDM2oAs8gznq97qICFOBeR68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3a20d8-e902-41f5-befa-ab5f39fb8d36/1/ZTVov4BQUgDqkaBegS-1MRG_IlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3a20d8-e902-41f5-befa-ab5f39fb8d36/1/ftCMDM2oAs8gznq97qICFOBeR68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.129.192.0/19
Signature Algorithm: sha256WithRSAEncryption
0c:fc:66:65:74:53:a2:79:8a:16:1a:41:fa:9f:94:c8:3a:77:
f6:c8:46:96:48:93:65:41:32:d4:06:96:8f:16:58:3e:28:03:
24:87:95:35:5b:93:14:d4:0c:fa:d5:40:4c:9f:cf:12:43:3a:
7e:b7:53:b1:ae:28:80:8b:b3:58:4d:7f:d3:79:2b:8c:e6:ba:
29:71:6b:ab:7e:36:23:53:fc:bf:ee:0c:cd:a2:23:02:92:82:
c9:7b:f0:33:51:a1:e3:45:e5:ae:05:5d:bd:23:89:4d:fa:7a:
46:80:c6:51:13:12:c4:e3:9c:ed:e8:a8:56:de:8c:89:86:c7:
fe:38:b1:5f:03:1f:88:2f:98:72:df:7d:f3:8d:57:7e:e5:b8:
13:87:86:25:21:b3:b6:07:c0:d8:01:73:47:af:a4:9a:cb:91:
2c:99:31:aa:0b:91:ce:0c:7b:e5:6c:31:8e:db:2b:74:ba:35:
43:5e:00:02:5a:8a:79:27:ca:b9:d5:35:32:39:00:c7:a1:15:
14:16:0a:c9:52:2d:a8:a7:57:fb:e4:c6:96:ad:d4:76:bd:2c:
20:75:c8:3f:ca:62:49:f5:79:a8:9f:da:09:a8:da:cf:1f:e6:
18:7e:64:0f:fb:ba:41:72:26:50:27:66:c1:4a:de:6e:16:83:
07:71:30:b3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBf6cqDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZWQwOGMwY2NkYTgwMmNmMjBjZTdhYmRlZWEyMDIxNGUwNWU0N2FmMB4XDTIyMDEw
MTA4MDYxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjUzNTY4YmY4MDUw
NTIwMGVhOTFhMDVlODEyZmI1MzExMWJmMjI1NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIn90/T6QKwADYP8ALWRKs/GrYgBAWCHj7MNbUkKHnZ/5oqU
LtoVggjWS4Q8R8SfzS4LF+p0dDGlSJOgbOBQK7s4iuWLkWYwOfr8htqLTeRP4dpg
mcpdnutgAZXpxHxDxNr5pxq/6icIyzBvKArnIy5jyuJqu3LCIYfKIOCTBsg1qOXj
dGi4dfKw9KoauQOg9dJ0NxTx4YT33AjY6VaSngOntHsugyXRTAmpy4WkG2tkyasL
W40lnS2OO+lXV/uT5+rDM92OFhIH8uOmiW5UJW/EfIL8FCCO7N7RRtYx6nyyXszk
wJhAsjE1swW5Qr4YwdM4uG1d9n2yuPcKGMPS2l0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRlNWi/gFBSAOqRoF6BL7UxEb8iVDAfBgNVHSMEGDAWgBR+0IwMzagCzyDO
er3uogIU4F5HrzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2Z0Q01ETTJvQXM4Z3pucTk3cUlDRk9CZVI2OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmMvM2EyMGQ4LWU5MDItNDFmNS1iZWZhLWFiNWYzOWZiOGQzNi8x
L1pUVm92NEJRVWdEcWthQmVnUy0xTVJHX0lsUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmMv
M2EyMGQ4LWU5MDItNDFmNS1iZWZhLWFiNWYzOWZiOGQzNi8xL2Z0Q01ETTJvQXM4
Z3pucTk3cUlDRk9CZVI2OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdWBwDANBgkqhkiG9w0BAQsFAAOC
AQEADPxmZXRTonmKFhpB+p+UyDp39shGlkiTZUEy1AaWjxZYPigDJIeVNVuTFNQM
+tVATJ/PEkM6frdTsa4ogIuzWE1/03krjOa6KXFrq342I1P8v+4MzaIjApKCyXvw
M1Gh40XlrgVdvSOJTfp6RoDGURMSxOOc7eioVt6MiYbH/jixXwMfiC+Yct99841X
fuW4E4eGJSGztgfA2AFzR6+kmsuRLJkxqguRzgx75WwxjtsrdLo1Q14AAlqKeSfK
udU1MjkAx6EVFBYKyVItqKdX++TGlq3Udr0sIHXIP8piSfV5qJ/aCajazx/mGH5k
D/u6QXImUCdmwUrebhaDB3Ewsw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:34 2024 by rpki-client on console-ams.rpki-client.org