Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/xTUGoQduumZJNSNT6_YXNHuqQgA.roa
File: xTUGoQduumZJNSNT6_YXNHuqQgA.roa (raw, json)
Hash identifier: IDG5z6YwAzkeDfTTNioDVPjazJ13Hl3I2guMPxJEg6g=
Subject key identifier: C5:35:06:A1:07:6E:BA:66:49:35:23:53:EB:F6:17:34:7B:AA:42:00
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 018480FAB566347C7CBD219E6F929DA67CE8
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/xTUGoQduumZJNSNT6_YXNHuqQgA.roa
Signing time: Wed 16 Nov 2022 15:07:04 +0000
ROA not before: Wed 16 Nov 2022 15:07:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197726
IP address blocks: 212.86.111.0/24 maxlen: 24
212.86.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:80:fa:b5:66:34:7c:7c:bd:21:9e:6f:92:9d:a6:7c:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Nov 16 15:07:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c53506a1076eba6649352353ebf617347baa4200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b3:8b:78:c5:cf:4e:36:93:f8:1c:77:df:fa:
e0:82:c8:38:44:a7:69:75:73:7c:1b:21:dd:d6:9e:
da:a0:62:73:35:3c:cd:63:3d:38:6e:ad:14:ce:99:
c0:3e:06:93:a4:62:6e:82:ee:75:66:dd:4c:c7:0f:
30:00:ac:b8:a7:6d:7d:3e:bb:03:eb:73:e3:c9:18:
a6:8d:1d:b7:cb:35:22:91:d9:89:65:f1:0b:b7:fd:
44:33:a9:a5:df:08:1a:7f:ed:11:fe:cc:3d:40:3a:
5c:3f:c7:cc:3d:76:58:1c:9a:89:61:56:a2:07:7f:
85:bd:8a:4d:fc:7d:10:01:c2:a5:2b:85:96:84:2e:
9e:c2:39:38:06:5a:f7:ac:fe:fb:9d:9e:11:ac:ad:
d9:5d:e5:7a:71:d3:fa:1c:3a:79:30:9b:0f:19:40:
30:60:51:d0:d8:b9:ec:df:9b:8a:a4:f6:4d:44:d1:
12:d3:b0:9a:11:05:e7:92:01:8e:b0:74:36:71:0a:
df:a7:93:5e:28:37:b0:fd:cd:97:f2:69:9b:8e:fe:
1d:f1:e6:ff:ce:04:b4:d5:db:a7:a9:2f:3f:22:cf:
63:dd:28:8d:1c:7b:33:08:15:d5:06:9a:b5:51:c7:
4c:09:47:66:f8:33:1b:d4:21:cd:b4:73:88:3a:37:
80:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:35:06:A1:07:6E:BA:66:49:35:23:53:EB:F6:17:34:7B:AA:42:00
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/xTUGoQduumZJNSNT6_YXNHuqQgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.86.110.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:6f:6f:ad:e8:48:38:01:21:e5:e8:d7:23:72:f0:ab:07:15:
dc:81:61:03:7a:97:a4:a9:a1:38:b1:d7:a8:d0:06:a0:40:92:
9a:62:b6:4a:94:91:6d:43:13:87:50:a7:be:a5:9f:6a:35:bb:
cd:bd:3e:04:cb:1a:e1:6c:6a:6c:05:00:16:fc:42:f8:ae:68:
5d:78:0c:f0:d2:26:a9:b5:8b:be:99:db:a5:84:96:67:30:46:
5e:32:62:91:78:fe:98:b7:fa:05:8b:9d:59:ce:52:a4:70:bb:
7c:53:32:28:9a:22:30:c9:2a:39:da:d9:6c:79:a7:08:ad:6a:
8b:01:01:b3:6c:5d:05:7e:06:4a:fd:f1:e4:44:fe:b7:4c:67:
ac:73:ac:b7:f6:07:89:d5:25:83:9c:ea:67:9b:04:82:35:25:
94:d1:d2:aa:6f:c7:e9:43:3a:55:0b:aa:ec:38:0c:e2:91:fb:
7f:7e:92:b9:c9:a3:bf:66:e4:4f:d8:4a:51:86:57:a0:71:eb:
d5:b3:6a:6f:da:88:83:86:88:ca:ec:8b:c7:d9:a7:70:4b:2b:
d7:65:16:69:30:63:ef:7c:f2:18:c3:92:ad:36:c7:fa:7a:3b:
da:13:73:d0:47:63:67:c4:c3:0a:1a:c4:d2:bf:b9:3a:2c:19:
cf:f0:bd:a0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSA+rVmNHx8vSGeb5KdpnzoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkNzQzZWQ2M2U4NjhlZjUwZjZkODRjMDAwM2E4MzQ4M2Zj
NjJhMDMwHhcNMjIxMTE2MTUwNzA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNTM1MDZhMTA3NmViYTY2NDkzNTIzNTNlYmY2MTczNDdiYWE0MjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrOLeMXPTjaT+Bx33/rggsg4RKdp
dXN8GyHd1p7aoGJzNTzNYz04bq0UzpnAPgaTpGJugu51Zt1Mxw8wAKy4p219PrsD
63PjyRimjR23yzUikdmJZfELt/1EM6ml3wgaf+0R/sw9QDpcP8fMPXZYHJqJYVai
B3+FvYpN/H0QAcKlK4WWhC6ewjk4Blr3rP77nZ4RrK3ZXeV6cdP6HDp5MJsPGUAw
YFHQ2Lns35uKpPZNRNES07CaEQXnkgGOsHQ2cQrfp5NeKDew/c2X8mmbjv4d8eb/
zgS01dunqS8/Is9j3SiNHHszCBXVBpq1UcdMCUdm+DMb1CHNtHOIOjeAewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMU1BqEHbrpmSTUjU+v2FzR7qkIAMB8GA1UdIwQY
MBaAFG10PtY+ho71D22EwAA6g0g/xioDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQt
ZTk3MjRhN2E2YmM4LzEveFRVR29RZHV1bVpKTlNOVDZfWVhOSHVxUWdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQtZTk3MjRhN2E2YmM4
LzEvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB1FZuMA0G
CSqGSIb3DQEBCwUAA4IBAQAPb2+t6Eg4ASHl6NcjcvCrBxXcgWEDepekqaE4sdeo
0AagQJKaYrZKlJFtQxOHUKe+pZ9qNbvNvT4EyxrhbGpsBQAW/EL4rmhdeAzw0iap
tYu+mdulhJZnMEZeMmKReP6Yt/oFi51ZzlKkcLt8UzIomiIwySo52tlseacIrWqL
AQGzbF0FfgZK/fHkRP63TGesc6y39geJ1SWDnOpnmwSCNSWU0dKqb8fpQzpVC6rs
OAzikft/fpK5yaO/ZuRP2EpRhlegcevVs2pv2oiDhojK7IvH2adwSyvXZRZpMGPv
fPIYw5KtNsf6ejvaE3PQR2NnxMMKGsTSv7k6LBnP8L2g
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:58 2024 by rpki-client on console-fra.rpki-client.org