Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/1-wZsWcpea0nY-0--SlY_sc9jLhQ.roa
File: 1-wZsWcpea0nY-0--SlY_sc9jLhQ.roa (raw, json)
Hash identifier: LWRP3TIz8R9fOTTEdSoJLYHfFRP22vLbTSpmQIbQ10Q=
Subject key identifier: FB:06:6C:59:CA:5E:6B:49:D8:FB:4F:BE:4A:56:3F:B1:CF:63:2E:14
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 13EB549A
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/1-wZsWcpea0nY-0--SlY_sc9jLhQ.roa
Signing time: Sat 01 Jan 2022 11:55:22 +0000
ROA not before: Sat 01 Jan 2022 11:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6135
IP address blocks: 213.238.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 334189722 (0x13eb549a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 11:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb066c59ca5e6b49d8fb4fbe4a563fb1cf632e14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:78:da:8f:c7:4f:78:e2:b6:0a:14:c9:d2:53:
8d:a4:83:96:23:55:5f:37:43:a8:89:98:30:a6:cb:
85:be:7f:4e:f4:0c:17:04:5b:c9:ba:d6:43:a1:66:
86:b5:9b:aa:08:06:37:f9:c0:cc:8f:f5:f8:bb:69:
6c:87:b0:7a:7c:d9:ba:ca:ee:d5:a5:62:62:f2:c4:
e1:c1:15:d3:e0:b4:13:03:0a:aa:c7:c0:2f:18:c2:
05:5c:77:26:bc:11:51:86:f4:54:57:6a:35:56:9d:
d1:0e:79:3b:8a:12:8a:5b:72:e7:a5:5f:f7:47:d1:
52:af:3a:2c:c0:49:a8:54:18:5f:e6:af:66:65:36:
a0:14:40:69:a5:b9:1c:72:50:d0:58:71:b9:a1:ec:
6e:a1:41:eb:d3:f8:21:07:15:ae:f4:da:b1:d8:3f:
15:8f:32:e7:78:52:8b:bd:86:8d:83:bf:1c:ab:03:
e0:e7:78:a7:0a:91:70:a7:4a:af:6f:75:7e:eb:b5:
71:c3:34:a3:87:d7:36:37:02:a3:91:c4:3d:f8:fc:
32:54:16:d6:42:fe:49:cc:95:7b:10:06:4b:83:1f:
ad:6f:fd:ff:5c:23:03:41:87:d7:19:06:53:f3:20:
fe:f9:76:a3:d9:46:e9:3a:ba:87:0b:62:8d:1f:0e:
28:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:06:6C:59:CA:5E:6B:49:D8:FB:4F:BE:4A:56:3F:B1:CF:63:2E:14
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/1-wZsWcpea0nY-0--SlY_sc9jLhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.167.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:dc:27:57:e6:41:76:39:4d:a5:1d:43:fd:d0:9a:4e:c9:28:
0b:fb:a4:62:97:30:c3:6c:e0:08:34:d4:70:0e:22:a5:68:31:
87:93:4d:62:cb:d6:05:6f:86:8c:ae:80:32:63:4d:c4:cd:d3:
ea:37:ed:76:e7:60:5e:1a:f8:fa:b1:73:b9:0c:9b:a2:bc:e5:
6e:7d:17:b5:9b:b7:8b:94:50:05:47:44:72:ef:80:a1:3d:bc:
94:86:bf:a4:dd:fb:b5:09:47:61:34:c9:70:82:89:7f:cc:d1:
60:8f:a3:87:67:78:57:76:94:2b:ef:c8:b1:85:84:72:ae:a7:
c3:e5:0d:c6:e2:13:72:1d:63:6a:aa:59:dd:2f:2b:6b:1d:06:
72:a5:01:2e:b4:a7:15:47:63:d7:b3:86:5a:1f:b2:de:37:eb:
a5:0c:10:7a:1d:c2:34:12:b3:24:6e:79:95:c2:2c:35:03:07:
25:61:97:8b:35:f9:dc:e3:b2:dc:c7:cb:f5:81:b2:6e:96:87:
12:3a:85:b7:ba:7f:d3:27:4e:6a:63:e4:f6:af:ba:b7:25:a9:
24:cc:ff:fe:4d:9b:46:99:cb:1a:e6:4b:2c:16:b3:7b:d9:99:
40:e2:e6:35:77:07:05:02:6a:4f:d0:dd:81:cc:4c:19:f0:c2:
ee:2b:df:25
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEE+tUmjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NGNiZGE3OGIxZDFiNjEzZGY1NjVmZjk5NzAwYjZhZWU5NDBkZTNmMB4XDTIyMDEw
MTExNTUyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmIwNjZjNTljYTVl
NmI0OWQ4ZmI0ZmJlNGE1NjNmYjFjZjYzMmUxNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOd42o/HT3jitgoUydJTjaSDliNVXzdDqImYMKbLhb5/TvQM
FwRbybrWQ6FmhrWbqggGN/nAzI/1+LtpbIewenzZusru1aViYvLE4cEV0+C0EwMK
qsfALxjCBVx3JrwRUYb0VFdqNVad0Q55O4oSilty56Vf90fRUq86LMBJqFQYX+av
ZmU2oBRAaaW5HHJQ0FhxuaHsbqFB69P4IQcVrvTasdg/FY8y53hSi72GjYO/HKsD
4Od4pwqRcKdKr291fuu1ccM0o4fXNjcCo5HEPfj8MlQW1kL+ScyVexAGS4MfrW/9
/1wjA0GH1xkGU/Mg/vl2o9lG6Tq6hwtijR8OKBkCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT7BmxZyl5rSdj7T75KVj+xz2MuFDAfBgNVHSMEGDAWgBRUy9p4sdG2E99W
X/mXALau6UDePzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZNdmFlTEhSdGhQZlZsXzVsd0MycnVsQTNqOC5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvNmQ2MWQ5LTBiZjctNDRiYi1iODBmLWNkMzE2MTVkMDFhOS8x
LzEtd1pzV2NwZWEwblktMC0tU2xZX3NjOWpMaFEucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMw
LzZkNjFkOS0wYmY3LTQ0YmItYjgwZi1jZDMxNjE1ZDAxYTkvMS9WTXZhZUxIUnRo
UGZWbF81bHdDMnJ1bEEzajguY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADV7qcwDQYJKoZIhvcNAQELBQAD
ggEBAK7cJ1fmQXY5TaUdQ/3Qmk7JKAv7pGKXMMNs4Ag01HAOIqVoMYeTTWLL1gVv
hoyugDJjTcTN0+o37XbnYF4a+Pqxc7kMm6K85W59F7Wbt4uUUAVHRHLvgKE9vJSG
v6Td+7UJR2E0yXCCiX/M0WCPo4dneFd2lCvvyLGFhHKup8PlDcbiE3IdY2qqWd0v
K2sdBnKlAS60pxVHY9ezhlofst4366UMEHodwjQSsyRueZXCLDUDByVhl4s1+dzj
stzHy/WBsm6WhxI6hbe6f9MnTmpj5PavurclqSTM//5Nm0aZyxrmSywWs3vZmUDi
5jV3BwUCak/Q3YHMTBnwwu4r3yU=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:07 2023 by rpki-client on console-fra.rpki-client.org