Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/Jp5fPnIMybjJczLfJaaV7KEhCDI.roa
File: Jp5fPnIMybjJczLfJaaV7KEhCDI.roa (raw, json)
Hash identifier: NwgltsXRc0gICktQEgLt4SrOj82PUfgiunoL4Mrz5x8=
Subject key identifier: 26:9E:5F:3E:72:0C:C9:B8:C9:73:32:DF:25:A6:95:EC:A1:21:08:32
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 01847F584C70CD5C6EF73A18165C3C9B0C45
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/Jp5fPnIMybjJczLfJaaV7KEhCDI.roa
Signing time: Wed 16 Nov 2022 07:30:03 +0000
ROA not before: Wed 16 Nov 2022 07:30:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 213.238.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7f:58:4c:70:cd:5c:6e:f7:3a:18:16:5c:3c:9b:0c:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Nov 16 07:30:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=269e5f3e720cc9b8c97332df25a695eca1210832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:66:d8:c0:5c:18:16:d3:ad:00:46:d3:42:2d:
9a:d4:86:4b:a1:60:b5:b2:07:eb:b5:32:76:2b:12:
16:2d:0e:f4:79:e3:8d:56:ef:62:6f:65:e4:60:36:
14:8e:1f:18:c1:23:fe:d8:2b:c7:1f:4a:3e:98:7a:
28:48:01:99:b0:b8:96:c4:c0:19:09:0d:d0:0c:a5:
f9:5a:68:ab:6a:a4:42:7a:e0:11:40:d9:ef:02:52:
19:23:9d:37:24:7c:80:73:b9:6c:e3:ec:e7:8a:ff:
30:94:2a:10:4a:db:51:ac:bd:30:95:0b:b0:5f:bd:
1e:7a:b0:35:a2:ce:30:0f:01:ab:1b:df:55:dc:89:
ec:66:3b:29:4e:5d:ae:a0:35:24:55:73:1f:6c:fc:
78:ef:09:c2:33:aa:83:ef:92:54:2b:10:1c:0a:8f:
01:b4:46:cf:2e:f4:6f:16:5d:c1:54:2b:c7:f4:69:
ee:64:84:ea:e2:9a:a2:91:54:3f:ca:52:00:d6:05:
43:73:a6:5a:f6:3c:ab:a4:84:df:42:ac:64:43:c5:
d6:55:5f:a9:1b:17:5b:9e:92:20:fa:93:b3:c5:5a:
8e:7b:d5:42:f6:61:7d:32:0b:c2:74:53:c4:87:8f:
ac:b1:0b:c2:ce:60:73:12:12:27:42:1b:e1:8c:2a:
8d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:9E:5F:3E:72:0C:C9:B8:C9:73:32:DF:25:A6:95:EC:A1:21:08:32
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/Jp5fPnIMybjJczLfJaaV7KEhCDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.166.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:ab:c1:8e:d1:02:7c:cd:92:e8:d1:54:fb:d0:51:61:3b:b0:
d2:85:01:88:9e:92:70:79:cb:12:a0:ea:47:65:c8:79:48:fd:
ac:3a:2f:4a:b5:b0:a2:0e:30:ca:5d:6e:78:6a:4e:37:2a:44:
89:73:5f:4e:41:64:ed:b0:91:ed:e5:6e:2c:83:d9:be:08:48:
0e:6a:be:54:c9:47:dc:40:ff:53:5d:f7:d2:9b:f3:96:9d:26:
28:3a:05:1e:35:b1:17:03:bc:24:9f:42:12:5d:eb:1e:b2:23:
ae:7f:5d:c9:74:dc:0b:c6:b4:4b:87:05:35:ff:6f:aa:d7:97:
e1:e3:a1:0e:d0:70:b4:25:64:25:ad:ae:b7:a2:1a:47:e7:f1:
26:4b:b4:ca:06:ff:be:40:c4:14:e2:74:2b:a2:59:d5:e5:18:
22:7b:24:41:75:8c:ff:bd:35:e7:b2:6f:68:b2:a4:8c:04:41:
cc:73:0b:16:8e:9e:4b:be:0b:9c:6f:88:3f:44:44:1a:22:71:
86:a6:74:08:14:eb:23:99:28:3f:f6:2f:70:a8:ae:7d:1e:31:
50:20:38:1b:f2:c4:45:07:ec:bc:15:f8:b4:3a:6a:72:08:b3:
1e:45:5a:79:9e:67:3b:03:bf:19:a2:23:3f:18:e5:88:f8:fb:
6e:08:c1:1b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYR/WExwzVxu9zoYFlw8mwxFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0Y2JkYTc4YjFkMWI2MTNkZjU2NWZmOTk3MDBiNmFlZTk0
MGRlM2YwHhcNMjIxMTE2MDczMDAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNjllNWYzZTcyMGNjOWI4Yzk3MzMyZGYyNWE2OTVlY2ExMjEwODMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmbYwFwYFtOtAEbTQi2a1IZLoWC1
sgfrtTJ2KxIWLQ70eeONVu9ib2XkYDYUjh8YwSP+2CvHH0o+mHooSAGZsLiWxMAZ
CQ3QDKX5WmiraqRCeuARQNnvAlIZI503JHyAc7ls4+zniv8wlCoQSttRrL0wlQuw
X70eerA1os4wDwGrG99V3InsZjspTl2uoDUkVXMfbPx47wnCM6qD75JUKxAcCo8B
tEbPLvRvFl3BVCvH9GnuZITq4pqikVQ/ylIA1gVDc6Za9jyrpITfQqxkQ8XWVV+p
GxdbnpIg+pOzxVqOe9VC9mF9MgvCdFPEh4+ssQvCzmBzEhInQhvhjCqNPwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCaeXz5yDMm4yXMy3yWmleyhIQgyMB8GA1UdIwQY
MBaAFFTL2nix0bYT31Zf+ZcAtq7pQN4/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVk12YWVMSFJ0aFBmVmxfNWx3QzJydWxBM2o4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC82ZDYxZDktMGJmNy00NGJiLWI4MGYt
Y2QzMTYxNWQwMWE5LzEvSnA1ZlBuSU15YmpKY3pMZkphYVY3S0VoQ0RJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC82ZDYxZDktMGJmNy00NGJiLWI4MGYtY2QzMTYxNWQwMWE5
LzEvVk12YWVMSFJ0aFBmVmxfNWx3QzJydWxBM2o4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1e6mMA0G
CSqGSIb3DQEBCwUAA4IBAQBKq8GO0QJ8zZLo0VT70FFhO7DShQGInpJwecsSoOpH
Zch5SP2sOi9KtbCiDjDKXW54ak43KkSJc19OQWTtsJHt5W4sg9m+CEgOar5UyUfc
QP9TXffSm/OWnSYoOgUeNbEXA7wkn0ISXesesiOuf13JdNwLxrRLhwU1/2+q15fh
46EO0HC0JWQlra63ohpH5/EmS7TKBv++QMQU4nQrolnV5RgieyRBdYz/vTXnsm9o
sqSMBEHMcwsWjp5Lvgucb4g/REQaInGGpnQIFOsjmSg/9i9wqK59HjFQIDgb8sRF
B+y8Ffi0OmpyCLMeRVp5nmc7A78ZoiM/GOWI+PtuCMEb
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:27 2024 by rpki-client on console-fra.rpki-client.org