Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/LRhUj0sz_eh8AkyBKO3YsnNwd8k.roa
File: LRhUj0sz_eh8AkyBKO3YsnNwd8k.roa (raw, json)
Hash identifier: nvXeswtd/dElES6kzMIVNuVlX/2ExYjZwCOAD0nEU5Y=
Subject key identifier: 2D:18:54:8F:4B:33:FD:E8:7C:02:4C:81:28:ED:D8:B2:73:70:77:C9
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 01825E2CB0805180DDCA8FD39B0350CD1B45
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/LRhUj0sz_eh8AkyBKO3YsnNwd8k.roa
Signing time: Tue 02 Aug 2022 10:49:23 +0000
ROA not before: Tue 02 Aug 2022 10:49:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213261
IP address blocks: 213.238.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5e:2c:b0:80:51:80:dd:ca:8f:d3:9b:03:50:cd:1b:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Aug 2 10:49:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d18548f4b33fde87c024c8128edd8b2737077c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c3:4f:42:1c:22:e1:01:c0:a4:fc:93:77:e9:
61:98:40:8f:7d:49:14:e1:7d:a2:52:ff:95:1a:8d:
10:d3:c9:89:64:bb:e3:d0:c6:92:23:45:05:8d:fe:
c9:67:b3:9e:3f:8e:e2:25:40:bb:f2:57:6d:dd:63:
06:fd:f9:ca:c9:72:36:cc:b6:2a:21:11:2b:59:93:
08:ea:34:71:d5:cc:b3:b5:1a:4a:a9:55:f5:21:7f:
66:78:03:d3:17:07:b7:f3:85:1e:0d:79:49:19:13:
6b:45:cc:e2:36:13:79:84:b8:42:fd:5c:ab:88:f5:
73:1f:df:e7:ba:e5:a5:fd:fb:e1:1a:99:72:84:2c:
7e:1b:04:5f:eb:29:c5:59:aa:a4:db:d1:42:27:43:
15:58:3e:66:c5:5f:56:58:70:f5:89:4f:44:38:dd:
71:23:85:8b:1a:a3:f1:8c:fc:c9:bd:60:a6:a2:c1:
9d:75:5c:2d:34:7b:81:33:13:39:8c:ca:db:62:36:
b9:3f:6b:13:7f:23:b4:d8:94:bb:f6:8f:99:60:6b:
17:e1:d7:7f:4d:7b:69:6b:a4:06:83:7b:0b:bc:52:
ce:3b:e5:5b:0a:d3:36:dd:40:3f:c7:fd:28:c9:2d:
5e:6d:4c:fa:3f:2e:72:96:eb:eb:f1:51:96:32:1a:
0e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:18:54:8F:4B:33:FD:E8:7C:02:4C:81:28:ED:D8:B2:73:70:77:C9
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/LRhUj0sz_eh8AkyBKO3YsnNwd8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.188.0/24
Signature Algorithm: sha256WithRSAEncryption
12:7a:92:bb:32:94:96:f5:3c:bb:77:15:18:42:18:04:16:c7:
65:2e:a4:3a:1e:3c:c9:0b:72:81:09:cb:77:f7:e8:40:b1:67:
b2:2a:2e:69:98:ab:6b:95:82:51:66:16:ae:2e:06:2b:fc:5d:
43:de:c1:2a:fb:c7:4c:b5:28:6a:aa:dd:9b:72:76:d0:f3:56:
2b:f4:7b:56:11:e4:ac:e1:3a:99:0c:d7:cd:2a:cf:a5:6f:79:
df:22:e4:1d:6f:4e:ef:62:d6:71:f5:29:bc:2b:4d:26:a6:55:
0e:e7:da:78:2d:f1:e2:38:74:88:7c:72:44:c2:a2:05:68:3e:
45:2c:cd:26:80:91:20:fc:d1:39:3e:a5:00:a8:13:dd:d9:04:
c3:47:d5:19:a9:2c:8a:bf:06:36:f0:7d:3d:4c:cb:0b:03:6d:
5f:6b:98:49:02:5b:4e:6f:d4:bd:c5:bd:a8:12:6c:93:ca:90:
10:e2:61:b0:79:61:04:68:7c:19:4d:7c:20:9a:9c:b6:6c:7f:
b8:a3:fc:f6:65:72:25:a9:10:f0:25:bc:be:c0:d3:7d:e2:81:
70:0f:b6:ee:36:5e:5c:ad:71:a4:73:b4:f8:a3:ab:dd:84:db:
ba:46:5d:a9:09:b4:db:2e:c5:93:e3:e7:aa:35:26:6b:69:83:
96:03:25:fa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJeLLCAUYDdyo/TmwNQzRtFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0Y2JkYTc4YjFkMWI2MTNkZjU2NWZmOTk3MDBiNmFlZTk0
MGRlM2YwHhcNMjIwODAyMTA0OTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDE4NTQ4ZjRiMzNmZGU4N2MwMjRjODEyOGVkZDhiMjczNzA3N2M5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAosNPQhwi4QHApPyTd+lhmECPfUkU
4X2iUv+VGo0Q08mJZLvj0MaSI0UFjf7JZ7OeP47iJUC78ldt3WMG/fnKyXI2zLYq
IRErWZMI6jRx1cyztRpKqVX1IX9meAPTFwe384UeDXlJGRNrRcziNhN5hLhC/Vyr
iPVzH9/nuuWl/fvhGplyhCx+GwRf6ynFWaqk29FCJ0MVWD5mxV9WWHD1iU9EON1x
I4WLGqPxjPzJvWCmosGddVwtNHuBMxM5jMrbYja5P2sTfyO02JS79o+ZYGsX4dd/
TXtpa6QGg3sLvFLOO+VbCtM23UA/x/0oyS1ebUz6Py5yluvr8VGWMhoOiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC0YVI9LM/3ofAJMgSjt2LJzcHfJMB8GA1UdIwQY
MBaAFFTL2nix0bYT31Zf+ZcAtq7pQN4/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVk12YWVMSFJ0aFBmVmxfNWx3QzJydWxBM2o4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC82ZDYxZDktMGJmNy00NGJiLWI4MGYt
Y2QzMTYxNWQwMWE5LzEvTFJoVWowc3pfZWg4QWt5QktPM1lzbk53ZDhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC82ZDYxZDktMGJmNy00NGJiLWI4MGYtY2QzMTYxNWQwMWE5
LzEvVk12YWVMSFJ0aFBmVmxfNWx3QzJydWxBM2o4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1e68MA0G
CSqGSIb3DQEBCwUAA4IBAQASepK7MpSW9Ty7dxUYQhgEFsdlLqQ6HjzJC3KBCct3
9+hAsWeyKi5pmKtrlYJRZhauLgYr/F1D3sEq+8dMtShqqt2bcnbQ81Yr9HtWEeSs
4TqZDNfNKs+lb3nfIuQdb07vYtZx9Sm8K00mplUO59p4LfHiOHSIfHJEwqIFaD5F
LM0mgJEg/NE5PqUAqBPd2QTDR9UZqSyKvwY28H09TMsLA21fa5hJAltOb9S9xb2o
EmyTypAQ4mGweWEEaHwZTXwgmpy2bH+4o/z2ZXIlqRDwJby+wNN94oFwD7buNl5c
rXGkc7T4o6vdhNu6Rl2pCbTbLsWT4+eqNSZraYOWAyX6
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:27 2024 by rpki-client on console-fra.rpki-client.org