Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/lXT63r91k6Fd5GHlqGK3RAZh7Ho.roa
File: lXT63r91k6Fd5GHlqGK3RAZh7Ho.roa (raw, json)
Hash identifier: oGl8PTFGFbHx8pOj2kyn5P0c1oSNoWduE+yDccV8Kg4=
Subject key identifier: 95:74:FA:DE:BF:75:93:A1:5D:E4:61:E5:A8:62:B7:44:06:61:EC:7A
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 14C565B8
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/lXT63r91k6Fd5GHlqGK3RAZh7Ho.roa
Signing time: Tue 22 Mar 2022 11:01:06 +0000
ROA not before: Tue 22 Mar 2022 11:01:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209956
IP address blocks: 213.238.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 348480952 (0x14c565b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Mar 22 11:01:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9574fadebf7593a15de461e5a862b7440661ec7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e0:8a:16:8b:60:d4:db:e9:88:cd:d0:9d:eb:
cc:58:2e:29:53:ac:a8:e1:13:5f:fc:51:c9:91:05:
6e:7b:6c:80:5f:85:14:d2:c6:43:3e:7f:11:d8:98:
1b:59:8a:da:f6:d5:1b:d8:fc:3f:ec:d6:d1:15:d0:
c5:50:91:47:28:60:e3:f6:9f:28:af:02:4d:ca:b8:
61:fa:a3:c0:1c:39:9b:6d:e8:c4:3f:14:f7:9c:7f:
6e:10:b3:51:2c:49:f3:22:f7:d5:b6:79:46:ab:a2:
bf:80:b3:0b:b5:8f:f3:a4:12:ae:de:bc:90:ac:4c:
13:0c:3e:9c:79:9e:8f:c7:d0:20:d4:8a:25:22:10:
b7:2b:d1:46:36:d5:87:2b:63:b1:b0:d0:c8:98:69:
dd:8c:d0:2a:59:b4:91:52:50:04:a4:80:01:2a:3e:
08:c3:74:63:8e:bf:45:4b:b2:b5:2b:54:62:95:73:
01:a6:a1:69:f2:b8:48:c6:25:8b:84:ba:0e:3c:a4:
6b:19:e1:eb:35:8d:33:b6:bd:45:1a:e6:14:a9:c4:
32:76:d6:ab:9a:7e:17:55:f0:d5:a8:a4:fa:1a:71:
58:a9:42:6d:4c:9d:80:c2:fb:c7:80:05:95:f6:cb:
62:99:df:eb:7f:4a:2c:81:ee:3a:be:a3:38:1c:b6:
50:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:74:FA:DE:BF:75:93:A1:5D:E4:61:E5:A8:62:B7:44:06:61:EC:7A
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/lXT63r91k6Fd5GHlqGK3RAZh7Ho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.187.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:7c:6b:59:27:17:d7:7a:5e:3f:86:e4:86:b2:aa:3f:7e:4e:
c0:78:af:ee:15:7c:44:68:07:93:9a:ee:9d:ab:82:dd:af:c9:
85:cf:34:f2:3b:b6:18:f9:5f:8e:92:89:d2:e6:35:7b:38:f8:
c7:93:a7:27:7b:64:cf:c6:1e:72:93:e8:e8:78:20:8c:ad:d7:
14:54:ab:88:a4:b3:3b:92:18:d7:11:2b:cd:a5:b2:58:59:d4:
9d:91:04:1b:6c:9a:e4:9f:ee:11:55:41:09:2d:f3:7e:17:fe:
fc:c6:fd:36:3d:8e:00:c1:82:02:df:6a:f8:74:34:a3:cd:ca:
d6:3f:8c:4e:2d:bd:f1:0e:27:ca:1b:25:c0:29:b2:5b:b9:c2:
ee:0f:72:63:6e:7b:08:d1:3f:ac:d9:6f:c1:a1:4e:24:4c:20:
64:7b:e9:34:dd:1f:0e:28:9b:ac:a6:22:0e:16:06:b0:4c:00:
0d:21:6c:96:a2:45:e3:a0:15:dc:0f:b5:e6:b1:bf:a6:f5:d4:
27:ac:99:4c:9e:13:fd:b3:f7:3d:b3:3d:f7:a5:49:71:e9:9b:
73:69:5c:58:99:f3:0f:32:57:85:d4:7f:f5:e1:db:b7:dd:38:
9c:ba:92:d1:cb:74:92:10:00:89:97:9c:83:12:a6:f4:a5:92:
fc:70:85:cf
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFMVluDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NGNiZGE3OGIxZDFiNjEzZGY1NjVmZjk5NzAwYjZhZWU5NDBkZTNmMB4XDTIyMDMy
MjExMDEwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTU3NGZhZGViZjc1
OTNhMTVkZTQ2MWU1YTg2MmI3NDQwNjYxZWM3YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANjgihaLYNTb6YjN0J3rzFguKVOsqOETX/xRyZEFbntsgF+F
FNLGQz5/EdiYG1mK2vbVG9j8P+zW0RXQxVCRRyhg4/afKK8CTcq4YfqjwBw5m23o
xD8U95x/bhCzUSxJ8yL31bZ5Rquiv4CzC7WP86QSrt68kKxMEww+nHmej8fQINSK
JSIQtyvRRjbVhytjsbDQyJhp3YzQKlm0kVJQBKSAASo+CMN0Y46/RUuytStUYpVz
AaahafK4SMYli4S6Djykaxnh6zWNM7a9RRrmFKnEMnbWq5p+F1Xw1aik+hpxWKlC
bUydgML7x4AFlfbLYpnf639KLIHuOr6jOBy2UD0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSVdPrev3WToV3kYeWoYrdEBmHsejAfBgNVHSMEGDAWgBRUy9p4sdG2E99W
X/mXALau6UDePzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZNdmFlTEhSdGhQZlZsXzVsd0MycnVsQTNqOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvNmQ2MWQ5LTBiZjctNDRiYi1iODBmLWNkMzE2MTVkMDFhOS8x
L2xYVDYzcjkxazZGZDVHSGxxR0szUkFaaDdIby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAv
NmQ2MWQ5LTBiZjctNDRiYi1iODBmLWNkMzE2MTVkMDFhOS8xL1ZNdmFlTEhSdGhQ
ZlZsXzVsd0MycnVsQTNqOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANXuuzANBgkqhkiG9w0BAQsFAAOC
AQEADXxrWScX13peP4bkhrKqP35OwHiv7hV8RGgHk5runauC3a/Jhc808ju2GPlf
jpKJ0uY1ezj4x5OnJ3tkz8YecpPo6HggjK3XFFSriKSzO5IY1xErzaWyWFnUnZEE
G2ya5J/uEVVBCS3zfhf+/Mb9Nj2OAMGCAt9q+HQ0o83K1j+MTi298Q4nyhslwCmy
W7nC7g9yY257CNE/rNlvwaFOJEwgZHvpNN0fDiibrKYiDhYGsEwADSFslqJF46AV
3A+15rG/pvXUJ6yZTJ4T/bP3PbM996VJcembc2lcWJnzDzJXhdR/9eHbt904nLqS
0ct0khAAiZecgxKm9KWS/HCFzw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:27 2024 by rpki-client on console-fra.rpki-client.org