Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/754af9-78df-4bd1-b480-527c81958649/1/X59397i9tszacRPREKyt-0SH11E.roa
File: X59397i9tszacRPREKyt-0SH11E.roa (raw, json)
Hash identifier: lOdHcQFrfR2Hrd3RtLF1SiY67IsQXTAQ14YDIeHHzu0=
Subject key identifier: 5F:9F:77:F7:B8:BD:B6:CC:DA:71:13:D1:10:AC:AD:FB:44:87:D7:51
Certificate issuer: /CN=56bd7f6adfec6d44d16d3e3f798e3f2bd20da3ff
Certificate serial: 1A8EA31B
Authority key identifier: 56:BD:7F:6A:DF:EC:6D:44:D1:6D:3E:3F:79:8E:3F:2B:D2:0D:A3:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vr1_at_sbUTRbT4_eY4_K9INo_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/754af9-78df-4bd1-b480-527c81958649/1/X59397i9tszacRPREKyt-0SH11E.roa
Signing time: Thu 28 Apr 2022 10:38:06 +0000
ROA not before: Thu 28 Apr 2022 10:38:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49544
IP address blocks: 212.18.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 445555483 (0x1a8ea31b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56bd7f6adfec6d44d16d3e3f798e3f2bd20da3ff
Validity
Not Before: Apr 28 10:38:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f9f77f7b8bdb6ccda7113d110acadfb4487d751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:72:49:9c:ef:29:43:54:00:f3:7a:fd:45:9a:
59:6a:cb:85:67:31:f9:89:4a:10:e1:f3:c4:4b:97:
74:32:00:0a:c0:88:0a:9a:12:c2:f4:15:56:68:36:
15:35:4c:31:2d:34:a6:08:91:26:5d:07:e8:d2:ee:
53:91:bd:c9:db:5f:90:62:4f:b4:fe:1b:d1:b8:90:
4f:4d:5d:c9:e2:b9:43:e5:a1:b9:d6:ae:ac:de:ac:
7d:22:0b:9a:a8:f5:b7:16:04:2b:06:46:84:fc:17:
50:b2:82:06:82:34:82:9e:68:ca:a2:d1:aa:ea:92:
fd:02:e8:cd:6b:72:0b:7f:17:3c:52:1a:ac:32:2d:
40:0b:e3:c1:6d:ce:6f:67:cb:27:6b:1e:8d:c6:f0:
b4:a5:0a:26:20:a9:71:73:3d:33:7b:d1:e9:18:a6:
fc:61:45:f2:e9:8c:d5:84:ac:aa:9d:e4:83:05:d8:
55:0e:52:c7:c3:e5:6c:75:41:45:7d:ee:42:d3:ff:
91:e1:81:03:73:0b:b6:11:df:21:cf:28:5c:a5:e1:
63:bb:26:52:b0:0a:3c:61:3c:60:5c:4d:eb:14:1b:
1d:5e:e5:f9:c3:6e:9a:9c:2b:f1:56:1e:ee:d2:cc:
ea:fe:28:d3:cc:6f:80:c2:ca:35:04:34:59:73:49:
da:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:9F:77:F7:B8:BD:B6:CC:DA:71:13:D1:10:AC:AD:FB:44:87:D7:51
X509v3 Authority Key Identifier:
keyid:56:BD:7F:6A:DF:EC:6D:44:D1:6D:3E:3F:79:8E:3F:2B:D2:0D:A3:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vr1_at_sbUTRbT4_eY4_K9INo_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/754af9-78df-4bd1-b480-527c81958649/1/X59397i9tszacRPREKyt-0SH11E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/754af9-78df-4bd1-b480-527c81958649/1/Vr1_at_sbUTRbT4_eY4_K9INo_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.230.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:a3:22:76:c1:57:32:e7:d6:9e:c0:7c:18:8a:b0:8e:7d:32:
d6:ff:24:4f:b8:8d:c6:b6:af:1a:d9:8a:1b:a9:22:05:26:81:
db:e0:92:2f:7e:16:f9:e1:06:0a:2f:2f:c3:a5:13:4d:cd:6a:
94:58:81:03:44:b2:a8:0c:ce:16:95:0f:46:46:1a:be:b9:43:
f3:b1:4f:3e:c9:1f:a9:30:10:34:57:b0:48:14:e7:5e:94:d5:
c6:25:1f:8e:0e:63:2f:2c:40:19:b0:e6:5e:ed:1d:d4:fa:f7:
55:4d:59:ad:24:6c:90:5d:dd:0f:1e:46:c7:98:79:10:99:15:
ed:b5:e9:bb:92:98:e2:ef:0a:b1:7d:21:cc:9b:8c:4a:93:69:
32:0c:ab:9d:6e:8f:92:fc:22:e6:60:55:1d:cb:39:a1:1a:13:
a7:9a:da:25:c7:12:42:6f:c3:63:e4:f9:af:f7:f7:ee:71:2f:
9b:16:7e:49:c1:ef:60:85:5d:e7:b7:1d:fa:b4:1c:73:a5:83:
c0:fa:78:90:e9:aa:ec:71:7b:66:55:0b:42:83:0b:6f:34:bf:
ba:5e:77:e7:5a:75:7f:8e:3e:af:b8:c1:fb:14:f1:9c:a7:df:
13:9f:f8:39:c5:3c:90:79:cb:c7:99:22:76:dc:5e:0f:2e:4b:
6b:08:ae:f6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGo6jGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NmJkN2Y2YWRmZWM2ZDQ0ZDE2ZDNlM2Y3OThlM2YyYmQyMGRhM2ZmMB4XDTIyMDQy
ODEwMzgwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWY5Zjc3ZjdiOGJk
YjZjY2RhNzExM2QxMTBhY2FkZmI0NDg3ZDc1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALJySZzvKUNUAPN6/UWaWWrLhWcx+YlKEOHzxEuXdDIACsCI
CpoSwvQVVmg2FTVMMS00pgiRJl0H6NLuU5G9ydtfkGJPtP4b0biQT01dyeK5Q+Wh
udaurN6sfSILmqj1txYEKwZGhPwXULKCBoI0gp5oyqLRquqS/QLozWtyC38XPFIa
rDItQAvjwW3Ob2fLJ2sejcbwtKUKJiCpcXM9M3vR6Rim/GFF8umM1YSsqp3kgwXY
VQ5Sx8PlbHVBRX3uQtP/keGBA3MLthHfIc8oXKXhY7smUrAKPGE8YFxN6xQbHV7l
+cNumpwr8VYe7tLM6v4o08xvgMLKNQQ0WXNJ2t8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRfn3f3uL22zNpxE9EQrK37RIfXUTAfBgNVHSMEGDAWgBRWvX9q3+xtRNFt
Pj95jj8r0g2j/zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZyMV9hdF9zYlVUUmJUNF9lWTRfSzlJTm9fOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvNzU0YWY5LTc4ZGYtNGJkMS1iNDgwLTUyN2M4MTk1ODY0OS8x
L1g1OTM5N2k5dHN6YWNSUFJFS3l0LTBTSDExRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAv
NzU0YWY5LTc4ZGYtNGJkMS1iNDgwLTUyN2M4MTk1ODY0OS8xL1ZyMV9hdF9zYlVU
UmJUNF9lWTRfSzlJTm9fOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANQS5jANBgkqhkiG9w0BAQsFAAOC
AQEAfqMidsFXMufWnsB8GIqwjn0y1v8kT7iNxravGtmKG6kiBSaB2+CSL34W+eEG
Ci8vw6UTTc1qlFiBA0SyqAzOFpUPRkYavrlD87FPPskfqTAQNFewSBTnXpTVxiUf
jg5jLyxAGbDmXu0d1Pr3VU1ZrSRskF3dDx5Gx5h5EJkV7bXpu5KY4u8KsX0hzJuM
SpNpMgyrnW6Pkvwi5mBVHcs5oRoTp5raJccSQm/DY+T5r/f37nEvmxZ+ScHvYIVd
57cd+rQcc6WDwPp4kOmq7HF7ZlULQoMLbzS/ul5351p1f44+r7jB+xTxnKffE5/4
OcU8kHnLx5kidtxeDy5Lawiu9g==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:10 2025 by rpki-client