Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/sXmKkXLllWHecYQh7Se4LegSpb4.roa
File: sXmKkXLllWHecYQh7Se4LegSpb4.roa (raw, json)
Hash identifier: puSgZe7fs6chnEGnNFbfMDP31h9vsJNuSFgwpKQ/6Xs=
Subject key identifier: B1:79:8A:91:72:E5:95:61:DE:71:84:21:ED:27:B8:2D:E8:12:A5:BE
Certificate issuer: /CN=121f13882dd06d098ec49a759101329b1f201f1d
Certificate serial: 08FAA044
Authority key identifier: 12:1F:13:88:2D:D0:6D:09:8E:C4:9A:75:91:01:32:9B:1F:20:1F:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eh8TiC3QbQmOxJp1kQEymx8gHx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/sXmKkXLllWHecYQh7Se4LegSpb4.roa
Signing time: Sat 01 Jan 2022 07:52:33 +0000
ROA not before: Sat 01 Jan 2022 07:52:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2202
IP address blocks: 147.210.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150642756 (0x8faa044)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=121f13882dd06d098ec49a759101329b1f201f1d
Validity
Not Before: Jan 1 07:52:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1798a9172e59561de718421ed27b82de812a5be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e7:af:3c:cf:01:db:b0:9a:68:ad:f0:29:70:
c0:6a:a7:9d:55:71:97:3d:3b:aa:71:75:5c:47:1c:
44:d2:a0:49:e2:46:2b:cd:f2:84:a5:59:63:6d:7c:
c3:fd:b8:92:34:2c:14:e1:9b:fa:71:b6:db:e3:20:
f7:d5:50:c3:d7:93:a8:d9:5d:8b:6b:4a:c5:9e:72:
c9:78:15:94:57:30:7a:15:1f:6c:ab:72:7c:88:97:
c8:c8:0b:e4:26:d6:5c:ff:b0:6a:1a:a9:84:fd:1f:
1e:fc:c5:9d:84:72:e8:03:38:f6:60:f1:b6:3a:6f:
0d:dd:74:40:10:4f:b4:40:4a:e8:c8:c7:c1:aa:3d:
a2:28:97:40:56:ce:5d:ee:94:4a:92:80:b5:f7:f1:
4e:0e:c9:ab:89:62:d6:70:ef:e4:36:6c:bd:98:73:
28:ff:03:35:0b:92:a8:05:a1:f0:4d:33:0d:82:d0:
90:b9:7e:6d:b9:a1:97:12:3b:b5:21:a0:91:bf:b1:
c6:6e:15:4c:df:04:06:e5:15:23:80:1f:99:b5:5a:
61:5a:09:af:de:99:1e:23:2a:81:30:56:fb:0c:a9:
79:aa:44:e7:dd:15:68:5b:ef:ba:16:3e:74:5f:c3:
00:1d:a5:c5:a6:48:0e:f8:ba:cc:79:85:76:61:c8:
05:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:79:8A:91:72:E5:95:61:DE:71:84:21:ED:27:B8:2D:E8:12:A5:BE
X509v3 Authority Key Identifier:
keyid:12:1F:13:88:2D:D0:6D:09:8E:C4:9A:75:91:01:32:9B:1F:20:1F:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eh8TiC3QbQmOxJp1kQEymx8gHx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/sXmKkXLllWHecYQh7Se4LegSpb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/Eh8TiC3QbQmOxJp1kQEymx8gHx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.210.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2d:5a:1a:ea:de:a5:be:8a:d9:6e:eb:b6:ab:7a:03:de:f3:9f:
42:27:94:ec:c6:90:17:2e:4d:10:ea:b5:83:29:18:0a:10:da:
38:03:ce:b9:cc:7d:e1:32:d3:4e:20:7e:d5:3c:e0:2e:bb:13:
d7:ef:12:70:ed:bb:e5:d8:8e:8c:a0:68:42:fa:2d:3c:29:97:
d9:80:18:f3:87:26:45:cb:ac:e6:fa:00:50:1c:d4:8d:fe:79:
12:12:be:ae:c1:e7:f9:8d:04:dd:a9:3b:33:ee:24:36:c4:97:
bd:a4:14:5f:d2:2a:cf:13:94:53:14:a6:4c:de:10:68:0a:36:
fd:26:79:fe:88:0f:05:a4:4d:4c:cf:d0:53:7b:ca:49:fc:c0:
02:d3:6e:f5:ab:88:e8:52:17:50:31:79:17:b1:17:e0:68:6e:
05:07:58:d0:e0:69:83:5d:d7:5b:ca:9d:7f:9c:a9:9c:1a:e4:
f0:bf:53:21:57:30:56:59:31:cf:6e:0e:0f:d3:cb:85:a2:56:
f7:40:89:20:31:97:cf:51:90:20:a1:64:ef:64:3a:5f:04:04:
c7:eb:4f:bc:7a:34:79:bd:d2:d7:61:c9:f6:f4:29:38:68:e4:
cc:62:ee:6a:7f:d7:be:76:f0:47:d5:ef:c0:ce:90:45:ce:65:
b0:a2:07:0d
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIECPqgRDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MjFmMTM4ODJkZDA2ZDA5OGVjNDlhNzU5MTAxMzI5YjFmMjAxZjFkMB4XDTIyMDEw
MTA3NTIzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjE3OThhOTE3MmU1
OTU2MWRlNzE4NDIxZWQyN2I4MmRlODEyYTViZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALHnrzzPAduwmmit8ClwwGqnnVVxlz07qnF1XEccRNKgSeJG
K83yhKVZY218w/24kjQsFOGb+nG22+Mg99VQw9eTqNldi2tKxZ5yyXgVlFcwehUf
bKtyfIiXyMgL5CbWXP+wahqphP0fHvzFnYRy6AM49mDxtjpvDd10QBBPtEBK6MjH
wao9oiiXQFbOXe6USpKAtffxTg7Jq4li1nDv5DZsvZhzKP8DNQuSqAWh8E0zDYLQ
kLl+bbmhlxI7tSGgkb+xxm4VTN8EBuUVI4AfmbVaYVoJr96ZHiMqgTBW+wypeapE
590VaFvvuhY+dF/DAB2lxaZIDvi6zHmFdmHIBXcCAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBSxeYqRcuWVYd5xhCHtJ7gt6BKlvjAfBgNVHSMEGDAWgBQSHxOILdBtCY7E
mnWRATKbHyAfHTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VoOFRpQzNRYlFtT3hKcDFrUUV5bXg4Z0h4MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzIvMzVkZjBhLThhZjYtNGZmMC1iMzQ1LTBkMjc3NjczNzRlYy8x
L3NYbUtrWExsbFdIZWNZUWg3U2U0TGVnU3BiNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzIv
MzVkZjBhLThhZjYtNGZmMC1iMzQ1LTBkMjc3NjczNzRlYy8xL0VoOFRpQzNRYlFt
T3hKcDFrUUV5bXg4Z0h4MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAJPSMA0GCSqGSIb3DQEBCwUAA4IB
AQAtWhrq3qW+itlu67aregPe859CJ5TsxpAXLk0Q6rWDKRgKENo4A865zH3hMtNO
IH7VPOAuuxPX7xJw7bvl2I6MoGhC+i08KZfZgBjzhyZFy6zm+gBQHNSN/nkSEr6u
wef5jQTdqTsz7iQ2xJe9pBRf0irPE5RTFKZM3hBoCjb9Jnn+iA8FpE1Mz9BTe8pJ
/MAC0271q4joUhdQMXkXsRfgaG4FB1jQ4GmDXddbyp1/nKmcGuTwv1MhVzBWWTHP
bg4P08uFolb3QIkgMZfPUZAgoWTvZDpfBATH60+8ejR5vdLXYcn29Ck4aOTMYu5q
f9e+dvBH1e/AzpBFzmWwogcN
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:59 2023 by rpki-client on console-ams.rpki-client.org