Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/C2SrGXFaNyU60rJ6N1V0lBqt_Ik.roa
File: C2SrGXFaNyU60rJ6N1V0lBqt_Ik.roa (raw, json)
Hash identifier: M8Ay6WfQBayW7WEsA2ltiVDRvMuy3gbXmqt4iZQHBJw=
Subject key identifier: 0B:64:AB:19:71:5A:37:25:3A:D2:B2:7A:37:55:74:94:1A:AD:FC:89
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 07A1FAF5
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/C2SrGXFaNyU60rJ6N1V0lBqt_Ik.roa
Signing time: Mon 28 Feb 2022 08:32:06 +0000
ROA not before: Mon 28 Feb 2022 08:32:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207959
IP address blocks: 213.209.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128056053 (0x7a1faf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Feb 28 08:32:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b64ab19715a37253ad2b27a375574941aadfc89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f2:cd:df:c5:7c:70:b8:a9:64:42:1a:04:d9:
32:a6:41:4b:6d:0a:dc:63:6d:a9:a5:d6:9f:19:18:
34:c3:a3:3c:39:67:ab:b0:9a:9f:f1:57:7a:2e:cc:
bc:a9:2e:85:66:0b:1c:c9:ce:bb:ef:45:b4:9c:00:
6f:33:5d:01:02:3f:63:06:da:ef:70:55:f8:41:f2:
bc:bc:dc:24:c8:85:ef:1c:3f:ab:63:6b:f8:3e:23:
c2:5d:f7:59:9e:d4:bf:b1:a4:83:6b:08:5f:23:41:
5b:8f:5b:40:69:c1:dd:5e:a2:d2:8b:53:a0:ba:a7:
0c:c4:94:e1:3b:68:19:28:f8:35:19:bc:95:a1:a1:
d5:ea:de:e3:15:4b:ee:21:70:81:5a:d0:84:70:af:
54:e7:94:c4:c6:58:73:e0:a6:21:ee:a5:26:84:3d:
10:86:5c:ef:ea:59:b3:13:af:60:92:7a:9c:67:2f:
46:4e:72:ef:7b:87:a6:11:26:c8:73:29:f1:a3:33:
0e:f1:d8:75:fe:d1:de:6b:14:f9:2c:bc:20:5d:e1:
5d:23:02:fa:35:c8:e4:73:22:b6:72:1d:87:02:df:
1f:34:ee:ab:ce:55:18:a8:81:2a:2d:1d:4c:fa:95:
10:83:09:ed:b8:7a:62:d1:69:21:84:2c:e1:de:4c:
f9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:64:AB:19:71:5A:37:25:3A:D2:B2:7A:37:55:74:94:1A:AD:FC:89
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/C2SrGXFaNyU60rJ6N1V0lBqt_Ik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.209.144.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:ea:60:ec:24:97:4e:22:c4:b6:96:d5:08:1f:75:eb:5c:9b:
f9:fe:7b:46:30:a5:24:e4:4f:af:47:57:89:b4:b5:8e:a1:90:
a7:55:28:80:20:1c:ac:84:ca:2b:88:23:2b:31:f5:70:f1:aa:
87:1d:12:51:af:10:77:24:27:51:bb:e6:fd:a8:71:2e:e6:b9:
30:4b:42:76:7e:aa:d4:33:94:fd:da:ae:49:db:4c:7f:ed:9e:
1c:da:0e:92:1d:15:2a:bb:b1:fe:49:f7:32:5e:11:a2:29:4c:
3e:b2:7e:54:d3:20:5d:76:51:e7:7d:2d:b8:6d:4c:8b:23:78:
a7:97:62:b4:34:ab:22:ba:99:d2:75:93:5e:86:59:d0:02:24:
bc:20:60:20:f7:6e:c5:8c:60:a5:b2:ff:c6:26:21:c9:5c:94:
0b:c1:4b:8f:e6:f0:04:d5:20:dd:85:90:4c:80:a2:2d:cb:b8:
85:72:2e:e5:31:da:f0:19:fa:8f:22:50:13:97:e9:5f:7f:77:
1f:ee:fd:3a:d3:30:c3:66:a5:bc:53:23:e4:ed:b4:3d:7d:7f:
00:48:b2:a6:df:0d:09:3b:37:8f:25:e8:92:06:1c:6b:5f:1b:
8a:cb:3b:51:28:94:06:2d:12:69:8a:cb:fa:e7:31:c2:50:58:
01:44:f1:76
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB6H69TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YjQ3NmUxMmU4OTg3ZTViMzAyY2RjMjRiZGQ5ZGIzZmU4M2M4NDQ5MB4XDTIyMDIy
ODA4MzIwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGI2NGFiMTk3MTVh
MzcyNTNhZDJiMjdhMzc1NTc0OTQxYWFkZmM4OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK3yzd/FfHC4qWRCGgTZMqZBS20K3GNtqaXWnxkYNMOjPDln
q7Can/FXei7MvKkuhWYLHMnOu+9FtJwAbzNdAQI/Ywba73BV+EHyvLzcJMiF7xw/
q2Nr+D4jwl33WZ7Uv7Gkg2sIXyNBW49bQGnB3V6i0otToLqnDMSU4TtoGSj4NRm8
laGh1ere4xVL7iFwgVrQhHCvVOeUxMZYc+CmIe6lJoQ9EIZc7+pZsxOvYJJ6nGcv
Rk5y73uHphEmyHMp8aMzDvHYdf7R3msU+Sy8IF3hXSMC+jXI5HMitnIdhwLfHzTu
q85VGKiBKi0dTPqVEIMJ7bh6YtFpIYQs4d5M+RsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQLZKsZcVo3JTrSsno3VXSUGq38iTAfBgNVHSMEGDAWgBQ7R24S6Jh+WzAs
3CS92ds/6DyESTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L08wZHVFdWlZZmxzd0xOd2t2ZG5iUC1nOGhFay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8x
L0MyU3JHWEZhTnlVNjBySjZOMVYwbEJxdF9Jay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
ZDkwYzZmLTY1NzYtNDZiOS04MzEzLTZjYmZmM2M0ZGEwMS8xL08wZHVFdWlZZmxz
d0xOd2t2ZG5iUC1nOGhFay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANXRkDANBgkqhkiG9w0BAQsFAAOC
AQEAT+pg7CSXTiLEtpbVCB9161yb+f57RjClJORPr0dXibS1jqGQp1UogCAcrITK
K4gjKzH1cPGqhx0SUa8QdyQnUbvm/ahxLua5MEtCdn6q1DOU/dquSdtMf+2eHNoO
kh0VKrux/kn3Ml4RoilMPrJ+VNMgXXZR530tuG1MiyN4p5ditDSrIrqZ0nWTXoZZ
0AIkvCBgIPduxYxgpbL/xiYhyVyUC8FLj+bwBNUg3YWQTICiLcu4hXIu5THa8Bn6
jyJQE5fpX393H+79OtMww2alvFMj5O20PX1/AEiypt8NCTs3jyXokgYca18biss7
USiUBi0SaYrL+ucxwlBYAUTxdg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:22 2023 by rpki-client on console-fra.rpki-client.org