Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/TYt9hDP5Fbw6UxCsca61ioTY8ZM.roa
File: TYt9hDP5Fbw6UxCsca61ioTY8ZM.roa (raw, json)
Hash identifier: FtAVTrWKjDNcLQh9OdRNKi6tIcaHaptaiXbXknlFRCM=
Subject key identifier: 4D:8B:7D:84:33:F9:15:BC:3A:53:10:AC:71:AE:B5:8A:84:D8:F1:93
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01839DB946A8810DA088D276F40D922F93E7
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/TYt9hDP5Fbw6UxCsca61ioTY8ZM.roa
Signing time: Mon 03 Oct 2022 12:01:48 +0000
ROA not before: Mon 03 Oct 2022 12:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210703
IP address blocks: 212.69.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9d:b9:46:a8:81:0d:a0:88:d2:76:f4:0d:92:2f:93:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Oct 3 12:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d8b7d8433f915bc3a5310ac71aeb58a84d8f193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b0:ce:89:4c:9b:2c:7d:53:0e:60:7f:38:4a:
e7:34:33:d3:09:fd:49:89:87:9b:9a:10:1b:c8:3d:
fe:a5:e1:f4:e4:89:07:82:d6:93:8f:fd:4a:c8:3e:
8b:01:4f:8f:8e:e4:50:c3:58:d0:87:ea:5a:14:52:
db:92:3e:2b:94:9a:15:08:cd:44:0a:4b:06:4c:81:
f3:48:89:f4:49:e5:31:2e:10:15:91:a1:f3:b8:42:
76:72:d4:a0:b0:52:3a:ca:19:10:6f:e2:62:14:97:
65:7d:53:dd:09:04:21:3a:07:dd:d9:49:9e:dc:2c:
b6:e5:e0:f7:63:4b:b3:87:02:9b:1f:71:71:7b:1f:
01:9b:55:b2:52:4c:e3:48:81:c7:c1:35:25:0b:f9:
e2:12:3d:69:28:26:f5:01:9b:80:92:57:bd:20:f7:
8a:6c:09:9d:ab:12:24:06:ff:3a:09:d3:42:48:05:
81:23:b3:45:6a:bf:fc:bf:73:46:ed:f7:7c:fa:f1:
99:c2:55:71:42:5c:1d:25:e9:be:14:eb:c7:c3:cc:
d4:dd:ac:35:1f:cd:db:48:c0:c5:3e:b0:ec:40:31:
e7:e1:68:4b:8b:b0:b2:83:53:a8:34:76:a1:3a:5a:
44:02:43:42:62:f3:3f:33:2f:54:7c:cc:74:5b:78:
93:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:8B:7D:84:33:F9:15:BC:3A:53:10:AC:71:AE:B5:8A:84:D8:F1:93
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/TYt9hDP5Fbw6UxCsca61ioTY8ZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.69.13.0/24
Signature Algorithm: sha256WithRSAEncryption
41:95:cd:53:bb:58:90:cf:b3:bb:ce:e9:b1:7b:0b:08:b2:4f:
71:d4:67:9c:b9:ff:15:33:7e:10:7b:af:08:6c:91:96:e6:f3:
b7:4f:9d:cb:62:43:d1:8b:1e:93:c5:b1:be:10:2e:92:a0:a3:
9e:bd:13:2b:64:81:e7:84:06:36:1c:89:5a:0e:ca:eb:fa:c3:
3c:2b:0c:76:fa:6f:51:47:7b:9b:1f:ec:70:f5:7b:f6:fe:85:
f0:24:06:ec:fb:f1:ed:0c:b8:10:e4:ca:41:b2:ff:18:2d:ac:
6e:f1:a0:71:bf:a8:60:1a:b6:c2:de:34:d9:da:0f:92:d0:79:
fc:0b:fe:8b:06:d9:22:93:4b:9d:54:11:e1:8a:f6:c5:01:03:
88:60:a4:0d:a1:2d:f1:ba:2e:77:66:93:ac:3b:12:a8:bb:94:
64:f5:4f:7a:b2:2e:d7:da:c5:e5:70:af:2e:b6:3a:ab:3f:c1:
0e:31:29:40:4c:85:90:ab:ba:6f:cb:13:7a:85:b4:63:e8:21:
4d:38:59:b8:6f:d1:6a:ce:6f:16:be:95:9b:85:1e:70:7f:ef:
d9:54:08:19:73:d3:12:ea:ef:96:63:23:6a:ab:9d:fb:ed:0a:
86:24:f2:03:8f:c4:dd:a0:42:79:ae:17:6d:16:e1:b0:57:89:
b3:26:be:f9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOduUaogQ2giNJ29A2SL5PnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmODRlNDczOGE3MGVhMzljMDhjZWYyMTA0MzJhZTM5OWVj
N2U5MTUwHhcNMjIxMDAzMTIwMTQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZDhiN2Q4NDMzZjkxNWJjM2E1MzEwYWM3MWFlYjU4YTg0ZDhmMTkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLDOiUybLH1TDmB/OErnNDPTCf1J
iYebmhAbyD3+peH05IkHgtaTj/1KyD6LAU+PjuRQw1jQh+paFFLbkj4rlJoVCM1E
CksGTIHzSIn0SeUxLhAVkaHzuEJ2ctSgsFI6yhkQb+JiFJdlfVPdCQQhOgfd2Ume
3Cy25eD3Y0uzhwKbH3Fxex8Bm1WyUkzjSIHHwTUlC/niEj1pKCb1AZuAkle9IPeK
bAmdqxIkBv86CdNCSAWBI7NFar/8v3NG7fd8+vGZwlVxQlwdJem+FOvHw8zU3aw1
H83bSMDFPrDsQDHn4WhLi7Cyg1OoNHahOlpEAkNCYvM/My9UfMx0W3iTbwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE2LfYQz+RW8OlMQrHGutYqE2PGTMB8GA1UdIwQY
MBaAFG+E5HOKcOo5wIzvIQQyrjmex+kVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYt
ZmFlNWRiZWQzYjFiLzEvVFl0OWhEUDVGYnc2VXhDc2NhNjFpb1RZOFpNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYtZmFlNWRiZWQzYjFi
LzEvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1EUNMA0G
CSqGSIb3DQEBCwUAA4IBAQBBlc1Tu1iQz7O7zumxewsIsk9x1Gecuf8VM34Qe68I
bJGW5vO3T53LYkPRix6TxbG+EC6SoKOevRMrZIHnhAY2HIlaDsrr+sM8Kwx2+m9R
R3ubH+xw9Xv2/oXwJAbs+/HtDLgQ5MpBsv8YLaxu8aBxv6hgGrbC3jTZ2g+S0Hn8
C/6LBtkik0udVBHhivbFAQOIYKQNoS3xui53ZpOsOxKou5Rk9U96si7X2sXlcK8u
tjqrP8EOMSlATIWQq7pvyxN6hbRj6CFNOFm4b9Fqzm8WvpWbhR5wf+/ZVAgZc9MS
6u+WYyNqq5377QqGJPIDj8TdoEJ5rhdtFuGwV4mzJr75
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:35 2023 by rpki-client on console-fra.rpki-client.org