Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/22d9b3-fa0b-4cf0-9740-2f7fd1f0e9c3/1/t7-25XrM4c9dNtNs553odR9Wkc4.roa
File: t7-25XrM4c9dNtNs553odR9Wkc4.roa (raw, json)
Hash identifier: lff+yRbx46sTM7vCScAxXyxChtVg+TRuS1CRn4+zJTg=
Subject key identifier: B7:BF:B6:E5:7A:CC:E1:CF:5D:36:D3:6C:E7:9D:E8:75:1F:56:91:CE
Certificate issuer: /CN=0bbad1b925e0e563db85d41d270705d71840a588
Certificate serial: 01438D
Authority key identifier: 0B:BA:D1:B9:25:E0:E5:63:DB:85:D4:1D:27:07:05:D7:18:40:A5:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C7rRuSXg5WPbhdQdJwcF1xhApYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/22d9b3-fa0b-4cf0-9740-2f7fd1f0e9c3/1/t7-25XrM4c9dNtNs553odR9Wkc4.roa
Signing time: Thu 03 Mar 2022 07:55:05 +0000
ROA not before: Thu 03 Mar 2022 07:55:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49490
IP address blocks: 213.217.8.0/24 maxlen: 24
2a12:d980::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82829 (0x1438d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bbad1b925e0e563db85d41d270705d71840a588
Validity
Not Before: Mar 3 07:55:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7bfb6e57acce1cf5d36d36ce79de8751f5691ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:74:09:6a:00:93:ae:cf:a7:f5:08:cc:84:8c:
a5:08:cf:a8:a1:8b:13:fe:a5:19:63:08:93:50:93:
70:96:16:7c:95:00:24:2d:9c:4a:75:46:d6:7f:8a:
6e:73:6c:b5:8b:97:91:d6:d4:6d:3b:ea:a2:d7:1d:
c0:c9:61:f6:8f:98:55:07:83:30:b9:84:dc:3c:2e:
02:dc:c5:cc:43:9e:c6:2b:9f:46:00:b5:16:5d:fe:
b4:46:3c:73:1f:76:1f:2c:04:f6:3b:65:68:ee:bb:
0e:ec:83:29:0e:e6:22:68:b5:9d:dc:e4:59:f4:fb:
76:74:6b:8b:e7:09:8a:4c:1e:51:e0:29:cc:5c:fc:
1c:4f:53:c1:0a:6b:8a:7d:13:e5:4d:68:d8:dc:1b:
95:4b:46:31:ec:c5:d5:a5:7e:02:8b:ea:6e:aa:d0:
14:b3:8c:fe:e4:79:55:8d:16:15:61:d2:b6:6f:e3:
bf:d6:c6:e6:65:61:20:d4:cf:cd:7a:e2:ee:ff:99:
62:06:6f:04:99:27:1d:d5:c4:76:a0:8c:c2:7c:4f:
f4:6d:f2:e3:8d:81:6c:39:cd:36:6f:54:6f:34:ed:
19:87:54:04:10:46:75:77:ca:f4:32:2d:36:76:fa:
90:14:9f:32:d4:f0:d1:e1:d8:d9:ca:97:d7:76:1c:
fa:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:BF:B6:E5:7A:CC:E1:CF:5D:36:D3:6C:E7:9D:E8:75:1F:56:91:CE
X509v3 Authority Key Identifier:
keyid:0B:BA:D1:B9:25:E0:E5:63:DB:85:D4:1D:27:07:05:D7:18:40:A5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C7rRuSXg5WPbhdQdJwcF1xhApYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/22d9b3-fa0b-4cf0-9740-2f7fd1f0e9c3/1/t7-25XrM4c9dNtNs553odR9Wkc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/22d9b3-fa0b-4cf0-9740-2f7fd1f0e9c3/1/C7rRuSXg5WPbhdQdJwcF1xhApYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.217.8.0/24
IPv6:
2a12:d980::/32
Signature Algorithm: sha256WithRSAEncryption
67:40:36:08:15:98:ce:13:43:43:07:a4:15:45:3b:27:94:d7:
bd:6a:92:55:96:e1:6f:a8:85:c6:18:5c:47:e2:5a:39:97:59:
5f:c2:ed:bf:0d:eb:bb:88:1c:ea:5f:b3:6b:02:7b:84:b7:fd:
e1:dc:40:ec:a6:3e:df:54:61:ae:2a:15:86:03:f6:8e:ca:bf:
39:01:f6:4c:c1:fe:00:f8:59:78:89:b7:76:0f:98:80:ae:b5:
d1:65:c5:e7:d6:f1:13:81:a8:99:15:c6:4b:94:9d:f4:9d:d6:
21:e4:9c:b5:e1:50:e9:0e:98:48:5b:ac:cb:5b:66:30:fd:8d:
f4:49:50:38:f8:f6:f0:b8:5c:ff:af:fb:0f:33:31:6c:56:06:
44:13:dd:95:25:93:dc:c8:ef:6d:df:b3:45:53:ab:5e:be:69:
a9:06:6b:9b:eb:37:3d:3d:f8:55:18:2a:b3:f8:6a:2b:92:ec:
ee:23:60:d9:9f:8f:b1:e0:ee:68:f2:9b:b3:87:0e:72:4e:1e:
b0:f6:ee:70:ed:91:1c:ca:68:b5:98:e6:62:ba:99:44:7e:7d:
b1:23:b2:e2:28:30:61:a3:7d:05:5c:45:47:33:0f:ba:69:52:
6e:8c:b1:bb:09:2e:ec:00:0e:2c:62:8d:3c:ea:1b:50:f0:dd:
46:01:06:99
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgIDAUONMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDBi
YmFkMWI5MjVlMGU1NjNkYjg1ZDQxZDI3MDcwNWQ3MTg0MGE1ODgwHhcNMjIwMzAz
MDc1NTA1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiN2JmYjZlNTdhY2Nl
MWNmNWQzNmQzNmNlNzlkZTg3NTFmNTY5MWNlMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtXQJagCTrs+n9QjMhIylCM+ooYsT/qUZYwiTUJNwlhZ8lQAk
LZxKdUbWf4puc2y1i5eR1tRtO+qi1x3AyWH2j5hVB4MwuYTcPC4C3MXMQ57GK59G
ALUWXf60RjxzH3YfLAT2O2Vo7rsO7IMpDuYiaLWd3ORZ9Pt2dGuL5wmKTB5R4CnM
XPwcT1PBCmuKfRPlTWjY3BuVS0Yx7MXVpX4Ci+puqtAUs4z+5HlVjRYVYdK2b+O/
1sbmZWEg1M/NeuLu/5liBm8EmScd1cR2oIzCfE/0bfLjjYFsOc02b1RvNO0Zh1QE
EEZ1d8r0Mi02dvqQFJ8y1PDR4djZypfXdhz6TwIDAQABo4ICGDCCAhQwHQYDVR0O
BBYEFLe/tuV6zOHPXTbTbOed6HUfVpHOMB8GA1UdIwQYMBaAFAu60bkl4OVj24XU
HScHBdcYQKWIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
QzdyUnVTWGc1V1BiaGRRZEp3Y0YxeGhBcFlnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8zYi8yMmQ5YjMtZmEwYi00Y2YwLTk3NDAtMmY3ZmQxZjBlOWMzLzEv
dDctMjVYck00YzlkTnROczU1M29kUjlXa2M0LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8y
MmQ5YjMtZmEwYi00Y2YwLTk3NDAtMmY3ZmQxZjBlOWMzLzEvQzdyUnVTWGc1V1Bi
aGRRZEp3Y0YxeGhBcFlnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4G
CCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQA1dkIMA0EAgACMAcDBQAqEtmAMA0G
CSqGSIb3DQEBCwUAA4IBAQBnQDYIFZjOE0NDB6QVRTsnlNe9apJVluFvqIXGGFxH
4lo5l1lfwu2/Deu7iBzqX7NrAnuEt/3h3EDspj7fVGGuKhWGA/aOyr85AfZMwf4A
+Fl4ibd2D5iArrXRZcXn1vETgaiZFcZLlJ30ndYh5Jy14VDpDphIW6zLW2Yw/Y30
SVA4+PbwuFz/r/sPMzFsVgZEE92VJZPcyO9t37NFU6tevmmpBmub6zc9PfhVGCqz
+GorkuzuI2DZn4+x4O5o8puzhw5yTh6w9u5w7ZEcymi1mOZiuplEfn2xI7LiKDBh
o30FXEVHMw+6aVJujLG7CS7sAA4sYo086htQ8N1GAQaZ
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:32 2023 by rpki-client on console-ams.rpki-client.org