Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/0Shr98uxyD3wxQRE0ZrA3lmkvTA.roa
File: 0Shr98uxyD3wxQRE0ZrA3lmkvTA.roa (raw, json)
Hash identifier: YZrD3YYoEI6+rW7G37H6NLPiT/arqSQgdJngtGoB4bI=
Subject key identifier: D1:28:6B:F7:CB:B1:C8:3D:F0:C5:04:44:D1:9A:C0:DE:59:A4:BD:30
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 1E67F64B
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/0Shr98uxyD3wxQRE0ZrA3lmkvTA.roa
Signing time: Mon 27 Jun 2022 10:03:48 +0000
ROA not before: Mon 27 Jun 2022 10:03:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211936
IP address blocks: 212.111.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 510129739 (0x1e67f64b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jun 27 10:03:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1286bf7cbb1c83df0c50444d19ac0de59a4bd30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ac:46:90:32:33:c7:aa:09:04:1e:0c:bc:9c:
43:d1:73:67:55:30:7b:2b:3d:10:23:7f:5c:cc:a7:
73:9e:e7:65:4a:4a:53:d8:58:f3:9e:37:e0:6c:de:
43:f1:ab:70:18:7f:35:1a:84:d3:8a:49:1e:e2:1c:
58:f2:ad:fb:82:0a:ee:04:f3:ed:f2:3d:50:15:25:
a2:4b:7b:e5:d7:bf:22:e1:22:80:aa:b0:ac:97:b7:
91:86:db:80:c4:b1:c7:28:81:44:ee:cc:e9:e1:ab:
28:d8:41:4d:70:8c:8b:fc:27:58:62:66:77:f1:a1:
af:09:0a:1f:f0:87:30:08:e8:31:d8:25:f4:c7:fa:
f9:12:8e:38:ae:3c:45:48:c5:41:ae:cb:62:bf:21:
c8:4b:d7:71:19:c6:16:80:5c:16:06:24:c9:f0:13:
f4:6b:0b:f1:95:ec:68:d5:8e:08:62:df:4d:dd:60:
d5:e2:c5:80:66:d3:3e:58:51:0b:99:b4:12:6d:ad:
29:10:7a:7c:34:55:19:e5:e2:5f:ce:ce:6a:4f:1d:
fb:19:de:1a:cb:d0:fc:60:d0:8f:d2:43:85:f6:5d:
97:72:f2:a2:99:c4:c5:76:45:89:04:fd:15:a2:b2:
e7:74:06:06:ec:47:93:09:0f:d7:a9:9e:a4:9e:51:
ab:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:28:6B:F7:CB:B1:C8:3D:F0:C5:04:44:D1:9A:C0:DE:59:A4:BD:30
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/0Shr98uxyD3wxQRE0ZrA3lmkvTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.111.215.0/24
Signature Algorithm: sha256WithRSAEncryption
71:84:ab:c4:9d:e7:34:97:0d:cd:16:1b:0f:63:1f:b1:9c:7a:
96:33:cc:e8:c0:de:3d:a2:7e:41:c3:94:7f:83:b6:e0:9b:f4:
5a:70:41:62:29:27:b1:33:92:89:61:c0:d8:1f:a4:6b:a4:f6:
1b:4c:df:da:26:89:22:79:7d:e5:bf:2e:ae:2d:cc:36:d4:5c:
e5:ac:26:dc:33:e4:ef:cf:d1:18:47:a0:41:f4:ed:d7:3e:8c:
a3:68:77:e6:05:44:d5:25:06:a7:45:01:14:73:49:cc:18:7e:
62:67:f8:25:3c:c2:5a:2d:a4:7f:69:5f:0c:44:65:1f:00:57:
46:30:00:bc:90:15:1d:95:e0:5e:2d:cf:f8:0d:36:d1:cb:5e:
e5:5d:a0:52:fb:b6:4a:7a:a7:90:73:76:08:d9:c9:d3:4e:34:
52:20:56:ab:86:8f:09:f4:64:4e:ca:5e:7f:07:11:32:53:7b:
66:22:e6:13:8f:0a:28:5f:70:dd:47:4e:eb:e4:5f:9a:8a:c7:
9b:48:67:51:90:8d:6d:f0:c3:86:d8:2b:60:22:44:6a:0a:d0:
df:c6:4a:3d:8b:52:8f:9d:48:27:48:26:13:ab:a3:ea:1b:d1:
eb:19:67:76:7d:b1:b5:3b:db:29:d3:f0:79:03:64:17:4d:5b:
d2:91:bd:86
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEHmf2SzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
OTQyNjMyNWFjYjhjZTYwOWE2ODZmYTY1NWIwNTg5Njg4MDliMzQ2MB4XDTIyMDYy
NzEwMDM0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDEyODZiZjdjYmIx
YzgzZGYwYzUwNDQ0ZDE5YWMwZGU1OWE0YmQzMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKCsRpAyM8eqCQQeDLycQ9FzZ1Uweys9ECN/XMync57nZUpK
U9hY85434GzeQ/GrcBh/NRqE04pJHuIcWPKt+4IK7gTz7fI9UBUlokt75de/IuEi
gKqwrJe3kYbbgMSxxyiBRO7M6eGrKNhBTXCMi/wnWGJmd/GhrwkKH/CHMAjoMdgl
9Mf6+RKOOK48RUjFQa7LYr8hyEvXcRnGFoBcFgYkyfAT9GsL8ZXsaNWOCGLfTd1g
1eLFgGbTPlhRC5m0Em2tKRB6fDRVGeXiX87Oak8d+xneGsvQ/GDQj9JDhfZdl3Ly
opnExXZFiQT9FaKy53QGBuxHkwkP16mepJ5RqzMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTRKGv3y7HIPfDFBETRmsDeWaS9MDAfBgNVHSMEGDAWgBQZQmMlrLjOYJpo
b6ZVsFiWiAmzRjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dVSmpKYXk0em1DYWFHLW1WYkJZbG9nSnMwWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvOGI2ZmIwLWE4NzUtNDk0Ny04YWU0LTAzZjRjNzExM2MzNC8x
LzBTaHI5OHV4eUQzd3hRUkUwWnJBM2xta3ZUQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
OGI2ZmIwLWE4NzUtNDk0Ny04YWU0LTAzZjRjNzExM2MzNC8xL0dVSmpKYXk0em1D
YWFHLW1WYkJZbG9nSnMwWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANRv1zANBgkqhkiG9w0BAQsFAAOC
AQEAcYSrxJ3nNJcNzRYbD2MfsZx6ljPM6MDePaJ+QcOUf4O24Jv0WnBBYiknsTOS
iWHA2B+ka6T2G0zf2iaJInl95b8uri3MNtRc5awm3DPk78/RGEegQfTt1z6Mo2h3
5gVE1SUGp0UBFHNJzBh+Ymf4JTzCWi2kf2lfDERlHwBXRjAAvJAVHZXgXi3P+A02
0cte5V2gUvu2SnqnkHN2CNnJ0040UiBWq4aPCfRkTspefwcRMlN7ZiLmE48KKF9w
3UdO6+RfmorHm0hnUZCNbfDDhtgrYCJEagrQ38ZKPYtSj51IJ0gmE6uj6hvR6xln
dn2xtTvbKdPweQNkF01b0pG9hg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org