Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/Kxk6PHleGkFZcDgZ2X_cRxcDJVc.roa
File: Kxk6PHleGkFZcDgZ2X_cRxcDJVc.roa (raw, json)
Hash identifier: uYuLnNVypfPVUdygvO+Xvs73mREhDOpnt3IT8XCIvhY=
Subject key identifier: 2B:19:3A:3C:79:5E:1A:41:59:70:38:19:D9:7F:DC:47:17:03:25:57
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 018336C430456E5818E7F5C1FD080A4A8AC4
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/Kxk6PHleGkFZcDgZ2X_cRxcDJVc.roa
Signing time: Tue 13 Sep 2022 12:12:50 +0000
ROA not before: Tue 13 Sep 2022 12:12:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203757
IP address blocks: 212.111.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:36:c4:30:45:6e:58:18:e7:f5:c1:fd:08:0a:4a:8a:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Sep 13 12:12:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b193a3c795e1a4159703819d97fdc4717032557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:18:8e:3d:75:ad:5d:76:ed:e8:d9:9b:db:b5:
97:19:17:a9:03:21:56:49:1c:7c:a8:8f:cb:b1:2a:
95:fb:00:64:4d:3d:ce:c7:49:01:ce:34:27:11:84:
72:e4:f2:a0:9b:a5:51:7d:98:7c:52:98:3c:e8:42:
82:c7:6b:0d:99:fb:ba:b6:f8:1e:47:a6:b0:34:cb:
1d:82:05:43:cd:30:5a:78:28:45:22:23:bb:31:2d:
ca:a4:f8:6d:78:1b:62:85:5d:46:8b:2f:e6:d2:45:
6c:49:f1:e0:c1:78:cf:1f:f1:4c:f7:3c:88:87:2f:
1e:4f:94:09:c3:c0:96:b8:7d:66:48:89:cd:67:41:
1b:90:81:32:1a:06:cb:0e:4b:09:51:16:b9:06:5e:
8d:1e:e5:aa:03:a2:dc:33:76:21:97:24:aa:ec:4a:
cd:05:00:c2:ff:9e:b1:80:12:25:65:62:48:f7:2a:
e4:e4:36:02:1d:35:fb:73:50:26:dd:8b:7a:c6:1e:
1d:26:4d:5f:0d:6d:e6:48:de:ed:59:1a:8f:16:97:
19:89:c7:89:1b:01:37:bc:c7:a4:54:96:0a:7e:5b:
53:42:bd:27:d6:51:62:68:58:20:ed:8f:b1:9c:3c:
da:ae:71:51:94:75:1d:bd:9d:c6:d0:ea:7e:84:be:
4d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:19:3A:3C:79:5E:1A:41:59:70:38:19:D9:7F:DC:47:17:03:25:57
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/Kxk6PHleGkFZcDgZ2X_cRxcDJVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.111.200.0/24
Signature Algorithm: sha256WithRSAEncryption
42:f8:16:52:71:9b:fd:93:a7:d6:ba:1a:22:59:d2:49:34:4b:
a9:9b:57:4c:c3:01:8a:64:cb:69:4c:96:53:8c:b7:bb:f2:26:
b2:e9:64:60:65:f6:a6:45:9b:77:27:e5:32:9d:90:2f:2a:54:
c1:3e:1d:ab:a9:5b:1b:46:6c:5a:1b:e5:e6:0c:09:a4:87:8e:
68:b3:6f:01:7d:fb:6a:69:a7:7a:bd:91:04:73:60:4b:3e:e2:
f8:5e:16:d1:50:c4:c2:a8:95:69:ca:9f:3e:56:08:57:78:86:
05:95:3f:b2:67:16:80:74:5b:40:ab:e9:fa:91:48:79:03:67:
d9:5b:5c:9d:e6:3f:a6:31:e2:d1:3f:67:60:5d:c0:f5:6c:80:
3d:ab:cc:e4:f3:e6:5f:23:78:3e:f9:a0:3e:20:a3:d8:d9:89:
55:b3:05:36:c9:5b:a7:b2:89:19:1e:4b:fa:d2:0d:ff:ff:53:
da:50:f7:ab:a5:16:2d:56:0c:f1:4b:62:a8:ac:80:3e:af:59:
c6:36:0e:e4:51:72:f5:38:cd:14:16:f5:80:ea:84:9e:4e:75:
3e:fb:b5:0f:cf:0b:50:ea:bd:7f:d4:b7:ba:d3:7c:e3:60:45:
42:f1:05:f9:98:28:d7:c1:d4:c2:03:c0:9f:7e:82:38:f0:fe:
12:6c:70:fb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYM2xDBFblgY5/XB/QgKSorEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5NDI2MzI1YWNiOGNlNjA5YTY4NmZhNjU1YjA1ODk2ODgw
OWIzNDYwHhcNMjIwOTEzMTIxMjUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYjE5M2EzYzc5NWUxYTQxNTk3MDM4MTlkOTdmZGM0NzE3MDMyNTU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnhiOPXWtXXbt6Nmb27WXGRepAyFW
SRx8qI/LsSqV+wBkTT3Ox0kBzjQnEYRy5PKgm6VRfZh8Upg86EKCx2sNmfu6tvge
R6awNMsdggVDzTBaeChFIiO7MS3KpPhteBtihV1Giy/m0kVsSfHgwXjPH/FM9zyI
hy8eT5QJw8CWuH1mSInNZ0EbkIEyGgbLDksJURa5Bl6NHuWqA6LcM3YhlySq7ErN
BQDC/56xgBIlZWJI9yrk5DYCHTX7c1Am3Yt6xh4dJk1fDW3mSN7tWRqPFpcZiceJ
GwE3vMekVJYKfltTQr0n1lFiaFgg7Y+xnDzarnFRlHUdvZ3G0Op+hL5NIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCsZOjx5XhpBWXA4Gdl/3EcXAyVXMB8GA1UdIwQY
MBaAFBlCYyWsuM5gmmhvplWwWJaICbNGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQt
MDNmNGM3MTEzYzM0LzEvS3hrNlBIbGVHa0ZaY0RnWjJYX2NSeGNESlZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQtMDNmNGM3MTEzYzM0
LzEvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1G/IMA0G
CSqGSIb3DQEBCwUAA4IBAQBC+BZScZv9k6fWuhoiWdJJNEupm1dMwwGKZMtpTJZT
jLe78iay6WRgZfamRZt3J+UynZAvKlTBPh2rqVsbRmxaG+XmDAmkh45os28Bfftq
aad6vZEEc2BLPuL4XhbRUMTCqJVpyp8+VghXeIYFlT+yZxaAdFtAq+n6kUh5A2fZ
W1yd5j+mMeLRP2dgXcD1bIA9q8zk8+ZfI3g++aA+IKPY2YlVswU2yVunsokZHkv6
0g3//1PaUPerpRYtVgzxS2KorIA+r1nGNg7kUXL1OM0UFvWA6oSeTnU++7UPzwtQ
6r1/1Le603zjYEVC8QX5mCjXwdTCA8CffoI48P4SbHD7
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org