Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/hcB8Wefe_CLlaBabS8UShC5dFrk.roa
File: hcB8Wefe_CLlaBabS8UShC5dFrk.roa (raw, json)
Hash identifier: oq0AwKbF+Hbdt5G0bkWdQp2H6FEznTGdtu5l0yUCWh4=
Subject key identifier: 85:C0:7C:59:E7:DE:FC:22:E5:68:16:9B:4B:C5:12:84:2E:5D:16:B9
Certificate issuer: /CN=7c673daad6d9317f0101d41a042a61e57689453a
Certificate serial: 019C703F
Authority key identifier: 7C:67:3D:AA:D6:D9:31:7F:01:01:D4:1A:04:2A:61:E5:76:89:45:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fGc9qtbZMX8BAdQaBCph5XaJRTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/hcB8Wefe_CLlaBabS8UShC5dFrk.roa
Signing time: Sat 01 Jan 2022 08:58:14 +0000
ROA not before: Sat 01 Jan 2022 08:58:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 203.12.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27029567 (0x19c703f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c673daad6d9317f0101d41a042a61e57689453a
Validity
Not Before: Jan 1 08:58:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85c07c59e7defc22e568169b4bc512842e5d16b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2a:81:e4:9b:bc:27:da:d7:2d:c6:b3:d0:ee:
1d:1d:43:6a:35:f6:74:86:96:9f:27:ba:00:d6:0d:
d7:04:9e:04:19:ae:8f:e7:6f:41:fe:31:0a:c5:a1:
cf:47:5b:64:46:79:61:c7:f8:5b:84:9b:1b:0d:6c:
23:f2:a5:44:21:dc:77:d3:7f:e2:8f:2e:94:00:b0:
f1:23:44:ef:e2:77:11:c3:3c:d7:1c:f1:e3:91:bb:
2c:e9:76:0e:19:5c:f5:e2:8e:c1:f4:23:32:00:62:
f8:ee:e4:97:0a:ca:e7:cb:cb:24:57:b0:ce:c0:ac:
fd:7e:f9:53:8b:42:92:65:2a:dd:c4:c4:14:77:cf:
a8:0f:47:77:96:fa:72:1e:1f:a0:8a:f1:12:ba:2b:
fb:0a:38:10:76:ec:8a:e2:b9:ad:65:a9:24:c2:92:
8f:dd:e0:0a:4b:e6:15:b2:58:ee:7c:fd:23:1b:a3:
30:e5:20:73:87:da:3c:67:bf:27:17:2a:83:dd:f4:
e6:b5:54:ad:36:ad:26:10:fc:84:af:bc:b4:a5:97:
db:7b:7e:07:45:ff:1a:5a:7f:f0:74:fd:ca:31:9b:
74:c4:58:61:a9:28:fb:d4:b5:a3:19:79:f9:1e:07:
05:f4:60:84:c5:e2:46:78:81:7c:7c:40:ff:d7:9a:
cd:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:C0:7C:59:E7:DE:FC:22:E5:68:16:9B:4B:C5:12:84:2E:5D:16:B9
X509v3 Authority Key Identifier:
keyid:7C:67:3D:AA:D6:D9:31:7F:01:01:D4:1A:04:2A:61:E5:76:89:45:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fGc9qtbZMX8BAdQaBCph5XaJRTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/hcB8Wefe_CLlaBabS8UShC5dFrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/fGc9qtbZMX8BAdQaBCph5XaJRTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.12.218.0/24
Signature Algorithm: sha256WithRSAEncryption
05:a5:cb:c1:65:ae:84:72:4e:2e:98:5c:a5:60:3c:02:94:83:
91:24:3e:c7:3b:b1:51:3b:7b:4c:c6:62:01:58:df:c3:33:3e:
1c:03:a9:04:40:4f:fa:a6:42:3a:20:03:61:a5:df:67:48:46:
ad:c9:cf:ff:0e:63:5e:2d:c5:e9:b4:75:09:74:1f:cc:26:0e:
da:eb:0d:f7:62:9a:b8:21:a3:87:37:6b:51:b1:e2:2b:19:22:
62:f4:57:a3:c4:c0:30:17:a3:bd:c6:ac:87:42:af:bc:ba:52:
e4:98:af:f1:e7:45:93:ae:c4:37:ea:6f:00:b9:2b:ed:5b:18:
6f:35:f7:70:7c:2a:46:0c:56:50:6e:74:9f:b4:95:36:6a:90:
94:cc:b5:13:c6:20:51:a4:c4:06:d8:04:c3:32:8b:fc:b7:bd:
27:cf:57:f2:9b:d3:d4:05:10:e9:ec:61:00:b3:b2:cb:92:a1:
8d:53:f1:be:64:b9:5f:93:1f:dc:41:96:c2:20:c6:e5:be:cc:
62:0c:4d:bd:ae:9f:b1:e8:e4:a2:c1:bf:5a:b7:36:55:e8:50:
cb:f3:8d:ff:79:18:b4:ca:a4:19:4b:59:73:68:18:5f:89:02:
b1:7b:5e:9d:56:38:9e:f0:6b:1a:2e:12:6a:28:ca:c8:d5:3c:
73:55:ef:91
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAZxwPzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YzY3M2RhYWQ2ZDkzMTdmMDEwMWQ0MWEwNDJhNjFlNTc2ODk0NTNhMB4XDTIyMDEw
MTA4NTgxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODVjMDdjNTllN2Rl
ZmMyMmU1NjgxNjliNGJjNTEyODQyZTVkMTZiOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALwqgeSbvCfa1y3Gs9DuHR1DajX2dIaWnye6ANYN1wSeBBmu
j+dvQf4xCsWhz0dbZEZ5Ycf4W4SbGw1sI/KlRCHcd9N/4o8ulACw8SNE7+J3EcM8
1xzx45G7LOl2Dhlc9eKOwfQjMgBi+O7klwrK58vLJFewzsCs/X75U4tCkmUq3cTE
FHfPqA9Hd5b6ch4foIrxEror+wo4EHbsiuK5rWWpJMKSj93gCkvmFbJY7nz9Ixuj
MOUgc4faPGe/Jxcqg9305rVUrTatJhD8hK+8tKWX23t+B0X/Glp/8HT9yjGbdMRY
Yako+9S1oxl5+R4HBfRghMXiRniBfHxA/9eazesCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSFwHxZ5978IuVoFptLxRKELl0WuTAfBgNVHSMEGDAWgBR8Zz2q1tkxfwEB
1BoEKmHldolFOjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZHYzlxdGJaTVg4QkFkUWFCQ3BoNVhhSlJUby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvZjAzN2RiLTc1OTItNGI2Mi1iZGFhLTA0ZTQ2ZWYwY2QyMS8x
L2hjQjhXZWZlX0NMbGFCYWJTOFVTaEM1ZEZyay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
ZjAzN2RiLTc1OTItNGI2Mi1iZGFhLTA0ZTQ2ZWYwY2QyMS8xL2ZHYzlxdGJaTVg4
QkFkUWFCQ3BoNVhhSlJUby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMsM2jANBgkqhkiG9w0BAQsFAAOC
AQEABaXLwWWuhHJOLphcpWA8ApSDkSQ+xzuxUTt7TMZiAVjfwzM+HAOpBEBP+qZC
OiADYaXfZ0hGrcnP/w5jXi3F6bR1CXQfzCYO2usN92KauCGjhzdrUbHiKxkiYvRX
o8TAMBejvcash0KvvLpS5Jiv8edFk67EN+pvALkr7VsYbzX3cHwqRgxWUG50n7SV
NmqQlMy1E8YgUaTEBtgEwzKL/Le9J89X8pvT1AUQ6exhALOyy5KhjVPxvmS5X5Mf
3EGWwiDG5b7MYgxNva6fsejkosG/Wrc2VehQy/ON/3kYtMqkGUtZc2gYX4kCsXte
nVY4nvBrGi4SaijKyNU8c1XvkQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:45 2024 by rpki-client on console-fra.rpki-client.org