Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/vMnQvrObcOHUKTuhxhYDuJT2DfA.roa
File: vMnQvrObcOHUKTuhxhYDuJT2DfA.roa (raw, json)
Hash identifier: LhlmbMnl2IBEkGFgtvDZtzzTn2Hs4vN0RyJOvYuKVXY=
Subject key identifier: BC:C9:D0:BE:B3:9B:70:E1:D4:29:3B:A1:C6:16:03:B8:94:F6:0D:F0
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 01828B9CCA81034F606BCD86A8786FDDE6C4
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/vMnQvrObcOHUKTuhxhYDuJT2DfA.roa
Signing time: Thu 11 Aug 2022 06:34:44 +0000
ROA not before: Thu 11 Aug 2022 06:34:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209514
IP address blocks: 147.234.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8b:9c:ca:81:03:4f:60:6b:cd:86:a8:78:6f:dd:e6:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Aug 11 06:34:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcc9d0beb39b70e1d4293ba1c61603b894f60df0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fa:31:54:fe:0e:75:25:df:ae:24:c3:01:79:
8f:47:12:9d:7e:11:8e:76:db:19:80:3a:9c:0c:97:
64:a4:e4:28:c5:49:19:55:08:d1:7d:d8:e0:97:9e:
66:f8:15:72:98:67:d9:b7:b0:6b:0f:89:83:58:9e:
e3:8f:9e:d9:32:f0:37:22:38:91:6b:a3:7b:e0:61:
89:4d:f0:78:a0:c8:ad:f4:c4:0c:42:8c:ff:64:58:
61:b3:5c:8a:1d:d1:32:58:ff:4b:56:69:11:15:39:
78:f8:db:31:36:ac:4f:c9:95:50:45:ab:be:53:e5:
fa:f2:69:75:9d:ad:4b:2b:54:ee:a2:76:f8:78:9e:
19:3d:1b:e2:70:0a:12:20:1f:9a:cd:2e:39:65:d7:
ba:5e:33:33:2a:3d:86:40:2f:9e:ac:8c:aa:2f:ce:
5e:ce:15:8f:0a:ae:bc:c8:ad:e4:44:6e:d3:92:a1:
c6:8e:0d:2d:50:e5:fb:21:86:32:cb:4f:08:76:ab:
15:9c:c0:62:51:7a:f5:56:8a:89:63:16:09:5b:38:
3f:de:7e:f0:49:d5:25:50:da:fc:4b:ce:ca:26:ae:
ea:07:db:0f:f8:8e:bb:7d:a0:8c:02:3d:d1:e1:a0:
f8:89:5c:0e:30:3f:19:6f:af:79:7d:dd:3d:66:9c:
a5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:C9:D0:BE:B3:9B:70:E1:D4:29:3B:A1:C6:16:03:B8:94:F6:0D:F0
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/vMnQvrObcOHUKTuhxhYDuJT2DfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.234.41.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:1d:cd:36:d0:0c:b7:b5:d2:cc:c5:10:ff:fa:30:f7:8a:b7:
f9:e6:f3:f3:82:27:45:e8:9f:0c:1c:87:fa:91:23:aa:9f:ac:
11:ef:d8:0a:e8:c4:c8:c9:b1:f9:c7:08:a1:84:aa:e5:f0:aa:
2c:51:85:59:10:47:11:9b:8c:17:2a:1b:48:9c:bb:78:33:6f:
31:a4:98:ca:f9:f2:d8:e8:43:e5:d5:ec:a2:c7:34:4a:9d:dc:
25:d7:0e:65:21:fd:df:d3:d8:62:90:de:0a:49:c8:2b:38:05:
ab:00:2e:36:56:04:70:5b:26:80:04:8c:f4:01:de:2c:db:01:
df:df:00:f2:23:8b:a5:ef:63:cb:1c:9d:88:e1:d3:9b:83:39:
f5:5d:41:23:14:09:85:28:11:ea:51:3c:82:72:51:be:3d:ad:
8f:23:4f:69:c4:e7:1b:5c:c3:95:d0:ae:83:11:2e:ad:46:ea:
76:f6:10:99:69:99:81:6c:57:26:03:a5:c8:7b:9d:d9:99:af:
26:f8:9d:ae:9a:08:e4:fd:bb:c8:6f:7a:b1:7f:c4:66:2c:83:
d3:31:43:bc:bc:20:b3:ec:14:f3:86:ea:35:63:50:cc:26:57:
5c:5c:a6:27:7d:cf:52:e0:6d:da:b9:d4:11:26:7d:7d:bd:82:
46:fb:ed:15
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYKLnMqBA09ga82GqHhv3ebEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxYmFkNzRlN2Y2YzA5NDlhMjczNmE1NzQ3ODQ5NmQ3ZDhi
NDUwZTYwHhcNMjIwODExMDYzNDQ0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiY2M5ZDBiZWIzOWI3MGUxZDQyOTNiYTFjNjE2MDNiODk0ZjYwZGYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPoxVP4OdSXfriTDAXmPRxKdfhGO
dtsZgDqcDJdkpOQoxUkZVQjRfdjgl55m+BVymGfZt7BrD4mDWJ7jj57ZMvA3IjiR
a6N74GGJTfB4oMit9MQMQoz/ZFhhs1yKHdEyWP9LVmkRFTl4+NsxNqxPyZVQRau+
U+X68ml1na1LK1Tuonb4eJ4ZPRvicAoSIB+azS45Zde6XjMzKj2GQC+erIyqL85e
zhWPCq68yK3kRG7TkqHGjg0tUOX7IYYyy08IdqsVnMBiUXr1VoqJYxYJWzg/3n7w
SdUlUNr8S87KJq7qB9sP+I67faCMAj3R4aD4iVwOMD8Zb695fd09ZpylqwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLzJ0L6zm3Dh1Ck7ocYWA7iU9g3wMB8GA1UdIwQY
MBaAFCG6105/bAlJonNqV0eEltfYtFDmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQt
NDQzMzIyOWE4NDczLzEvdk1uUXZyT2JjT0hVS1R1aHhoWUR1SlQyRGZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQtNDQzMzIyOWE4NDcz
LzEvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk+opMA0G
CSqGSIb3DQEBCwUAA4IBAQBaHc020Ay3tdLMxRD/+jD3irf55vPzgidF6J8MHIf6
kSOqn6wR79gK6MTIybH5xwihhKrl8KosUYVZEEcRm4wXKhtInLt4M28xpJjK+fLY
6EPl1eyixzRKndwl1w5lIf3f09hikN4KScgrOAWrAC42VgRwWyaABIz0Ad4s2wHf
3wDyI4ul72PLHJ2I4dObgzn1XUEjFAmFKBHqUTyCclG+Pa2PI09pxOcbXMOV0K6D
ES6tRup29hCZaZmBbFcmA6XIe53Zma8m+J2umgjk/bvIb3qxf8RmLIPTMUO8vCCz
7BTzhuo1Y1DMJldcXKYnfc9S4G3audQRJn19vYJG++0V
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:17 2024 by rpki-client on console-fra.rpki-client.org