Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/Dejp4vmAU33XYR-FadNAi_iIBSE.roa
File: Dejp4vmAU33XYR-FadNAi_iIBSE.roa (raw, json)
Hash identifier: u+/owwvprnDIkgh7bJeAgVhF/0ipkxFX9P4HUahR8F0=
Subject key identifier: 0D:E8:E9:E2:F9:80:53:7D:D7:61:1F:85:69:D3:40:8B:F8:88:05:21
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 083EA5D6
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/Dejp4vmAU33XYR-FadNAi_iIBSE.roa
Signing time: Sat 01 Jan 2022 07:56:18 +0000
ROA not before: Sat 01 Jan 2022 07:56:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211708
IP address blocks: 212.22.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138323414 (0x83ea5d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 07:56:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0de8e9e2f980537dd7611f8569d3408bf8880521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:30:d8:44:e2:4e:5b:ac:40:21:bf:3c:bc:ef:
06:80:a7:72:19:08:fd:94:70:95:8c:f9:f8:d5:2c:
d5:5f:24:5a:0e:0b:92:f6:a6:8e:65:d8:af:90:73:
f4:82:e5:ea:9b:d3:a0:66:79:25:37:bf:f0:38:1a:
64:74:84:4a:36:63:85:00:d1:8a:11:92:dd:e6:8b:
c9:d2:76:72:45:d6:fe:25:f4:18:44:ce:6d:ef:12:
26:b2:34:43:30:7e:75:7e:89:1e:b7:2b:79:e2:04:
7b:18:eb:eb:fc:bf:2e:44:d3:8f:6c:d0:bf:6c:ac:
74:ca:37:52:e9:11:d6:31:47:bb:41:bb:bb:8f:70:
84:b4:af:69:3d:02:6a:27:21:c8:81:99:95:5b:7b:
03:a4:fd:95:c0:78:af:8e:bd:a8:be:88:e2:ba:e5:
ef:03:ca:f8:86:b0:e9:fd:2c:52:da:3e:37:d9:2d:
ec:3a:21:ca:14:a5:0e:2e:5a:76:83:82:0e:0c:e2:
d3:49:65:31:fd:3f:39:71:c9:3a:29:ff:b3:39:13:
34:c3:8b:6d:55:fa:08:15:ad:0f:ec:ed:f6:d3:ec:
e1:df:d3:dd:32:56:69:53:b3:0f:88:51:fc:7f:a8:
df:7e:9b:5f:8c:54:b9:c2:8d:9b:3a:8b:fc:c1:4f:
32:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:E8:E9:E2:F9:80:53:7D:D7:61:1F:85:69:D3:40:8B:F8:88:05:21
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/Dejp4vmAU33XYR-FadNAi_iIBSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.88.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:38:3f:92:56:56:f8:33:cd:58:82:0a:7a:da:a4:3c:1b:35:
e2:a4:92:66:ff:75:2b:43:8a:11:5e:3d:ef:56:b5:07:0b:65:
9d:9a:38:5c:4b:7e:51:5b:b9:27:16:e6:2d:b7:86:67:da:62:
9d:a9:7f:ab:b9:8a:f2:53:6f:04:71:37:77:66:c1:7e:df:44:
42:db:3c:4f:28:40:a9:79:d9:b7:e0:0d:8c:da:a9:96:be:6a:
c7:e6:0c:81:1c:62:a1:37:0f:d1:2b:eb:ea:80:ba:25:04:c7:
b2:b7:f0:66:8c:43:54:7e:b0:a1:c4:c3:ac:a8:bf:a8:d7:14:
7e:77:35:65:d6:a8:47:ab:94:0b:b3:62:dc:9b:02:f4:54:74:
e4:60:71:11:c3:7e:00:d6:38:df:03:cf:a3:e3:5b:76:0e:58:
ee:4c:c5:4b:29:0b:db:a6:7b:71:c9:57:0a:d6:75:73:59:51:
2a:50:63:46:c1:4d:6c:1f:ca:22:29:70:12:35:c7:3f:ad:18:
96:93:1e:3c:6c:88:a3:63:ba:91:db:ff:a7:74:10:75:6a:43:
22:a7:1d:00:39:78:2f:1a:f4:56:ed:99:fc:29:0b:9a:fb:ba:
b8:95:08:08:fe:13:7e:1c:39:f6:21:dd:02:3e:39:0d:35:e1:
52:bc:61:d1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECD6l1jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDYzNjUzNTViNjY1NTY0YTIxMGMzNThjNjhhMDExN2I3ZmJlYjlhMB4XDTIyMDEw
MTA3NTYxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGRlOGU5ZTJmOTgw
NTM3ZGQ3NjExZjg1NjlkMzQwOGJmODg4MDUyMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKow2ETiTlusQCG/PLzvBoCnchkI/ZRwlYz5+NUs1V8kWg4L
kvamjmXYr5Bz9ILl6pvToGZ5JTe/8DgaZHSESjZjhQDRihGS3eaLydJ2ckXW/iX0
GETObe8SJrI0QzB+dX6JHrcreeIEexjr6/y/LkTTj2zQv2ysdMo3UukR1jFHu0G7
u49whLSvaT0CaichyIGZlVt7A6T9lcB4r469qL6I4rrl7wPK+Iaw6f0sUto+N9kt
7DohyhSlDi5adoOCDgzi00llMf0/OXHJOin/szkTNMOLbVX6CBWtD+zt9tPs4d/T
3TJWaVOzD4hR/H+o336bX4xUucKNmzqL/MFPMtUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQN6Oni+YBTfddhH4Vp00CL+IgFITAfBgNVHSMEGDAWgBR0Y2U1W2ZVZKIQ
w1jGigEXt/vrmjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RHTmxOVnRtVldTaUVNTll4b29CRjdmNzY1by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjIvYWVhMzZkLWJhYmYtNDQ3NC1hNzhiLTZhNGVjYWY4YjNiMS8x
L0RlanA0dm1BVTMzWFlSLUZhZE5BaV9pSUJTRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjIv
YWVhMzZkLWJhYmYtNDQ3NC1hNzhiLTZhNGVjYWY4YjNiMS8xL2RHTmxOVnRtVldT
aUVNTll4b29CRjdmNzY1by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANQWWDANBgkqhkiG9w0BAQsFAAOC
AQEAoDg/klZW+DPNWIIKetqkPBs14qSSZv91K0OKEV4971a1BwtlnZo4XEt+UVu5
JxbmLbeGZ9pinal/q7mK8lNvBHE3d2bBft9EQts8TyhAqXnZt+ANjNqplr5qx+YM
gRxioTcP0Svr6oC6JQTHsrfwZoxDVH6wocTDrKi/qNcUfnc1ZdaoR6uUC7Ni3JsC
9FR05GBxEcN+ANY43wPPo+Nbdg5Y7kzFSykL26Z7cclXCtZ1c1lRKlBjRsFNbB/K
IilwEjXHP60YlpMePGyIo2O6kdv/p3QQdWpDIqcdADl4Lxr0Vu2Z/CkLmvu6uJUI
CP4Tfhw59iHdAj45DTXhUrxh0Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org