Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/HNoi18hB9FWP0x3PQpHbygaAFD8.roa
File: HNoi18hB9FWP0x3PQpHbygaAFD8.roa (raw, json)
Hash identifier: m1NM5fH/0cs7UEiKsccsIPBoVQZ6mZCJKW400GUG1Hk=
Subject key identifier: 1C:DA:22:D7:C8:41:F4:55:8F:D3:1D:CF:42:91:DB:CA:06:80:14:3F
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1AAD6410
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/HNoi18hB9FWP0x3PQpHbygaAFD8.roa
Signing time: Sat 01 Jan 2022 16:03:02 +0000
ROA not before: Sat 01 Jan 2022 16:03:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33830
IP address blocks: 213.14.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 447570960 (0x1aad6410)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cda22d7c841f4558fd31dcf4291dbca0680143f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6b:f2:b7:87:89:38:c4:63:89:f3:25:42:96:
23:69:4a:c8:e3:96:6a:7d:f9:a7:f9:ee:12:ae:21:
bc:58:68:d8:58:98:a3:7e:a3:41:c9:a4:95:f7:72:
d1:8a:21:48:b8:ac:18:68:c5:64:cc:a0:72:d5:6b:
4a:d7:94:25:e8:cd:52:41:07:d0:34:0d:d7:6c:b0:
75:42:44:44:1e:b4:5c:b0:50:20:c5:a2:1f:66:ef:
0b:67:8d:dd:ee:7e:7e:4f:b0:95:c8:b3:00:a5:5b:
cb:90:f7:be:67:7d:aa:0c:42:dc:84:b6:69:a2:3b:
19:28:2e:19:d3:ed:fd:1c:be:6b:d3:30:86:f6:64:
a1:21:bd:c4:c3:4d:3c:51:da:43:bb:81:bf:78:0d:
44:f7:08:47:5c:0c:3a:e6:8f:28:74:ec:bc:fa:c6:
b5:c3:4a:69:01:02:c8:4e:1b:b4:c7:b2:31:c4:f8:
0d:62:1c:a0:8a:63:48:89:df:3a:00:b7:fd:8f:de:
88:42:73:a2:db:3e:e5:28:65:ab:14:b7:c4:9b:68:
67:c8:59:a3:b6:44:3c:de:ac:ee:34:e4:5a:0f:16:
76:fd:bf:a0:35:5d:45:87:b1:b9:bd:6e:22:b4:7c:
c1:8a:ef:56:e0:df:1e:5e:b7:ee:76:2e:ce:78:22:
91:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:DA:22:D7:C8:41:F4:55:8F:D3:1D:CF:42:91:DB:CA:06:80:14:3F
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/HNoi18hB9FWP0x3PQpHbygaAFD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.14.215.0/24
Signature Algorithm: sha256WithRSAEncryption
04:e1:3d:23:26:c9:f5:00:a9:21:1c:1b:89:50:ed:b4:d1:a5:
09:73:cd:04:02:d3:30:fb:7d:a8:4d:2c:c3:41:bd:9e:3c:7e:
2f:64:6e:3f:63:a0:f2:df:70:86:17:1b:c9:01:18:43:7e:d3:
0d:4b:77:27:b5:50:69:06:4b:7f:0d:c8:1e:0d:ef:02:49:2f:
ce:50:0f:43:b3:b3:0d:08:3f:bf:15:b9:1e:54:98:5a:ec:54:
a5:c7:f5:3a:81:27:cd:79:30:3e:30:16:24:2c:54:50:2a:1e:
99:47:50:6c:c5:d6:7c:65:a5:c5:8d:ae:e2:3d:fb:09:ab:c5:
99:47:0f:5c:d1:26:5c:c3:ae:5e:d2:e7:9a:48:5c:5c:0e:fa:
bb:40:9e:06:a2:aa:68:d4:91:23:1f:c0:aa:54:25:bb:ef:9e:
43:ac:1e:35:14:3e:ec:7c:f6:f8:98:e2:ff:f7:e8:bf:03:ee:
52:50:07:a7:83:ea:5b:68:66:de:80:47:9a:98:8f:86:9c:27:
55:a1:8c:37:9c:44:d5:10:91:68:0c:23:0e:ec:23:8d:a8:e2:
53:b4:be:92:ab:1e:06:ba:48:a2:93:60:7c:29:1d:8c:62:ae:
1f:dc:f5:d3:9e:e8:d6:b2:1b:f8:cb:69:84:c9:c1:a8:82:fa:
90:47:de:cd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGq1kEDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZDU5YzQzMjNmNzY3Y2U0ZmZjODVkYWFkMjA4YjkwYzA0ZmJkM2U5MB4XDTIyMDEw
MTE2MDMwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWNkYTIyZDdjODQx
ZjQ1NThmZDMxZGNmNDI5MWRiY2EwNjgwMTQzZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANpr8reHiTjEY4nzJUKWI2lKyOOWan35p/nuEq4hvFho2FiY
o36jQcmklfdy0YohSLisGGjFZMygctVrSteUJejNUkEH0DQN12ywdUJERB60XLBQ
IMWiH2bvC2eN3e5+fk+wlcizAKVby5D3vmd9qgxC3IS2aaI7GSguGdPt/Ry+a9Mw
hvZkoSG9xMNNPFHaQ7uBv3gNRPcIR1wMOuaPKHTsvPrGtcNKaQECyE4btMeyMcT4
DWIcoIpjSInfOgC3/Y/eiEJzots+5ShlqxS3xJtoZ8hZo7ZEPN6s7jTkWg8Wdv2/
oDVdRYexub1uIrR8wYrvVuDfHl637nYuzngikccCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQc2iLXyEH0VY/THc9CkdvKBoAUPzAfBgNVHSMEGDAWgBSNWcQyP3Z85P/I
XarSCLkMBPvT6TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pWbkVNajkyZk9UX3lGMnEwZ2k1REFUNzAtay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjYvZjA5ZWNmLWU4MDUtNDE1OC1iMzE1LWYyYmU5ZjZjNjY0Yy8x
L0hOb2kxOGhCOUZXUDB4M1BRcEhieWdhQUZEOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjYv
ZjA5ZWNmLWU4MDUtNDE1OC1iMzE1LWYyYmU5ZjZjNjY0Yy8xL2pWbkVNajkyZk9U
X3lGMnEwZ2k1REFUNzAtay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANUO1zANBgkqhkiG9w0BAQsFAAOC
AQEABOE9IybJ9QCpIRwbiVDttNGlCXPNBALTMPt9qE0sw0G9njx+L2RuP2Og8t9w
hhcbyQEYQ37TDUt3J7VQaQZLfw3IHg3vAkkvzlAPQ7OzDQg/vxW5HlSYWuxUpcf1
OoEnzXkwPjAWJCxUUCoemUdQbMXWfGWlxY2u4j37CavFmUcPXNEmXMOuXtLnmkhc
XA76u0CeBqKqaNSRIx/AqlQlu++eQ6weNRQ+7Hz2+Jji//fovwPuUlAHp4PqW2hm
3oBHmpiPhpwnVaGMN5xE1RCRaAwjDuwjjajiU7S+kqseBrpIopNgfCkdjGKuH9z1
057o1rIb+MtphMnBqIL6kEfezQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org