Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jpvtrQMztgyWTYZZJGT5kHNbkqw.roa
File: jpvtrQMztgyWTYZZJGT5kHNbkqw.roa (raw, json)
Hash identifier: wQUm43caRrO8fL3AUNlIrL9c29SOMTSiMd2+stvzYno=
Subject key identifier: 8E:9B:ED:AD:03:33:B6:0C:96:4D:86:59:24:64:F9:90:73:5B:92:AC
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1ABD3709
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jpvtrQMztgyWTYZZJGT5kHNbkqw.roa
Signing time: Sat 01 Jan 2022 16:03:11 +0000
ROA not before: Sat 01 Jan 2022 16:03:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200967
IP address blocks: 213.14.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448608009 (0x1abd3709)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e9bedad0333b60c964d86592464f990735b92ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:de:5d:46:19:4f:8c:99:25:8f:e4:48:26:af:
72:06:2d:22:56:84:07:a6:50:cf:82:c8:b4:24:f7:
e6:34:96:06:34:59:57:62:4f:76:5b:b5:3a:3a:f5:
1a:70:82:e5:fa:ad:44:dd:e2:8e:97:77:20:4d:45:
aa:18:dd:c9:f2:c4:80:4e:97:e2:48:11:c1:d6:92:
6c:da:9d:b9:c7:29:20:62:62:9d:5c:32:15:f2:3e:
15:f0:f5:47:b3:dd:ed:1c:8c:19:0b:2c:08:c6:e1:
cf:a7:99:9f:5c:5c:cf:43:39:fd:ea:57:14:41:69:
1b:e8:c4:48:a2:46:ed:a1:e9:9c:18:49:13:41:0b:
7f:42:5a:e5:ae:35:43:fe:68:40:5c:52:03:83:30:
45:37:c6:66:ca:34:71:ab:51:aa:5e:09:bf:88:e4:
c1:c1:aa:65:ea:ee:fa:06:3e:6d:ab:5f:44:94:1f:
37:48:a0:05:5a:ab:24:14:3d:bc:27:13:9d:13:05:
df:84:28:a5:71:81:d4:89:fd:c7:6b:79:59:f8:cb:
fa:86:91:f8:f3:49:fc:b7:b9:fc:ed:29:1d:08:12:
96:dd:85:6b:98:2b:b9:43:23:55:ad:14:43:01:c6:
91:05:5d:12:03:28:e4:98:f1:04:e5:01:df:03:94:
77:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:9B:ED:AD:03:33:B6:0C:96:4D:86:59:24:64:F9:90:73:5B:92:AC
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jpvtrQMztgyWTYZZJGT5kHNbkqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.14.227.0/24
Signature Algorithm: sha256WithRSAEncryption
37:cf:d4:bd:e6:90:d4:13:a3:e0:e8:d8:73:a0:d1:a9:ef:73:
f3:20:52:5d:00:6f:ce:02:ce:79:04:cb:70:73:bf:af:20:b3:
6a:4a:6f:55:03:52:90:e6:07:42:2f:50:f2:f7:3f:7c:ac:3a:
90:d0:68:6b:3a:fb:b1:69:6c:39:c2:71:ef:94:9c:7d:ec:6b:
d0:02:f2:47:b7:86:97:ab:85:eb:cb:bc:58:b5:35:2d:06:d6:
7d:6b:0b:78:b4:95:2f:d8:69:06:0b:8e:8e:ac:54:2b:c3:bf:
a0:5e:79:d5:c3:40:db:b4:c5:e2:06:91:d2:d3:6a:06:43:82:
9f:6f:99:10:7d:62:29:85:28:32:be:36:aa:27:38:da:d0:67:
33:a3:1e:c7:a5:cb:fd:7c:0f:0f:29:fc:2e:70:59:f4:4e:ca:
18:ab:95:9d:60:c3:f5:bf:f2:aa:47:a6:40:c1:1a:c6:dc:68:
a6:2c:f0:cc:96:53:20:08:00:e4:d2:a8:f1:eb:a5:84:4b:7d:
d4:f5:ac:89:f7:5d:cf:d6:06:ab:a5:8e:a0:c6:0e:8e:a4:cc:
7a:ce:c6:bf:3d:4c:2d:17:98:a7:6c:31:dc:4d:a4:3e:36:52:
25:1f:f2:90:87:57:ce:b7:55:40:d6:45:63:38:1f:67:c8:b9:
35:41:f0:0a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGr03CTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZDU5YzQzMjNmNzY3Y2U0ZmZjODVkYWFkMjA4YjkwYzA0ZmJkM2U5MB4XDTIyMDEw
MTE2MDMxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGU5YmVkYWQwMzMz
YjYwYzk2NGQ4NjU5MjQ2NGY5OTA3MzViOTJhYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMbeXUYZT4yZJY/kSCavcgYtIlaEB6ZQz4LItCT35jSWBjRZ
V2JPdlu1Ojr1GnCC5fqtRN3ijpd3IE1FqhjdyfLEgE6X4kgRwdaSbNqduccpIGJi
nVwyFfI+FfD1R7Pd7RyMGQssCMbhz6eZn1xcz0M5/epXFEFpG+jESKJG7aHpnBhJ
E0ELf0Ja5a41Q/5oQFxSA4MwRTfGZso0catRql4Jv4jkwcGqZeru+gY+batfRJQf
N0igBVqrJBQ9vCcTnRMF34QopXGB1In9x2t5WfjL+oaR+PNJ/Le5/O0pHQgSlt2F
a5gruUMjVa0UQwHGkQVdEgMo5JjxBOUB3wOUd9cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSOm+2tAzO2DJZNhlkkZPmQc1uSrDAfBgNVHSMEGDAWgBSNWcQyP3Z85P/I
XarSCLkMBPvT6TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pWbkVNajkyZk9UX3lGMnEwZ2k1REFUNzAtay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjYvZjA5ZWNmLWU4MDUtNDE1OC1iMzE1LWYyYmU5ZjZjNjY0Yy8x
L2pwdnRyUU16dGd5V1RZWlpKR1Q1a0hOYmtxdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjYv
ZjA5ZWNmLWU4MDUtNDE1OC1iMzE1LWYyYmU5ZjZjNjY0Yy8xL2pWbkVNajkyZk9U
X3lGMnEwZ2k1REFUNzAtay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANUO4zANBgkqhkiG9w0BAQsFAAOC
AQEAN8/UveaQ1BOj4OjYc6DRqe9z8yBSXQBvzgLOeQTLcHO/ryCzakpvVQNSkOYH
Qi9Q8vc/fKw6kNBoazr7sWlsOcJx75Scfexr0ALyR7eGl6uF68u8WLU1LQbWfWsL
eLSVL9hpBguOjqxUK8O/oF551cNA27TF4gaR0tNqBkOCn2+ZEH1iKYUoMr42qic4
2tBnM6Mex6XL/XwPDyn8LnBZ9E7KGKuVnWDD9b/yqkemQMEaxtxopizwzJZTIAgA
5NKo8eulhEt91PWsifddz9YGq6WOoMYOjqTMes7Gvz1MLReYp2wx3E2kPjZSJR/y
kIdXzrdVQNZFYzgfZ8i5NUHwCg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org