Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/Ud1Fh6sFBbK0Hro_aT1D5G71u7M.roa
File: Ud1Fh6sFBbK0Hro_aT1D5G71u7M.roa (raw, json)
Hash identifier: 34ywfWEwy/CoJkGE48KKSdhPpFLsd63nqnnRl24olkM=
Subject key identifier: 51:DD:45:87:AB:05:05:B2:B4:1E:BA:3F:69:3D:43:E4:6E:F5:BB:B3
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 0888A8B1
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/Ud1Fh6sFBbK0Hro_aT1D5G71u7M.roa
Signing time: Sat 01 Jan 2022 03:50:56 +0000
ROA not before: Sat 01 Jan 2022 03:50:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34521
IP address blocks: 213.215.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143173809 (0x888a8b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 03:50:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51dd4587ab0505b2b41eba3f693d43e46ef5bbb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4b:28:83:dd:f4:b3:42:17:73:5e:fa:ec:37:
1a:d4:43:c1:b2:f4:c4:a4:55:a6:05:bc:45:92:04:
7c:29:cb:1e:11:57:fc:08:9c:07:b2:a7:85:dc:d6:
b6:30:9e:4a:6d:82:ca:8f:b8:00:74:d8:01:67:a2:
6a:a4:77:b2:d0:e4:80:47:94:ff:fb:6a:6a:97:86:
ea:7b:c2:14:13:f4:d1:d4:e9:43:1b:1f:9a:72:6f:
97:2d:37:b2:c2:ce:42:ca:ee:62:79:69:c9:29:1f:
cb:74:a9:c6:0d:b3:8f:a3:cb:d0:c2:41:4f:b8:78:
db:bf:6e:1d:21:13:75:e3:6a:8d:cf:ba:d1:17:81:
30:5a:3b:48:67:d1:f2:45:ab:b3:78:c2:95:72:84:
8e:84:c5:81:fa:6a:8d:e1:6d:49:54:a5:9a:08:eb:
46:0d:87:a0:a7:cf:89:8b:64:77:95:4c:c1:56:8f:
8e:a4:f4:ae:da:bc:e4:ae:81:aa:4f:5c:95:e6:a8:
b8:c2:4c:f6:19:a1:6c:0e:50:15:c7:8f:69:bb:77:
cb:07:b7:30:ce:12:ac:bd:37:05:3d:1d:d3:31:e8:
e5:13:ff:f8:ad:62:2a:40:cd:4b:b3:e8:ac:17:76:
0e:64:72:bb:73:f9:bf:56:46:44:f5:c4:21:9b:b2:
7f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:DD:45:87:AB:05:05:B2:B4:1E:BA:3F:69:3D:43:E4:6E:F5:BB:B3
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/Ud1Fh6sFBbK0Hro_aT1D5G71u7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.215.69.0/24
Signature Algorithm: sha256WithRSAEncryption
15:f9:8e:71:cd:89:f9:6f:e4:bf:55:47:5c:99:b5:3c:aa:8d:
0d:4f:36:d9:14:c7:9e:d1:2e:f5:7e:8c:9e:4e:80:2e:b8:88:
03:1e:44:bf:17:20:09:a7:1b:ad:21:e4:1c:fe:b8:68:5a:61:
c2:62:ba:97:7b:89:79:ac:e6:1f:17:10:b7:45:4a:11:4e:cd:
c2:55:49:c7:0b:36:2e:32:43:da:83:4e:39:45:98:2f:d1:3a:
06:fe:a6:c5:0c:ab:08:22:cf:67:56:ab:39:b9:1d:9f:92:20:
bf:8c:2b:ab:ba:14:22:90:95:07:b9:46:a9:84:dd:ae:a1:91:
f7:85:9b:39:e3:89:f4:e7:37:22:95:25:9a:7a:8f:11:62:35:
d1:c2:60:cf:cf:e0:1c:1d:4d:03:69:ef:64:f7:eb:f3:83:0a:
b2:9a:8e:3b:44:12:71:9f:d7:4d:e3:d1:25:11:3f:81:de:2e:
89:76:e8:23:22:e7:0e:1d:bc:cf:a6:81:07:4b:1a:5f:a2:bf:
fb:00:20:a1:84:20:01:1b:f9:91:e5:30:60:8c:79:f3:77:53:
7c:35:b8:95:b9:59:5b:a7:92:d2:3f:c4:27:11:45:7d:5c:1d:
58:59:99:16:e9:a3:5f:fc:bb:c3:54:67:19:c6:b9:77:84:b5:
f7:82:38:f0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECIiosTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
N2Y4ODE0MDFhYmFjYzg4Yzk0MWZkZjc0MGYxYWIxNTM2ZjA1ZGJhMB4XDTIyMDEw
MTAzNTA1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTFkZDQ1ODdhYjA1
MDViMmI0MWViYTNmNjkzZDQzZTQ2ZWY1YmJiMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANNLKIPd9LNCF3Ne+uw3GtRDwbL0xKRVpgW8RZIEfCnLHhFX
/AicB7KnhdzWtjCeSm2Cyo+4AHTYAWeiaqR3stDkgEeU//tqapeG6nvCFBP00dTp
QxsfmnJvly03ssLOQsruYnlpySkfy3Spxg2zj6PL0MJBT7h4279uHSETdeNqjc+6
0ReBMFo7SGfR8kWrs3jClXKEjoTFgfpqjeFtSVSlmgjrRg2HoKfPiYtkd5VMwVaP
jqT0rtq85K6Bqk9cleaouMJM9hmhbA5QFcePabt3ywe3MM4SrL03BT0d0zHo5RP/
+K1iKkDNS7PorBd2DmRyu3P5v1ZGRPXEIZuyfyUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRR3UWHqwUFsrQeuj9pPUPkbvW7szAfBgNVHSMEGDAWgBTn+IFAGrrMiMlB
/fdA8asVNvBdujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVfaUJRQnE2eklqSlFmMzNRUEdyRlRid1hiby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjkvZjU1MzRhLWE2MTMtNDdiZS1iNDJiLWUyZmJjM2E2ODgwMC8x
L1VkMUZoNnNGQmJLMEhyb19hVDFENUc3MXU3TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkv
ZjU1MzRhLWE2MTMtNDdiZS1iNDJiLWUyZmJjM2E2ODgwMC8xLzVfaUJRQnE2eklq
SlFmMzNRUEdyRlRid1hiby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANXXRTANBgkqhkiG9w0BAQsFAAOC
AQEAFfmOcc2J+W/kv1VHXJm1PKqNDU822RTHntEu9X6Mnk6ALriIAx5EvxcgCacb
rSHkHP64aFphwmK6l3uJeazmHxcQt0VKEU7NwlVJxws2LjJD2oNOOUWYL9E6Bv6m
xQyrCCLPZ1arObkdn5Igv4wrq7oUIpCVB7lGqYTdrqGR94WbOeOJ9Oc3IpUlmnqP
EWI10cJgz8/gHB1NA2nvZPfr84MKspqOO0QScZ/XTePRJRE/gd4uiXboIyLnDh28
z6aBB0saX6K/+wAgoYQgARv5keUwYIx583dTfDW4lblZW6eS0j/EJxFFfVwdWFmZ
FumjX/y7w1RnGca5d4S194I48A==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:33 2025 by rpki-client