Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/xA9WiDt25maXqKjepiKbDnU5L_c.roa
File: xA9WiDt25maXqKjepiKbDnU5L_c.roa (raw, json)
Hash identifier: BqSK1Fp+DqP5mipH3bEtKGaa7bvtv4OsQTuDyR7BMu4=
Subject key identifier: C4:0F:56:88:3B:76:E6:66:97:A8:A8:DE:A6:22:9B:0E:75:39:2F:F7
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 35A81F29
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/xA9WiDt25maXqKjepiKbDnU5L_c.roa
Signing time: Sat 01 Jan 2022 08:54:59 +0000
ROA not before: Sat 01 Jan 2022 08:54:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208511
IP address blocks: 213.108.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 900210473 (0x35a81f29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 1 08:54:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c40f56883b76e66697a8a8dea6229b0e75392ff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d9:46:75:95:a5:93:58:91:23:e5:e7:a9:ab:
b1:8e:16:ba:3f:1d:29:73:72:e2:94:37:88:18:8c:
fa:4a:f0:ca:e5:fd:61:70:5f:7b:92:ee:56:04:a1:
01:71:85:2d:85:e4:07:bb:7d:09:81:94:b5:cc:1f:
32:53:24:29:d0:04:b6:98:9e:85:45:8e:66:c1:0c:
d8:55:d6:f5:0b:70:dd:f2:05:b8:00:00:23:0d:d3:
17:40:19:72:97:ea:62:1d:b7:81:2e:09:a2:b4:bd:
4a:ae:a9:ca:33:fd:44:29:d1:6e:9d:3a:c6:3a:28:
4f:0a:32:a9:32:e9:cb:32:d8:e2:67:5b:dd:10:39:
27:6b:7e:50:54:e3:e9:5f:e5:80:d8:ff:1b:77:8a:
f4:a5:f2:1e:a0:bc:6c:9c:65:e4:3a:d3:97:75:99:
e6:77:92:2f:04:68:03:69:2a:74:4d:df:ea:21:ee:
2c:c2:0f:8b:d0:5d:0c:ff:5c:6b:71:0a:fb:82:be:
ef:11:28:3c:4f:3f:fd:2d:0c:11:bb:43:ee:70:56:
4b:56:bc:4b:dc:fe:c7:dd:e1:4e:91:93:a0:33:dc:
d7:17:54:8a:fb:95:ee:07:21:69:a8:3d:1c:ff:51:
25:fa:12:eb:60:66:3b:e0:22:87:99:3f:d8:fb:2e:
de:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:0F:56:88:3B:76:E6:66:97:A8:A8:DE:A6:22:9B:0E:75:39:2F:F7
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/xA9WiDt25maXqKjepiKbDnU5L_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.108.32.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:b6:dd:72:53:34:4a:28:64:79:ca:b2:00:98:1e:71:9d:31:
1a:43:d2:3e:fc:0c:6e:11:dc:f9:57:3d:0d:35:31:7e:d6:24:
44:21:5a:11:db:09:1b:d6:6f:9e:98:3a:3a:81:6f:45:75:fc:
36:09:40:00:53:0b:20:54:3e:c3:14:5b:81:89:0f:0c:64:e4:
05:e4:1f:bd:b4:13:db:ad:33:f6:71:52:b4:fa:c3:ab:f1:5c:
26:6b:51:9f:72:16:ce:b1:19:6c:1c:b2:7a:fb:61:dc:04:6f:
69:41:5e:2d:02:e7:24:96:ff:33:0f:94:0e:f1:7a:4e:ec:88:
90:7c:86:d8:e7:86:7c:0f:88:3c:33:21:ec:5c:d4:ae:b8:8a:
33:7e:99:90:27:c7:25:2b:6c:0d:5c:36:0f:36:68:76:c9:28:
20:61:3e:4c:4d:8f:1f:6a:ec:a3:73:be:24:04:c6:db:cc:cc:
a0:34:75:f4:2f:1f:94:30:ad:bd:2b:21:b9:27:0b:bb:2e:15:
93:4a:57:cd:85:96:d9:40:7f:b9:61:9e:88:ac:8d:7a:25:aa:
4c:0a:9a:d5:53:7c:dc:a5:f9:5e:91:58:55:12:f0:8b:08:cc:
44:c9:25:b0:c9:34:0a:d7:0f:e6:d2:c6:9f:72:1a:e2:0a:4f:
d0:01:06:35
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIENagfKTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZWJhNDhjN2UyYzllMDVlZGE1NDZkODk5MTQ2Yjg5Zjc5OWRmODVkMB4XDTIyMDEw
MTA4NTQ1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzQwZjU2ODgzYjc2
ZTY2Njk3YThhOGRlYTYyMjliMGU3NTM5MmZmNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAODZRnWVpZNYkSPl56mrsY4Wuj8dKXNy4pQ3iBiM+krwyuX9
YXBfe5LuVgShAXGFLYXkB7t9CYGUtcwfMlMkKdAEtpiehUWOZsEM2FXW9Qtw3fIF
uAAAIw3TF0AZcpfqYh23gS4JorS9Sq6pyjP9RCnRbp06xjooTwoyqTLpyzLY4mdb
3RA5J2t+UFTj6V/lgNj/G3eK9KXyHqC8bJxl5DrTl3WZ5neSLwRoA2kqdE3f6iHu
LMIPi9BdDP9ca3EK+4K+7xEoPE8//S0MEbtD7nBWS1a8S9z+x93hTpGToDPc1xdU
ivuV7gchaag9HP9RJfoS62BmO+Aih5k/2Psu3k8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTED1aIO3bmZpeoqN6mIpsOdTkv9zAfBgNVHSMEGDAWgBS+ukjH4sngXtpU
bYmRRrifeZ34XTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZycEl4LUxKNEY3YVZHMkprVWE0bjNtZC1GMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmQvN2Y4ODIxLTE1NjYtNDNmNC1hYjI2LTNkNTIyMTgxYTJjNC8x
L3hBOVdpRHQyNW1hWHFLamVwaUtiRG5VNUxfYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQv
N2Y4ODIxLTE1NjYtNDNmNC1hYjI2LTNkNTIyMTgxYTJjNC8xL3ZycEl4LUxKNEY3
YVZHMkprVWE0bjNtZC1GMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANVsIDANBgkqhkiG9w0BAQsFAAOC
AQEAqrbdclM0SihkecqyAJgecZ0xGkPSPvwMbhHc+Vc9DTUxftYkRCFaEdsJG9Zv
npg6OoFvRXX8NglAAFMLIFQ+wxRbgYkPDGTkBeQfvbQT260z9nFStPrDq/FcJmtR
n3IWzrEZbByyevth3ARvaUFeLQLnJJb/Mw+UDvF6TuyIkHyG2OeGfA+IPDMh7FzU
rriKM36ZkCfHJStsDVw2DzZodskoIGE+TE2PH2rso3O+JATG28zMoDR19C8flDCt
vSshuScLuy4Vk0pXzYWW2UB/uWGeiKyNeiWqTAqa1VN83KX5XpFYVRLwiwjMRMkl
sMk0CtcP5tLGn3Ia4gpP0AEGNQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:41 2024 by rpki-client on console-ams.rpki-client.org