Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/13uLRBhH5np6DSvprlPwK88kpvg.roa
File: 13uLRBhH5np6DSvprlPwK88kpvg.roa (raw, json)
Hash identifier: RaXWUxLpKBDzr6R34GRSxkNgZE9WX7+gr4OuF8QeilE=
Subject key identifier: D7:7B:8B:44:18:47:E6:7A:7A:0D:2B:E9:AE:53:F0:2B:CF:24:A6:F8
Certificate issuer: /CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14
Certificate serial: 19E1903A
Authority key identifier: 1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/13uLRBhH5np6DSvprlPwK88kpvg.roa
Signing time: Sat 01 Jan 2022 02:57:58 +0000
ROA not before: Sat 01 Jan 2022 02:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39263
IP address blocks: 217.150.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 434212922 (0x19e1903a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14
Validity
Not Before: Jan 1 02:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d77b8b441847e67a7a0d2be9ae53f02bcf24a6f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:10:6a:be:14:7e:b3:f8:b8:a4:0a:5e:fa:91:
8b:12:07:ad:d4:fd:84:94:3a:33:79:6d:4b:62:c4:
73:a9:09:99:f9:23:e5:76:a4:74:59:61:81:6e:ed:
ac:e9:f9:0f:20:d3:ae:b0:b5:3b:ee:da:3c:7b:37:
4f:f6:47:f2:51:d6:88:88:0d:48:47:d6:fa:8c:61:
9b:bf:b1:0b:75:8b:fc:62:4a:5f:ff:fe:da:fa:cc:
e4:11:5d:6a:5c:e9:9a:e9:91:ba:bf:23:c3:8d:8b:
66:60:58:0b:69:2b:a3:9a:01:7b:66:35:79:be:0c:
3f:7c:ce:73:01:4b:2d:bf:69:bb:aa:ad:35:2b:f9:
d3:c6:e2:82:7c:fa:83:6b:7b:20:4b:96:45:3d:ba:
90:72:c9:e6:3f:0d:50:6b:d9:b1:82:72:af:53:ef:
0d:30:7a:12:0c:57:39:1a:1f:dc:19:4a:97:fc:53:
9d:0a:0d:d5:8f:c4:39:3c:8f:9d:dc:83:e5:13:71:
f0:30:a7:42:0a:22:ae:a9:9f:73:8a:d4:74:0a:b4:
f4:55:69:4e:6d:36:f6:d2:c7:d3:6c:2b:c9:9e:2b:
02:b0:b5:45:e5:f2:7d:e3:45:c0:0f:48:51:32:0f:
15:b5:f3:2a:18:62:1c:dd:f3:b9:de:39:18:1c:7f:
c8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:7B:8B:44:18:47:E6:7A:7A:0D:2B:E9:AE:53:F0:2B:CF:24:A6:F8
X509v3 Authority Key Identifier:
keyid:1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/13uLRBhH5np6DSvprlPwK88kpvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.150.209.0/24
Signature Algorithm: sha256WithRSAEncryption
90:30:73:22:d3:78:37:c2:64:83:3d:70:ad:64:2c:b2:f2:48:
58:f8:26:4c:38:d5:c9:7d:bb:03:c0:cb:6e:87:6b:6a:8f:0a:
2e:0c:43:5a:5d:e4:5c:9b:bb:64:df:67:7b:87:10:93:44:fa:
24:ed:75:e7:39:a3:ac:3d:01:e3:c6:b6:5c:32:c8:ee:a8:4f:
09:8e:36:13:86:07:b1:ae:fa:c3:f4:3c:8a:43:eb:b0:e7:ea:
90:08:37:e7:93:8a:bf:49:30:83:e0:11:c0:17:00:79:d7:05:
53:b4:e4:cd:73:78:83:d6:9e:48:db:57:c6:81:19:95:9e:07:
b2:ed:fa:90:0c:da:44:cd:f9:f1:79:c4:22:47:03:cc:74:3e:
a4:7f:08:13:42:9f:85:e0:75:ad:51:62:0a:e2:58:38:cd:da:
55:12:c7:fb:81:59:37:85:29:74:f8:60:05:ca:bb:a8:ba:93:
d5:da:eb:4e:67:74:ec:ae:19:0c:52:30:02:a0:e3:52:20:4b:
f8:4f:74:c2:e6:cb:b6:a5:0b:64:07:27:80:1b:e7:cc:d1:67:
f9:14:dc:09:59:74:cc:83:20:82:bd:44:33:44:9b:ef:bf:71:
5a:89:a8:67:d0:31:6d:66:84:88:72:53:af:b4:67:bd:f0:e0:
9f:c3:3c:99
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGeGQOjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZDg2MjY3NDljYmY4NGJjZjQyZWJiMjk4NWI4NmRlZTgzMGU1YzE0MB4XDTIyMDEw
MTAyNTc1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDc3YjhiNDQxODQ3
ZTY3YTdhMGQyYmU5YWU1M2YwMmJjZjI0YTZmODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANYQar4UfrP4uKQKXvqRixIHrdT9hJQ6M3ltS2LEc6kJmfkj
5XakdFlhgW7trOn5DyDTrrC1O+7aPHs3T/ZH8lHWiIgNSEfW+oxhm7+xC3WL/GJK
X//+2vrM5BFdalzpmumRur8jw42LZmBYC2kro5oBe2Y1eb4MP3zOcwFLLb9pu6qt
NSv508bignz6g2t7IEuWRT26kHLJ5j8NUGvZsYJyr1PvDTB6EgxXORof3BlKl/xT
nQoN1Y/EOTyPndyD5RNx8DCnQgoirqmfc4rUdAq09FVpTm029tLH02wryZ4rArC1
ReXyfeNFwA9IUTIPFbXzKhhiHN3zud45GBx/yIcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTXe4tEGEfmenoNK+muU/ArzySm+DAfBgNVHSMEGDAWgBQdhiZ0nL+EvPQu
uymFuG3ugw5cFDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hZWW1kSnlfaEx6MExyc3BoYmh0N29NT1hCUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzcvOTUxYzhlLTRhODYtNGM4ZS05OTg2LTBiZmJhZDQ4NDljZC8x
LzEzdUxSQmhINW5wNkRTdnBybFB3Szg4a3B2Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzcv
OTUxYzhlLTRhODYtNGM4ZS05OTg2LTBiZmJhZDQ4NDljZC8xL0hZWW1kSnlfaEx6
MExyc3BoYmh0N29NT1hCUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANmW0TANBgkqhkiG9w0BAQsFAAOC
AQEAkDBzItN4N8Jkgz1wrWQssvJIWPgmTDjVyX27A8DLbodrao8KLgxDWl3kXJu7
ZN9ne4cQk0T6JO115zmjrD0B48a2XDLI7qhPCY42E4YHsa76w/Q8ikPrsOfqkAg3
55OKv0kwg+ARwBcAedcFU7TkzXN4g9aeSNtXxoEZlZ4Hsu36kAzaRM358XnEIkcD
zHQ+pH8IE0KfheB1rVFiCuJYOM3aVRLH+4FZN4UpdPhgBcq7qLqT1drrTmd07K4Z
DFIwAqDjUiBL+E90wubLtqULZAcngBvnzNFn+RTcCVl0zIMggr1EM0Sb779xWomo
Z9AxbWaEiHJTr7RnvfDgn8M8mQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:44 2023 by rpki-client on console-ams.rpki-client.org