Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/1rHhLDBgEG2DVs88QhYuFL4b1g0.roa
File: 1rHhLDBgEG2DVs88QhYuFL4b1g0.roa (raw, json)
Hash identifier: EtwROV5Pahx7ErBwC4bpMBwFTdSysfEyu63GMmsIS9o=
Subject key identifier: D6:B1:E1:2C:30:60:10:6D:83:56:CF:3C:42:16:2E:14:BE:1B:D6:0D
Certificate issuer: /CN=f266a0f986f21945c80d831567baf29620107adc
Certificate serial: 0A29E9F2
Authority key identifier: F2:66:A0:F9:86:F2:19:45:C8:0D:83:15:67:BA:F2:96:20:10:7A:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mag-YbyGUXIDYMVZ7ryliAQetw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/1rHhLDBgEG2DVs88QhYuFL4b1g0.roa
Signing time: Sat 01 Jan 2022 09:01:04 +0000
ROA not before: Sat 01 Jan 2022 09:01:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57099
IP address blocks: 212.162.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170519026 (0xa29e9f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f266a0f986f21945c80d831567baf29620107adc
Validity
Not Before: Jan 1 09:01:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6b1e12c3060106d8356cf3c42162e14be1bd60d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:94:0d:4c:d4:28:1b:e7:1a:e6:e5:bd:1f:e7:
cd:f6:e6:42:9b:bb:e2:35:53:8d:b9:e4:9c:64:21:
b6:51:b5:0b:1d:f9:ad:a5:da:05:49:a0:08:51:5e:
b2:86:db:f6:5c:e7:63:55:43:04:a8:80:fa:4f:a2:
f6:06:c2:5e:46:7b:a4:72:ad:98:94:5f:68:2b:34:
f1:f1:47:93:dd:1f:02:6e:1a:ec:ec:2a:6f:f5:40:
6d:f5:20:b8:22:7c:ae:23:dc:3e:8d:d4:c7:92:a5:
fe:27:74:be:e5:65:44:17:8f:bd:76:3f:67:b5:17:
9f:c8:69:98:96:ad:08:a4:cb:b5:55:e2:6a:fe:d6:
3e:f7:92:06:46:7d:7c:13:36:be:58:b1:c0:5b:06:
f1:98:cd:b7:f8:08:90:2f:01:4b:1b:b5:8f:3c:9f:
c2:6a:58:07:2b:5d:68:13:39:dd:a5:35:7c:30:12:
eb:46:1e:9f:79:00:3c:68:18:19:34:69:6e:92:5f:
61:09:b5:ec:a4:9d:79:f0:86:c2:4b:ff:56:50:d3:
9b:1a:d2:68:1e:24:69:f2:9d:92:e1:3d:f9:0a:f1:
4d:f7:63:f6:32:a6:43:a6:d0:8f:7d:04:ac:12:fb:
7e:ae:d6:85:87:ed:d3:3f:41:be:c7:29:1e:88:11:
48:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:B1:E1:2C:30:60:10:6D:83:56:CF:3C:42:16:2E:14:BE:1B:D6:0D
X509v3 Authority Key Identifier:
keyid:F2:66:A0:F9:86:F2:19:45:C8:0D:83:15:67:BA:F2:96:20:10:7A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mag-YbyGUXIDYMVZ7ryliAQetw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/1rHhLDBgEG2DVs88QhYuFL4b1g0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/8mag-YbyGUXIDYMVZ7ryliAQetw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.162.128.0/24
Signature Algorithm: sha256WithRSAEncryption
20:97:ca:52:a4:56:3f:3a:cf:c5:c0:7c:c7:ea:c5:6c:7f:d7:
ac:2d:cc:4f:84:79:da:e8:fb:9b:6b:bc:a8:e5:cf:9b:b0:0a:
73:d9:fe:e7:f5:88:51:1a:b1:8d:65:59:3b:4d:92:aa:bc:9c:
be:06:68:7c:6f:79:37:47:87:eb:71:01:c2:9a:b9:79:a4:ca:
15:95:4d:38:63:4c:51:c5:64:72:77:7e:a0:3d:7f:c8:54:86:
54:c9:ee:95:15:8b:f8:bf:84:f3:96:a6:26:b7:7a:34:f2:34:
99:5a:48:2d:f9:87:21:56:9d:a0:7d:c9:ff:b3:f0:92:88:3f:
3d:ae:dd:1b:7a:11:d3:16:ec:b3:94:f3:c1:e1:a9:ad:bc:fa:
4f:65:56:6b:45:d9:45:e7:c2:2e:8e:8b:09:c7:a1:a0:89:11:
57:5d:0a:0a:9a:c2:d6:f0:d9:03:44:a2:7e:b7:9b:80:9a:17:
62:75:5f:87:64:dc:72:b1:54:95:62:ed:01:3b:49:ec:7a:21:
07:ea:8d:7a:04:f0:b7:e8:e9:ed:e7:6a:37:5f:73:2d:d5:66:
c8:33:74:09:e1:1a:2f:df:ac:ab:fb:1e:f5:4f:ea:41:da:c2:
13:17:e4:d3:e9:78:2a:42:65:e3:dc:a7:19:1a:76:6d:db:e1:
74:e4:34:97
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECinp8jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
MjY2YTBmOTg2ZjIxOTQ1YzgwZDgzMTU2N2JhZjI5NjIwMTA3YWRjMB4XDTIyMDEw
MTA5MDEwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDZiMWUxMmMzMDYw
MTA2ZDgzNTZjZjNjNDIxNjJlMTRiZTFiZDYwZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI+UDUzUKBvnGublvR/nzfbmQpu74jVTjbnknGQhtlG1Cx35
raXaBUmgCFFesobb9lznY1VDBKiA+k+i9gbCXkZ7pHKtmJRfaCs08fFHk90fAm4a
7Owqb/VAbfUguCJ8riPcPo3Ux5Kl/id0vuVlRBePvXY/Z7UXn8hpmJatCKTLtVXi
av7WPveSBkZ9fBM2vlixwFsG8ZjNt/gIkC8BSxu1jzyfwmpYBytdaBM53aU1fDAS
60Yen3kAPGgYGTRpbpJfYQm17KSdefCGwkv/VlDTmxrSaB4kafKdkuE9+QrxTfdj
9jKmQ6bQj30ErBL7fq7WhYft0z9BvscpHogRSGECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTWseEsMGAQbYNWzzxCFi4UvhvWDTAfBgNVHSMEGDAWgBTyZqD5hvIZRcgN
gxVnuvKWIBB63DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzhtYWctWWJ5R1VYSURZTVZaN3J5bGlBUWV0dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzkvNTg3M2M0LWI1ZTUtNDk3ZS05MjQyLWZlMGIyMjI2Y2ZiMy8x
LzFySGhMREJnRUcyRFZzODhRaFl1Rkw0YjFnMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzkv
NTg3M2M0LWI1ZTUtNDk3ZS05MjQyLWZlMGIyMjI2Y2ZiMy8xLzhtYWctWWJ5R1VY
SURZTVZaN3J5bGlBUWV0dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANSigDANBgkqhkiG9w0BAQsFAAOC
AQEAIJfKUqRWPzrPxcB8x+rFbH/XrC3MT4R52uj7m2u8qOXPm7AKc9n+5/WIURqx
jWVZO02SqrycvgZofG95N0eH63EBwpq5eaTKFZVNOGNMUcVkcnd+oD1/yFSGVMnu
lRWL+L+E85amJrd6NPI0mVpILfmHIVadoH3J/7Pwkog/Pa7dG3oR0xbss5TzweGp
rbz6T2VWa0XZRefCLo6LCcehoIkRV10KCprC1vDZA0SifrebgJoXYnVfh2TccrFU
lWLtATtJ7HohB+qNegTwt+jp7edqN19zLdVmyDN0CeEaL9+sq/se9U/qQdrCExfk
0+l4KkJl49ynGRp2bdvhdOQ0lw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:57 2024 by rpki-client on console-ams.rpki-client.org