Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/sF2CQ7yAYs82vAHikCu1Mc36PPA.roa
File: sF2CQ7yAYs82vAHikCu1Mc36PPA.roa (raw, json)
Hash identifier: 1J4WKpUp1ThasdxB8lhlGw2l7NScuCCrvBRpEEFhigo=
Subject key identifier: B0:5D:82:43:BC:80:62:CF:36:BC:01:E2:90:2B:B5:31:CD:FA:3C:F0
Certificate issuer: /CN=4776afb74fad5baf0a6180b49510d8b8497df8d3
Certificate serial: 1B5E39B4
Authority key identifier: 47:76:AF:B7:4F:AD:5B:AF:0A:61:80:B4:95:10:D8:B8:49:7D:F8:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R3avt0-tW68KYYC0lRDYuEl9-NM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/sF2CQ7yAYs82vAHikCu1Mc36PPA.roa
Signing time: Sat 01 Jan 2022 08:54:20 +0000
ROA not before: Sat 01 Jan 2022 08:54:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201304
IP address blocks: 212.18.248.0/24 maxlen: 24
2a04:2b00:13ee::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459159988 (0x1b5e39b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4776afb74fad5baf0a6180b49510d8b8497df8d3
Validity
Not Before: Jan 1 08:54:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b05d8243bc8062cf36bc01e2902bb531cdfa3cf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:87:53:65:3f:f4:e6:6a:f3:a5:62:fe:b9:51:
34:f3:d7:94:36:53:c5:be:91:d2:80:64:1b:e5:dc:
1d:2a:e2:e2:69:83:25:e9:c8:0a:be:3e:22:aa:b6:
66:42:c9:32:0f:9c:f8:99:e3:8f:99:43:a5:fd:b0:
00:26:eb:39:89:6f:67:5a:d7:85:46:b0:ad:cb:36:
4c:81:31:d2:a6:ad:b4:67:c9:50:09:3e:66:ee:0d:
5e:cd:4f:3e:0c:61:3b:ad:63:eb:26:70:8e:6b:85:
c5:79:50:e2:3f:61:ff:39:68:f1:47:42:69:23:b9:
0b:49:6a:2d:ec:c9:e9:a0:b9:43:36:db:7d:16:9e:
74:3e:81:f2:c5:dc:02:63:75:ea:1f:f9:e8:7e:bb:
5d:69:42:f0:fb:52:11:77:66:f6:7c:39:e3:a4:cb:
96:ab:8b:ba:40:b4:93:df:4d:b0:dd:df:23:14:1f:
55:91:4b:16:2b:3f:2d:31:72:24:3a:05:62:b3:49:
2f:90:10:ed:0a:84:ff:66:dd:cd:cc:1f:f3:01:6f:
46:d8:83:5c:a1:97:1b:de:9d:2f:8e:af:d8:d3:e7:
b1:a3:c3:6a:dd:ef:bd:2e:33:45:9a:61:25:d3:55:
01:2d:be:ea:e0:0c:50:83:11:f6:34:f5:36:1e:e7:
ff:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:5D:82:43:BC:80:62:CF:36:BC:01:E2:90:2B:B5:31:CD:FA:3C:F0
X509v3 Authority Key Identifier:
keyid:47:76:AF:B7:4F:AD:5B:AF:0A:61:80:B4:95:10:D8:B8:49:7D:F8:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R3avt0-tW68KYYC0lRDYuEl9-NM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/sF2CQ7yAYs82vAHikCu1Mc36PPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/R3avt0-tW68KYYC0lRDYuEl9-NM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.248.0/24
IPv6:
2a04:2b00:13ee::/48
Signature Algorithm: sha256WithRSAEncryption
20:16:53:b3:ca:b1:27:d2:b5:7c:fe:86:77:ca:a4:ab:6b:85:
4f:8b:44:3a:f4:f8:99:55:da:0e:12:d2:b0:cd:15:49:a8:13:
25:d7:cd:f0:9b:d4:61:da:30:46:15:d0:24:f4:8c:f5:cb:25:
4a:ef:cd:7d:99:a3:71:18:70:fb:44:57:87:ce:41:02:47:d2:
e7:bd:2a:d7:62:c6:64:05:83:47:78:ad:31:15:d3:b7:f9:4d:
36:4d:57:bc:48:f5:bc:98:d0:11:5c:0b:5c:1c:52:34:9c:4b:
91:7c:3b:cb:c2:1e:7c:a1:fc:b3:df:83:80:9d:8a:3b:da:8c:
cf:0d:af:d6:51:02:02:7e:e9:4f:8c:ab:ab:5a:41:18:75:56:
20:47:3a:c6:d1:b7:ef:3d:78:23:69:f2:da:97:bc:e7:49:ca:
8b:72:d9:63:3f:37:6c:81:5a:53:9b:20:75:6d:e5:b4:15:95:
be:c1:29:47:de:aa:68:d2:4e:7d:54:fd:7f:b6:94:e6:fa:ca:
5d:13:98:a4:0f:3a:bb:f8:eb:80:7d:91:e3:ed:d1:e0:e9:56:
9b:76:29:29:02:85:24:09:30:c0:bf:2d:07:79:3f:02:4c:2b:
a8:96:92:bb:5e:44:60:b2:3c:86:43:fc:f4:22:dd:43:27:45:
8f:63:7a:0e
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEG145tDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
Nzc2YWZiNzRmYWQ1YmFmMGE2MTgwYjQ5NTEwZDhiODQ5N2RmOGQzMB4XDTIyMDEw
MTA4NTQyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjA1ZDgyNDNiYzgw
NjJjZjM2YmMwMWUyOTAyYmI1MzFjZGZhM2NmMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK6HU2U/9OZq86Vi/rlRNPPXlDZTxb6R0oBkG+XcHSri4mmD
JenICr4+Iqq2ZkLJMg+c+Jnjj5lDpf2wACbrOYlvZ1rXhUawrcs2TIEx0qattGfJ
UAk+Zu4NXs1PPgxhO61j6yZwjmuFxXlQ4j9h/zlo8UdCaSO5C0lqLezJ6aC5Qzbb
fRaedD6B8sXcAmN16h/56H67XWlC8PtSEXdm9nw546TLlquLukC0k99NsN3fIxQf
VZFLFis/LTFyJDoFYrNJL5AQ7QqE/2bdzcwf8wFvRtiDXKGXG96dL46v2NPnsaPD
at3vvS4zRZphJdNVAS2+6uAMUIMR9jT1Nh7n/10CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBSwXYJDvIBizza8AeKQK7Uxzfo88DAfBgNVHSMEGDAWgBRHdq+3T61brwph
gLSVENi4SX340zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1IzYXZ0MC10VzY4S1lZQzBsUkRZdUVsOS1OTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTQvZjcxY2MyLWI3MWQtNDY2OC04NjYxLTA1MzhlOTVmM2YxMi8x
L3NGMkNRN3lBWXM4MnZBSGlrQ3UxTWMzNlBQQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTQv
ZjcxY2MyLWI3MWQtNDY2OC04NjYxLTA1MzhlOTVmM2YxMi8xL1IzYXZ0MC10VzY4
S1lZQzBsUkRZdUVsOS1OTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEANQS+DAPBAIAAjAJAwcAKgQrABPu
MA0GCSqGSIb3DQEBCwUAA4IBAQAgFlOzyrEn0rV8/oZ3yqSra4VPi0Q69PiZVdoO
EtKwzRVJqBMl183wm9Rh2jBGFdAk9Iz1yyVK7819maNxGHD7RFeHzkECR9LnvSrX
YsZkBYNHeK0xFdO3+U02TVe8SPW8mNARXAtcHFI0nEuRfDvLwh58ofyz34OAnYo7
2ozPDa/WUQICfulPjKurWkEYdVYgRzrG0bfvPXgjafLal7znScqLctljPzdsgVpT
myB1beW0FZW+wSlH3qpo0k59VP1/tpTm+spdE5ikDzq7+OuAfZHj7dHg6Vabdikp
AoUkCTDAvy0HeT8CTCuolpK7XkRgsjyGQ/z0It1DJ0WPY3oO
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:25 2023 by rpki-client on console-ams.rpki-client.org