Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/dI4L6OLcsAg8N5QgrdGAUn6l6FQ.roa
File: dI4L6OLcsAg8N5QgrdGAUn6l6FQ.roa (raw, json)
Hash identifier: CxZMJneONKQmNQGy7SHSn9147ApWifCsdMIPcWIpfOY=
Subject key identifier: 74:8E:0B:E8:E2:DC:B0:08:3C:37:94:20:AD:D1:80:52:7E:A5:E8:54
Certificate issuer: /CN=aff6f85aad101c456c1ac9a01a7192fc5788e92c
Certificate serial: 01302CB6
Authority key identifier: AF:F6:F8:5A:AD:10:1C:45:6C:1A:C9:A0:1A:71:92:FC:57:88:E9:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/dI4L6OLcsAg8N5QgrdGAUn6l6FQ.roa
Signing time: Sat 01 Jan 2022 16:11:07 +0000
ROA not before: Sat 01 Jan 2022 16:11:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197328
IP address blocks: 213.139.196.0/24 maxlen: 24
213.139.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19934390 (0x1302cb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aff6f85aad101c456c1ac9a01a7192fc5788e92c
Validity
Not Before: Jan 1 16:11:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=748e0be8e2dcb0083c379420add180527ea5e854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:39:ca:81:34:9a:e0:b1:2f:a0:64:ea:6f:3f:
82:39:4a:99:52:cd:fe:b9:62:4f:55:40:2c:81:60:
e4:8c:a9:07:75:58:fe:56:74:a3:da:72:98:57:6b:
b7:ac:fc:25:43:b0:7f:6c:39:28:dd:03:cf:76:f5:
67:5c:02:fd:cb:2f:b3:c9:d9:90:3c:00:9a:34:6d:
a7:b0:ca:0d:19:00:bf:23:ee:7f:67:11:cf:17:f5:
08:95:78:0b:d5:66:76:1a:ed:79:cf:9a:ae:79:72:
51:f9:0c:40:d4:26:bb:95:2f:24:a1:05:73:91:04:
a8:87:4a:fc:31:c9:30:00:46:35:ec:ad:0c:de:a3:
cb:19:e7:7c:0b:38:41:bc:d3:7b:70:2b:a4:a3:dc:
8c:0a:54:58:2e:0a:e3:28:86:42:78:49:6d:08:d2:
09:a4:41:f8:b3:ba:eb:6d:fe:6a:37:9b:99:f1:fb:
d2:c4:b1:54:d7:ec:f6:0b:e0:b8:5e:0f:f9:62:cb:
bc:95:b7:60:cb:90:3b:cd:cb:25:a1:22:8f:b2:87:
ce:c7:ba:f4:d1:60:cf:88:cd:f2:7a:0e:40:28:22:
79:64:60:a6:d3:32:6c:aa:b3:aa:39:36:20:d3:5b:
6e:4e:e5:22:7f:24:86:85:81:df:17:7d:cb:c8:cb:
70:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8E:0B:E8:E2:DC:B0:08:3C:37:94:20:AD:D1:80:52:7E:A5:E8:54
X509v3 Authority Key Identifier:
keyid:AF:F6:F8:5A:AD:10:1C:45:6C:1A:C9:A0:1A:71:92:FC:57:88:E9:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/dI4L6OLcsAg8N5QgrdGAUn6l6FQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.196.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:26:03:5a:b4:75:1f:1f:9c:5d:90:1c:c8:6a:ad:e0:ea:51:
10:d8:16:83:cc:9b:17:22:ed:43:82:92:97:75:40:69:44:ee:
fa:b7:56:c9:15:b6:91:01:e7:e1:05:0a:f5:c7:1a:ca:c1:94:
40:1e:37:47:52:33:87:44:55:d4:e5:59:7d:60:42:0f:69:c4:
ab:3e:a0:d4:36:97:5c:55:b4:7c:83:1f:5e:2e:68:6b:f9:ba:
b3:57:21:7c:39:cb:0c:2c:20:1e:0e:3c:d7:3e:78:eb:6f:f8:
cd:4f:32:06:24:97:29:da:8e:6a:a5:15:fd:af:51:b5:c1:e8:
eb:d6:91:27:bf:ae:8f:69:3e:8b:1c:12:bc:77:8e:ac:6f:89:
2b:bc:ba:7c:16:fe:d0:08:fd:33:28:91:b7:ef:da:f5:e5:69:
8a:00:ac:5d:2b:0b:3e:fd:bb:86:d5:ff:60:a8:b3:54:0e:c1:
ea:dc:ed:8b:25:7c:c6:10:26:a2:4d:61:ec:54:8d:db:ee:87:
d2:4c:81:53:9e:ee:72:fd:c9:85:b2:cc:ac:b9:18:c7:46:17:
d6:8f:19:4a:7e:43:0a:b0:48:be:d7:62:7d:c9:5a:d7:d8:ef:
cd:0b:0b:4c:a9:4e:5d:32:de:b5:e9:79:98:bb:95:4d:cb:2c:
f3:3e:a2:cc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEATAstjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZmY2Zjg1YWFkMTAxYzQ1NmMxYWM5YTAxYTcxOTJmYzU3ODhlOTJjMB4XDTIyMDEw
MTE2MTEwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzQ4ZTBiZThlMmRj
YjAwODNjMzc5NDIwYWRkMTgwNTI3ZWE1ZTg1NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALk5yoE0muCxL6Bk6m8/gjlKmVLN/rliT1VALIFg5IypB3VY
/lZ0o9pymFdrt6z8JUOwf2w5KN0Dz3b1Z1wC/csvs8nZkDwAmjRtp7DKDRkAvyPu
f2cRzxf1CJV4C9Vmdhrtec+arnlyUfkMQNQmu5UvJKEFc5EEqIdK/DHJMABGNeyt
DN6jyxnnfAs4QbzTe3ArpKPcjApUWC4K4yiGQnhJbQjSCaRB+LO6623+ajebmfH7
0sSxVNfs9gvguF4P+WLLvJW3YMuQO83LJaEij7KHzse69NFgz4jN8noOQCgieWRg
ptMybKqzqjk2INNbbk7lIn8khoWB3xd9y8jLcN0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR0jgvo4tywCDw3lCCt0YBSfqXoVDAfBgNVHSMEGDAWgBSv9vharRAcRWwa
yaAacZL8V4jpLDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JfYjRXcTBRSEVWc0dzbWdHbkdTX0ZlSTZTdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWYvZGY3MTlhLTQ5MmYtNDdjYi05MjEyLTY0NGJkMGZjN2Y4MC8x
L2RJNEw2T0xjc0FnOE41UWdyZEdBVW42bDZGUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWYv
ZGY3MTlhLTQ5MmYtNDdjYi05MjEyLTY0NGJkMGZjN2Y4MC8xL3JfYjRXcTBRSEVW
c0dzbWdHbkdTX0ZlSTZTdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAdWLxDANBgkqhkiG9w0BAQsFAAOC
AQEAGyYDWrR1Hx+cXZAcyGqt4OpRENgWg8ybFyLtQ4KSl3VAaUTu+rdWyRW2kQHn
4QUK9ccaysGUQB43R1Izh0RV1OVZfWBCD2nEqz6g1DaXXFW0fIMfXi5oa/m6s1ch
fDnLDCwgHg481z5462/4zU8yBiSXKdqOaqUV/a9RtcHo69aRJ7+uj2k+ixwSvHeO
rG+JK7y6fBb+0Aj9MyiRt+/a9eVpigCsXSsLPv27htX/YKizVA7B6tztiyV8xhAm
ok1h7FSN2+6H0kyBU57ucv3JhbLMrLkYx0YX1o8ZSn5DCrBIvtdifcla19jvzQsL
TKlOXTLetel5mLuVTcss8z6izA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:56 2023 by rpki-client on console-ams.rpki-client.org