Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/dO13kSPQgAHxNa2PAHG2BITUty8.roa
File: dO13kSPQgAHxNa2PAHG2BITUty8.roa (raw, json)
Hash identifier: A19/xX/ujSk0THjvrwQCr4uGS+wmaTWvqtf5hlb2Ymk=
Subject key identifier: 74:ED:77:91:23:D0:80:01:F1:35:AD:8F:00:71:B6:04:84:D4:B7:2F
Certificate issuer: /CN=aff6f85aad101c456c1ac9a01a7192fc5788e92c
Certificate serial: 0173D922
Authority key identifier: AF:F6:F8:5A:AD:10:1C:45:6C:1A:C9:A0:1A:71:92:FC:57:88:E9:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/dO13kSPQgAHxNa2PAHG2BITUty8.roa
Signing time: Tue 01 Feb 2022 23:09:57 +0000
ROA not before: Tue 01 Feb 2022 23:09:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46261
IP address blocks: 213.139.196.0/24 maxlen: 24
213.139.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24369442 (0x173d922)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aff6f85aad101c456c1ac9a01a7192fc5788e92c
Validity
Not Before: Feb 1 23:09:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74ed779123d08001f135ad8f0071b60484d4b72f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1a:b2:c7:ea:c7:d7:f4:fb:76:d4:c8:0c:c7:
18:c1:74:d4:22:02:18:80:3d:2d:24:a0:68:66:3c:
8d:b5:90:da:ea:16:7a:d9:8f:3e:69:ba:d9:e1:bf:
50:31:cc:ce:33:41:49:37:8c:d2:b6:7b:a3:22:c7:
6e:55:29:44:2c:26:a9:f3:34:1d:20:a5:8a:c2:61:
5b:7b:50:62:df:b7:7a:61:ad:e9:f7:f1:2d:ad:68:
34:e7:0e:3f:af:62:47:9d:86:64:2d:30:bd:67:83:
dd:98:8c:03:67:2b:de:37:1c:f9:d4:82:2e:a3:48:
05:c9:60:c2:16:21:d2:d1:a9:c5:f9:be:69:cc:f0:
9c:74:9a:61:7a:05:27:2e:e4:bb:c8:0f:03:28:8c:
54:90:3f:2e:9f:f0:b2:dc:5d:bd:9b:91:5b:ac:a8:
d3:a1:f9:76:37:c2:31:73:04:30:ee:f8:b4:7e:9f:
46:b1:87:a5:00:69:5e:00:71:a6:f2:17:8d:7c:eb:
5c:f4:aa:7a:da:9d:73:70:1c:27:d0:ed:c3:d7:8f:
12:96:96:e5:ff:78:d4:85:81:5c:11:f6:89:4a:53:
20:4b:d9:33:d3:91:4c:a6:89:b1:23:8c:67:3c:2f:
c3:17:2b:57:96:56:ce:1a:5b:7b:5e:55:4a:28:24:
bd:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:ED:77:91:23:D0:80:01:F1:35:AD:8F:00:71:B6:04:84:D4:B7:2F
X509v3 Authority Key Identifier:
keyid:AF:F6:F8:5A:AD:10:1C:45:6C:1A:C9:A0:1A:71:92:FC:57:88:E9:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/dO13kSPQgAHxNa2PAHG2BITUty8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.196.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:24:7d:31:9f:de:ed:1e:a1:f4:74:de:cc:28:e9:28:26:cb:
06:5c:21:fe:a5:08:3a:0d:d1:93:4e:f9:6f:35:f2:4e:74:e0:
99:79:5c:55:b2:19:27:f3:92:af:64:0c:be:60:50:7e:81:5c:
ab:7e:92:29:fe:65:ea:d9:8b:dc:35:cd:00:c9:b4:cf:f4:12:
f1:52:89:32:b4:c5:c8:94:68:87:17:07:05:b7:4d:4e:87:a0:
01:0e:2e:1d:de:be:50:f4:32:4e:98:53:12:c9:45:3a:ba:55:
be:71:a4:20:14:bc:c3:ed:23:76:f0:7d:77:13:f8:ff:fd:f5:
5a:0a:36:c3:f7:59:4e:7e:73:3a:90:60:f3:df:d6:df:c2:5a:
c5:da:02:8f:0e:84:34:7b:14:e2:76:e4:0e:0d:e1:a8:9e:ca:
fa:70:d8:45:0f:bb:52:d7:18:5a:e4:df:71:a3:b2:02:28:d2:
ef:e1:ef:84:74:bc:ff:67:a2:3b:b4:4b:de:d2:b6:1f:eb:7f:
40:53:08:21:d7:8f:61:0a:ea:b8:d2:e5:43:02:31:01:cf:55:
80:91:f6:8c:63:dd:da:88:ba:81:75:de:30:f7:05:b8:4d:3d:
8a:e2:02:db:34:f9:00:38:fd:48:7b:18:1f:08:f5:d4:b5:6e:
a8:7a:32:9d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAXPZIjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZmY2Zjg1YWFkMTAxYzQ1NmMxYWM5YTAxYTcxOTJmYzU3ODhlOTJjMB4XDTIyMDIw
MTIzMDk1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzRlZDc3OTEyM2Qw
ODAwMWYxMzVhZDhmMDA3MWI2MDQ4NGQ0YjcyZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMcassfqx9f0+3bUyAzHGMF01CICGIA9LSSgaGY8jbWQ2uoW
etmPPmm62eG/UDHMzjNBSTeM0rZ7oyLHblUpRCwmqfM0HSClisJhW3tQYt+3emGt
6ffxLa1oNOcOP69iR52GZC0wvWeD3ZiMA2cr3jcc+dSCLqNIBclgwhYh0tGpxfm+
aczwnHSaYXoFJy7ku8gPAyiMVJA/Lp/wstxdvZuRW6yo06H5djfCMXMEMO74tH6f
RrGHpQBpXgBxpvIXjXzrXPSqetqdc3AcJ9Dtw9ePEpaW5f941IWBXBH2iUpTIEvZ
M9ORTKaJsSOMZzwvwxcrV5ZWzhpbe15VSigkvb8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR07XeRI9CAAfE1rY8AcbYEhNS3LzAfBgNVHSMEGDAWgBSv9vharRAcRWwa
yaAacZL8V4jpLDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JfYjRXcTBRSEVWc0dzbWdHbkdTX0ZlSTZTdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWYvZGY3MTlhLTQ5MmYtNDdjYi05MjEyLTY0NGJkMGZjN2Y4MC8x
L2RPMTNrU1BRZ0FIeE5hMlBBSEcyQklUVXR5OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWYv
ZGY3MTlhLTQ5MmYtNDdjYi05MjEyLTY0NGJkMGZjN2Y4MC8xL3JfYjRXcTBRSEVW
c0dzbWdHbkdTX0ZlSTZTdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAdWLxDANBgkqhkiG9w0BAQsFAAOC
AQEAsCR9MZ/e7R6h9HTezCjpKCbLBlwh/qUIOg3Rk075bzXyTnTgmXlcVbIZJ/OS
r2QMvmBQfoFcq36SKf5l6tmL3DXNAMm0z/QS8VKJMrTFyJRohxcHBbdNToegAQ4u
Hd6+UPQyTphTEslFOrpVvnGkIBS8w+0jdvB9dxP4//31Wgo2w/dZTn5zOpBg89/W
38JaxdoCjw6ENHsU4nbkDg3hqJ7K+nDYRQ+7UtcYWuTfcaOyAijS7+HvhHS8/2ei
O7RL3tK2H+t/QFMIIdePYQrquNLlQwIxAc9VgJH2jGPd2oi6gXXeMPcFuE09iuIC
2zT5ADj9SHsYHwj11LVuqHoynQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:14 2024 by rpki-client on console-fra.rpki-client.org