Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/aQfK8nLML5Ip1FL3v-AosTkaNwY.roa
File: aQfK8nLML5Ip1FL3v-AosTkaNwY.roa (raw, json)
Hash identifier: OAIReejC/rBQcm2Anipcw4p/O9GrX5NASGkOqcY4h0I=
Subject key identifier: 69:07:CA:F2:72:CC:2F:92:29:D4:52:F7:BF:E0:28:B1:39:1A:37:06
Certificate issuer: /CN=651bad95276947c7be536af4c870a3721f0b7761
Certificate serial: 0A5A5313
Authority key identifier: 65:1B:AD:95:27:69:47:C7:BE:53:6A:F4:C8:70:A3:72:1F:0B:77:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZRutlSdpR8e-U2r0yHCjch8Ld2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/aQfK8nLML5Ip1FL3v-AosTkaNwY.roa
Signing time: Sat 01 Jan 2022 06:57:16 +0000
ROA not before: Sat 01 Jan 2022 06:57:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 213.184.85.0/24 maxlen: 24
2a09:3a00:3000::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173691667 (0xa5a5313)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=651bad95276947c7be536af4c870a3721f0b7761
Validity
Not Before: Jan 1 06:57:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6907caf272cc2f9229d452f7bfe028b1391a3706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:4b:31:f5:9d:31:d8:5e:89:79:4c:55:97:fc:
ca:eb:bc:19:06:15:d7:c7:21:00:2a:d1:6f:d4:73:
20:c1:f1:8d:3f:60:93:65:71:c2:db:7e:13:03:b2:
bd:99:2e:73:78:cc:2b:5c:87:41:66:d3:9a:80:83:
b4:4c:f2:33:ac:df:e2:e4:71:c8:5d:46:99:61:6c:
55:ad:9e:98:4d:0f:d0:dc:67:13:66:50:fe:77:58:
05:86:8d:a4:d3:80:26:c7:91:60:77:e3:1e:28:57:
5d:a1:cc:da:c5:18:10:dd:c8:74:b7:99:ae:1a:16:
6e:bc:91:d7:db:e7:71:cc:d9:82:47:8e:c2:d0:ae:
d9:a9:86:b0:52:b5:4d:20:a5:86:ab:a0:bd:3e:43:
34:10:5e:18:e7:51:b4:c0:60:34:44:18:41:72:75:
b3:d4:90:52:67:98:ac:3e:8e:af:11:a8:fd:74:fc:
dd:81:78:22:23:91:a1:89:f9:79:0a:9b:6e:78:3d:
3e:d6:f6:c1:5a:94:cd:dc:b3:4c:c9:35:65:04:af:
25:84:c7:01:dc:67:39:9f:09:57:d8:b1:92:27:b7:
dc:9c:2e:d9:2c:0e:56:a8:0e:0d:3b:62:5f:eb:c6:
e9:99:79:58:a1:e0:11:db:97:4e:ac:c8:0d:52:fe:
b1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:07:CA:F2:72:CC:2F:92:29:D4:52:F7:BF:E0:28:B1:39:1A:37:06
X509v3 Authority Key Identifier:
keyid:65:1B:AD:95:27:69:47:C7:BE:53:6A:F4:C8:70:A3:72:1F:0B:77:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZRutlSdpR8e-U2r0yHCjch8Ld2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/aQfK8nLML5Ip1FL3v-AosTkaNwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1dbd6b-35cc-4f09-b92e-198b6a61ce85/1/ZRutlSdpR8e-U2r0yHCjch8Ld2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.184.85.0/24
IPv6:
2a09:3a00:3000::/40
Signature Algorithm: sha256WithRSAEncryption
97:8d:6a:72:a7:a3:85:6b:c3:cd:a0:32:c7:e9:b6:90:f1:e6:
65:1f:51:75:6b:fc:63:a4:62:b7:d2:c1:6d:1e:ea:91:d5:31:
00:8b:08:8f:62:0e:0f:9e:3d:eb:2a:f6:76:e7:af:f4:7c:31:
8e:54:a6:d5:11:6b:df:ff:e9:f8:5a:08:17:6b:ae:81:47:6f:
67:7a:71:b2:81:45:89:af:77:21:3a:96:d7:4c:d6:63:ce:93:
b2:c2:b0:1e:2a:2f:f3:e7:f6:be:03:02:ab:d5:8d:1e:d1:6f:
9d:86:2e:b4:62:6b:55:22:22:01:af:82:7f:93:ef:8e:37:25:
58:d3:45:57:6e:1e:45:3f:2a:6b:19:43:98:39:8c:05:a0:e8:
a0:09:81:34:23:4e:c8:4b:09:0f:f4:7c:8f:9b:bd:1c:f0:b1:
c9:ca:d1:df:eb:50:c4:b8:2d:30:6b:b0:eb:7c:02:74:08:7d:
46:53:95:48:b7:a9:ab:fd:6c:6d:ff:2d:33:f1:a0:81:28:3a:
05:7d:22:f8:89:a8:f1:67:ed:5f:0a:be:0b:2e:b7:ee:7e:bd:
ad:31:39:9b:1b:98:f2:3e:7a:07:46:57:d2:9c:c2:03:2b:ab:
1d:a7:75:90:10:6c:11:9e:4b:17:55:da:ab:14:34:e0:36:9f:
e3:d0:2b:fc
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIEClpTEzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NTFiYWQ5NTI3Njk0N2M3YmU1MzZhZjRjODcwYTM3MjFmMGI3NzYxMB4XDTIyMDEw
MTA2NTcxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjkwN2NhZjI3MmNj
MmY5MjI5ZDQ1MmY3YmZlMDI4YjEzOTFhMzcwNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJhLMfWdMdheiXlMVZf8yuu8GQYV18chACrRb9RzIMHxjT9g
k2Vxwtt+EwOyvZkuc3jMK1yHQWbTmoCDtEzyM6zf4uRxyF1GmWFsVa2emE0P0Nxn
E2ZQ/ndYBYaNpNOAJseRYHfjHihXXaHM2sUYEN3IdLeZrhoWbryR19vncczZgkeO
wtCu2amGsFK1TSClhqugvT5DNBBeGOdRtMBgNEQYQXJ1s9SQUmeYrD6OrxGo/XT8
3YF4IiORoYn5eQqbbng9Ptb2wVqUzdyzTMk1ZQSvJYTHAdxnOZ8JV9ixkie33Jwu
2SwOVqgODTtiX+vG6Zl5WKHgEduXTqzIDVL+sQECAwEAAaOCAhkwggIVMB0GA1Ud
DgQWBBRpB8rycswvkinUUve/4CixORo3BjAfBgNVHSMEGDAWgBRlG62VJ2lHx75T
avTIcKNyHwt3YTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1pSdXRsU2RwUjhlLVUycjB5SENqY2g4TGQyRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTQvMWRiZDZiLTM1Y2MtNGYwOS1iOTJlLTE5OGI2YTYxY2U4NS8x
L2FRZks4bkxNTDVJcDFGTDN2LUFvc1RrYU53WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTQv
MWRiZDZiLTM1Y2MtNGYwOS1iOTJlLTE5OGI2YTYxY2U4NS8xL1pSdXRsU2RwUjhl
LVUycjB5SENqY2g4TGQyRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAv
BggrBgEFBQcBBwEB/wQgMB4wDAQCAAEwBgMEANW4VTAOBAIAAjAIAwYAKgk6ADAw
DQYJKoZIhvcNAQELBQADggEBAJeNanKno4Vrw82gMsfptpDx5mUfUXVr/GOkYrfS
wW0e6pHVMQCLCI9iDg+ePesq9nbnr/R8MY5UptURa9//6fhaCBdrroFHb2d6cbKB
RYmvdyE6ltdM1mPOk7LCsB4qL/Pn9r4DAqvVjR7Rb52GLrRia1UiIgGvgn+T7443
JVjTRVduHkU/KmsZQ5g5jAWg6KAJgTQjTshLCQ/0fI+bvRzwscnK0d/rUMS4LTBr
sOt8AnQIfUZTlUi3qav9bG3/LTPxoIEoOgV9IviJqPFn7V8Kvgsut+5+va0xOZsb
mPI+egdGV9KcwgMrqx2ndZAQbBGeSxdV2qsUNOA2n+PQK/w=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:34 2023 by rpki-client on console-ams.rpki-client.org