Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/4S73FOoVA9gZBDrBWdMizPdxp0Q.roa
File: 4S73FOoVA9gZBDrBWdMizPdxp0Q.roa (raw, json)
Hash identifier: uiDUdy3/LLV687MiBhRBPFTm7c+ePWLXUCj1vfh8JII=
Subject key identifier: E1:2E:F7:14:EA:15:03:D8:19:04:3A:C1:59:D3:22:CC:F7:71:A7:44
Certificate issuer: /CN=4ad17171aea8576c431c637418691c9c1f557516
Certificate serial: 03642E67
Authority key identifier: 4A:D1:71:71:AE:A8:57:6C:43:1C:63:74:18:69:1C:9C:1F:55:75:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StFxca6oV2xDHGN0GGkcnB9VdRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/4S73FOoVA9gZBDrBWdMizPdxp0Q.roa
Signing time: Sat 01 Jan 2022 08:54:07 +0000
ROA not before: Sat 01 Jan 2022 08:54:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212409
IP address blocks: 213.232.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56897127 (0x3642e67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ad17171aea8576c431c637418691c9c1f557516
Validity
Not Before: Jan 1 08:54:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e12ef714ea1503d819043ac159d322ccf771a744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:4b:4f:8c:48:f4:37:25:1d:f8:7a:f0:6a:42:
03:43:f1:28:85:0f:99:ad:76:38:60:c0:b9:3f:3e:
82:54:be:09:c4:be:a9:09:57:55:9a:03:ae:7d:8b:
ea:cb:cc:6a:4e:42:71:59:53:6a:f4:78:c0:c2:51:
78:a0:38:80:31:ff:d1:1a:26:fb:a5:8e:79:82:f2:
1e:11:6a:3a:05:5c:47:67:82:8f:0b:6a:40:a3:25:
62:a7:d7:cd:9f:b8:57:29:0e:04:4b:7f:9a:d4:d8:
e0:2f:99:4b:fc:08:23:5a:09:ed:0c:d4:c7:91:4d:
e9:94:d8:c3:28:b1:93:09:57:c5:a6:7f:fe:42:e0:
29:6b:f9:d1:2c:af:2f:06:8b:ef:18:e9:6a:d5:c4:
c5:91:8a:7f:ce:0d:20:3e:ea:7a:8c:0e:f9:ce:6a:
14:ae:dd:52:48:4c:61:ad:a4:63:95:8b:54:6f:01:
6a:c9:d7:a1:7c:99:af:70:63:6e:1a:5f:6f:d5:40:
e5:89:90:6d:64:75:b4:35:24:71:64:c2:b1:02:33:
92:28:86:6e:a6:84:ac:40:cc:17:b7:aa:77:2f:3d:
d5:1d:98:52:9c:ce:dc:ad:24:e4:88:1b:5a:9d:a2:
c2:b3:0c:e5:94:50:82:2d:b9:f2:34:a0:98:06:25:
1f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:2E:F7:14:EA:15:03:D8:19:04:3A:C1:59:D3:22:CC:F7:71:A7:44
X509v3 Authority Key Identifier:
keyid:4A:D1:71:71:AE:A8:57:6C:43:1C:63:74:18:69:1C:9C:1F:55:75:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StFxca6oV2xDHGN0GGkcnB9VdRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/4S73FOoVA9gZBDrBWdMizPdxp0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.200.0/24
Signature Algorithm: sha256WithRSAEncryption
39:c3:5c:c6:3a:f0:a2:2f:21:e7:5e:4a:03:9f:4c:5c:6e:8e:
83:ff:6e:1c:b5:1a:3c:27:8b:8c:57:a7:d2:99:38:4a:9d:e4:
72:e1:b2:d9:05:99:23:f7:4b:9a:c5:82:ed:60:3f:78:60:d8:
f3:74:cf:d6:e3:52:11:0c:d9:b7:72:5e:c1:85:df:d3:e7:01:
39:89:d6:6d:21:8f:b9:6e:ee:b2:6d:a9:b6:99:78:26:fa:ef:
41:11:1f:ad:a8:30:da:02:b7:68:6e:cb:8b:5c:24:1c:e0:3f:
a6:d1:e1:7c:2b:4a:1c:8d:d5:48:f3:8a:8e:db:ef:a4:71:dc:
39:3c:2e:28:61:18:86:4e:49:dd:22:25:b5:29:34:57:74:2e:
8b:a6:51:5a:6a:0e:b4:17:99:0d:0f:21:d3:3d:ac:15:b1:9e:
94:47:a4:04:d3:32:78:3d:0f:2d:44:ad:00:31:ed:9e:69:63:
72:c0:c8:19:99:69:48:e9:a5:ac:11:39:91:c2:58:8e:95:b3:
35:fd:b3:17:10:dd:ab:f5:af:bc:67:d5:21:80:d9:7a:dc:e5:
81:d0:95:ca:c3:1d:0a:29:d8:ff:02:ca:fe:ff:26:32:3c:e4:
87:86:cd:71:ee:bb:47:bf:30:bb:cb:97:f9:d5:00:3d:fe:7c:
35:fa:bd:b9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA2QuZzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YWQxNzE3MWFlYTg1NzZjNDMxYzYzNzQxODY5MWM5YzFmNTU3NTE2MB4XDTIyMDEw
MTA4NTQwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTEyZWY3MTRlYTE1
MDNkODE5MDQzYWMxNTlkMzIyY2NmNzcxYTc0NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPNLT4xI9DclHfh68GpCA0PxKIUPma12OGDAuT8+glS+CcS+
qQlXVZoDrn2L6svMak5CcVlTavR4wMJReKA4gDH/0Rom+6WOeYLyHhFqOgVcR2eC
jwtqQKMlYqfXzZ+4VykOBEt/mtTY4C+ZS/wII1oJ7QzUx5FN6ZTYwyixkwlXxaZ/
/kLgKWv50SyvLwaL7xjpatXExZGKf84NID7qeowO+c5qFK7dUkhMYa2kY5WLVG8B
asnXoXyZr3Bjbhpfb9VA5YmQbWR1tDUkcWTCsQIzkiiGbqaErEDMF7eqdy891R2Y
UpzO3K0k5IgbWp2iwrMM5ZRQgi258jSgmAYlH8UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBThLvcU6hUD2BkEOsFZ0yLM93GnRDAfBgNVHSMEGDAWgBRK0XFxrqhXbEMc
Y3QYaRycH1V1FjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1N0RnhjYTZvVjJ4REhHTjBHR2tjbkI5VmRSWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTcvNWEzY2QxLTgxMDktNGM2Ni04MzI0LTQ4MjhkNjUxMDRlMS8x
LzRTNzNGT29WQTlnWkJEckJXZE1pelBkeHAwUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTcv
NWEzY2QxLTgxMDktNGM2Ni04MzI0LTQ4MjhkNjUxMDRlMS8xL1N0RnhjYTZvVjJ4
REhHTjBHR2tjbkI5VmRSWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANXoyDANBgkqhkiG9w0BAQsFAAOC
AQEAOcNcxjrwoi8h515KA59MXG6Og/9uHLUaPCeLjFen0pk4Sp3kcuGy2QWZI/dL
msWC7WA/eGDY83TP1uNSEQzZt3JewYXf0+cBOYnWbSGPuW7usm2ptpl4JvrvQREf
ragw2gK3aG7Li1wkHOA/ptHhfCtKHI3VSPOKjtvvpHHcOTwuKGEYhk5J3SIltSk0
V3Qui6ZRWmoOtBeZDQ8h0z2sFbGelEekBNMyeD0PLUStADHtnmljcsDIGZlpSOml
rBE5kcJYjpWzNf2zFxDdq/WvvGfVIYDZetzlgdCVysMdCinY/wLK/v8mMjzkh4bN
ce67R78wu8uX+dUAPf58Nfq9uQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:50 2023 by rpki-client on console-fra.rpki-client.org