Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/BiQDHC24nvz28fK9AoaYpW3vsNk.roa
File: BiQDHC24nvz28fK9AoaYpW3vsNk.roa (raw, json)
Hash identifier: tZLQRqxf8qfa4K1WUN3kWZUmE9Aan4VzIyBWI9wWA7I=
Subject key identifier: 06:24:03:1C:2D:B8:9E:FC:F6:F1:F2:BD:02:86:98:A5:6D:EF:B0:D9
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A64B740328B95C2995C6C856DCEC120
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/BiQDHC24nvz28fK9AoaYpW3vsNk.roa
Signing time: Wed 20 Jul 2022 06:56:24 +0000
ROA not before: Wed 20 Jul 2022 06:56:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205902
IP address blocks: 212.183.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:64:b7:40:32:8b:95:c2:99:5c:6c:85:6d:ce:c1:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 06:56:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0624031c2db89efcf6f1f2bd028698a56defb0d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:35:3d:65:78:8a:67:ca:3d:e3:83:bf:b4:5e:
72:65:05:bd:1d:2a:90:f2:9d:9e:27:33:ab:31:5c:
8c:4a:7e:78:d1:8b:8f:8d:64:25:eb:dd:a8:f7:b0:
af:7a:25:3a:62:a1:42:6e:6f:06:e8:21:dc:72:0f:
2f:00:6d:51:f8:f4:9b:d0:cd:35:0b:4f:11:da:6e:
71:d2:41:3a:d1:05:88:19:60:64:27:b6:5a:83:f6:
71:2f:d5:da:ff:0f:61:6e:b6:b2:45:2d:6f:a0:27:
b2:ac:83:58:cc:65:ce:33:95:0c:be:95:e0:36:09:
8e:bb:0f:fb:c0:ff:dd:0a:46:22:72:e4:08:42:cc:
9d:f0:d8:ad:16:f8:c3:45:50:68:2c:1b:e4:2b:12:
1f:33:79:cd:40:f0:85:30:55:b3:4e:4c:e6:4f:f7:
7e:c8:52:4a:0d:ad:25:22:29:d2:f5:c8:95:ff:25:
c1:6a:bd:54:ca:64:fa:ff:d2:11:35:65:4a:6f:d3:
38:13:28:01:66:f2:90:46:d6:80:eb:1e:11:a0:3a:
b1:4a:93:e6:3a:f7:ae:83:58:4f:94:33:c9:8e:8f:
63:e5:ab:96:39:6c:22:ed:e0:ab:9d:15:71:79:53:
22:8d:da:ea:ec:52:46:da:c0:7e:dd:22:e8:d3:e7:
3b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:24:03:1C:2D:B8:9E:FC:F6:F1:F2:BD:02:86:98:A5:6D:EF:B0:D9
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/BiQDHC24nvz28fK9AoaYpW3vsNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.183.27.0/24
Signature Algorithm: sha256WithRSAEncryption
81:d0:a8:00:99:5d:2d:5a:94:4e:b9:4e:27:da:f2:bd:16:24:
bf:97:b7:48:87:cd:82:92:24:5f:57:af:71:ce:a6:e2:d5:29:
c6:96:8d:d7:1f:b2:f9:29:2e:71:91:7a:0f:00:0c:e0:64:d1:
93:81:f0:cc:a4:a1:b5:81:0b:82:0a:8b:b0:d4:ba:d3:70:a9:
09:50:16:2e:03:28:b9:67:be:c8:59:74:8a:97:ae:66:b2:39:
8b:a3:33:73:1a:f3:0f:2a:cc:af:68:2b:13:22:e4:bf:07:b2:
fa:ee:20:32:4c:54:90:0b:55:3d:6a:6f:72:8c:b6:31:ba:b2:
7a:4f:40:63:f3:a2:d3:ca:45:69:e4:5f:68:44:2b:00:3f:73:
79:1d:4d:26:6d:b4:01:32:b0:f4:82:cf:c7:32:f2:b6:5a:4a:
b3:88:b0:87:ae:4c:05:bf:b7:76:35:9e:d1:c5:f2:47:52:5b:
da:a0:5b:26:cc:9b:7c:c3:fb:92:74:3e:32:bb:9a:6e:2c:83:
57:bc:46:26:69:4e:d9:ea:36:aa:87:4e:e5:80:90:d5:6c:26:
4c:a9:f5:25:b1:67:1b:ee:19:4d:13:ce:1b:da:c0:1f:bb:cc:
5c:89:90:a0:82:32:7c:6b:c0:f1:92:52:5d:77:8b:9f:4c:db:
10:6a:67:f2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIaZLdAMouVwplcbIVtzsEgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MGM1ODlhNGYyMmE5Y2EyZmY5OWI0YzQ4ZjhiZGY0OTI4
NzE3MjUwHhcNMjIwNzIwMDY1NjI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNjI0MDMxYzJkYjg5ZWZjZjZmMWYyYmQwMjg2OThhNTZkZWZiMGQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxDU9ZXiKZ8o944O/tF5yZQW9HSqQ
8p2eJzOrMVyMSn540YuPjWQl692o97CveiU6YqFCbm8G6CHccg8vAG1R+PSb0M01
C08R2m5x0kE60QWIGWBkJ7Zag/ZxL9Xa/w9hbrayRS1voCeyrINYzGXOM5UMvpXg
NgmOuw/7wP/dCkYicuQIQsyd8NitFvjDRVBoLBvkKxIfM3nNQPCFMFWzTkzmT/d+
yFJKDa0lIinS9ciV/yXBar1UymT6/9IRNWVKb9M4EygBZvKQRtaA6x4RoDqxSpPm
Oveug1hPlDPJjo9j5auWOWwi7eCrnRVxeVMijdrq7FJG2sB+3SLo0+c7CwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAYkAxwtuJ789vHyvQKGmKVt77DZMB8GA1UdIwQY
MBaAFIcMWJpPIqnKL/mbTEj4vfSShxclMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHd4WW1rOGlxY292LVp0TVNQaTk5SktIRnlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNTA1YjUtMGU0Ni00YjNmLWJmMWIt
ODQ5ZDNhNmI5YzJkLzEvQmlRREhDMjRudnoyOGZLOUFvYVlwVzN2c05rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9mNTA1YjUtMGU0Ni00YjNmLWJmMWItODQ5ZDNhNmI5YzJk
LzEvaHd4WW1rOGlxY292LVp0TVNQaTk5SktIRnlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1LcbMA0G
CSqGSIb3DQEBCwUAA4IBAQCB0KgAmV0tWpROuU4n2vK9FiS/l7dIh82CkiRfV69x
zqbi1SnGlo3XH7L5KS5xkXoPAAzgZNGTgfDMpKG1gQuCCouw1LrTcKkJUBYuAyi5
Z77IWXSKl65msjmLozNzGvMPKsyvaCsTIuS/B7L67iAyTFSQC1U9am9yjLYxurJ6
T0Bj86LTykVp5F9oRCsAP3N5HU0mbbQBMrD0gs/HMvK2WkqziLCHrkwFv7d2NZ7R
xfJHUlvaoFsmzJt8w/uSdD4yu5puLINXvEYmaU7Z6jaqh07lgJDVbCZMqfUlsWcb
7hlNE84b2sAfu8xciZCggjJ8a8DxklJdd4ufTNsQamfy
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org