Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/t2SCXQnfRIASoqLYtUbDFuwoB-c.roa
File: t2SCXQnfRIASoqLYtUbDFuwoB-c.roa (raw, json)
Hash identifier: 0248ShTu2B/YMDjlY1qedGuk8tdkRvj4kkJ651cJ4P4=
Subject key identifier: B7:64:82:5D:09:DF:44:80:12:A2:A2:D8:B5:46:C3:16:EC:28:07:E7
Certificate issuer: /CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Certificate serial: 0904896C
Authority key identifier: A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/t2SCXQnfRIASoqLYtUbDFuwoB-c.roa
Signing time: Sat 01 Jan 2022 12:59:55 +0000
ROA not before: Sat 01 Jan 2022 12:59:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12463
IP address blocks: 213.215.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151292268 (0x904896c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Validity
Not Before: Jan 1 12:59:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b764825d09df448012a2a2d8b546c316ec2807e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:19:d8:35:45:d4:22:1c:cd:dc:fc:2f:57:6f:
f4:d7:bb:68:6c:98:22:fa:80:e1:12:cc:8a:cb:4a:
04:2e:4d:eb:3e:a6:dd:f4:b7:1e:26:b9:21:7f:84:
44:4f:c3:2e:af:d1:fa:de:95:e0:a2:af:7d:d1:b2:
c2:6f:52:50:c0:49:64:79:2c:fc:ea:f1:57:51:5c:
53:68:31:d7:1a:9a:ac:6a:f9:9d:0d:77:1f:89:5a:
2e:a1:ac:f6:12:9a:03:ec:28:7a:13:ae:cf:30:de:
69:25:76:cf:da:9d:b7:ca:52:e0:b2:91:77:0f:5b:
a8:65:a1:9c:f1:04:38:31:fb:ff:d4:2f:7c:83:b8:
63:96:90:da:05:c1:7f:8d:76:e6:42:9d:32:75:26:
7c:be:e3:00:d8:42:d3:be:49:42:3e:75:f9:16:58:
14:16:3c:a2:ce:74:3c:ab:10:f2:56:11:40:be:7f:
2b:97:b4:77:c1:94:7d:48:72:55:29:ae:0e:43:81:
c2:53:30:d5:9b:68:34:18:86:f5:dd:27:8c:b2:b7:
89:02:af:ad:10:5a:10:3f:8e:30:ce:90:93:a0:b4:
0e:f9:b5:37:8c:34:fc:a5:d2:61:de:e5:14:f5:68:
e0:d5:71:4c:b1:25:77:af:eb:b8:9b:1e:e4:20:4f:
fa:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:64:82:5D:09:DF:44:80:12:A2:A2:D8:B5:46:C3:16:EC:28:07:E7
X509v3 Authority Key Identifier:
keyid:A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/t2SCXQnfRIASoqLYtUbDFuwoB-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/p-LOMQlICu57P9KEbsj4ZGiFzbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.215.38.0/24
Signature Algorithm: sha256WithRSAEncryption
90:09:c1:4f:78:d9:7a:f8:57:00:a7:b2:dc:19:3d:ca:d3:f9:
89:c1:d5:03:74:11:ea:5b:0c:cf:20:83:aa:5f:5f:c7:e8:2a:
86:95:cd:55:a5:2d:b0:7b:0c:4f:be:7e:5b:ef:ab:6d:d5:e2:
bc:1b:4d:53:c6:fa:c1:63:8a:23:4e:91:b6:a6:e1:5d:e4:f9:
51:59:80:6f:f5:fe:20:29:47:aa:80:5f:09:66:75:92:7e:f0:
60:5c:2b:35:fa:3e:1e:f2:6f:00:d0:7e:32:f3:d8:39:8f:80:
c4:33:dc:83:d7:4c:3e:54:1e:95:4f:cd:f4:7a:3a:a7:a6:42:
ca:e5:df:d2:eb:f3:e4:aa:61:f3:92:47:05:8d:b0:83:6f:f0:
1f:ea:d3:58:f9:c4:2c:1d:a0:ad:2c:17:0e:2e:b8:83:db:e3:
87:b6:99:0f:72:bf:37:87:fa:f6:ec:f5:c3:31:7c:bb:d0:ca:
01:6b:12:0e:96:76:dd:05:08:7e:11:a6:b7:b8:ea:9f:02:c4:
c7:23:96:08:7f:36:c4:fd:9e:28:8f:bb:2a:48:8b:ac:a9:6c:
bc:e6:de:6a:ac:25:2f:e5:2a:d3:1f:b5:d2:eb:99:11:75:55:
c2:e6:12:11:93:71:b5:54:ca:8a:bc:54:fa:f0:a6:43:50:d7:
d5:ed:51:8e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECQSJbDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
N2UyY2UzMTA5NDgwYWVlN2IzZmQyODQ2ZWM4Zjg2NDY4ODVjZGJhMB4XDTIyMDEw
MTEyNTk1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjc2NDgyNWQwOWRm
NDQ4MDEyYTJhMmQ4YjU0NmMzMTZlYzI4MDdlNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOEZ2DVF1CIczdz8L1dv9Ne7aGyYIvqA4RLMistKBC5N6z6m
3fS3Hia5IX+ERE/DLq/R+t6V4KKvfdGywm9SUMBJZHks/OrxV1FcU2gx1xqarGr5
nQ13H4laLqGs9hKaA+woehOuzzDeaSV2z9qdt8pS4LKRdw9bqGWhnPEEODH7/9Qv
fIO4Y5aQ2gXBf4125kKdMnUmfL7jANhC075JQj51+RZYFBY8os50PKsQ8lYRQL5/
K5e0d8GUfUhyVSmuDkOBwlMw1ZtoNBiG9d0njLK3iQKvrRBaED+OMM6Qk6C0Dvm1
N4w0/KXSYd7lFPVo4NVxTLEld6/ruJse5CBP+tsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS3ZIJdCd9EgBKioti1RsMW7CgH5zAfBgNVHSMEGDAWgBSn4s4xCUgK7ns/
0oRuyPhkaIXNujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3AtTE9NUWxJQ3U1N1A5S0Vic2o0WkdpRnpiby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjIvYjYxYWRkLTMyZjAtNDJmNC1hMzAxLTc4MThhODk0NTZjYi8x
L3QyU0NYUW5mUklBU29xTFl0VWJERnV3b0ItYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjIv
YjYxYWRkLTMyZjAtNDJmNC1hMzAxLTc4MThhODk0NTZjYi8xL3AtTE9NUWxJQ3U1
N1A5S0Vic2o0WkdpRnpiby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANXXJjANBgkqhkiG9w0BAQsFAAOC
AQEAkAnBT3jZevhXAKey3Bk9ytP5icHVA3QR6lsMzyCDql9fx+gqhpXNVaUtsHsM
T75+W++rbdXivBtNU8b6wWOKI06RtqbhXeT5UVmAb/X+IClHqoBfCWZ1kn7wYFwr
Nfo+HvJvANB+MvPYOY+AxDPcg9dMPlQelU/N9Ho6p6ZCyuXf0uvz5Kph85JHBY2w
g2/wH+rTWPnELB2grSwXDi64g9vjh7aZD3K/N4f69uz1wzF8u9DKAWsSDpZ23QUI
fhGmt7jqnwLExyOWCH82xP2eKI+7KkiLrKlsvObeaqwlL+Uq0x+10uuZEXVVwuYS
EZNxtVTKirxU+vCmQ1DX1e1Rjg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:23 2024 by rpki-client on console-ams.rpki-client.org