Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/6T4TPskZPxo-OFYZyG-AX3rmH_c.roa
File: 6T4TPskZPxo-OFYZyG-AX3rmH_c.roa (raw, json)
Hash identifier: KFwDo4p5uquhKjk9PJGScixkKzbxLV5oOe+lcK/3y+o=
Subject key identifier: E9:3E:13:3E:C9:19:3F:1A:3E:38:56:19:C8:6F:80:5F:7A:E6:1F:F7
Certificate issuer: /CN=ab71e9b13f5c339a58692eeabe72eaa406bbbd7d
Certificate serial: 0B28D92A
Authority key identifier: AB:71:E9:B1:3F:5C:33:9A:58:69:2E:EA:BE:72:EA:A4:06:BB:BD:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q3HpsT9cM5pYaS7qvnLqpAa7vX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/6T4TPskZPxo-OFYZyG-AX3rmH_c.roa
Signing time: Wed 16 Mar 2022 21:10:38 +0000
ROA not before: Wed 16 Mar 2022 21:10:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211327
IP address blocks: 213.142.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187226410 (0xb28d92a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab71e9b13f5c339a58692eeabe72eaa406bbbd7d
Validity
Not Before: Mar 16 21:10:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e93e133ec9193f1a3e385619c86f805f7ae61ff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a5:ae:c6:9e:25:3f:52:6b:7b:2e:b1:85:6e:
e6:62:b6:58:23:f6:4b:d8:01:1a:1e:e2:7f:bf:5e:
6d:57:1a:38:42:e2:86:95:71:62:e6:59:24:63:cb:
61:da:94:96:66:67:13:d7:60:28:14:fa:00:27:db:
21:5f:ff:3f:8f:3e:f3:e5:d7:85:75:bd:e9:0b:fd:
35:57:7c:e6:55:8e:2a:92:13:3d:b9:62:42:8d:a2:
af:a4:df:15:30:3b:f7:32:3c:0f:56:43:73:0c:79:
54:23:ea:80:2e:78:54:1b:18:16:60:76:08:c1:43:
8c:76:b6:52:c3:c4:3e:b2:94:25:6f:51:7c:bb:00:
50:33:dc:04:24:ac:e4:04:0a:1b:99:e5:7d:aa:79:
c4:8f:b4:f5:b6:87:65:6c:09:fd:76:a6:cd:9d:de:
8f:51:97:fd:e4:f8:3e:a9:c4:7e:74:e8:09:f7:aa:
9d:27:aa:48:14:68:d9:85:3e:f3:cf:c7:64:af:9c:
ee:3d:11:a3:25:13:ef:af:63:07:df:f9:99:8e:5a:
79:dc:a4:cc:6e:e8:50:cd:7a:0a:c6:a5:5c:18:73:
30:96:4e:27:26:bc:fc:67:1b:e1:7c:33:68:eb:52:
e0:f0:15:09:49:fd:3b:59:37:e2:4a:2d:d6:67:8c:
b5:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:3E:13:3E:C9:19:3F:1A:3E:38:56:19:C8:6F:80:5F:7A:E6:1F:F7
X509v3 Authority Key Identifier:
keyid:AB:71:E9:B1:3F:5C:33:9A:58:69:2E:EA:BE:72:EA:A4:06:BB:BD:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q3HpsT9cM5pYaS7qvnLqpAa7vX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/6T4TPskZPxo-OFYZyG-AX3rmH_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/q3HpsT9cM5pYaS7qvnLqpAa7vX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.142.134.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:5e:64:00:ee:03:a3:75:8a:a6:5f:5d:fa:2e:78:c9:50:a4:
b9:5e:f2:37:8f:26:3c:bb:fa:07:9b:02:f4:48:87:60:10:fc:
65:36:93:9f:bb:31:29:75:3a:73:3a:e9:20:f5:13:77:3d:3c:
4c:96:8b:d3:0c:7e:27:10:c8:ab:f1:25:9d:a2:26:1a:9b:d5:
f4:1f:c9:9b:bd:a1:98:b9:ba:5a:34:ed:ed:d3:ce:20:d7:cd:
ad:cb:94:4f:01:da:d3:24:3f:b1:0c:84:99:65:d7:39:1b:80:
2c:33:3d:ba:25:ba:76:3b:d4:89:84:9e:93:11:6a:cf:0f:55:
52:e0:da:f0:88:08:e0:19:6a:7b:52:cf:75:ed:d4:cf:de:ff:
4e:72:6b:6a:01:53:44:92:53:24:26:b1:dc:5e:ff:60:65:03:
b7:48:b2:f7:76:a0:af:63:85:79:c9:75:aa:dd:9c:cf:ec:3d:
58:04:bf:08:69:38:6f:39:a5:39:35:ce:23:68:9d:75:94:3f:
09:e4:f0:b9:c5:39:6f:ce:16:d6:bf:1d:7d:c3:e2:6b:93:c0:
31:d8:e2:9d:41:ae:e2:b6:b5:e9:96:77:51:68:3f:82:81:59:
82:a9:26:0c:e1:07:7d:11:4f:14:b6:98:ff:5b:f6:47:46:ba:
ce:ef:89:cd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECyjZKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YjcxZTliMTNmNWMzMzlhNTg2OTJlZWFiZTcyZWFhNDA2YmJiZDdkMB4XDTIyMDMx
NjIxMTAzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTkzZTEzM2VjOTE5
M2YxYTNlMzg1NjE5Yzg2ZjgwNWY3YWU2MWZmNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKWlrsaeJT9Sa3susYVu5mK2WCP2S9gBGh7if79ebVcaOELi
hpVxYuZZJGPLYdqUlmZnE9dgKBT6ACfbIV//P48+8+XXhXW96Qv9NVd85lWOKpIT
PbliQo2ir6TfFTA79zI8D1ZDcwx5VCPqgC54VBsYFmB2CMFDjHa2UsPEPrKUJW9R
fLsAUDPcBCSs5AQKG5nlfap5xI+09baHZWwJ/XamzZ3ej1GX/eT4PqnEfnToCfeq
nSeqSBRo2YU+88/HZK+c7j0RoyUT769jB9/5mY5aedykzG7oUM16CsalXBhzMJZO
Jya8/Gcb4XwzaOtS4PAVCUn9O1k34kot1meMtc0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTpPhM+yRk/Gj44VhnIb4BfeuYf9zAfBgNVHSMEGDAWgBSrcemxP1wzmlhp
Luq+cuqkBru9fTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3EzSHBzVDljTTVwWWFTN3F2bkxxcEFhN3ZYMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmUvNmJhMzljLWVmMWQtNGQ0OC05ODJiLWNmNGI5MDA5OTdhMC8x
LzZUNFRQc2taUHhvLU9GWVp5Ry1BWDNybUhfYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUv
NmJhMzljLWVmMWQtNGQ0OC05ODJiLWNmNGI5MDA5OTdhMC8xL3EzSHBzVDljTTVw
WWFTN3F2bkxxcEFhN3ZYMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANWOhjANBgkqhkiG9w0BAQsFAAOC
AQEAtV5kAO4Do3WKpl9d+i54yVCkuV7yN48mPLv6B5sC9EiHYBD8ZTaTn7sxKXU6
czrpIPUTdz08TJaL0wx+JxDIq/ElnaImGpvV9B/Jm72hmLm6WjTt7dPOINfNrcuU
TwHa0yQ/sQyEmWXXORuALDM9uiW6djvUiYSekxFqzw9VUuDa8IgI4Blqe1LPde3U
z97/TnJragFTRJJTJCax3F7/YGUDt0iy93agr2OFecl1qt2cz+w9WAS/CGk4bzml
OTXOI2iddZQ/CeTwucU5b84W1r8dfcPia5PAMdjinUGu4ra16ZZ3UWg/goFZgqkm
DOEHfRFPFLaY/1v2R0a6zu+JzQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:04 2023 by rpki-client on console-ams.rpki-client.org