Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/7pHHBTYH5EMMZZmnCp_jV4Dxavw.roa
File: 7pHHBTYH5EMMZZmnCp_jV4Dxavw.roa (raw, json)
Hash identifier: f+Sdi8I9yU7hspZj7Q+QwCARA15MZfhict1qISatLdY=
Subject key identifier: EE:91:C7:05:36:07:E4:43:0C:65:99:A7:0A:9F:E3:57:80:F1:6A:FC
Certificate issuer: /CN=ab71e9b13f5c339a58692eeabe72eaa406bbbd7d
Certificate serial: 0B2543EB
Authority key identifier: AB:71:E9:B1:3F:5C:33:9A:58:69:2E:EA:BE:72:EA:A4:06:BB:BD:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q3HpsT9cM5pYaS7qvnLqpAa7vX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/7pHHBTYH5EMMZZmnCp_jV4Dxavw.roa
Signing time: Tue 15 Mar 2022 21:06:54 +0000
ROA not before: Tue 15 Mar 2022 21:06:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 213.142.134.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186991595 (0xb2543eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab71e9b13f5c339a58692eeabe72eaa406bbbd7d
Validity
Not Before: Mar 15 21:06:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee91c7053607e4430c6599a70a9fe35780f16afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:16:16:59:b8:b5:26:32:a2:dd:cb:07:6b:32:
ea:ba:de:84:c1:f3:9b:20:6c:eb:1c:5d:a8:9f:3a:
00:72:56:27:0a:ec:9d:b3:18:16:01:63:32:fc:a2:
3a:7d:3b:0d:52:7b:d5:18:34:7f:6f:be:86:f4:9d:
f0:23:b0:fc:88:a6:e0:11:fc:3d:21:b4:a1:61:6b:
8e:1a:d7:df:4f:b4:7a:33:9e:cc:1c:0c:76:53:03:
9c:25:81:f8:ac:3d:18:d2:74:98:6e:5d:b7:bb:a2:
13:24:38:bc:17:f6:ba:fb:c9:3f:85:4d:32:58:28:
75:07:cf:4a:1c:e2:9e:7d:85:d2:61:a6:9d:70:ca:
23:13:4a:9c:48:d5:4b:da:fa:72:e6:76:0f:36:ca:
f6:cd:4a:f4:31:3c:90:4e:32:47:ee:0f:8c:e9:c5:
c8:4f:97:f9:69:98:1f:9e:aa:a7:4a:61:2b:6e:05:
65:3b:dd:6a:a4:4b:80:e5:f5:e0:47:04:7f:5d:d9:
27:3b:6d:be:d9:dd:5b:70:f7:53:71:69:56:f9:f4:
e0:95:bf:76:69:14:25:38:e8:28:3b:32:2e:53:25:
ff:c6:b2:dc:34:8a:ba:ba:96:99:be:de:19:81:ad:
a3:63:57:51:b1:7b:88:ec:13:20:63:42:15:11:bd:
86:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:91:C7:05:36:07:E4:43:0C:65:99:A7:0A:9F:E3:57:80:F1:6A:FC
X509v3 Authority Key Identifier:
keyid:AB:71:E9:B1:3F:5C:33:9A:58:69:2E:EA:BE:72:EA:A4:06:BB:BD:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q3HpsT9cM5pYaS7qvnLqpAa7vX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/7pHHBTYH5EMMZZmnCp_jV4Dxavw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/6ba39c-ef1d-4d48-982b-cf4b900997a0/1/q3HpsT9cM5pYaS7qvnLqpAa7vX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.142.134.0/24
Signature Algorithm: sha256WithRSAEncryption
76:90:ad:8a:49:df:ae:b2:ef:46:99:04:66:3d:75:be:47:b6:
50:bc:15:53:60:6c:93:0f:e3:73:3f:a4:a7:13:b7:25:ef:cf:
58:36:b3:bf:79:e6:2b:92:06:b9:26:17:14:fb:78:cf:4a:ef:
c5:b4:fb:ef:8a:51:53:28:92:86:8b:cc:27:23:f7:30:1d:8a:
8d:79:09:ce:48:01:e1:67:16:b2:f3:fc:e0:75:93:4f:40:00:
c3:bd:8a:0b:b1:73:e2:dc:c3:f3:19:01:9f:5e:25:37:8a:7e:
e6:15:9a:95:d0:2f:4d:e9:a3:85:ef:6c:52:6f:2e:48:e3:61:
7f:4e:04:3e:85:fd:7a:22:2c:ca:66:69:4a:b4:f6:5b:40:e8:
7c:af:18:bc:a5:6d:60:57:28:11:32:9a:7e:b0:5d:58:9d:6c:
7a:54:49:dd:42:0a:0d:1d:a9:99:34:72:43:50:68:7c:fd:0c:
bd:07:65:dd:88:49:18:7f:69:4a:06:f2:2c:e5:1d:b5:d5:20:
bb:5a:82:77:74:d0:90:c8:5c:00:2f:cd:0b:26:2c:3a:b8:5b:
79:ac:34:f6:49:ee:6c:b4:6e:bb:d9:68:7d:e9:99:4a:b1:7e:
d6:07:a0:64:c7:98:0d:1e:28:e1:aa:1f:aa:e6:80:cf:4f:4d:
43:7b:9f:45
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECyVD6zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YjcxZTliMTNmNWMzMzlhNTg2OTJlZWFiZTcyZWFhNDA2YmJiZDdkMB4XDTIyMDMx
NTIxMDY1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWU5MWM3MDUzNjA3
ZTQ0MzBjNjU5OWE3MGE5ZmUzNTc4MGYxNmFmYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALcWFlm4tSYyot3LB2sy6rrehMHzmyBs6xxdqJ86AHJWJwrs
nbMYFgFjMvyiOn07DVJ71Rg0f2++hvSd8COw/Iim4BH8PSG0oWFrjhrX30+0ejOe
zBwMdlMDnCWB+Kw9GNJ0mG5dt7uiEyQ4vBf2uvvJP4VNMlgodQfPShzinn2F0mGm
nXDKIxNKnEjVS9r6cuZ2DzbK9s1K9DE8kE4yR+4PjOnFyE+X+WmYH56qp0phK24F
ZTvdaqRLgOX14EcEf13ZJzttvtndW3D3U3FpVvn04JW/dmkUJTjoKDsyLlMl/8ay
3DSKurqWmb7eGYGto2NXUbF7iOwTIGNCFRG9hiECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTukccFNgfkQwxlmacKn+NXgPFq/DAfBgNVHSMEGDAWgBSrcemxP1wzmlhp
Luq+cuqkBru9fTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3EzSHBzVDljTTVwWWFTN3F2bkxxcEFhN3ZYMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmUvNmJhMzljLWVmMWQtNGQ0OC05ODJiLWNmNGI5MDA5OTdhMC8x
LzdwSEhCVFlINUVNTVpabW5DcF9qVjREeGF2dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUv
NmJhMzljLWVmMWQtNGQ0OC05ODJiLWNmNGI5MDA5OTdhMC8xL3EzSHBzVDljTTVw
WWFTN3F2bkxxcEFhN3ZYMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANWOhjANBgkqhkiG9w0BAQsFAAOC
AQEAdpCtiknfrrLvRpkEZj11vke2ULwVU2Bskw/jcz+kpxO3Je/PWDazv3nmK5IG
uSYXFPt4z0rvxbT774pRUyiShovMJyP3MB2KjXkJzkgB4WcWsvP84HWTT0AAw72K
C7Fz4tzD8xkBn14lN4p+5hWaldAvTemjhe9sUm8uSONhf04EPoX9eiIsymZpSrT2
W0DofK8YvKVtYFcoETKafrBdWJ1selRJ3UIKDR2pmTRyQ1BofP0MvQdl3YhJGH9p
SgbyLOUdtdUgu1qCd3TQkMhcAC/NCyYsOrhbeaw09knubLRuu9lofemZSrF+1geg
ZMeYDR4o4aofquaAz09NQ3ufRQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:11 2023 by rpki-client on console-fra.rpki-client.org