Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/ffbf6a-72f0-401f-b2c3-8b8d72172090/1/sV6YN-8uC_PD94r08L1NRz8mAxw.roa
File: sV6YN-8uC_PD94r08L1NRz8mAxw.roa (raw, json)
Hash identifier: Q4L0j/0J5W4GA3w8btudI8f+HixpJUZYg3WmhLfwonQ=
Subject key identifier: B1:5E:98:37:EF:2E:0B:F3:C3:F7:8A:F4:F0:BD:4D:47:3F:26:03:1C
Certificate issuer: /CN=56d0e3b28f2be33ec5a9d2ca00ac64155536cbc6
Certificate serial: 7508
Authority key identifier: 56:D0:E3:B2:8F:2B:E3:3E:C5:A9:D2:CA:00:AC:64:15:55:36:CB:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VtDjso8r4z7FqdLKAKxkFVU2y8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/ffbf6a-72f0-401f-b2c3-8b8d72172090/1/sV6YN-8uC_PD94r08L1NRz8mAxw.roa
Signing time: Thu 21 Apr 2022 08:51:28 +0000
ROA not before: Thu 21 Apr 2022 08:51:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8376
IP address blocks: 217.23.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29960 (0x7508)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56d0e3b28f2be33ec5a9d2ca00ac64155536cbc6
Validity
Not Before: Apr 21 08:51:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b15e9837ef2e0bf3c3f78af4f0bd4d473f26031c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bd:7f:2e:d9:4a:9a:01:29:7b:7b:04:3c:b8:
c8:f8:d2:8d:e0:8d:5b:f8:ce:e9:f7:85:6d:5d:65:
32:4a:d4:c2:fa:09:26:00:26:da:2d:35:ce:b4:22:
4e:c1:b8:78:77:b0:69:d9:8f:a1:ea:a7:e9:e9:99:
60:0b:86:7f:e8:a1:e4:c4:26:f1:8f:ab:e6:b5:ef:
2a:3e:90:e9:d7:5f:b9:75:13:42:5b:8f:77:28:0a:
65:19:71:d0:a7:81:f6:df:46:5a:93:0f:7d:30:10:
2b:6a:10:8a:a0:e3:4b:b2:f6:34:66:22:d4:01:b9:
de:3f:65:11:06:08:4b:cf:a8:68:ff:24:48:87:76:
98:92:63:48:1e:e7:a8:cf:39:9d:a0:bc:89:4c:69:
2f:7b:ac:07:ed:f2:33:8e:6a:fd:c4:78:1c:1a:2f:
08:8e:f9:1b:9f:0f:8b:46:8f:9e:f2:45:f0:48:fc:
4e:b5:27:69:50:40:84:1f:fb:c9:e5:67:77:ca:ed:
22:3d:c1:90:1a:f6:24:a3:9f:40:3f:68:ae:a9:e2:
96:76:6c:2a:26:e1:f8:05:d3:83:67:8c:b7:74:ed:
e2:f6:06:be:7e:09:d9:ff:76:48:cd:b4:be:09:8e:
48:a0:4b:52:d0:6e:ae:30:75:71:70:75:de:a9:5e:
be:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:5E:98:37:EF:2E:0B:F3:C3:F7:8A:F4:F0:BD:4D:47:3F:26:03:1C
X509v3 Authority Key Identifier:
keyid:56:D0:E3:B2:8F:2B:E3:3E:C5:A9:D2:CA:00:AC:64:15:55:36:CB:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VtDjso8r4z7FqdLKAKxkFVU2y8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/ffbf6a-72f0-401f-b2c3-8b8d72172090/1/sV6YN-8uC_PD94r08L1NRz8mAxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/ffbf6a-72f0-401f-b2c3-8b8d72172090/1/VtDjso8r4z7FqdLKAKxkFVU2y8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.23.32.0/20
Signature Algorithm: sha256WithRSAEncryption
4d:b2:b0:c8:92:bc:36:06:b1:bd:b5:68:19:87:c2:29:f6:31:
b1:a2:65:29:80:29:fc:83:5a:4e:fb:c2:1d:dc:5d:3e:14:34:
f6:32:08:ad:1e:38:98:7c:6b:50:38:42:7d:b6:f1:1d:f7:7a:
0b:69:99:c0:b7:65:76:6a:c6:a5:3a:97:0b:c6:9c:cc:87:14:
d5:d9:5b:1d:4f:53:90:6d:4a:58:dc:4b:46:68:27:8d:c8:01:
57:c8:fd:d7:97:4e:5f:0d:0e:3e:55:8a:f2:b2:d6:4c:e1:a9:
ac:db:ec:a1:c5:be:86:f0:88:69:9c:f5:cd:d7:4f:5d:03:6b:
59:e4:28:08:b2:52:ae:2a:62:03:8a:fa:fb:bb:b8:a1:d8:a6:
e5:66:17:8a:7d:a3:9d:b1:75:43:fb:99:1b:ef:73:1e:60:1d:
49:c4:07:65:1a:1d:bd:64:fb:b2:cb:48:be:d0:b7:c4:a8:0b:
e8:a3:ef:33:c6:33:cf:c6:9d:5a:d1:29:4e:ff:aa:31:35:7c:
cd:9b:a6:39:24:ca:ec:24:42:24:9e:39:2b:19:04:3f:94:03:
fd:80:8f:81:5f:88:41:8e:e1:af:d1:85:f1:61:af:db:e7:ae:
e0:67:5c:00:1b:3a:aa:97:47:4a:9d:6c:27:5b:63:c2:14:59:
7b:9f:b9:ab
-----BEGIN CERTIFICATE-----
MIIE7TCCA9WgAwIBAgICdQgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTZk
MGUzYjI4ZjJiZTMzZWM1YTlkMmNhMDBhYzY0MTU1NTM2Y2JjNjAeFw0yMjA0MjEw
ODUxMjhaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKGIxNWU5ODM3ZWYyZTBi
ZjNjM2Y3OGFmNGYwYmQ0ZDQ3M2YyNjAzMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLvX8u2UqaASl7ewQ8uMj40o3gjVv4zun3hW1dZTJK1ML6CSYA
JtotNc60Ik7BuHh3sGnZj6Hqp+npmWALhn/ooeTEJvGPq+a17yo+kOnXX7l1E0Jb
j3coCmUZcdCngfbfRlqTD30wECtqEIqg40uy9jRmItQBud4/ZREGCEvPqGj/JEiH
dpiSY0ge56jPOZ2gvIlMaS97rAft8jOOav3EeBwaLwiO+RufD4tGj57yRfBI/E61
J2lQQIQf+8nlZ3fK7SI9wZAa9iSjn0A/aK6p4pZ2bCom4fgF04NnjLd07eL2Br5+
Cdn/dkjNtL4JjkigS1LQbq4wdXFwdd6pXr7TAgMBAAGjggIJMIICBTAdBgNVHQ4E
FgQUsV6YN+8uC/PD94r08L1NRz8mAxwwHwYDVR0jBBgwFoAUVtDjso8r4z7FqdLK
AKxkFVU2y8YwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9W
dERqc284cjR6N0ZxZExLQUt4a0ZWVTJ5OFkuY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxUL2JlL2ZmYmY2YS03MmYwLTQwMWYtYjJjMy04YjhkNzIxNzIwOTAvMS9z
VjZZTi04dUNfUEQ5NHIwOEwxTlJ6OG1BeHcucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JlL2Zm
YmY2YS03MmYwLTQwMWYtYjJjMy04YjhkNzIxNzIwOTAvMS9WdERqc284cjR6N0Zx
ZExLQUt4a0ZWVTJ5OFkuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATZFyAwDQYJKoZIhvcNAQELBQADggEB
AE2ysMiSvDYGsb21aBmHwin2MbGiZSmAKfyDWk77wh3cXT4UNPYyCK0eOJh8a1A4
Qn228R33egtpmcC3ZXZqxqU6lwvGnMyHFNXZWx1PU5BtSljcS0ZoJ43IAVfI/deX
Tl8NDj5VivKy1kzhqazb7KHFvobwiGmc9c3XT10Da1nkKAiyUq4qYgOK+vu7uKHY
puVmF4p9o52xdUP7mRvvcx5gHUnEB2UaHb1k+7LLSL7Qt8SoC+ij7zPGM8/GnVrR
KU7/qjE1fM2bpjkkyuwkQiSeOSsZBD+UA/2Aj4FfiEGO4a/RhfFhr9vnruBnXAAb
OqqXR0qdbCdbY8IUWXufuas=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:08 2024 by rpki-client on console-fra.rpki-client.org