Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/821bbf-a024-457f-9b93-09108f3bf204/1/s_UI1-Ptj63Z9F6xt2fYKm50hVg.roa
File: s_UI1-Ptj63Z9F6xt2fYKm50hVg.roa (raw, json)
Hash identifier: jNtlazNTHCPZ3zowObdKEBtzyMCyfW1hUwYBXBnor2w=
Subject key identifier: B3:F5:08:D7:E3:ED:8F:AD:D9:F4:5E:B1:B7:67:D8:2A:6E:74:85:58
Certificate issuer: /CN=5fdb8a17efa4654923a35e06b2d05fc7c20d5ef2
Certificate serial: 73E8DA
Authority key identifier: 5F:DB:8A:17:EF:A4:65:49:23:A3:5E:06:B2:D0:5F:C7:C2:0D:5E:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X9uKF--kZUkjo14GstBfx8INXvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/821bbf-a024-457f-9b93-09108f3bf204/1/s_UI1-Ptj63Z9F6xt2fYKm50hVg.roa
Signing time: Sat 01 Jan 2022 01:50:43 +0000
ROA not before: Sat 01 Jan 2022 01:50:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136944
IP address blocks: 212.23.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7596250 (0x73e8da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fdb8a17efa4654923a35e06b2d05fc7c20d5ef2
Validity
Not Before: Jan 1 01:50:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3f508d7e3ed8fadd9f45eb1b767d82a6e748558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9d:7b:67:e7:9d:50:3d:66:f6:b3:9c:97:56:
77:0a:b8:be:94:62:5e:39:c0:00:a0:bd:7f:de:43:
25:96:f7:00:1f:93:10:32:95:68:09:83:0f:ac:c5:
af:85:c2:59:38:f1:9d:78:c8:7e:f1:12:a9:14:ad:
ec:66:d0:40:42:bc:0b:d8:f2:35:1b:ac:6d:1b:3f:
8a:ba:41:fb:8b:3e:26:2b:1e:de:90:97:b2:50:ab:
2a:09:8b:bd:b0:a7:20:38:3c:f6:c8:7d:2f:52:65:
95:3a:1b:0d:8b:8f:be:74:84:71:af:69:c0:a7:91:
6e:e1:ff:08:06:c9:51:f7:5c:e9:99:6d:49:15:84:
f0:c6:9e:ff:d4:e9:48:20:f1:87:b5:7a:43:44:44:
18:a2:6f:3a:9e:e8:f4:a2:d1:2b:af:c9:1a:bc:64:
11:18:0e:f3:0e:6d:7e:95:e3:42:e9:06:c4:75:17:
bc:1e:aa:7a:7c:a9:c6:e1:6e:04:cd:63:78:bd:fa:
d0:cb:1e:2f:2e:69:22:66:2a:4b:86:45:77:00:65:
89:de:b1:ac:6b:8a:79:0b:2d:21:c5:31:97:31:40:
69:57:84:6f:0e:a5:1a:72:ba:15:ae:0d:cc:7a:b2:
7f:c1:c7:ec:4a:96:23:04:34:50:0f:39:15:b0:dd:
94:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:F5:08:D7:E3:ED:8F:AD:D9:F4:5E:B1:B7:67:D8:2A:6E:74:85:58
X509v3 Authority Key Identifier:
keyid:5F:DB:8A:17:EF:A4:65:49:23:A3:5E:06:B2:D0:5F:C7:C2:0D:5E:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X9uKF--kZUkjo14GstBfx8INXvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/821bbf-a024-457f-9b93-09108f3bf204/1/s_UI1-Ptj63Z9F6xt2fYKm50hVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/821bbf-a024-457f-9b93-09108f3bf204/1/X9uKF--kZUkjo14GstBfx8INXvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.208.0/24
Signature Algorithm: sha256WithRSAEncryption
31:04:79:91:a8:8c:51:9d:01:c1:6b:a8:de:71:6a:e2:a8:98:
5f:3b:e6:44:e5:e6:0c:4a:0f:84:3b:ad:68:e3:8b:83:18:9d:
4a:3d:56:4a:0c:8f:36:a1:a3:84:71:cf:e8:2f:ad:1d:99:bd:
55:0f:ac:e5:8d:e6:57:2c:e3:d7:24:48:1a:ae:35:1f:e0:bb:
82:d6:7e:3d:a2:a2:88:d3:a2:e6:89:57:56:a8:f3:e7:f2:39:
ea:46:f6:78:a4:9f:ca:79:4a:ef:e2:0c:7a:9c:98:05:de:07:
ee:bb:33:44:c8:12:c9:24:39:60:8f:0f:12:18:1c:b4:f5:c3:
ff:34:2a:26:4a:2e:15:27:2e:28:ef:81:69:de:ed:cc:ed:0b:
a7:4b:b1:f4:62:f8:5f:f4:95:55:64:e6:06:05:90:ea:82:e5:
53:3c:e5:a1:c3:5d:6a:da:a6:eb:c2:95:21:ba:00:e1:52:21:
08:3c:3b:16:74:9a:c3:b5:a8:63:cc:90:a2:7e:6a:3f:22:24:
d5:37:88:0c:93:98:77:40:89:72:02:d0:5d:53:a8:22:05:0a:
21:63:ee:21:07:5e:a7:f2:a5:cd:ef:80:3f:8c:26:fb:3b:7b:
2f:80:9f:59:b9:43:ae:8d:32:bd:9c:06:a9:6f:61:76:49:15:
ea:f8:82:11
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDc+jaMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDVm
ZGI4YTE3ZWZhNDY1NDkyM2EzNWUwNmIyZDA1ZmM3YzIwZDVlZjIwHhcNMjIwMTAx
MDE1MDQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiM2Y1MDhkN2UzZWQ4
ZmFkZDlmNDVlYjFiNzY3ZDgyYTZlNzQ4NTU4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAnp17Z+edUD1m9rOcl1Z3Cri+lGJeOcAAoL1/3kMllvcAH5MQ
MpVoCYMPrMWvhcJZOPGdeMh+8RKpFK3sZtBAQrwL2PI1G6xtGz+KukH7iz4mKx7e
kJeyUKsqCYu9sKcgODz2yH0vUmWVOhsNi4++dIRxr2nAp5Fu4f8IBslR91zpmW1J
FYTwxp7/1OlIIPGHtXpDREQYom86nuj0otErr8kavGQRGA7zDm1+leNC6QbEdRe8
Hqp6fKnG4W4EzWN4vfrQyx4vLmkiZipLhkV3AGWJ3rGsa4p5Cy0hxTGXMUBpV4Rv
DqUacroVrg3MerJ/wcfsSpYjBDRQDzkVsN2UFQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFLP1CNfj7Y+t2fResbdn2CpudIVYMB8GA1UdIwQYMBaAFF/bihfvpGVJI6Ne
BrLQX8fCDV7yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
WDl1S0YtLWtaVWtqbzE0R3N0QmZ4OElOWHZJLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jMC84MjFiYmYtYTAyNC00NTdmLTliOTMtMDkxMDhmM2JmMjA0LzEv
c19VSTEtUHRqNjNaOUY2eHQyZllLbTUwaFZnLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC84
MjFiYmYtYTAyNC00NTdmLTliOTMtMDkxMDhmM2JmMjA0LzEvWDl1S0YtLWtaVWtq
bzE0R3N0QmZ4OElOWHZJLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BfQMA0GCSqGSIb3DQEBCwUAA4IB
AQAxBHmRqIxRnQHBa6jecWriqJhfO+ZE5eYMSg+EO61o44uDGJ1KPVZKDI82oaOE
cc/oL60dmb1VD6zljeZXLOPXJEgarjUf4LuC1n49oqKI06LmiVdWqPPn8jnqRvZ4
pJ/KeUrv4gx6nJgF3gfuuzNEyBLJJDlgjw8SGBy09cP/NComSi4VJy4o74Fp3u3M
7QunS7H0Yvhf9JVVZOYGBZDqguVTPOWhw11q2qbrwpUhugDhUiEIPDsWdJrDtahj
zJCifmo/IiTVN4gMk5h3QIlyAtBdU6giBQohY+4hB16n8qXN74A/jCb7O3svgJ9Z
uUOujTK9nAapb2F2SRXq+IIR
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:21 2023 by rpki-client on console-fra.rpki-client.org