Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/m2ZDI1PpZyYDyr9_6IuNdciFk50.roa
File: m2ZDI1PpZyYDyr9_6IuNdciFk50.roa (raw, json)
Hash identifier: 6u5IA8blOuTrtBhw1GZVz/JHEcWXFkG4IOEyNsUVKdg=
Subject key identifier: 9B:66:43:23:53:E9:67:26:03:CA:BF:7F:E8:8B:8D:75:C8:85:93:9D
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 4441F408
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/m2ZDI1PpZyYDyr9_6IuNdciFk50.roa
Signing time: Fri 17 Jun 2022 07:23:45 +0000
ROA not before: Fri 17 Jun 2022 07:23:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2859
IP address blocks: 192.121.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1145173000 (0x4441f408)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jun 17 07:23:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b66432353e9672603cabf7fe88b8d75c885939d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:86:9e:aa:0e:ce:d3:c1:59:0e:dc:73:b4:c1:
a2:90:c6:46:42:ed:c9:22:7a:11:0d:b9:c4:91:61:
50:54:6b:8a:52:6c:0e:57:9e:bf:be:1f:f5:89:92:
c2:a3:5b:13:e6:10:e1:05:fe:92:a3:68:a6:26:88:
35:fc:03:9d:f5:df:95:8a:1e:97:d9:f4:c2:2e:dd:
20:76:d1:f8:df:91:e4:53:c7:11:eb:0e:18:b4:c7:
91:35:c6:3e:fd:20:0c:0d:36:a9:2a:8b:d2:f6:3d:
55:c6:f0:22:12:d3:30:fa:8b:a6:a9:29:4e:2f:19:
f4:d5:a9:fd:0f:57:07:0b:34:ef:ad:62:74:fe:cd:
6a:71:ff:d5:f7:da:80:64:a8:96:0c:d3:00:9d:ab:
fc:e6:8a:18:c9:e3:af:14:60:53:7c:7d:c6:bc:66:
ed:25:be:43:8c:90:69:7d:21:c9:92:3e:42:4b:47:
98:c1:ba:a5:bf:b9:9f:ef:84:3b:46:84:f3:d3:56:
3d:8c:ab:19:f9:b9:c9:e1:b3:08:cd:cd:f8:ea:f3:
38:4d:e2:70:8a:99:d1:09:37:cb:94:0b:31:b2:59:
74:3f:65:7c:3d:de:9e:b7:98:d1:81:b0:e3:5c:18:
02:64:b9:f3:2f:ec:dd:d6:f6:ee:2f:e8:48:6f:a6:
83:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:66:43:23:53:E9:67:26:03:CA:BF:7F:E8:8B:8D:75:C8:85:93:9D
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/m2ZDI1PpZyYDyr9_6IuNdciFk50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.121.121.0/24
Signature Algorithm: sha256WithRSAEncryption
84:e0:18:bc:0d:1f:1d:af:50:fd:45:72:47:9a:5d:01:ea:cd:
c6:e9:ef:5f:39:11:ba:ab:6e:d9:a9:f4:38:e2:0a:f3:f4:95:
d7:81:8c:3b:c5:0b:06:b7:4e:c8:02:5d:f9:41:e5:3b:08:10:
d9:e5:31:bd:d9:d8:6a:a4:e5:ed:ed:eb:4b:c8:79:e4:8a:f8:
24:da:75:5e:19:8c:0c:0e:97:ee:de:39:d5:f0:68:eb:18:6b:
a6:a7:be:c4:05:b3:84:19:3b:71:af:30:ae:ef:e4:2b:6a:31:
4b:e0:d9:e0:57:8b:e7:4a:88:28:72:41:72:58:e0:66:12:63:
cc:fa:6c:78:46:d5:35:65:98:bf:38:9f:e2:69:c5:73:6e:ea:
e2:60:6c:1e:0e:05:74:1c:02:11:06:74:52:85:c1:a6:f3:74:
d9:83:c0:37:03:e5:2a:24:2e:e2:62:f3:41:2a:53:4b:94:29:
35:15:aa:44:81:39:62:01:a0:f2:ab:37:7d:3d:37:50:43:41:
f6:bd:29:09:4d:d2:02:53:46:20:52:20:91:75:5a:22:34:d6:
60:0b:ce:49:db:53:ea:bc:fb:38:19:58:51:c5:f0:a8:01:e6:
eb:55:7b:11:7d:cb:a5:a3:e0:a1:b5:35:d7:eb:7a:73:b2:0d:
a9:e0:e7:84
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEREH0CDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MTM1YzdmNTcxZWVmZWI2NzQwNGFiNmM0NWZkNDc1NTUxYWRhZjFiMB4XDTIyMDYx
NzA3MjM0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWI2NjQzMjM1M2U5
NjcyNjAzY2FiZjdmZTg4YjhkNzVjODg1OTM5ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKiGnqoOztPBWQ7cc7TBopDGRkLtySJ6EQ25xJFhUFRrilJs
Dleev74f9YmSwqNbE+YQ4QX+kqNopiaINfwDnfXflYoel9n0wi7dIHbR+N+R5FPH
EesOGLTHkTXGPv0gDA02qSqL0vY9VcbwIhLTMPqLpqkpTi8Z9NWp/Q9XBws0761i
dP7NanH/1ffagGSolgzTAJ2r/OaKGMnjrxRgU3x9xrxm7SW+Q4yQaX0hyZI+QktH
mMG6pb+5n++EO0aE89NWPYyrGfm5yeGzCM3N+OrzOE3icIqZ0Qk3y5QLMbJZdD9l
fD3enreY0YGw41wYAmS58y/s3db27i/oSG+mg+cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSbZkMjU+lnJgPKv3/oi411yIWTnTAfBgNVHSMEGDAWgBQhNcf1ce7+tnQE
q2xF/UdVUa2vGzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lUWEg5WEh1X3JaMEJLdHNSZjFIVlZHdHJ4cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDkvNjgwYjc4LTk2YWYtNGE4NS1hYzAyLTk0M2QwMzMyMTMyNi8x
L20yWkRJMVBwWnlZRHlyOV82SXVOZGNpRms1MC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkv
NjgwYjc4LTk2YWYtNGE4NS1hYzAyLTk0M2QwMzMyMTMyNi8xL0lUWEg5WEh1X3Ja
MEJLdHNSZjFIVlZHdHJ4cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMB5eTANBgkqhkiG9w0BAQsFAAOC
AQEAhOAYvA0fHa9Q/UVyR5pdAerNxunvXzkRuqtu2an0OOIK8/SV14GMO8ULBrdO
yAJd+UHlOwgQ2eUxvdnYaqTl7e3rS8h55Ir4JNp1XhmMDA6X7t451fBo6xhrpqe+
xAWzhBk7ca8wru/kK2oxS+DZ4FeL50qIKHJBcljgZhJjzPpseEbVNWWYvzif4mnF
c27q4mBsHg4FdBwCEQZ0UoXBpvN02YPANwPlKiQu4mLzQSpTS5QpNRWqRIE5YgGg
8qs3fT03UENB9r0pCU3SAlNGIFIgkXVaIjTWYAvOSdtT6rz7OBlYUcXwqAHm61V7
EX3LpaPgobU11+t6c7INqeDnhA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:47 2023 by rpki-client on console-fra.rpki-client.org