Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/scTf0OCkJfWtbuwd4C_3M6QtKS4.roa
File: scTf0OCkJfWtbuwd4C_3M6QtKS4.roa (raw, json)
Hash identifier: k4V8DaDCe/floOFCNIfgayeboLnGDPBW7yCAPQr44Rw=
Subject key identifier: B1:C4:DF:D0:E0:A4:25:F5:AD:6E:EC:1D:E0:2F:F7:33:A4:2D:29:2E
Certificate issuer: /CN=edc7cb00b3d414afa97c482eab5fdc76a1634b3d
Certificate serial: A24CB5
Authority key identifier: ED:C7:CB:00:B3:D4:14:AF:A9:7C:48:2E:AB:5F:DC:76:A1:63:4B:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7cfLALPUFK-pfEguq1_cdqFjSz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/scTf0OCkJfWtbuwd4C_3M6QtKS4.roa
Signing time: Sun 29 May 2022 12:49:13 +0000
ROA not before: Sun 29 May 2022 12:49:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 395886
IP address blocks: 212.23.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10636469 (0xa24cb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edc7cb00b3d414afa97c482eab5fdc76a1634b3d
Validity
Not Before: May 29 12:49:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1c4dfd0e0a425f5ad6eec1de02ff733a42d292e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:e2:f9:52:94:c8:6c:ed:1f:1b:03:41:1e:9a:
db:07:26:b4:67:53:70:a5:ac:46:a2:50:21:3e:b1:
c4:fd:59:3d:b1:fb:a6:81:50:5a:ea:d1:89:dd:7c:
66:4b:e3:22:41:a8:99:9a:4d:7d:23:25:78:c2:77:
bd:ba:e5:10:87:19:9b:17:25:44:46:37:8a:3b:b4:
64:fa:b4:ac:e3:f9:67:25:3a:f2:35:cc:ca:b2:69:
5a:70:03:b3:53:fc:fe:66:44:72:41:e5:b4:c0:5b:
b3:de:b0:09:23:a3:8c:5c:54:dc:98:51:07:99:b0:
10:44:f8:55:c7:a1:e2:60:d5:95:09:8c:ec:9b:e2:
97:bd:02:bb:1f:c3:b9:a8:a4:79:d0:c4:11:7e:50:
21:22:e9:67:9b:93:a7:29:51:cb:2c:e4:d1:0a:3a:
8d:2d:c3:3e:0c:3c:3d:fc:43:c2:65:e9:25:8e:43:
84:d0:33:82:39:22:13:c9:a8:99:66:0e:98:14:df:
96:12:3f:54:5a:68:3c:6a:d6:d5:10:73:90:e0:36:
47:a8:ae:7a:40:e5:0d:f1:57:b8:22:88:37:30:f2:
60:2f:7a:31:c4:67:99:6a:4c:db:8a:9f:35:e0:28:
c5:c3:22:77:b5:da:f6:7b:7b:39:f9:0d:dc:76:2f:
c2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C4:DF:D0:E0:A4:25:F5:AD:6E:EC:1D:E0:2F:F7:33:A4:2D:29:2E
X509v3 Authority Key Identifier:
keyid:ED:C7:CB:00:B3:D4:14:AF:A9:7C:48:2E:AB:5F:DC:76:A1:63:4B:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7cfLALPUFK-pfEguq1_cdqFjSz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/scTf0OCkJfWtbuwd4C_3M6QtKS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/7cfLALPUFK-pfEguq1_cdqFjSz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.206.0/24
Signature Algorithm: sha256WithRSAEncryption
90:c8:9e:2a:0b:ab:e5:1e:6b:f1:57:54:36:0b:2f:de:69:db:
b1:b1:1c:56:2e:45:30:dc:40:ae:28:29:4e:9a:6b:74:06:42:
c5:3e:ba:f3:a1:93:e5:f9:1f:1f:c6:5d:92:d0:e8:70:78:49:
d5:17:f3:20:a8:e0:6e:49:eb:29:d0:88:71:25:0a:57:b5:56:
dc:df:3c:27:bb:ba:bb:70:3f:c8:07:4f:dc:aa:cc:d0:32:2d:
4b:5a:4d:11:1f:b4:70:29:78:d4:fb:e5:62:12:c5:e3:5a:81:
d6:86:b6:61:67:ec:d4:af:2e:d3:bf:61:4e:0a:6c:b1:a4:01:
b6:03:27:8a:3a:07:c5:c3:40:ee:6a:e2:b2:5d:dd:f0:2a:49:
87:92:85:86:48:b0:71:7d:02:f3:60:bc:1d:d5:f8:e2:05:99:
a1:21:a9:df:c0:d1:56:e2:df:ac:47:c0:b0:fa:c6:68:3d:df:
2a:49:3a:85:87:26:a4:af:f7:9a:ae:7a:f6:dd:0f:46:f1:78:
11:a8:5f:f3:b0:52:c0:a8:2b:e5:bc:8e:38:82:1e:74:29:d5:
36:64:48:39:68:31:d3:c2:14:3c:b9:74:87:15:6f:67:3c:19:
cf:6c:96:66:e9:a2:1e:8c:23:7f:1f:d7:a3:21:bd:1a:06:2e:
8f:63:ba:41
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAKJMtTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ZGM3Y2IwMGIzZDQxNGFmYTk3YzQ4MmVhYjVmZGM3NmExNjM0YjNkMB4XDTIyMDUy
OTEyNDkxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjFjNGRmZDBlMGE0
MjVmNWFkNmVlYzFkZTAyZmY3MzNhNDJkMjkyZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAObi+VKUyGztHxsDQR6a2wcmtGdTcKWsRqJQIT6xxP1ZPbH7
poFQWurRid18ZkvjIkGomZpNfSMleMJ3vbrlEIcZmxclREY3iju0ZPq0rOP5ZyU6
8jXMyrJpWnADs1P8/mZEckHltMBbs96wCSOjjFxU3JhRB5mwEET4Vceh4mDVlQmM
7Jvil70Cux/DuaikedDEEX5QISLpZ5uTpylRyyzk0Qo6jS3DPgw8PfxDwmXpJY5D
hNAzgjkiE8momWYOmBTflhI/VFpoPGrW1RBzkOA2R6iuekDlDfFXuCKINzDyYC96
McRnmWpM24qfNeAoxcMid7Xa9nt7OfkN3HYvwm8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSxxN/Q4KQl9a1u7B3gL/czpC0pLjAfBgNVHSMEGDAWgBTtx8sAs9QUr6l8
SC6rX9x2oWNLPTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzdjZkxBTFBVRkstcGZFZ3VxMV9jZHFGalN6MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGMvNGUyMGYxLTU2ODktNDExYy05Mzc5LWMxNTkxNjVkZTBjNy8x
L3NjVGYwT0NrSmZXdGJ1d2Q0Q18zTTZRdEtTNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGMv
NGUyMGYxLTU2ODktNDExYy05Mzc5LWMxNTkxNjVkZTBjNy8xLzdjZkxBTFBVRkst
cGZFZ3VxMV9jZHFGalN6MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANQXzjANBgkqhkiG9w0BAQsFAAOC
AQEAkMieKgur5R5r8VdUNgsv3mnbsbEcVi5FMNxArigpTpprdAZCxT6686GT5fkf
H8ZdktDocHhJ1RfzIKjgbknrKdCIcSUKV7VW3N88J7u6u3A/yAdP3KrM0DItS1pN
ER+0cCl41PvlYhLF41qB1oa2YWfs1K8u079hTgpssaQBtgMnijoHxcNA7mrisl3d
8CpJh5KFhkiwcX0C82C8HdX44gWZoSGp38DRVuLfrEfAsPrGaD3fKkk6hYcmpK/3
mq569t0PRvF4Eahf87BSwKgr5byOOIIedCnVNmRIOWgx08IUPLl0hxVvZzwZz2yW
ZumiHowjfx/XoyG9GgYuj2O6QQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:48 2023 by rpki-client on console-ams.rpki-client.org