Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/698e4e-0a39-416b-affe-61819c480cbe/1/138S6NrGTagIHYRTUx0xPmbJHEI.roa
File: 138S6NrGTagIHYRTUx0xPmbJHEI.roa (raw, json)
Hash identifier: swsRJwwpyfhanbRORdyG2Xjyvm/mDRxcfnIM6RWb1D8=
Subject key identifier: D7:7F:12:E8:DA:C6:4D:A8:08:1D:84:53:53:1D:31:3E:66:C9:1C:42
Certificate issuer: /CN=808c3a6c5cbff0739e438d05744405b16197b15b
Certificate serial: 0A31B43D
Authority key identifier: 80:8C:3A:6C:5C:BF:F0:73:9E:43:8D:05:74:44:05:B1:61:97:B1:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gIw6bFy_8HOeQ40FdEQFsWGXsVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/698e4e-0a39-416b-affe-61819c480cbe/1/138S6NrGTagIHYRTUx0xPmbJHEI.roa
Signing time: Sat 01 Jan 2022 04:56:04 +0000
ROA not before: Sat 01 Jan 2022 04:56:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213226
IP address blocks: 79.110.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171029565 (0xa31b43d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=808c3a6c5cbff0739e438d05744405b16197b15b
Validity
Not Before: Jan 1 04:56:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d77f12e8dac64da8081d8453531d313e66c91c42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:13:6f:f3:37:44:b0:77:44:99:c3:f5:bf:de:
ac:b1:69:6a:a6:93:52:00:a9:10:cc:8b:4a:5c:fc:
02:48:85:8d:af:6b:b0:e3:b1:62:3b:59:0a:1c:fc:
a8:89:5f:43:a7:95:f5:96:eb:be:fd:50:23:24:99:
ec:30:73:d1:84:70:d4:b1:87:b0:30:b6:5c:ec:c5:
ce:91:2a:02:e4:8c:4c:c3:4b:2e:a2:3c:97:91:b3:
8e:e4:26:d1:4f:1c:52:47:67:1d:aa:3a:bc:0a:a0:
45:d2:8d:9a:7c:0e:20:2e:4d:a9:0b:6e:54:ec:37:
54:3c:85:5b:58:41:48:01:05:5b:21:13:e2:6a:ea:
5f:f1:29:a9:e4:36:3f:5d:d3:24:99:ba:25:1a:02:
dc:37:8c:4c:54:8d:4e:c2:9b:30:b1:fa:2d:f6:32:
04:fa:d9:5d:a0:05:10:a1:ad:30:4e:be:eb:e1:9a:
cd:11:cf:60:90:fc:72:84:25:5e:51:1e:9f:86:88:
de:42:58:42:a0:ef:c6:cb:d4:29:74:43:f0:17:dd:
65:67:b7:92:c1:3c:ec:1c:fa:51:8d:ce:11:cc:51:
67:96:43:90:2f:b1:17:3e:43:24:65:fb:6e:8f:61:
08:04:07:cd:11:90:3d:c2:b2:85:a9:e2:bf:7d:b0:
33:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:7F:12:E8:DA:C6:4D:A8:08:1D:84:53:53:1D:31:3E:66:C9:1C:42
X509v3 Authority Key Identifier:
keyid:80:8C:3A:6C:5C:BF:F0:73:9E:43:8D:05:74:44:05:B1:61:97:B1:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gIw6bFy_8HOeQ40FdEQFsWGXsVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/698e4e-0a39-416b-affe-61819c480cbe/1/138S6NrGTagIHYRTUx0xPmbJHEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/698e4e-0a39-416b-affe-61819c480cbe/1/gIw6bFy_8HOeQ40FdEQFsWGXsVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.137.0/24
Signature Algorithm: sha256WithRSAEncryption
54:eb:a5:42:f3:d1:be:f8:fb:fb:4e:61:bd:57:8b:10:ee:18:
6d:1a:16:a3:c6:af:8f:b3:c5:ae:73:3e:43:73:3f:0c:0e:b8:
25:e4:a1:61:e9:09:05:e2:3e:63:ac:1d:3d:40:04:a1:0b:f3:
84:1e:67:e9:3d:eb:71:57:90:6c:06:f5:47:cf:bf:dd:06:46:
6f:73:27:01:1a:f5:49:e9:a1:e3:2e:fa:e7:12:37:ad:a7:16:
0e:89:90:8b:1e:47:93:12:d4:0e:4a:1c:73:75:5c:0c:f1:2d:
d3:d7:e3:b9:8c:51:71:57:46:e9:1f:3e:e7:15:f0:9b:2c:b1:
60:eb:48:ae:93:a6:96:07:c4:66:e6:42:3a:e1:f0:38:8b:61:
3c:1a:a6:dd:25:4c:0c:f2:dd:a8:f9:12:f8:1b:9a:e2:0d:ac:
25:2e:86:c9:b5:c0:f4:7b:10:5c:80:e3:d5:7d:e1:d1:0d:8c:
3f:a3:f2:20:81:48:73:85:54:49:36:07:d8:35:aa:bd:9f:c3:
37:3d:b8:33:a1:f4:c4:da:89:16:21:ac:be:ce:ef:6c:9d:3a:
9b:a7:05:08:bb:2e:53:85:2d:0e:d6:10:1e:13:d5:0f:68:cd:
36:ce:51:30:14:7c:6f:ef:6c:35:77:4d:2e:8b:5c:f7:74:da:
da:3b:96:dc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECjG0PTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MDhjM2E2YzVjYmZmMDczOWU0MzhkMDU3NDQ0MDViMTYxOTdiMTViMB4XDTIyMDEw
MTA0NTYwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDc3ZjEyZThkYWM2
NGRhODA4MWQ4NDUzNTMxZDMxM2U2NmM5MWM0MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMATb/M3RLB3RJnD9b/erLFpaqaTUgCpEMyLSlz8AkiFja9r
sOOxYjtZChz8qIlfQ6eV9Zbrvv1QIySZ7DBz0YRw1LGHsDC2XOzFzpEqAuSMTMNL
LqI8l5GzjuQm0U8cUkdnHao6vAqgRdKNmnwOIC5NqQtuVOw3VDyFW1hBSAEFWyET
4mrqX/EpqeQ2P13TJJm6JRoC3DeMTFSNTsKbMLH6LfYyBPrZXaAFEKGtME6+6+Ga
zRHPYJD8coQlXlEen4aI3kJYQqDvxsvUKXRD8BfdZWe3ksE87Bz6UY3OEcxRZ5ZD
kC+xFz5DJGX7bo9hCAQHzRGQPcKyhaniv32wMzMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTXfxLo2sZNqAgdhFNTHTE+ZskcQjAfBgNVHSMEGDAWgBSAjDpsXL/wc55D
jQV0RAWxYZexWzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2dJdzZiRnlfOEhPZVE0MEZkRVFGc1dHWHNWcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGQvNjk4ZTRlLTBhMzktNDE2Yi1hZmZlLTYxODE5YzQ4MGNiZS8x
LzEzOFM2TnJHVGFnSUhZUlRVeDB4UG1iSkhFSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGQv
Njk4ZTRlLTBhMzktNDE2Yi1hZmZlLTYxODE5YzQ4MGNiZS8xL2dJdzZiRnlfOEhP
ZVE0MEZkRVFGc1dHWHNWcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE9uiTANBgkqhkiG9w0BAQsFAAOC
AQEAVOulQvPRvvj7+05hvVeLEO4YbRoWo8avj7PFrnM+Q3M/DA64JeShYekJBeI+
Y6wdPUAEoQvzhB5n6T3rcVeQbAb1R8+/3QZGb3MnARr1Semh4y765xI3racWDomQ
ix5HkxLUDkocc3VcDPEt09fjuYxRcVdG6R8+5xXwmyyxYOtIrpOmlgfEZuZCOuHw
OIthPBqm3SVMDPLdqPkS+Bua4g2sJS6GybXA9HsQXIDj1X3h0Q2MP6PyIIFIc4VU
STYH2DWqvZ/DNz24M6H0xNqJFiGsvs7vbJ06m6cFCLsuU4UtDtYQHhPVD2jNNs5R
MBR8b+9sNXdNLotc93Ta2juW3A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:58 2024 by rpki-client on console-ams.rpki-client.org