Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/n1qTiy9zVfRQFUK2RX3DKSdmQN8.roa
File: n1qTiy9zVfRQFUK2RX3DKSdmQN8.roa (raw, json)
Hash identifier: 1lgJvVoiRei9qOwsvzXexOHwgoXZO87Qds6E7KyOsBg=
Subject key identifier: 9F:5A:93:8B:2F:73:55:F4:50:15:42:B6:45:7D:C3:29:27:66:40:DF
Certificate issuer: /CN=7e1167886da81524431bbf2efb0572914b686ebc
Certificate serial: 0183C6D07F0BFC2C10176F8CB720513E1844
Authority key identifier: 7E:11:67:88:6D:A8:15:24:43:1B:BF:2E:FB:05:72:91:4B:68:6E:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fhFniG2oFSRDG78u-wVykUtobrw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/n1qTiy9zVfRQFUK2RX3DKSdmQN8.roa
Signing time: Tue 11 Oct 2022 11:31:36 +0000
ROA not before: Tue 11 Oct 2022 11:31:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2159
IP address blocks: 212.39.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c6:d0:7f:0b:fc:2c:10:17:6f:8c:b7:20:51:3e:18:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e1167886da81524431bbf2efb0572914b686ebc
Validity
Not Before: Oct 11 11:31:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f5a938b2f7355f4501542b6457dc329276640df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:e8:9d:96:3c:8c:16:9b:82:65:c8:62:6a:5b:
f5:7b:77:48:11:20:12:68:39:ff:bd:eb:dc:21:b1:
d5:b1:c2:ce:74:3b:44:aa:34:23:87:d0:4b:6e:52:
8d:87:d7:ed:d7:49:6a:9f:6a:47:49:e2:7e:b9:84:
9f:cc:aa:18:05:2c:6a:ba:77:a0:12:30:3f:7b:53:
86:af:a0:f9:4d:3e:cd:08:b2:03:13:1b:50:a2:ff:
f4:4b:bb:f8:14:9d:9c:fd:be:df:db:b2:c7:bf:6b:
f4:a6:8a:c0:82:a8:3c:72:da:12:0a:15:33:88:18:
7b:7c:cd:cf:fa:de:c3:2a:55:a8:e3:33:98:2c:35:
39:dc:3d:8b:7b:2b:e4:e6:e0:7e:f6:e4:d1:56:2b:
83:40:bd:5b:e5:59:c7:6e:59:98:e9:c4:9a:c2:57:
54:ed:08:65:ec:62:21:39:04:4e:ba:ab:a2:a3:fa:
24:8e:65:88:c4:e5:2e:5a:bb:21:57:80:7b:ee:80:
88:19:6e:07:a7:40:6a:7e:c8:9a:93:6d:37:5f:28:
e3:77:9a:6d:40:52:21:fa:be:a2:cf:1f:b9:2b:53:
85:de:f7:ee:81:9a:09:9e:12:9b:d0:c8:d2:7a:51:
e1:77:4a:3b:5b:87:53:49:62:6f:1d:1b:68:87:30:
f5:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:5A:93:8B:2F:73:55:F4:50:15:42:B6:45:7D:C3:29:27:66:40:DF
X509v3 Authority Key Identifier:
keyid:7E:11:67:88:6D:A8:15:24:43:1B:BF:2E:FB:05:72:91:4B:68:6E:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fhFniG2oFSRDG78u-wVykUtobrw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/n1qTiy9zVfRQFUK2RX3DKSdmQN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/fhFniG2oFSRDG78u-wVykUtobrw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.39.229.0/24
Signature Algorithm: sha256WithRSAEncryption
83:95:c5:1b:2d:fc:2a:fa:82:6f:36:27:78:52:1d:b0:37:bd:
d3:4c:fc:56:f7:15:85:db:3b:2d:c0:3b:8f:81:96:0b:e4:55:
bb:8d:cd:65:78:c2:50:45:f1:39:c6:0d:14:6c:46:af:fa:b1:
02:ab:bb:5e:4b:28:59:2c:c0:42:c7:6d:04:fb:74:b2:25:a0:
a7:09:fa:58:b8:61:d4:ab:5c:a0:14:98:dd:f8:c7:8d:66:d6:
59:58:0b:33:e4:6c:21:32:2f:ad:2d:62:74:eb:67:35:43:7b:
8c:37:1c:d2:42:7b:fd:b7:f7:fc:c6:14:bc:07:33:0e:7b:71:
5a:22:6b:a6:61:5f:b5:1e:c2:25:98:1e:ec:b6:01:14:5a:9c:
65:30:72:75:c3:c9:13:00:fe:4c:d2:a4:44:92:95:78:a1:cd:
eb:5c:e0:64:14:1a:83:fc:99:58:bb:18:0a:12:47:49:d9:78:
02:50:4c:bb:59:53:65:5e:88:ac:57:99:69:82:3b:80:fd:3b:
78:ea:6b:5d:1f:b9:09:21:2b:35:b2:9a:c9:01:67:2b:97:73:
a0:b4:a6:29:9e:1a:8a:21:57:3f:31:62:d1:97:30:42:57:b2:
cd:45:e4:ae:50:58:7f:98:d9:81:d8:ca:3c:af:af:a0:85:ad:
50:01:e8:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPG0H8L/CwQF2+MtyBRPhhEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlMTE2Nzg4NmRhODE1MjQ0MzFiYmYyZWZiMDU3MjkxNGI2
ODZlYmMwHhcNMjIxMDExMTEzMTM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZjVhOTM4YjJmNzM1NWY0NTAxNTQyYjY0NTdkYzMyOTI3NjY0MGRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6+idljyMFpuCZchialv1e3dIESAS
aDn/vevcIbHVscLOdDtEqjQjh9BLblKNh9ft10lqn2pHSeJ+uYSfzKoYBSxquneg
EjA/e1OGr6D5TT7NCLIDExtQov/0S7v4FJ2c/b7f27LHv2v0porAgqg8ctoSChUz
iBh7fM3P+t7DKlWo4zOYLDU53D2Leyvk5uB+9uTRViuDQL1b5VnHblmY6cSawldU
7Qhl7GIhOQROuquio/okjmWIxOUuWrshV4B77oCIGW4Hp0Bqfsiak203Xyjjd5pt
QFIh+r6izx+5K1OF3vfugZoJnhKb0MjSelHhd0o7W4dTSWJvHRtohzD1NwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ9ak4svc1X0UBVCtkV9wyknZkDfMB8GA1UdIwQY
MBaAFH4RZ4htqBUkQxu/LvsFcpFLaG68MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmhGbmlHMm9GU1JERzc4dS13VnlrVXRvYnJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9mOTJjZDctNjQ2Yy00NDFiLWFlNDYt
OWIyODJjNjQzMjU2LzEvbjFxVGl5OXpWZlJRRlVLMlJYM0RLU2RtUU44LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9mOTJjZDctNjQ2Yy00NDFiLWFlNDYtOWIyODJjNjQzMjU2
LzEvZmhGbmlHMm9GU1JERzc4dS13VnlrVXRvYnJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1CflMA0G
CSqGSIb3DQEBCwUAA4IBAQCDlcUbLfwq+oJvNid4Uh2wN73TTPxW9xWF2zstwDuP
gZYL5FW7jc1leMJQRfE5xg0UbEav+rECq7teSyhZLMBCx20E+3SyJaCnCfpYuGHU
q1ygFJjd+MeNZtZZWAsz5GwhMi+tLWJ062c1Q3uMNxzSQnv9t/f8xhS8BzMOe3Fa
ImumYV+1HsIlmB7stgEUWpxlMHJ1w8kTAP5M0qREkpV4oc3rXOBkFBqD/JlYuxgK
EkdJ2XgCUEy7WVNlXoisV5lpgjuA/Tt46mtdH7kJISs1sprJAWcrl3OgtKYpnhqK
IVc/MWLRlzBCV7LNReSuUFh/mNmB2Mo8r6+gha1QAejd
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:12 2024 by rpki-client on console-ams.rpki-client.org