Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/vLBojyBgZUSaleJGQNKboqxqPhE.roa
File: vLBojyBgZUSaleJGQNKboqxqPhE.roa (raw, json)
Hash identifier: DjX+bWjc4Qjlt/o9ir0wQeYF7uKiD8OBqlqVPJlknOI=
Subject key identifier: BC:B0:68:8F:20:60:65:44:9A:95:E2:46:40:D2:9B:A2:AC:6A:3E:11
Certificate issuer: /CN=bc8a3bc47d13c83f7d1cf72a137e0066f83d0608
Certificate serial: 01833734CA1E8D144A10BDCDB3764552F9BF
Authority key identifier: BC:8A:3B:C4:7D:13:C8:3F:7D:1C:F7:2A:13:7E:00:66:F8:3D:06:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vIo7xH0TyD99HPcqE34AZvg9Bgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/vLBojyBgZUSaleJGQNKboqxqPhE.roa
Signing time: Tue 13 Sep 2022 14:15:49 +0000
ROA not before: Tue 13 Sep 2022 14:15:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28716
IP address blocks: 212.104.56.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:37:34:ca:1e:8d:14:4a:10:bd:cd:b3:76:45:52:f9:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc8a3bc47d13c83f7d1cf72a137e0066f83d0608
Validity
Not Before: Sep 13 14:15:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcb0688f206065449a95e24640d29ba2ac6a3e11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:99:85:77:90:99:cb:23:78:eb:75:19:d4:88:
1a:6b:43:69:77:41:59:38:5b:8f:3d:6d:f8:5c:e1:
45:5c:5e:76:ce:1a:5f:83:6c:d3:a3:ba:53:53:bb:
fb:c8:b1:6d:cf:1b:08:bb:26:fc:b9:ac:b3:0f:7f:
d3:34:f9:73:1e:87:cc:b5:c3:8e:12:b3:b2:8e:80:
19:91:c1:c4:a6:e9:9b:64:36:18:6a:2f:de:54:9f:
c0:10:8e:42:8f:17:b6:8a:f5:1b:c9:1d:5f:01:7c:
fd:67:e4:0e:97:1e:83:75:4c:41:ad:3e:91:cb:e2:
f1:b6:41:65:2d:df:68:e8:cb:a6:f0:5f:f8:e2:a8:
03:31:a4:f1:06:40:8c:49:58:d1:75:9e:d6:b7:cd:
8e:bc:bc:c4:d9:06:0a:15:ff:b4:5b:dc:d0:d4:2a:
2a:10:33:a0:10:f5:cb:db:91:15:1c:c4:d1:c5:26:
cd:7a:44:87:c5:93:05:0e:de:e6:e8:8f:7e:fa:e8:
c1:f4:49:7f:60:ce:ae:57:8a:43:e2:3f:8e:0f:e3:
bc:50:f9:a0:a2:6b:5c:0a:c3:56:1a:9e:b1:49:12:
48:38:62:04:a4:c4:b1:d4:78:67:7f:34:2c:a8:d9:
f4:c7:35:51:de:33:38:44:da:c3:46:11:b3:39:a6:
b1:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:B0:68:8F:20:60:65:44:9A:95:E2:46:40:D2:9B:A2:AC:6A:3E:11
X509v3 Authority Key Identifier:
keyid:BC:8A:3B:C4:7D:13:C8:3F:7D:1C:F7:2A:13:7E:00:66:F8:3D:06:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vIo7xH0TyD99HPcqE34AZvg9Bgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/vLBojyBgZUSaleJGQNKboqxqPhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/vIo7xH0TyD99HPcqE34AZvg9Bgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.104.56.0/21
Signature Algorithm: sha256WithRSAEncryption
1d:35:a9:65:4c:2f:62:a2:10:3c:29:3b:f4:9a:eb:a0:47:17:
ec:af:e5:8b:67:95:9d:ba:2c:43:66:99:d5:26:6a:a6:4d:8e:
e4:d5:24:70:3a:22:02:48:f2:f0:b2:59:68:16:ef:e2:1f:6d:
f2:a4:b2:2e:68:5c:c6:b7:a2:8e:50:a4:cd:30:4f:27:7d:f2:
99:2f:fb:e7:f7:23:af:07:b2:9d:61:02:a2:a3:4f:d8:0b:de:
32:13:b4:65:c5:a0:e7:bf:3f:28:2a:11:d4:ed:78:46:61:c1:
0f:a6:37:31:3c:78:38:0e:3f:0d:8d:ca:3c:ef:24:c8:53:d1:
0c:62:db:eb:14:d4:de:a3:ee:be:cd:26:fe:fd:74:51:48:ff:
b9:7f:a2:7b:16:86:0f:29:b4:e4:1e:17:f6:81:d7:85:13:15:
48:ec:7b:fa:c0:73:94:e6:cd:9e:42:5d:d7:a3:02:65:c2:5f:
93:a0:2f:26:26:aa:5c:d4:b8:f0:b3:28:d8:a7:37:f0:74:17:
e6:6b:99:d9:40:d0:6e:6a:e2:9c:3e:91:a0:14:f2:6e:34:e3:
1e:bc:6a:43:1e:cd:27:1e:b6:7f:69:cc:06:35:3b:6e:5c:89:
89:4a:60:39:cc:92:fc:1c:62:40:d4:9e:e4:10:88:35:01:b7:
d9:3c:11:38
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYM3NMoejRRKEL3Ns3ZFUvm/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjOGEzYmM0N2QxM2M4M2Y3ZDFjZjcyYTEzN2UwMDY2Zjgz
ZDA2MDgwHhcNMjIwOTEzMTQxNTQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiY2IwNjg4ZjIwNjA2NTQ0OWE5NWUyNDY0MGQyOWJhMmFjNmEzZTExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt5mFd5CZyyN463UZ1Igaa0Npd0FZ
OFuPPW34XOFFXF52zhpfg2zTo7pTU7v7yLFtzxsIuyb8uayzD3/TNPlzHofMtcOO
ErOyjoAZkcHEpumbZDYYai/eVJ/AEI5Cjxe2ivUbyR1fAXz9Z+QOlx6DdUxBrT6R
y+LxtkFlLd9o6Mum8F/44qgDMaTxBkCMSVjRdZ7Wt82OvLzE2QYKFf+0W9zQ1Coq
EDOgEPXL25EVHMTRxSbNekSHxZMFDt7m6I9++ujB9El/YM6uV4pD4j+OD+O8UPmg
omtcCsNWGp6xSRJIOGIEpMSx1HhnfzQsqNn0xzVR3jM4RNrDRhGzOaaxdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLywaI8gYGVEmpXiRkDSm6Ksaj4RMB8GA1UdIwQY
MBaAFLyKO8R9E8g/fRz3KhN+AGb4PQYIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdklvN3hIMFR5RDk5SFBjcUUzNEFadmc5QmdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy8wZWU5MjEtYTcyMS00ZjA5LTgwZjIt
NzExM2ZjMWI4NjViLzEvdkxCb2p5QmdaVVNhbGVKR1FOS2JvcXhxUGhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy8wZWU5MjEtYTcyMS00ZjA5LTgwZjItNzExM2ZjMWI4NjVi
LzEvdklvN3hIMFR5RDk5SFBjcUUzNEFadmc5QmdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD1Gg4MA0G
CSqGSIb3DQEBCwUAA4IBAQAdNallTC9iohA8KTv0muugRxfsr+WLZ5WduixDZpnV
JmqmTY7k1SRwOiICSPLwslloFu/iH23ypLIuaFzGt6KOUKTNME8nffKZL/vn9yOv
B7KdYQKio0/YC94yE7RlxaDnvz8oKhHU7XhGYcEPpjcxPHg4Dj8Njco87yTIU9EM
YtvrFNTeo+6+zSb+/XRRSP+5f6J7FoYPKbTkHhf2gdeFExVI7Hv6wHOU5s2eQl3X
owJlwl+ToC8mJqpc1LjwsyjYpzfwdBfma5nZQNBuauKcPpGgFPJuNOMevGpDHs0n
HrZ/acwGNTtuXImJSmA5zJL8HGJA1J7kEIg1AbfZPBE4
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:23 2025 by rpki-client