Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/f75c7d-e5b3-442f-a084-fd49eb3f19b1/1/O57p7yhgEKrYKppv1H46JPa98eE.roa
File: O57p7yhgEKrYKppv1H46JPa98eE.roa (raw, json)
Hash identifier: k9vq2zlCXlm4+rMR1EzTY+GBNipOoKWzxLhU9CfBKg4=
Subject key identifier: 3B:9E:E9:EF:28:60:10:AA:D8:2A:9A:6F:D4:7E:3A:24:F6:BD:F1:E1
Certificate issuer: /CN=e0691dbafa3a8de070b07022de9adf74341fb4f2
Certificate serial: 633E6B
Authority key identifier: E0:69:1D:BA:FA:3A:8D:E0:70:B0:70:22:DE:9A:DF:74:34:1F:B4:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Gkduvo6jeBwsHAi3prfdDQftPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/f75c7d-e5b3-442f-a084-fd49eb3f19b1/1/O57p7yhgEKrYKppv1H46JPa98eE.roa
Signing time: Sat 01 Jan 2022 00:57:14 +0000
ROA not before: Sat 01 Jan 2022 00:57:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210474
IP address blocks: 212.23.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6504043 (0x633e6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0691dbafa3a8de070b07022de9adf74341fb4f2
Validity
Not Before: Jan 1 00:57:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b9ee9ef286010aad82a9a6fd47e3a24f6bdf1e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:9a:5e:a9:57:24:96:4c:dc:88:78:2c:fe:eb:
d6:70:9d:37:1d:e3:b2:58:51:37:d9:c0:4e:a8:55:
f2:a3:ac:f2:e2:56:84:47:73:d1:21:10:9a:38:26:
16:78:46:d4:f6:c7:fb:26:b5:24:26:54:c8:19:26:
69:c1:2c:68:b8:b2:83:1e:0d:fa:86:4b:07:6b:95:
3e:b5:22:2b:ce:8a:9b:10:21:b0:1c:d9:25:0f:8d:
32:f3:cd:22:72:d5:4f:89:18:af:b3:1e:c9:a6:14:
f2:29:73:26:02:a9:6a:00:39:94:7b:79:b6:ac:a1:
c9:52:c8:3a:39:01:72:b7:d5:c7:a7:f1:2e:3d:00:
09:84:2b:89:07:5c:fd:20:e2:75:44:53:86:3c:05:
ad:3a:03:9b:0d:dc:c5:0a:cc:0b:a5:5b:7b:c5:24:
8b:2c:e5:9d:f2:3f:45:2d:40:6f:cb:b4:a0:44:fa:
e1:a4:f4:a1:3e:7d:4b:bb:be:2f:7c:04:66:1f:de:
cc:35:fa:ef:10:ac:71:df:6b:89:cb:2b:c3:25:b0:
9a:73:c0:b7:e9:60:c2:a2:20:f0:48:92:1b:34:fe:
e0:d6:27:d6:23:ed:24:42:f9:85:ff:b8:d2:a5:ce:
27:14:a5:54:81:1c:ea:5e:af:91:0d:26:0d:a8:d7:
25:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:9E:E9:EF:28:60:10:AA:D8:2A:9A:6F:D4:7E:3A:24:F6:BD:F1:E1
X509v3 Authority Key Identifier:
keyid:E0:69:1D:BA:FA:3A:8D:E0:70:B0:70:22:DE:9A:DF:74:34:1F:B4:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Gkduvo6jeBwsHAi3prfdDQftPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/f75c7d-e5b3-442f-a084-fd49eb3f19b1/1/O57p7yhgEKrYKppv1H46JPa98eE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/f75c7d-e5b3-442f-a084-fd49eb3f19b1/1/4Gkduvo6jeBwsHAi3prfdDQftPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.216.0/24
Signature Algorithm: sha256WithRSAEncryption
08:b5:70:2a:4d:bb:ba:bd:dd:73:a5:1e:ec:3f:f9:1b:bb:78:
61:63:fd:ef:7b:8b:10:e0:da:a7:78:bd:8d:57:34:c1:23:fc:
41:43:3f:39:8a:14:2e:31:85:e2:7c:0a:35:65:f1:ab:6f:fe:
cc:5b:e9:d3:63:f7:24:d6:31:24:88:ed:19:c4:04:fe:78:67:
58:40:de:18:0a:6c:f3:55:19:53:b2:4c:aa:4c:af:43:d5:21:
05:e3:fb:f2:34:f2:d3:9d:78:3d:7e:f0:e5:c7:a0:6e:99:1c:
92:f6:27:3b:6c:53:31:a0:5f:12:f5:42:6a:21:28:0f:d9:01:
88:71:80:07:fa:76:7e:84:86:d6:d7:71:f1:18:2b:e4:8a:f6:
27:d1:03:a3:bf:c4:46:52:81:f1:78:00:4e:e4:c9:e0:86:41:
3f:15:50:2a:92:0e:bd:7d:2e:22:c2:b7:84:7a:24:3a:d2:f8:
ed:ed:f9:1f:f4:9e:a4:87:fd:0b:bf:e5:b6:30:f3:e8:18:6c:
96:b2:aa:b6:47:00:10:16:83:ec:8c:e5:df:4d:9c:6e:3d:da:
a9:26:78:19:67:c3:e3:fb:4c:f8:bc:9d:bb:89:3b:7c:49:e8:
bf:1e:fe:24:88:71:21:f8:2a:bb:c3:c2:40:0f:3d:f5:75:9e:
9e:5f:45:d5
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDYz5rMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGUw
NjkxZGJhZmEzYThkZTA3MGIwNzAyMmRlOWFkZjc0MzQxZmI0ZjIwHhcNMjIwMTAx
MDA1NzE0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygzYjllZTllZjI4NjAx
MGFhZDgyYTlhNmZkNDdlM2EyNGY2YmRmMWUxMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA8JpeqVcklkzciHgs/uvWcJ03HeOyWFE32cBOqFXyo6zy4laE
R3PRIRCaOCYWeEbU9sf7JrUkJlTIGSZpwSxouLKDHg36hksHa5U+tSIrzoqbECGw
HNklD40y880ictVPiRivsx7JphTyKXMmAqlqADmUe3m2rKHJUsg6OQFyt9XHp/Eu
PQAJhCuJB1z9IOJ1RFOGPAWtOgObDdzFCswLpVt7xSSLLOWd8j9FLUBvy7SgRPrh
pPShPn1Lu74vfARmH97MNfrvEKxx32uJyyvDJbCac8C36WDCoiDwSJIbNP7g1ifW
I+0kQvmF/7jSpc4nFKVUgRzqXq+RDSYNqNclvwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFDue6e8oYBCq2Cqab9R+OiT2vfHhMB8GA1UdIwQYMBaAFOBpHbr6Oo3gcLBw
It6a33Q0H7TyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NEdrZHV2bzZqZUJ3c0hBaTNwcmZkRFFmdFBJLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9lNS9mNzVjN2QtZTViMy00NDJmLWEwODQtZmQ0OWViM2YxOWIxLzEv
TzU3cDd5aGdFS3JZS3BwdjFINDZKUGE5OGVFLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9m
NzVjN2QtZTViMy00NDJmLWEwODQtZmQ0OWViM2YxOWIxLzEvNEdrZHV2bzZqZUJ3
c0hBaTNwcmZkRFFmdFBJLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BfYMA0GCSqGSIb3DQEBCwUAA4IB
AQAItXAqTbu6vd1zpR7sP/kbu3hhY/3ve4sQ4NqneL2NVzTBI/xBQz85ihQuMYXi
fAo1ZfGrb/7MW+nTY/ck1jEkiO0ZxAT+eGdYQN4YCmzzVRlTskyqTK9D1SEF4/vy
NPLTnXg9fvDlx6BumRyS9ic7bFMxoF8S9UJqISgP2QGIcYAH+nZ+hIbW13HxGCvk
ivYn0QOjv8RGUoHxeABO5MnghkE/FVAqkg69fS4iwreEeiQ60vjt7fkf9J6kh/0L
v+W2MPPoGGyWsqq2RwAQFoPsjOXfTZxuPdqpJngZZ8Pj+0z4vJ27iTt8Sei/Hv4k
iHEh+Cq7w8JADz31dZ6eX0XV
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org