Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/4ac957-4183-49f3-bfbe-837c5e12bd04/1/DBbYjvIHotozl-zdDBdribldd5M.roa
File: DBbYjvIHotozl-zdDBdribldd5M.roa (raw, json)
Hash identifier: CxeQ7VU8lxzfmqWvvAA2fbUI7UTCDbdE4/hkN2H95NE=
Subject key identifier: 0C:16:D8:8E:F2:07:A2:DA:33:97:EC:DD:0C:17:6B:89:B9:5D:77:93
Certificate issuer: /CN=6992125e3d53cc481336105483fcff701fda1bb3
Certificate serial: 097A007D
Authority key identifier: 69:92:12:5E:3D:53:CC:48:13:36:10:54:83:FC:FF:70:1F:DA:1B:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZISXj1TzEgTNhBUg_z_cB_aG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/4ac957-4183-49f3-bfbe-837c5e12bd04/1/DBbYjvIHotozl-zdDBdribldd5M.roa
Signing time: Sat 01 Jan 2022 10:57:07 +0000
ROA not before: Sat 01 Jan 2022 10:57:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209761
IP address blocks: 213.226.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158990461 (0x97a007d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6992125e3d53cc481336105483fcff701fda1bb3
Validity
Not Before: Jan 1 10:57:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c16d88ef207a2da3397ecdd0c176b89b95d7793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fe:34:87:0a:ae:9c:de:8e:fa:f6:42:4d:aa:
37:cc:e0:83:b1:4a:3e:ef:13:f9:a8:5b:86:96:c0:
7a:06:bd:a9:52:20:f9:c0:77:18:03:83:90:61:71:
4d:72:30:8c:77:38:8f:cd:f9:ee:4b:86:3f:3f:51:
6e:c1:08:37:a3:fa:73:b5:1e:ef:08:43:62:4e:e0:
34:f3:f2:68:0f:64:7a:2e:57:b5:b5:bb:f0:9c:0e:
d4:ca:19:39:dc:59:40:0a:7a:ce:52:4e:47:89:d3:
ef:31:15:d1:e3:c4:06:0c:78:3c:49:3c:33:7f:9d:
77:b0:c7:6d:df:5a:9b:bd:62:45:d8:80:d6:8a:d6:
ea:47:93:e4:a8:0b:47:70:8e:27:b1:f5:10:8b:02:
b0:45:b7:59:81:ad:73:64:81:08:ea:5b:7d:99:a7:
f1:fb:bc:b6:3a:93:2f:46:0e:58:10:ce:ae:ad:ce:
cd:21:aa:89:fd:c5:ff:57:68:c0:e8:f7:7e:f4:de:
19:4a:70:5e:1a:ed:9c:73:cc:11:30:0a:9c:80:31:
b0:f3:ad:73:f6:40:5c:ea:6a:1e:75:03:5c:64:a4:
a0:b4:bd:00:e8:6a:a8:98:fb:e0:fe:7c:ee:25:c5:
61:e4:a3:f9:83:a9:a0:9a:e4:b7:63:20:20:35:a3:
6a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:16:D8:8E:F2:07:A2:DA:33:97:EC:DD:0C:17:6B:89:B9:5D:77:93
X509v3 Authority Key Identifier:
keyid:69:92:12:5E:3D:53:CC:48:13:36:10:54:83:FC:FF:70:1F:DA:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZISXj1TzEgTNhBUg_z_cB_aG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4ac957-4183-49f3-bfbe-837c5e12bd04/1/DBbYjvIHotozl-zdDBdribldd5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4ac957-4183-49f3-bfbe-837c5e12bd04/1/aZISXj1TzEgTNhBUg_z_cB_aG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.226.88.0/22
Signature Algorithm: sha256WithRSAEncryption
41:dd:84:2c:f7:8d:82:90:a6:9b:ed:de:33:fc:ba:54:91:90:
d7:49:7f:a2:26:15:31:64:78:7f:9a:4c:3b:72:19:ec:d9:81:
c8:c6:7c:df:5c:3f:d4:33:0a:48:39:6f:d6:cb:7e:cc:eb:04:
90:4c:72:1e:44:6a:e5:fe:d4:dc:cb:52:73:93:c3:5d:1c:4e:
49:73:3e:f3:1e:73:51:a1:b5:d8:91:f9:ba:de:f9:74:47:85:
7d:53:07:37:dd:e9:9f:e7:16:8a:b7:98:82:02:66:5d:a6:b5:
b0:7a:7a:ca:1f:55:2a:f5:6e:93:41:5c:9f:8e:26:4c:f6:a8:
a3:d9:87:ad:7d:02:34:7a:d5:77:71:22:e1:4d:13:90:48:3e:
41:61:96:37:22:1a:83:31:f5:00:e4:84:b7:5d:06:17:d1:7b:
c7:31:90:89:8f:ae:9c:42:1a:3b:83:94:55:2f:41:65:5c:0b:
5d:9d:79:9c:5c:f3:3a:f0:2c:2c:83:bf:da:c9:4f:a0:66:5b:
57:ae:39:37:a2:5a:46:a1:44:2e:c7:a8:6b:d1:d1:60:c1:6e:
24:26:c0:9d:40:36:f8:1f:a1:7c:e8:6b:a8:cf:88:ab:02:f5:
08:f2:67:9a:5d:f3:67:20:b8:90:2e:0d:fd:05:19:56:57:df:
54:21:81:ea
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECXoAfTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
OTkyMTI1ZTNkNTNjYzQ4MTMzNjEwNTQ4M2ZjZmY3MDFmZGExYmIzMB4XDTIyMDEw
MTEwNTcwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGMxNmQ4OGVmMjA3
YTJkYTMzOTdlY2RkMGMxNzZiODliOTVkNzc5MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMz+NIcKrpzejvr2Qk2qN8zgg7FKPu8T+ahbhpbAega9qVIg
+cB3GAODkGFxTXIwjHc4j8357kuGPz9RbsEIN6P6c7Ue7whDYk7gNPPyaA9kei5X
tbW78JwO1MoZOdxZQAp6zlJOR4nT7zEV0ePEBgx4PEk8M3+dd7DHbd9am71iRdiA
1orW6keT5KgLR3COJ7H1EIsCsEW3WYGtc2SBCOpbfZmn8fu8tjqTL0YOWBDOrq3O
zSGqif3F/1dowOj3fvTeGUpwXhrtnHPMETAKnIAxsPOtc/ZAXOpqHnUDXGSkoLS9
AOhqqJj74P587iXFYeSj+YOpoJrkt2MgIDWjalUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQMFtiO8gei2jOX7N0MF2uJuV13kzAfBgNVHSMEGDAWgBRpkhJePVPMSBM2
EFSD/P9wH9obszAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2FaSVNYajFUekVnVE5oQlVnX3pfY0JfYUc3TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjMvNGFjOTU3LTQxODMtNDlmMy1iZmJlLTgzN2M1ZTEyYmQwNC8x
L0RCYllqdklIb3RvemwtemREQmRyaWJsZGQ1TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMv
NGFjOTU3LTQxODMtNDlmMy1iZmJlLTgzN2M1ZTEyYmQwNC8xL2FaSVNYajFUekVn
VE5oQlVnX3pfY0JfYUc3TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtXiWDANBgkqhkiG9w0BAQsFAAOC
AQEAQd2ELPeNgpCmm+3eM/y6VJGQ10l/oiYVMWR4f5pMO3IZ7NmByMZ831w/1DMK
SDlv1st+zOsEkExyHkRq5f7U3MtSc5PDXRxOSXM+8x5zUaG12JH5ut75dEeFfVMH
N93pn+cWireYggJmXaa1sHp6yh9VKvVuk0Fcn44mTPaoo9mHrX0CNHrVd3Ei4U0T
kEg+QWGWNyIagzH1AOSEt10GF9F7xzGQiY+unEIaO4OUVS9BZVwLXZ15nFzzOvAs
LIO/2slPoGZbV645N6JaRqFELseoa9HRYMFuJCbAnUA2+B+hfOhrqM+IqwL1CPJn
ml3zZyC4kC4N/QUZVlffVCGB6g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:29 2024 by rpki-client on console-fra.rpki-client.org