Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/iBCUbjC-_O3vxtkyZOtdXMV6TOo.roa
File: iBCUbjC-_O3vxtkyZOtdXMV6TOo.roa (raw, json)
Hash identifier: Z5YclbQEeEwSJiy5HbjZLh9DfbUVOZ55QNDFdOkhIns=
Subject key identifier: 88:10:94:6E:30:BE:FC:ED:EF:C6:D9:32:64:EB:5D:5C:C5:7A:4C:EA
Certificate issuer: /CN=cbdc25ea3a0a729ed8e6e9a73da896d84f95439c
Certificate serial: 12D66B9B
Authority key identifier: CB:DC:25:EA:3A:0A:72:9E:D8:E6:E9:A7:3D:A8:96:D8:4F:95:43:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9wl6joKcp7Y5umnPaiW2E-VQ5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/iBCUbjC-_O3vxtkyZOtdXMV6TOo.roa
Signing time: Sun 13 Feb 2022 13:43:43 +0000
ROA not before: Sun 13 Feb 2022 13:43:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12849
IP address blocks: 213.57.16.0/22 maxlen: 22
141.226.236.0/23 maxlen: 23
141.226.238.0/23 maxlen: 23
213.57.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 316042139 (0x12d66b9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbdc25ea3a0a729ed8e6e9a73da896d84f95439c
Validity
Not Before: Feb 13 13:43:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8810946e30befcedefc6d93264eb5d5cc57a4cea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:91:70:96:b8:67:74:58:80:24:a5:ea:81:97:
c2:1a:e6:d4:ca:50:6e:f5:b8:2e:62:68:03:51:7c:
62:6b:47:fb:9d:67:7e:97:a6:3f:8d:f9:b8:61:ca:
3e:df:a1:59:66:55:e3:bd:f2:5f:f0:9a:9e:05:a0:
d6:bd:fe:26:06:b8:13:86:c1:cf:1f:2b:16:c1:1c:
92:35:fa:2d:4b:11:96:6f:6f:ff:e1:aa:81:27:9c:
89:21:31:a8:52:75:55:26:4c:f4:98:93:60:18:98:
a9:a2:d3:0d:c2:43:e0:c7:7d:b2:ce:21:f4:16:6d:
06:dd:16:e7:18:0d:1c:56:60:64:87:1c:74:91:03:
3d:66:90:6b:83:6d:69:a9:88:a5:6c:13:b3:61:68:
db:0b:c6:4c:78:33:be:22:f8:43:d5:62:61:28:88:
db:a7:d4:8c:06:e5:ed:8e:d9:a0:f8:53:58:eb:45:
e3:5a:e9:13:de:6d:58:6e:ec:2c:4a:8f:5c:5e:54:
ba:5e:2b:ef:78:ee:c3:98:6b:b0:50:cd:fb:77:0c:
86:0f:b6:2d:29:69:a0:70:c6:98:ab:05:fc:18:92:
d1:25:e5:43:2f:23:8c:1f:dc:ab:e8:d1:20:b8:c1:
36:f7:8a:6a:c9:da:00:47:0d:63:fb:02:56:fc:74:
56:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:10:94:6E:30:BE:FC:ED:EF:C6:D9:32:64:EB:5D:5C:C5:7A:4C:EA
X509v3 Authority Key Identifier:
keyid:CB:DC:25:EA:3A:0A:72:9E:D8:E6:E9:A7:3D:A8:96:D8:4F:95:43:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9wl6joKcp7Y5umnPaiW2E-VQ5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/iBCUbjC-_O3vxtkyZOtdXMV6TOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/y9wl6joKcp7Y5umnPaiW2E-VQ5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.236.0/22
213.57.10.0/24
213.57.16.0/22
Signature Algorithm: sha256WithRSAEncryption
67:40:09:b6:26:4b:43:03:fa:43:9b:aa:73:7a:fe:2a:1b:66:
3b:27:3e:e2:41:d5:53:7b:1d:4e:ff:89:e9:dd:14:65:b4:0d:
d4:91:52:c3:c0:ab:6d:ec:2f:af:95:97:b1:1b:72:0e:36:31:
1d:a9:29:06:5d:af:81:dd:e9:4b:69:79:3f:66:de:95:f9:d7:
89:a5:b0:98:6e:6a:6a:5b:5e:1f:95:89:02:e7:2a:1b:76:76:
4f:4d:d5:fd:fb:b0:b9:ac:b0:57:ab:15:e6:01:af:64:f4:1b:
83:e8:ae:ea:d2:04:d5:ab:ba:8f:a3:87:6d:a1:28:82:cb:33:
06:ed:96:6d:df:aa:f1:47:ee:d4:0e:00:65:38:62:03:eb:d6:
4b:02:23:95:1a:e6:e0:b1:2d:fb:50:84:d4:74:64:9e:c2:42:
3a:7c:40:c4:12:20:35:78:68:42:54:b2:a6:cd:27:c8:c2:61:
d5:b4:d8:a6:e7:e8:f4:5f:dc:2e:82:e4:2f:19:ba:94:7f:d0:
4c:89:be:7c:dc:36:04:a2:2e:28:5a:2d:9d:14:14:f6:60:d8:
0f:33:8a:d7:8c:f0:44:bd:7c:05:0e:3c:9f:30:e4:d9:cd:aa:
91:1f:47:62:3c:a9:6b:e5:ec:da:f8:7e:c5:92:85:1b:31:d7:
12:28:c0:a1
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEEtZrmzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
YmRjMjVlYTNhMGE3MjllZDhlNmU5YTczZGE4OTZkODRmOTU0MzljMB4XDTIyMDIx
MzEzNDM0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODgxMDk0NmUzMGJl
ZmNlZGVmYzZkOTMyNjRlYjVkNWNjNTdhNGNlYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ6RcJa4Z3RYgCSl6oGXwhrm1MpQbvW4LmJoA1F8YmtH+51n
fpemP435uGHKPt+hWWZV473yX/CangWg1r3+Jga4E4bBzx8rFsEckjX6LUsRlm9v
/+GqgSeciSExqFJ1VSZM9JiTYBiYqaLTDcJD4Md9ss4h9BZtBt0W5xgNHFZgZIcc
dJEDPWaQa4NtaamIpWwTs2Fo2wvGTHgzviL4Q9ViYSiI26fUjAbl7Y7ZoPhTWOtF
41rpE95tWG7sLEqPXF5Uul4r73juw5hrsFDN+3cMhg+2LSlpoHDGmKsF/BiS0SXl
Qy8jjB/cq+jRILjBNveKasnaAEcNY/sCVvx0VsUCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBSIEJRuML787e/G2TJk611cxXpM6jAfBgNVHSMEGDAWgBTL3CXqOgpyntjm
6ac9qJbYT5VDnDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3k5d2w2am9LY3A3WTV1bW5QYWlXMkUtVlE1dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjUvNWRhMWU2LTI0NmYtNDQ5My05OTJlLTIyYzc5YWVhMTI3Yy8x
L2lCQ1ViakMtX08zdnh0a3laT3RkWE1WNlRPby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjUv
NWRhMWU2LTI0NmYtNDQ5My05OTJlLTIyYzc5YWVhMTI3Yy8xL3k5d2w2am9LY3A3
WTV1bW5QYWlXMkUtVlE1dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAo3i7AMEANU5CgMEAtU5EDANBgkq
hkiG9w0BAQsFAAOCAQEAZ0AJtiZLQwP6Q5uqc3r+KhtmOyc+4kHVU3sdTv+J6d0U
ZbQN1JFSw8Crbewvr5WXsRtyDjYxHakpBl2vgd3pS2l5P2belfnXiaWwmG5qalte
H5WJAucqG3Z2T03V/fuwuaywV6sV5gGvZPQbg+iu6tIE1au6j6OHbaEogsszBu2W
bd+q8Ufu1A4AZThiA+vWSwIjlRrm4LEt+1CE1HRknsJCOnxAxBIgNXhoQlSyps0n
yMJh1bTYpufo9F/cLoLkLxm6lH/QTIm+fNw2BKIuKFotnRQU9mDYDzOK14zwRL18
BQ48nzDk2c2qkR9HYjypa+Xs2vh+xZKFGzHXEijAoQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:22 2025 by rpki-client