Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/Jy-ymqjVegSfE9OJb_W3ccYGAtM.roa
File: Jy-ymqjVegSfE9OJb_W3ccYGAtM.roa (raw, json)
Hash identifier: lJ8WsXD6YLLz5Qerlc3YwxWT8wgHiotpv31iJHA+sGY=
Subject key identifier: 27:2F:B2:9A:A8:D5:7A:04:9F:13:D3:89:6F:F5:B7:71:C6:06:02:D3
Certificate issuer: /CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Certificate serial: 07E60E4A
Authority key identifier: 66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/Jy-ymqjVegSfE9OJb_W3ccYGAtM.roa
Signing time: Sat 01 Jan 2022 02:52:27 +0000
ROA not before: Sat 01 Jan 2022 02:52:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207617
IP address blocks: 212.64.213.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132517450 (0x7e60e4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Validity
Not Before: Jan 1 02:52:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=272fb29aa8d57a049f13d3896ff5b771c60602d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:8e:9d:5e:c3:44:ca:f6:8b:87:56:f8:1a:01:
94:be:37:32:30:fe:c9:95:d9:eb:d9:58:c5:42:6a:
3d:10:39:74:f3:5b:07:7f:b3:30:e9:4c:14:f5:5a:
89:a3:1d:e2:9b:6d:4a:36:fe:4e:62:1b:af:4a:61:
6b:68:b6:a6:72:2a:5b:f5:39:43:a8:31:58:57:72:
3b:63:04:67:a5:6b:3f:b0:54:fa:43:65:c4:ee:fd:
ac:07:8a:af:41:6f:d3:2a:9f:35:c1:1b:41:a3:76:
16:8c:31:73:db:ff:60:aa:3b:ba:3e:0d:9e:2b:2d:
e0:eb:a3:2b:4a:2f:35:9b:e9:fe:5f:b2:eb:4c:e7:
5d:77:22:b4:92:5f:7c:86:43:29:ab:8d:c0:9c:36:
39:8f:38:21:e6:c4:96:01:83:b7:0b:ff:8b:de:e5:
42:7c:74:48:38:dc:84:2c:de:4d:c0:c9:dc:63:c2:
b6:43:3f:76:f5:a0:7d:59:29:eb:e5:ff:5d:9b:46:
b0:e7:d3:2e:4d:76:5d:ee:b4:63:08:5d:4b:16:03:
ba:c2:1c:e4:4e:54:e1:aa:ee:26:12:7c:c6:85:6f:
37:bd:92:25:c0:4d:eb:b0:11:5c:2e:7f:f3:c6:9a:
bd:b8:1a:b1:0e:b7:51:6e:f0:48:4a:83:4d:eb:76:
71:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:2F:B2:9A:A8:D5:7A:04:9F:13:D3:89:6F:F5:B7:71:C6:06:02:D3
X509v3 Authority Key Identifier:
keyid:66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/Jy-ymqjVegSfE9OJb_W3ccYGAtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/ZkD4nOImRblyl9eANybcL7Dl9Lk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.64.213.0/24
Signature Algorithm: sha256WithRSAEncryption
35:93:1c:68:f6:d9:7c:6d:3d:95:07:06:99:94:a6:72:dd:7c:
ac:1d:0d:f8:b2:93:2c:0f:5f:1c:e0:6d:c1:ea:38:65:48:22:
f8:25:9a:57:5a:8b:a7:eb:59:ff:e0:74:52:00:2f:bf:7b:21:
60:c2:b5:2e:2a:bd:fb:a8:bd:da:ac:45:0e:c9:d4:71:f5:b8:
41:89:c4:03:69:4a:65:80:e9:bd:f0:e3:a6:59:ec:36:e1:20:
01:59:b0:f6:d9:3e:cb:e9:04:88:6a:56:ab:da:a2:5c:97:17:
f8:16:ff:ee:18:b4:b3:3b:f0:cf:38:eb:01:ca:6f:a5:0b:85:
42:e2:ba:1b:14:46:68:fc:d1:58:8d:16:35:f2:c7:21:5e:de:
25:e9:b7:75:5e:99:d3:64:eb:69:e7:42:17:c9:9e:60:d5:43:
cd:2e:7c:d1:08:2e:de:18:55:96:30:80:b3:f9:d1:c4:31:b5:
38:39:65:b0:8d:bb:e3:6d:ec:fb:23:da:50:3c:ef:0d:d5:05:
38:f8:a7:61:4b:bb:5e:8e:76:ef:88:94:b1:b4:4f:38:56:4d:
ed:fd:4d:b7:6e:df:3c:fb:d6:99:d8:4d:be:0b:17:f6:63:d9:
0d:16:de:4c:d2:44:39:64:c6:53:42:04:c6:d1:d2:25:d8:64:
ae:b7:91:dc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB+YOSjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NjQwZjg5Y2UyMjY0NWI5NzI5N2Q3ODAzNzI2ZGMyZmIwZTVmNGI5MB4XDTIyMDEw
MTAyNTIyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjcyZmIyOWFhOGQ1
N2EwNDlmMTNkMzg5NmZmNWI3NzFjNjA2MDJkMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANyOnV7DRMr2i4dW+BoBlL43MjD+yZXZ69lYxUJqPRA5dPNb
B3+zMOlMFPVaiaMd4pttSjb+TmIbr0pha2i2pnIqW/U5Q6gxWFdyO2MEZ6VrP7BU
+kNlxO79rAeKr0Fv0yqfNcEbQaN2Fowxc9v/YKo7uj4Nnist4OujK0ovNZvp/l+y
60znXXcitJJffIZDKauNwJw2OY84IebElgGDtwv/i97lQnx0SDjchCzeTcDJ3GPC
tkM/dvWgfVkp6+X/XZtGsOfTLk12Xe60YwhdSxYDusIc5E5U4aruJhJ8xoVvN72S
JcBN67ARXC5/88aavbgasQ63UW7wSEqDTet2cRUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQnL7KaqNV6BJ8T04lv9bdxxgYC0zAfBgNVHSMEGDAWgBRmQPic4iZFuXKX
14A3JtwvsOX0uTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1prRDRuT0ltUmJseWw5ZUFOeWJjTDdEbDlMay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmMvYzNhZDJlLWI1MmUtNDQxYy04OWJhLTQ0YWI3YTlkN2RlYS8x
L0p5LXltcWpWZWdTZkU5T0piX1czY2NZR0F0TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmMv
YzNhZDJlLWI1MmUtNDQxYy04OWJhLTQ0YWI3YTlkN2RlYS8xL1prRDRuT0ltUmJs
eWw5ZUFOeWJjTDdEbDlMay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANRA1TANBgkqhkiG9w0BAQsFAAOC
AQEANZMcaPbZfG09lQcGmZSmct18rB0N+LKTLA9fHOBtweo4ZUgi+CWaV1qLp+tZ
/+B0UgAvv3shYMK1Liq9+6i92qxFDsnUcfW4QYnEA2lKZYDpvfDjplnsNuEgAVmw
9tk+y+kEiGpWq9qiXJcX+Bb/7hi0szvwzzjrAcpvpQuFQuK6GxRGaPzRWI0WNfLH
IV7eJem3dV6Z02TraedCF8meYNVDzS580Qgu3hhVljCAs/nRxDG1ODllsI27423s
+yPaUDzvDdUFOPinYUu7Xo5274iUsbRPOFZN7f1Nt27fPPvWmdhNvgsX9mPZDRbe
TNJEOWTGU0IExtHSJdhkrreR3A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:48 2024 by rpki-client on console-fra.rpki-client.org