Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/3y53L6tHa9X8N64LYkjmW7c2z5U.roa
File: 3y53L6tHa9X8N64LYkjmW7c2z5U.roa (raw, json)
Hash identifier: w1yeKC7ZhWFI9u7nhRDoYjQ0caIaYJAjlJdifa0M/Ng=
Subject key identifier: DF:2E:77:2F:AB:47:6B:D5:FC:37:AE:0B:62:48:E6:5B:B7:36:CF:95
Certificate issuer: /CN=75e8b2b28bba3dc4e861d5cbf5bc1cc98c89e576
Certificate serial: 018438020FB597A4AE2EE50937369810300D
Authority key identifier: 75:E8:B2:B2:8B:BA:3D:C4:E8:61:D5:CB:F5:BC:1C:C9:8C:89:E5:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/deiysou6PcToYdXL9bwcyYyJ5XY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/3y53L6tHa9X8N64LYkjmW7c2z5U.roa
Signing time: Wed 02 Nov 2022 11:02:49 +0000
ROA not before: Wed 02 Nov 2022 11:02:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3561
IP address blocks: 213.109.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:38:02:0f:b5:97:a4:ae:2e:e5:09:37:36:98:10:30:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75e8b2b28bba3dc4e861d5cbf5bc1cc98c89e576
Validity
Not Before: Nov 2 11:02:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df2e772fab476bd5fc37ae0b6248e65bb736cf95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:af:a8:8c:01:81:df:f9:92:12:55:14:a3:29:
c4:5d:f1:13:34:c1:e4:4e:84:4e:a2:06:34:64:13:
72:2e:61:7f:53:d1:2a:e0:6d:6e:35:38:c8:92:cc:
9b:01:5e:d4:e5:93:0b:ce:76:04:a9:3b:f8:02:67:
4b:88:60:f4:49:2e:b3:b5:95:d4:2f:89:5d:0f:25:
63:e2:05:3b:c4:90:b5:f8:c5:9e:ed:a9:49:fd:0a:
4d:b2:71:87:ad:6a:e1:a9:31:35:92:9d:84:3b:0d:
ca:d1:34:06:85:7a:27:da:19:b9:19:f9:a1:bb:99:
5e:82:69:90:a6:f0:fd:8e:a4:fa:4a:4d:54:d2:d3:
a4:ef:95:1c:62:1d:5e:74:34:11:81:82:08:d7:b3:
ec:47:93:60:47:a5:aa:c1:df:21:1d:29:81:5d:68:
12:0a:8b:95:c1:d7:06:02:fc:d2:27:27:71:d1:cb:
92:40:22:e8:a3:98:38:0b:10:39:3c:09:fb:74:39:
3f:62:50:7d:75:bd:0b:65:b9:03:dd:48:8f:e8:72:
ac:f5:70:e9:8a:57:32:23:53:77:b1:41:73:68:09:
55:32:62:cf:a2:83:ba:38:1d:bc:fa:9f:70:46:24:
54:19:89:1a:a0:8c:2d:94:b1:17:1d:11:7c:ae:30:
29:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:2E:77:2F:AB:47:6B:D5:FC:37:AE:0B:62:48:E6:5B:B7:36:CF:95
X509v3 Authority Key Identifier:
keyid:75:E8:B2:B2:8B:BA:3D:C4:E8:61:D5:CB:F5:BC:1C:C9:8C:89:E5:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/deiysou6PcToYdXL9bwcyYyJ5XY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/3y53L6tHa9X8N64LYkjmW7c2z5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/deiysou6PcToYdXL9bwcyYyJ5XY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.207.0/24
Signature Algorithm: sha256WithRSAEncryption
65:b0:d3:02:e9:29:6b:1d:36:8f:bf:51:74:59:de:43:28:d0:
74:8e:57:e6:61:70:63:58:64:6f:9f:fb:e1:57:6b:3e:1f:99:
50:97:0a:a7:62:ea:47:9e:86:bc:fc:21:aa:27:bd:74:fd:f0:
75:f9:5b:07:49:a4:6b:3e:6a:0b:dd:d5:f0:b7:a5:a1:55:2b:
ab:a2:1a:d8:7b:74:39:46:ca:16:0f:7f:cd:e8:04:e3:2b:8d:
40:a0:3a:1c:ad:81:be:32:09:58:9f:07:ce:c0:07:8e:6d:6e:
62:1f:01:32:2f:7e:67:b3:96:34:02:a7:b0:db:17:d2:1c:ea:
60:ac:8d:74:c7:39:24:7a:68:e1:98:3f:79:e5:be:b6:5b:0b:
42:2a:02:8b:15:47:06:e5:e8:ba:0b:b6:83:8c:06:9e:97:92:
44:ef:2c:00:a9:4f:57:aa:b0:f8:8c:5d:37:36:f1:d7:cf:c3:
6a:99:6a:fa:d7:2a:f1:6f:2f:59:e7:7b:27:49:35:3c:67:04:
f1:a3:71:32:b4:ec:1d:f7:07:bd:dd:fc:36:e2:62:d1:f7:ce:
1c:eb:48:df:c1:bd:80:18:e3:f6:18:07:87:e3:4c:56:d8:b3:
21:a4:ed:58:ae:f2:58:b8:04:3e:e9:fc:5a:15:0c:cf:0d:50:
04:e4:ce:2e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQ4Ag+1l6SuLuUJNzaYEDANMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1ZThiMmIyOGJiYTNkYzRlODYxZDVjYmY1YmMxY2M5OGM4
OWU1NzYwHhcNMjIxMTAyMTEwMjQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjJlNzcyZmFiNDc2YmQ1ZmMzN2FlMGI2MjQ4ZTY1YmI3MzZjZjk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1a+ojAGB3/mSElUUoynEXfETNMHk
ToROogY0ZBNyLmF/U9Eq4G1uNTjIksybAV7U5ZMLznYEqTv4AmdLiGD0SS6ztZXU
L4ldDyVj4gU7xJC1+MWe7alJ/QpNsnGHrWrhqTE1kp2EOw3K0TQGhXon2hm5Gfmh
u5legmmQpvD9jqT6Sk1U0tOk75UcYh1edDQRgYII17PsR5NgR6Wqwd8hHSmBXWgS
CouVwdcGAvzSJydx0cuSQCLoo5g4CxA5PAn7dDk/YlB9db0LZbkD3UiP6HKs9XDp
ilcyI1N3sUFzaAlVMmLPooO6OB28+p9wRiRUGYkaoIwtlLEXHRF8rjApiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN8udy+rR2vV/DeuC2JI5lu3Ns+VMB8GA1UdIwQY
MBaAFHXosrKLuj3E6GHVy/W8HMmMieV2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGVpeXNvdTZQY1RvWWRYTDlid2N5WXlKNVhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC84MGI5MzAtYWQ5Ny00MDNhLTlmZGIt
MDE1NmQwMDI3MmI3LzEvM3k1M0w2dEhhOVg4TjY0TFlram1XN2MyejVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC84MGI5MzAtYWQ5Ny00MDNhLTlmZGItMDE1NmQwMDI3MmI3
LzEvZGVpeXNvdTZQY1RvWWRYTDlid2N5WXlKNVhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1W3PMA0G
CSqGSIb3DQEBCwUAA4IBAQBlsNMC6SlrHTaPv1F0Wd5DKNB0jlfmYXBjWGRvn/vh
V2s+H5lQlwqnYupHnoa8/CGqJ710/fB1+VsHSaRrPmoL3dXwt6WhVSurohrYe3Q5
RsoWD3/N6ATjK41AoDocrYG+MglYnwfOwAeObW5iHwEyL35ns5Y0Aqew2xfSHOpg
rI10xzkkemjhmD955b62WwtCKgKLFUcG5ei6C7aDjAael5JE7ywAqU9XqrD4jF03
NvHXz8NqmWr61yrxby9Z53snSTU8ZwTxo3EytOwd9we93fw24mLR984c60jfwb2A
GOP2GAeH40xW2LMhpO1YrvJYuAQ+6fxaFQzPDVAE5M4u
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:21 2023 by rpki-client on console.sobornost.net