Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ce96f4-d85c-4fc5-9e98-500b8834289e/1/R3C2RGL3Fd0J-wfUrqMFa1bx_2I.roa
File: R3C2RGL3Fd0J-wfUrqMFa1bx_2I.roa (raw, json)
Hash identifier: K9S/WLF56fxqpeAufFk3/POTPsRzMB3HSxRKb9UFQcU=
Subject key identifier: 47:70:B6:44:62:F7:15:DD:09:FB:07:D4:AE:A3:05:6B:56:F1:FF:62
Certificate issuer: /CN=fef329360c1b6fcafbf5253a657e3e9d7f224f7e
Certificate serial: 01853970DC47CAC2A3814C729346BFD17E24
Authority key identifier: FE:F3:29:36:0C:1B:6F:CA:FB:F5:25:3A:65:7E:3E:9D:7F:22:4F:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_vMpNgwbb8r79SU6ZX4-nX8iT34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ce96f4-d85c-4fc5-9e98-500b8834289e/1/R3C2RGL3Fd0J-wfUrqMFa1bx_2I.roa
Signing time: Thu 22 Dec 2022 10:46:15 +0000
ROA not before: Thu 22 Dec 2022 10:46:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212384
IP address blocks: 213.204.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:70:dc:47:ca:c2:a3:81:4c:72:93:46:bf:d1:7e:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fef329360c1b6fcafbf5253a657e3e9d7f224f7e
Validity
Not Before: Dec 22 10:46:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4770b64462f715dd09fb07d4aea3056b56f1ff62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:35:c4:8f:dc:ff:a2:26:b4:71:44:1a:49:59:
db:98:fa:ba:37:81:ef:dc:aa:63:21:e4:2f:49:f3:
80:99:81:60:96:6d:39:40:68:37:e6:b0:40:78:3b:
af:f7:57:ec:0b:9b:66:68:df:96:15:31:c7:c1:fc:
cb:b7:fa:e9:1f:52:4f:76:3a:59:a8:ae:15:74:84:
f8:74:c3:53:9d:a7:9a:0b:ac:8f:43:07:56:3b:1d:
66:b8:c3:5d:f2:57:bb:78:59:27:f9:60:48:ea:1f:
d4:44:6a:8a:42:13:8b:61:fb:08:ff:a5:0a:48:5b:
f7:db:cc:25:33:a6:ac:a7:c0:b7:46:d3:60:c8:7e:
69:93:be:9d:34:79:ba:c5:00:e6:4e:31:b3:ad:3b:
f2:b7:e9:e7:c2:a7:5f:35:00:6f:c1:63:4c:ed:17:
96:40:4d:b4:d9:46:c3:8c:cc:6b:2e:b9:9b:93:09:
20:62:4a:c9:92:8c:d1:1d:88:06:8f:4a:83:c2:fa:
42:fd:d7:5d:4b:e5:38:66:7a:65:7b:48:ac:ef:b6:
c3:71:5e:c8:69:05:53:89:38:93:2d:9e:fe:fc:a3:
44:fc:a8:ac:12:dd:1b:d8:ec:9d:f7:39:64:6a:8e:
db:01:f4:2f:7b:5b:bc:3b:5d:08:85:63:55:55:e0:
57:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:70:B6:44:62:F7:15:DD:09:FB:07:D4:AE:A3:05:6B:56:F1:FF:62
X509v3 Authority Key Identifier:
keyid:FE:F3:29:36:0C:1B:6F:CA:FB:F5:25:3A:65:7E:3E:9D:7F:22:4F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_vMpNgwbb8r79SU6ZX4-nX8iT34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ce96f4-d85c-4fc5-9e98-500b8834289e/1/R3C2RGL3Fd0J-wfUrqMFa1bx_2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ce96f4-d85c-4fc5-9e98-500b8834289e/1/_vMpNgwbb8r79SU6ZX4-nX8iT34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.204.16.0/24
Signature Algorithm: sha256WithRSAEncryption
85:b3:a9:ed:b2:64:11:58:ec:91:5a:8b:43:9c:02:a5:eb:22:
7d:5c:61:c8:a6:e2:4d:b5:83:34:92:8b:7d:1c:92:5f:ad:91:
00:5c:44:cf:3f:54:8c:3a:e4:87:fe:e4:31:f7:31:1d:66:b7:
d4:0c:6a:d5:b8:ac:f3:3b:00:57:95:2d:d5:00:40:48:e6:dc:
a2:bc:27:74:0a:f4:de:88:de:66:c1:82:e2:b5:2d:6d:1a:19:
72:68:55:e4:0b:cc:b4:f1:93:a5:c6:1b:c1:3e:23:78:6d:fb:
00:e3:fd:7d:e4:89:37:fc:62:6d:8f:df:0b:06:7a:f5:42:29:
be:3b:02:a8:3f:4a:eb:62:b5:ff:14:68:e4:10:be:c5:10:4b:
2e:92:f8:b0:5f:8f:68:07:71:5e:fa:2f:94:b6:82:ab:4b:46:
7f:85:7d:00:b7:ee:82:97:57:42:35:ec:d1:57:17:c6:e1:a5:
bf:2e:3d:6b:b0:4d:45:78:e2:44:92:e3:ec:cf:c9:b7:5c:e4:
19:90:63:20:2f:ed:8b:a4:60:d5:22:d7:0c:d9:0a:c0:d3:ba:
3b:73:86:1c:60:7e:12:6e:97:64:e5:90:ec:3a:76:0d:54:3d:
53:90:4d:bf:07:2d:2a:57:86:f6:d0:38:da:21:b7:db:f3:aa:
93:8f:a5:b7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYU5cNxHysKjgUxyk0a/0X4kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlZjMyOTM2MGMxYjZmY2FmYmY1MjUzYTY1N2UzZTlkN2Yy
MjRmN2UwHhcNMjIxMjIyMTA0NjE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzcwYjY0NDYyZjcxNWRkMDlmYjA3ZDRhZWEzMDU2YjU2ZjFmZjYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlzXEj9z/oia0cUQaSVnbmPq6N4Hv
3KpjIeQvSfOAmYFglm05QGg35rBAeDuv91fsC5tmaN+WFTHHwfzLt/rpH1JPdjpZ
qK4VdIT4dMNTnaeaC6yPQwdWOx1muMNd8le7eFkn+WBI6h/URGqKQhOLYfsI/6UK
SFv328wlM6asp8C3RtNgyH5pk76dNHm6xQDmTjGzrTvyt+nnwqdfNQBvwWNM7ReW
QE202UbDjMxrLrmbkwkgYkrJkozRHYgGj0qDwvpC/dddS+U4Znple0is77bDcV7I
aQVTiTiTLZ7+/KNE/KisEt0b2Oyd9zlkao7bAfQve1u8O10IhWNVVeBXzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEdwtkRi9xXdCfsH1K6jBWtW8f9iMB8GA1UdIwQY
MBaAFP7zKTYMG2/K+/UlOmV+Pp1/Ik9+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX3ZNcE5nd2JiOHI3OVNVNlpYNC1uWDhpVDM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni9jZTk2ZjQtZDg1Yy00ZmM1LTllOTgt
NTAwYjg4MzQyODllLzEvUjNDMlJHTDNGZDBKLXdmVXJxTUZhMWJ4XzJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni9jZTk2ZjQtZDg1Yy00ZmM1LTllOTgtNTAwYjg4MzQyODll
LzEvX3ZNcE5nd2JiOHI3OVNVNlpYNC1uWDhpVDM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1cwQMA0G
CSqGSIb3DQEBCwUAA4IBAQCFs6ntsmQRWOyRWotDnAKl6yJ9XGHIpuJNtYM0kot9
HJJfrZEAXETPP1SMOuSH/uQx9zEdZrfUDGrVuKzzOwBXlS3VAEBI5tyivCd0CvTe
iN5mwYLitS1tGhlyaFXkC8y08ZOlxhvBPiN4bfsA4/195Ik3/GJtj98LBnr1Qim+
OwKoP0rrYrX/FGjkEL7FEEsukviwX49oB3Fe+i+UtoKrS0Z/hX0At+6Cl1dCNezR
VxfG4aW/Lj1rsE1FeOJEkuPsz8m3XOQZkGMgL+2LpGDVItcM2QrA07o7c4YcYH4S
bpdk5ZDsOnYNVD1TkE2/By0qV4b20DjaIbfb86qTj6W3
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:41 2023 by rpki-client on console.sobornost.net