Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/7gGznPSl5nYxCo2qzm3yG-Vguig.roa
File: 7gGznPSl5nYxCo2qzm3yG-Vguig.roa (raw, json)
Hash identifier: LiUk4IEwQA/88DhfUqjMirJ+Laa8+5Z7QztTWXPL8eM=
Subject key identifier: EE:01:B3:9C:F4:A5:E6:76:31:0A:8D:AA:CE:6D:F2:1B:E5:60:BA:28
Certificate issuer: /CN=cff374657f57078f3ca2c71109d35927c2248681
Certificate serial: 0181E18D4F67DEAED477BF07000F6DD72BAE
Authority key identifier: CF:F3:74:65:7F:57:07:8F:3C:A2:C7:11:09:D3:59:27:C2:24:86:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z_N0ZX9XB488oscRCdNZJ8IkhoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/7gGznPSl5nYxCo2qzm3yG-Vguig.roa
Signing time: Sat 09 Jul 2022 06:02:23 +0000
ROA not before: Sat 09 Jul 2022 06:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12963
IP address blocks: 176.100.0.0/24 maxlen: 24
176.100.1.0/24 maxlen: 24
176.100.2.0/23 maxlen: 24
176.100.4.0/24 maxlen: 24
176.100.8.0/24 maxlen: 24
176.100.9.0/24 maxlen: 24
176.100.10.0/23 maxlen: 24
176.100.5.0/24 maxlen: 24
176.100.6.0/24 maxlen: 24
176.100.14.0/24 maxlen: 24
176.100.15.0/24 maxlen: 24
176.100.16.0/24 maxlen: 24
176.100.17.0/24 maxlen: 24
176.100.16.0/20 maxlen: 20
176.100.12.0/24 maxlen: 24
176.100.13.0/24 maxlen: 24
176.100.24.0/24 maxlen: 24
176.100.21.0/24 maxlen: 24
176.100.22.0/24 maxlen: 24
176.100.23.0/24 maxlen: 24
176.100.18.0/24 maxlen: 24
176.100.19.0/24 maxlen: 24
176.100.20.0/24 maxlen: 24
176.100.29.0/24 maxlen: 24
176.100.30.0/24 maxlen: 24
176.100.27.0/24 maxlen: 24
176.100.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:e1:8d:4f:67:de:ae:d4:77:bf:07:00:0f:6d:d7:2b:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cff374657f57078f3ca2c71109d35927c2248681
Validity
Not Before: Jul 9 06:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee01b39cf4a5e676310a8daace6df21be560ba28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e1:00:23:fc:01:41:42:a7:0f:c0:78:c3:03:
96:d6:51:e2:bc:55:a5:43:1d:7c:05:90:c4:51:f9:
af:0b:a2:5c:d6:c2:88:93:e5:57:6a:69:2d:89:47:
10:1d:d0:00:f1:24:10:fd:2b:cb:77:68:b7:ef:51:
cc:1f:26:a5:ea:15:71:9c:28:93:bf:8c:ee:15:f9:
2d:f0:9e:ad:cb:cd:b1:29:6a:e4:6b:73:f1:0b:12:
92:60:76:61:3f:87:5f:2f:6d:06:41:73:7c:28:36:
86:cd:55:10:a7:70:c6:ae:40:14:51:f5:b6:2b:ad:
29:c0:54:1d:4b:20:6a:a4:dc:7b:97:e6:9e:bc:e4:
a8:62:da:2b:d4:59:f7:c7:10:ef:f1:92:b6:99:9a:
08:d4:f9:25:77:bd:07:18:eb:60:d0:6c:56:15:7a:
2b:0b:6b:41:35:7d:80:70:fc:08:28:e1:cb:1a:ad:
2f:ed:5a:47:45:4d:4e:e5:e4:3f:7c:ef:ca:37:7a:
7b:09:4d:e9:7d:66:b9:9f:d2:44:43:74:4d:1c:f1:
f3:2f:c5:ae:37:91:35:ea:ba:16:d0:92:a3:43:81:
fc:b2:88:2a:e0:6f:62:6c:4e:fe:4c:81:e4:d0:27:
5e:a3:1d:01:09:e0:b6:25:03:e6:7f:ed:00:75:58:
f9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:01:B3:9C:F4:A5:E6:76:31:0A:8D:AA:CE:6D:F2:1B:E5:60:BA:28
X509v3 Authority Key Identifier:
keyid:CF:F3:74:65:7F:57:07:8F:3C:A2:C7:11:09:D3:59:27:C2:24:86:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z_N0ZX9XB488oscRCdNZJ8IkhoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/7gGznPSl5nYxCo2qzm3yG-Vguig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/z_N0ZX9XB488oscRCdNZJ8IkhoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.100.0.0-176.100.6.255
176.100.8.0-176.100.31.255
Signature Algorithm: sha256WithRSAEncryption
07:df:a7:ee:11:eb:45:f2:fb:f2:4f:8c:7b:9c:af:e3:11:2b:
b3:df:de:0e:05:62:d8:7d:f2:88:c9:06:78:53:70:58:8f:d8:
b8:ba:3a:cb:76:bc:3e:55:5a:72:7f:84:3b:55:66:d6:6c:8c:
05:f2:70:f5:d8:d6:71:1d:09:6f:62:34:59:73:26:a5:61:fe:
c9:a0:ef:4e:68:37:9a:26:6a:50:42:77:fe:d2:32:05:11:49:
e1:8b:50:57:d6:cc:51:63:cf:d8:c2:d3:ca:cc:74:67:20:fb:
83:06:c7:e3:bd:0f:ed:4c:84:0b:87:9c:8d:06:75:42:f4:68:
c3:a6:37:2b:c0:f2:30:79:4f:39:d8:2a:1d:73:1a:5b:7b:b2:
ce:ea:1b:1d:c0:51:3a:31:08:3d:1b:7e:c2:ec:88:fe:00:34:
fe:65:c9:2a:c9:7f:ec:60:c4:bc:71:8e:4c:ef:da:f0:ca:ac:
b4:47:88:e9:d4:04:4a:19:7b:2c:78:72:54:d7:79:33:d7:c7:
e4:5c:b1:0d:8b:57:b9:20:ac:83:27:66:f5:73:39:be:fb:43:
a3:17:9e:7a:41:5b:1a:16:26:1e:33:b9:52:94:55:27:fb:d2:
67:25:2a:72:4d:fc:a7:67:6a:cc:2a:03:f1:06:3e:ec:ce:96:
ca:8d:49:cd
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYHhjU9n3q7Ud78HAA9t1yuuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmZjM3NDY1N2Y1NzA3OGYzY2EyYzcxMTA5ZDM1OTI3YzIy
NDg2ODEwHhcNMjIwNzA5MDYwMjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZTAxYjM5Y2Y0YTVlNjc2MzEwYThkYWFjZTZkZjIxYmU1NjBiYTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3OEAI/wBQUKnD8B4wwOW1lHivFWl
Qx18BZDEUfmvC6Jc1sKIk+VXamktiUcQHdAA8SQQ/SvLd2i371HMHyal6hVxnCiT
v4zuFfkt8J6ty82xKWrka3PxCxKSYHZhP4dfL20GQXN8KDaGzVUQp3DGrkAUUfW2
K60pwFQdSyBqpNx7l+aevOSoYtor1Fn3xxDv8ZK2mZoI1Pkld70HGOtg0GxWFXor
C2tBNX2AcPwIKOHLGq0v7VpHRU1O5eQ/fO/KN3p7CU3pfWa5n9JEQ3RNHPHzL8Wu
N5E16roW0JKjQ4H8sogq4G9ibE7+TIHk0Cdeox0BCeC2JQPmf+0AdVj5XQIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFO4Bs5z0peZ2MQqNqs5t8hvlYLooMB8GA1UdIwQY
MBaAFM/zdGV/VwePPKLHEQnTWSfCJIaBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvel9OMFpYOVhCNDg4b3NjUkNkTlpKOElraG9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jZDIxNDYtN2ZiZS00ZTVkLTkzYmEt
M2VhMmViZmU4NzA3LzEvN2dHem5QU2w1bll4Q28ycXptM3lHLVZndWlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9jZDIxNDYtN2ZiZS00ZTVkLTkzYmEtM2VhMmViZmU4NzA3
LzEvel9OMFpYOVhCNDg4b3NjUkNkTlpKOElraG9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzAhBAIAATAbMAsDAwKwZAME
ALBkBjAMAwQDsGQIAwQFsGQAMA0GCSqGSIb3DQEBCwUAA4IBAQAH36fuEetF8vvy
T4x7nK/jESuz394OBWLYffKIyQZ4U3BYj9i4ujrLdrw+VVpyf4Q7VWbWbIwF8nD1
2NZxHQlvYjRZcyalYf7JoO9OaDeaJmpQQnf+0jIFEUnhi1BX1sxRY8/YwtPKzHRn
IPuDBsfjvQ/tTIQLh5yNBnVC9GjDpjcrwPIweU852Codcxpbe7LO6hsdwFE6MQg9
G37C7Ij+ADT+ZckqyX/sYMS8cY5M79rwyqy0R4jp1ARKGXsseHJU13kz18fkXLEN
i1e5IKyDJ2b1czm++0OjF556QVsaFiYeM7lSlFUn+9JnJSpyTfynZ2rMKgPxBj7s
zpbKjUnN
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:45 2024 by rpki-client on console-ams.rpki-client.org