Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/1-7ZH6AliXYvv79P1KE4MIS6ieGA.roa
File: 1-7ZH6AliXYvv79P1KE4MIS6ieGA.roa (raw, json)
Hash identifier: VuJMTzmB/lV07PEuZBlwLj8/UOLDwdPPKoKfrK9PDAA=
Subject key identifier: FB:B6:47:E8:09:62:5D:8B:EF:EF:D3:F5:28:4E:0C:21:2E:A2:78:60
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 08CAC3E0
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/1-7ZH6AliXYvv79P1KE4MIS6ieGA.roa
Signing time: Mon 28 Feb 2022 07:09:00 +0000
ROA not before: Mon 28 Feb 2022 07:09:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48528
IP address blocks: 212.22.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147506144 (0x8cac3e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Feb 28 07:09:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbb647e809625d8befefd3f5284e0c212ea27860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3d:17:8a:ea:58:a5:6e:f2:00:6e:0e:81:b3:
06:4a:14:28:ba:6c:c8:17:b1:87:15:3d:f6:59:42:
d7:b2:4f:0d:3a:42:71:b7:bc:5c:3d:47:52:cd:09:
5e:7d:10:29:85:1b:9c:b3:d8:e1:70:94:ea:b0:05:
da:43:d0:9e:2c:ac:a9:ac:f7:86:8a:0a:2c:55:c4:
a9:72:a7:7c:d8:24:8d:e1:00:d1:88:0f:a4:69:dd:
5e:da:a0:cf:48:7e:33:fa:65:3d:d6:14:b1:a9:4d:
20:6e:81:31:1c:65:c8:07:e7:87:86:7a:ca:bc:bb:
79:a5:00:2a:d1:9d:6c:df:21:65:3b:ed:0a:ee:90:
b5:b0:dd:6d:5c:15:29:a8:4b:1c:1a:55:b7:28:c6:
43:4f:ec:64:63:57:15:e2:a7:36:32:6b:0b:81:d2:
62:e3:3c:af:c5:07:51:2c:7b:c8:26:bf:9b:0b:17:
e7:3b:69:b7:40:28:9f:a7:f4:4e:72:43:91:c4:5d:
c1:f6:e3:64:03:a7:7b:53:d6:4d:f5:44:7a:e5:dd:
5c:3d:59:24:f9:81:44:94:c2:88:73:d3:a3:e8:dc:
30:4a:eb:8b:68:b2:88:ba:15:7d:d6:15:0b:9c:18:
eb:4f:97:c0:94:69:e7:23:40:4f:81:3d:77:62:87:
d9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:B6:47:E8:09:62:5D:8B:EF:EF:D3:F5:28:4E:0C:21:2E:A2:78:60
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/1-7ZH6AliXYvv79P1KE4MIS6ieGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.71.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:b5:d7:ee:73:01:ac:d0:2d:59:84:a2:1c:42:be:7c:e1:b6:
90:0a:fe:f3:ed:69:f5:4e:41:7f:5f:e1:67:19:0b:40:83:31:
67:84:5a:2e:4a:92:70:b7:12:92:45:73:a1:b7:20:9a:4d:45:
b6:7b:cb:15:71:b7:be:a2:00:96:ce:35:92:c5:20:27:4b:46:
82:ea:ea:cb:26:76:5e:55:1e:3c:82:a6:9b:90:a4:89:f0:56:
14:67:87:3d:05:6a:f2:6a:1a:c6:dd:93:ec:02:d6:3f:c9:ba:
2b:a6:81:a7:38:61:50:e8:14:79:eb:d3:77:05:b8:44:29:91:
1d:a1:d7:83:3f:b1:55:4a:e0:22:01:e4:03:ee:f4:15:76:b5:
4d:9c:e6:c0:a7:f3:5d:0d:dd:48:17:ff:78:06:22:78:f2:58:
06:7e:60:fc:bf:6e:99:e9:01:43:c9:c6:26:a0:75:15:d5:6d:
1f:a4:f7:96:9b:3b:0f:87:42:f9:87:ef:12:0e:44:eb:88:32:
9f:77:d5:bc:34:67:9c:f9:0e:77:10:83:af:65:46:c5:5c:2a:
5b:05:b8:ed:fe:95:49:3b:3d:b3:89:9b:e0:0a:fe:f0:7c:95:
e3:c1:43:1c:23:71:e1:ae:8c:e1:be:6d:76:77:4f:bf:78:e6:
c4:5a:41:93
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIECMrD4DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDYzNjUzNTViNjY1NTY0YTIxMGMzNThjNjhhMDExN2I3ZmJlYjlhMB4XDTIyMDIy
ODA3MDkwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmJiNjQ3ZTgwOTYy
NWQ4YmVmZWZkM2Y1Mjg0ZTBjMjEyZWEyNzg2MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANk9F4rqWKVu8gBuDoGzBkoUKLpsyBexhxU99llC17JPDTpC
cbe8XD1HUs0JXn0QKYUbnLPY4XCU6rAF2kPQniysqaz3hooKLFXEqXKnfNgkjeEA
0YgPpGndXtqgz0h+M/plPdYUsalNIG6BMRxlyAfnh4Z6yry7eaUAKtGdbN8hZTvt
Cu6QtbDdbVwVKahLHBpVtyjGQ0/sZGNXFeKnNjJrC4HSYuM8r8UHUSx7yCa/mwsX
5ztpt0Aon6f0TnJDkcRdwfbjZAOne1PWTfVEeuXdXD1ZJPmBRJTCiHPTo+jcMErr
i2iyiLoVfdYVC5wY60+XwJRp5yNAT4E9d2KH2SMCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT7tkfoCWJdi+/v0/UoTgwhLqJ4YDAfBgNVHSMEGDAWgBR0Y2U1W2ZVZKIQ
w1jGigEXt/vrmjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RHTmxOVnRtVldTaUVNTll4b29CRjdmNzY1by5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjIvYWVhMzZkLWJhYmYtNDQ3NC1hNzhiLTZhNGVjYWY4YjNiMS8x
LzEtN1pINkFsaVhZdnY3OVAxS0U0TUlTNmllR0Eucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYy
L2FlYTM2ZC1iYWJmLTQ0NzQtYTc4Yi02YTRlY2FmOGIzYjEvMS9kR05sTlZ0bVZX
U2lFTU5ZeG9vQkY3Zjc2NW8uY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADUFkcwDQYJKoZIhvcNAQELBQAD
ggEBAE211+5zAazQLVmEohxCvnzhtpAK/vPtafVOQX9f4WcZC0CDMWeEWi5KknC3
EpJFc6G3IJpNRbZ7yxVxt76iAJbONZLFICdLRoLq6ssmdl5VHjyCppuQpInwVhRn
hz0FavJqGsbdk+wC1j/Juiumgac4YVDoFHnr03cFuEQpkR2h14M/sVVK4CIB5APu
9BV2tU2c5sCn810N3UgX/3gGInjyWAZ+YPy/bpnpAUPJxiagdRXVbR+k95abOw+H
QvmH7xIOROuIMp931bw0Z5z5DncQg69lRsVcKlsFuO3+lUk7PbOJm+AK/vB8lePB
QxwjceGujOG+bXZ3T7945sRaQZM=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org