Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/fCAXHSF7JnmR0vKrNgof5E3Yk6I.roa
File: fCAXHSF7JnmR0vKrNgof5E3Yk6I.roa (raw, json)
Hash identifier: AHTxuL/qFAJI8HTR3TptyWJ4KlM3vZBqdCYX2nMTPxk=
Subject key identifier: 7C:20:17:1D:21:7B:26:79:91:D2:F2:AB:36:0A:1F:E4:4D:D8:93:A2
Certificate issuer: /CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc
Certificate serial: 01F4F138
Authority key identifier: 0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/fCAXHSF7JnmR0vKrNgof5E3Yk6I.roa
Signing time: Sat 01 Jan 2022 13:05:45 +0000
ROA not before: Sat 01 Jan 2022 13:05:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13209
IP address blocks: 91.217.82.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32829752 (0x1f4f138)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc
Validity
Not Before: Jan 1 13:05:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c20171d217b267991d2f2ab360a1fe44dd893a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:50:55:6e:a5:d3:90:23:15:e8:20:f6:72:f9:
6e:78:7f:c0:99:dc:47:d0:83:13:ff:94:b7:07:66:
25:e1:05:b2:f9:34:c9:a3:47:2c:24:66:79:30:b7:
1e:49:d8:08:24:ab:13:cb:f4:f4:34:bf:fb:50:23:
2b:e3:be:1a:4a:6a:0f:49:88:54:dc:15:ef:fc:3c:
6f:0e:17:f8:d6:df:1c:4b:b5:5e:5c:7a:41:9c:5e:
a0:10:0e:f9:96:87:3a:0b:5e:f4:12:87:1e:35:25:
2f:f3:93:9e:a3:92:c4:2d:bf:2d:be:f7:ff:ba:68:
fd:0b:a0:9e:bc:97:55:c4:0c:20:7a:b7:2f:a1:ee:
4b:e9:ae:fe:f2:52:0a:39:d9:17:06:17:f6:2d:9d:
ac:e1:71:fe:7a:82:b3:12:6e:3c:35:b3:c3:6d:14:
3a:6c:0e:e6:81:6c:58:41:a2:ee:f8:46:91:a7:9e:
21:06:6d:53:19:74:dd:17:e5:78:0c:1a:ba:70:36:
10:3f:bc:91:af:64:00:27:69:61:52:32:18:52:56:
93:08:30:e2:5c:b8:81:74:4d:6c:5f:84:56:07:f5:
25:e5:82:41:10:b1:da:bc:8a:be:4a:c4:a6:90:03:
ab:d3:5b:ce:40:bc:7a:96:72:d1:2f:f1:46:05:a9:
96:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:20:17:1D:21:7B:26:79:91:D2:F2:AB:36:0A:1F:E4:4D:D8:93:A2
X509v3 Authority Key Identifier:
keyid:0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/fCAXHSF7JnmR0vKrNgof5E3Yk6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.82.0/23
Signature Algorithm: sha256WithRSAEncryption
10:5d:29:26:ff:7d:0c:12:93:2c:01:fb:1b:28:10:f5:b7:5a:
57:ac:b7:6f:ff:8b:cd:f6:b9:a1:9c:0e:9f:95:ac:9d:16:a2:
ae:4e:15:f4:5e:d7:04:49:44:2a:4c:82:01:8f:7b:48:79:8b:
9a:af:92:ee:45:c6:84:1e:21:d9:10:e9:66:6f:21:c1:af:00:
f3:bb:7f:21:04:de:d3:18:ba:a4:1c:e0:be:40:9d:8d:75:7e:
54:d4:32:96:16:4e:fa:8c:6f:80:3f:d5:41:b0:09:19:d9:b6:
9d:54:21:4a:5c:e0:a4:22:fb:89:91:a4:0d:87:c9:43:07:30:
60:44:34:1d:c0:b7:dd:8e:28:1e:70:07:b7:2c:8c:df:82:ed:
81:b9:09:12:fe:30:d2:e9:3f:7f:bf:81:38:b5:d3:c8:b8:ea:
cf:34:fb:4b:75:37:c2:35:ab:38:6b:07:c6:5b:84:01:fe:54:
51:45:51:48:b2:29:ba:a4:37:67:f9:33:a2:a9:b9:fc:bc:ee:
38:fd:57:88:78:29:f9:d8:7d:b6:3c:22:b0:a1:2b:90:ad:5c:
45:29:28:6c:a0:57:d4:75:4d:b4:8a:36:44:6f:b0:a4:62:f7:
d8:ff:0e:f8:3c:8b:f0:a4:00:9d:3b:a8:0e:7d:57:a7:ac:6c:
84:a8:90:31
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAfTxODANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZGQyZjhlMGRlYTEzODdkYWY5MDM1ZDJjZGY0ZWI4YzkzYWQ4OWNjMB4XDTIyMDEw
MTEzMDU0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2MyMDE3MWQyMTdi
MjY3OTkxZDJmMmFiMzYwYTFmZTQ0ZGQ4OTNhMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJhQVW6l05AjFegg9nL5bnh/wJncR9CDE/+UtwdmJeEFsvk0
yaNHLCRmeTC3HknYCCSrE8v09DS/+1AjK+O+GkpqD0mIVNwV7/w8bw4X+NbfHEu1
Xlx6QZxeoBAO+ZaHOgte9BKHHjUlL/OTnqOSxC2/Lb73/7po/QugnryXVcQMIHq3
L6HuS+mu/vJSCjnZFwYX9i2drOFx/nqCsxJuPDWzw20UOmwO5oFsWEGi7vhGkaee
IQZtUxl03RfleAwaunA2ED+8ka9kACdpYVIyGFJWkwgw4ly4gXRNbF+EVgf1JeWC
QRCx2ryKvkrEppADq9NbzkC8epZy0S/xRgWpltcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR8IBcdIXsmeZHS8qs2Ch/kTdiTojAfBgNVHSMEGDAWgBQN0vjg3qE4fa+Q
NdLN9OuMk62JzDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RkTDQ0TjZoT0gydmtEWFN6ZlRyakpPdGljdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmQvZDNkNDY2LWQ5NTEtNGM1Mi1iMzMwLWFhODQ4NWNmMzA2OC8x
L2ZDQVhIU0Y3Sm5tUjB2S3JOZ29mNUUzWWs2SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQv
ZDNkNDY2LWQ5NTEtNGM1Mi1iMzMwLWFhODQ4NWNmMzA2OC8xL0RkTDQ0TjZoT0gy
dmtEWFN6ZlRyakpPdGljdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVvZUjANBgkqhkiG9w0BAQsFAAOC
AQEAEF0pJv99DBKTLAH7GygQ9bdaV6y3b/+Lzfa5oZwOn5WsnRairk4V9F7XBElE
KkyCAY97SHmLmq+S7kXGhB4h2RDpZm8hwa8A87t/IQTe0xi6pBzgvkCdjXV+VNQy
lhZO+oxvgD/VQbAJGdm2nVQhSlzgpCL7iZGkDYfJQwcwYEQ0HcC33Y4oHnAHtyyM
34LtgbkJEv4w0uk/f7+BOLXTyLjqzzT7S3U3wjWrOGsHxluEAf5UUUVRSLIpuqQ3
Z/kzoqm5/LzuOP1XiHgp+dh9tjwisKErkK1cRSkobKBX1HVNtIo2RG+wpGL32P8O
+DyL8KQAnTuoDn1Xp6xshKiQMQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:58 2024 by rpki-client on console-fra.rpki-client.org