Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/92fbd9-b9ee-42fc-aac1-fb97ddd54891/1/fvFf5MmFpEp2b8lC03LfgeUkp0o.roa
File: fvFf5MmFpEp2b8lC03LfgeUkp0o.roa (raw, json)
Hash identifier: fcHXqay7p/d1CpA3OVyWeh3mz9wzBUOXU0e11sKo2Z0=
Subject key identifier: 7E:F1:5F:E4:C9:85:A4:4A:76:6F:C9:42:D3:72:DF:81:E5:24:A7:4A
Certificate issuer: /CN=03d602b9e1da2b568df544bda50e415799bbb1e2
Certificate serial: 01856368F91C53BBDA41A14E1AD534C2159D
Authority key identifier: 03:D6:02:B9:E1:DA:2B:56:8D:F5:44:BD:A5:0E:41:57:99:BB:B1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A9YCueHaK1aN9US9pQ5BV5m7seI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/92fbd9-b9ee-42fc-aac1-fb97ddd54891/1/fvFf5MmFpEp2b8lC03LfgeUkp0o.roa
Signing time: Fri 30 Dec 2022 14:21:41 +0000
ROA not before: Fri 30 Dec 2022 14:21:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201112
IP address blocks: 194.110.4.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:63:68:f9:1c:53:bb:da:41:a1:4e:1a:d5:34:c2:15:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03d602b9e1da2b568df544bda50e415799bbb1e2
Validity
Not Before: Dec 30 14:21:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ef15fe4c985a44a766fc942d372df81e524a74a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fd:bc:e7:3a:8a:af:02:c3:fb:b1:b3:9f:b4:
85:5f:90:34:71:6c:3c:0f:1b:64:20:f6:1f:09:8e:
67:2c:c5:1d:d0:f2:c5:c6:8f:ab:df:55:21:26:2b:
30:88:2f:cc:40:20:2f:e8:39:bf:59:51:96:30:61:
fc:dd:54:e2:d0:89:8d:66:09:21:50:e1:f7:7b:ea:
e5:96:44:eb:70:8d:25:dd:18:83:ef:a9:18:e3:0c:
9e:12:1d:63:ee:85:cf:63:6b:ab:6e:04:f9:de:7f:
cd:ec:ea:50:34:0a:cd:c4:b9:77:fb:cc:b4:66:60:
2d:b1:f1:0c:1c:2c:0c:33:28:0a:b7:93:5a:65:7c:
6f:95:02:2f:23:4d:8c:fa:92:d3:6d:dd:91:f9:b0:
03:9d:dc:c4:c5:c7:aa:2b:b0:ae:15:aa:63:62:8b:
a8:9c:2a:61:3c:f3:31:6f:a2:31:1a:88:bf:d2:0d:
05:b4:f7:2b:9a:6e:61:0a:94:1a:5a:86:74:12:0a:
0b:37:f4:4e:f3:6d:d9:bd:f1:b3:01:88:c0:b9:7c:
13:cd:ae:09:36:52:cc:ac:3e:af:26:2a:71:b3:18:
15:52:aa:45:6f:dc:30:52:e3:48:0f:9a:f6:56:2d:
a0:40:c1:bc:f9:a4:06:09:46:5f:f2:80:4c:b8:31:
86:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:F1:5F:E4:C9:85:A4:4A:76:6F:C9:42:D3:72:DF:81:E5:24:A7:4A
X509v3 Authority Key Identifier:
keyid:03:D6:02:B9:E1:DA:2B:56:8D:F5:44:BD:A5:0E:41:57:99:BB:B1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A9YCueHaK1aN9US9pQ5BV5m7seI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/92fbd9-b9ee-42fc-aac1-fb97ddd54891/1/fvFf5MmFpEp2b8lC03LfgeUkp0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/92fbd9-b9ee-42fc-aac1-fb97ddd54891/1/A9YCueHaK1aN9US9pQ5BV5m7seI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.4.0/23
Signature Algorithm: sha256WithRSAEncryption
74:57:07:4e:d5:38:68:28:de:21:59:d0:05:d7:e3:93:f5:11:
b2:9d:99:0c:3b:59:dc:55:36:2b:37:b2:b8:02:bb:6f:6e:dd:
77:18:af:5f:18:f3:e2:7e:e2:40:2d:2c:58:ab:54:a0:5a:71:
99:9b:2b:0c:67:49:5c:c9:12:07:4c:bc:46:92:55:4f:20:e3:
fa:1c:36:26:fe:f0:d6:e2:ef:fb:4c:c2:c9:0f:84:74:ca:97:
3b:ac:2a:49:64:02:b0:7e:d4:46:a5:26:e6:2b:e5:f1:ce:7d:
75:b1:ee:ed:1a:84:1b:41:5d:ed:0e:55:58:1c:4f:4b:de:7c:
62:1b:62:df:3d:dd:84:37:2b:64:bb:1c:66:f2:33:4d:32:13:
37:00:a8:9c:ee:23:ec:1a:08:00:7c:e9:8c:3b:97:8a:f9:5e:
5f:7b:64:4b:3e:1e:dc:48:46:42:22:61:86:ff:80:40:41:c8:
dd:4a:44:8f:53:0f:db:8c:d5:5f:b3:81:47:18:7c:56:e7:92:
d6:64:bd:a1:a7:da:a7:53:49:b2:d5:01:4a:16:9a:40:0c:35:
7a:22:76:a7:f2:59:fb:a2:40:92:0b:5c:4c:4d:d6:02:eb:3d:
82:2a:ad:95:4b:7f:3a:b0:37:ad:89:94:47:b6:f6:c8:cc:07:
65:6d:50:e3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVjaPkcU7vaQaFOGtU0whWdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzZDYwMmI5ZTFkYTJiNTY4ZGY1NDRiZGE1MGU0MTU3OTli
YmIxZTIwHhcNMjIxMjMwMTQyMTQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZWYxNWZlNGM5ODVhNDRhNzY2ZmM5NDJkMzcyZGY4MWU1MjRhNzRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjP285zqKrwLD+7Gzn7SFX5A0cWw8
DxtkIPYfCY5nLMUd0PLFxo+r31UhJiswiC/MQCAv6Dm/WVGWMGH83VTi0ImNZgkh
UOH3e+rllkTrcI0l3RiD76kY4wyeEh1j7oXPY2urbgT53n/N7OpQNArNxLl3+8y0
ZmAtsfEMHCwMMygKt5NaZXxvlQIvI02M+pLTbd2R+bADndzExceqK7CuFapjYouo
nCphPPMxb6IxGoi/0g0FtPcrmm5hCpQaWoZ0EgoLN/RO823ZvfGzAYjAuXwTza4J
NlLMrD6vJipxsxgVUqpFb9wwUuNID5r2Vi2gQMG8+aQGCUZf8oBMuDGGIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH7xX+TJhaRKdm/JQtNy34HlJKdKMB8GA1UdIwQY
MBaAFAPWArnh2itWjfVEvaUOQVeZu7HiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQTlZQ3VlSGFLMWFOOVVTOXBRNUJWNW03c2VJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy85MmZiZDktYjllZS00MmZjLWFhYzEt
ZmI5N2RkZDU0ODkxLzEvZnZGZjVNbUZwRXAyYjhsQzAzTGZnZVVrcDBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy85MmZiZDktYjllZS00MmZjLWFhYzEtZmI5N2RkZDU0ODkx
LzEvQTlZQ3VlSGFLMWFOOVVTOXBRNUJWNW03c2VJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwm4EMA0G
CSqGSIb3DQEBCwUAA4IBAQB0VwdO1ThoKN4hWdAF1+OT9RGynZkMO1ncVTYrN7K4
Artvbt13GK9fGPPifuJALSxYq1SgWnGZmysMZ0lcyRIHTLxGklVPIOP6HDYm/vDW
4u/7TMLJD4R0ypc7rCpJZAKwftRGpSbmK+Xxzn11se7tGoQbQV3tDlVYHE9L3nxi
G2LfPd2ENytkuxxm8jNNMhM3AKic7iPsGggAfOmMO5eK+V5fe2RLPh7cSEZCImGG
/4BAQcjdSkSPUw/bjNVfs4FHGHxW55LWZL2hp9qnU0my1QFKFppADDV6Inan8ln7
okCSC1xMTdYC6z2CKq2VS386sDetiZRHtvbIzAdlbVDj
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:07 2023 by rpki-client on console-fra.rpki-client.org