Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/Fx4nhqUT9pBXeCOAgQ3tKdyFX2E.roa
File: Fx4nhqUT9pBXeCOAgQ3tKdyFX2E.roa (raw, json)
Hash identifier: wNThub39L3coqnFORe9/3ZQZSkQyn8PK8N2dmOggGRc=
Subject key identifier: 17:1E:27:86:A5:13:F6:90:57:78:23:80:81:0D:ED:29:DC:85:5F:61
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 38AC6D9E
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/Fx4nhqUT9pBXeCOAgQ3tKdyFX2E.roa
Signing time: Tue 17 May 2022 05:30:19 +0000
ROA not before: Tue 17 May 2022 05:30:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51581
IP address blocks: 212.36.13.0/24 maxlen: 24
78.83.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 950824350 (0x38ac6d9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: May 17 05:30:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=171e2786a513f69057782380810ded29dc855f61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a6:03:31:44:2a:d8:82:ff:06:07:4e:c6:92:
4a:90:76:c9:93:3a:88:03:7f:28:b8:95:5f:a4:16:
db:8b:0a:ae:e7:a5:87:9c:21:d3:52:8c:67:d2:6b:
26:83:ea:a0:58:37:89:bb:54:40:2d:a1:b1:87:7b:
8d:32:55:6d:c6:7a:06:a0:21:07:b2:be:a7:89:6e:
00:31:30:4f:a1:90:18:83:18:fb:78:58:0c:9c:a7:
f5:fb:b7:ff:f9:5b:79:14:c7:46:76:34:44:4a:cc:
38:f9:4d:b2:4d:ca:52:37:8d:2c:2b:a6:87:91:ef:
36:9f:89:e1:29:e6:ce:65:f4:0f:b6:83:d6:69:d0:
f8:d4:07:8e:db:54:92:9d:96:f4:03:af:98:72:b9:
50:c0:c7:8b:84:f9:6e:93:85:60:36:94:a1:bf:24:
c6:1f:ce:75:75:ef:fd:fa:0c:79:89:87:b6:2c:5a:
0f:3f:62:f8:1d:f8:a1:ee:25:00:d3:43:59:7d:75:
f4:2d:9d:f7:33:26:b0:e7:72:c6:32:59:19:a5:95:
de:1d:77:8b:f5:53:c4:b6:05:b0:88:35:89:ac:23:
3e:16:3b:e1:2d:bc:9e:74:b3:bb:4a:3f:97:e7:94:
6b:d8:fb:cd:d0:75:46:67:1e:83:d3:5e:d7:60:ac:
8b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:1E:27:86:A5:13:F6:90:57:78:23:80:81:0D:ED:29:DC:85:5F:61
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/Fx4nhqUT9pBXeCOAgQ3tKdyFX2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.83.208.0/24
212.36.13.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:ea:a2:88:3b:83:05:38:a5:f3:02:ea:89:1a:1d:a2:a8:f5:
75:cd:af:49:46:5b:90:62:ac:56:56:5d:0c:04:e5:7c:ee:a3:
52:41:0c:8a:d0:66:83:38:0e:b5:39:fb:f9:dd:6b:06:36:5c:
23:48:e2:25:22:3f:f3:97:e3:3a:e5:93:df:07:94:40:a1:16:
6a:93:2c:1c:de:79:56:9f:69:f9:5e:6b:71:c2:1f:e7:6f:f3:
6f:1b:4a:51:17:0d:b2:6d:c2:fc:24:86:88:49:7b:c0:80:53:
e8:01:be:77:66:a6:22:16:ab:bb:69:d7:93:b0:72:a2:24:04:
85:a4:12:5e:b6:de:21:de:8c:45:76:9a:64:1f:16:c0:9a:c4:
37:37:f0:1f:58:64:ea:43:93:20:9d:97:79:08:25:8d:98:d2:
22:fd:07:16:93:de:47:8c:34:b9:fb:d8:d8:c5:c3:91:4e:f0:
c3:a2:7f:c7:57:ba:68:da:09:05:57:83:72:84:7b:2c:6d:39:
06:8a:e8:30:3c:6b:d6:d3:29:37:09:05:6a:6c:34:e3:aa:9a:
ec:c6:5c:70:73:f3:56:18:0f:86:81:f2:a9:fb:ae:f6:b1:d3:
9c:dd:61:df:92:d8:97:33:ff:76:02:3f:db:e3:79:b8:39:ec:
05:93:d7:05
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEOKxtnjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTQ4Y2VkZjE3MDI5ZWQ5OGExMDgxMTNjNmMxMDllY2FjY2Q4MmVjMB4XDTIyMDUx
NzA1MzAxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTcxZTI3ODZhNTEz
ZjY5MDU3NzgyMzgwODEwZGVkMjlkYzg1NWY2MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN+mAzFEKtiC/wYHTsaSSpB2yZM6iAN/KLiVX6QW24sKruel
h5wh01KMZ9JrJoPqoFg3ibtUQC2hsYd7jTJVbcZ6BqAhB7K+p4luADEwT6GQGIMY
+3hYDJyn9fu3//lbeRTHRnY0RErMOPlNsk3KUjeNLCumh5HvNp+J4SnmzmX0D7aD
1mnQ+NQHjttUkp2W9AOvmHK5UMDHi4T5bpOFYDaUob8kxh/OdXXv/foMeYmHtixa
Dz9i+B34oe4lANNDWX119C2d9zMmsOdyxjJZGaWV3h13i/VTxLYFsIg1iawjPhY7
4S28nnSzu0o/l+eUa9j7zdB1Rmceg9Ne12CsiycCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQXHieGpRP2kFd4I4CBDe0p3IVfYTAfBgNVHSMEGDAWgBQFSM7fFwKe2YoQ
gRPGwQnsrM2C7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JVak8zeGNDbnRtS0VJRVR4c0VKN0t6Tmd1dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvNTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8x
L0Z4NG5ocVVUOXBCWGVDT0FnUTN0S2R5RlgyRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
NTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8xL0JVak8zeGNDbnRt
S0VJRVR4c0VKN0t6Tmd1dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAE5T0AMEANQkDTANBgkqhkiG9w0B
AQsFAAOCAQEAfuqiiDuDBTil8wLqiRodoqj1dc2vSUZbkGKsVlZdDATlfO6jUkEM
itBmgzgOtTn7+d1rBjZcI0jiJSI/85fjOuWT3weUQKEWapMsHN55Vp9p+V5rccIf
52/zbxtKURcNsm3C/CSGiEl7wIBT6AG+d2amIharu2nXk7ByoiQEhaQSXrbeId6M
RXaaZB8WwJrENzfwH1hk6kOTIJ2XeQgljZjSIv0HFpPeR4w0ufvY2MXDkU7ww6J/
x1e6aNoJBVeDcoR7LG05BoroMDxr1tMpNwkFamw046qa7MZccHPzVhgPhoHyqfuu
9rHTnN1h35LYlzP/dgI/2+N5uDnsBZPXBQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:11 2023 by rpki-client on console-ams.rpki-client.org