Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/08fd6b-02b4-4e34-97a9-74cff927b033/1/4xf6LlcKF7G0GZYvrEDdcfjzovk.roa
File: 4xf6LlcKF7G0GZYvrEDdcfjzovk.roa (raw, json)
Hash identifier: uFNu3eZdW93zsVKFqjhuayIxmxmqCLPVAkYPeVSJ9xI=
Subject key identifier: E3:17:FA:2E:57:0A:17:B1:B4:19:96:2F:AC:40:DD:71:F8:F3:A2:F9
Certificate issuer: /CN=fc9003cbb188b6c79716ee38dcee468ac19d8cab
Certificate serial: 031828B5
Authority key identifier: FC:90:03:CB:B1:88:B6:C7:97:16:EE:38:DC:EE:46:8A:C1:9D:8C:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_JADy7GItseXFu443O5GisGdjKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/08fd6b-02b4-4e34-97a9-74cff927b033/1/4xf6LlcKF7G0GZYvrEDdcfjzovk.roa
Signing time: Wed 09 Feb 2022 13:52:06 +0000
ROA not before: Wed 09 Feb 2022 13:52:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203712
IP address blocks: 185.126.104.0/22 maxlen: 24
2a0a:7040::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51914933 (0x31828b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc9003cbb188b6c79716ee38dcee468ac19d8cab
Validity
Not Before: Feb 9 13:52:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e317fa2e570a17b1b419962fac40dd71f8f3a2f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8b:24:f8:8d:7d:74:42:c3:94:79:09:b0:21:
c7:af:49:aa:22:0d:e1:db:11:18:48:e6:56:5e:0c:
b3:59:21:6e:02:17:32:87:ee:9e:90:56:95:98:10:
f9:05:ea:81:d9:e2:83:3e:5e:7a:7a:7d:ab:3d:a8:
20:83:75:e8:b4:c5:de:a5:5f:7e:af:03:3d:ad:88:
7a:53:01:f3:1a:fe:a1:75:6a:65:bd:49:97:eb:e1:
79:2c:3f:05:48:50:c9:49:d8:9e:0c:ed:e7:84:6e:
fa:6b:c7:9d:67:68:99:e1:05:c8:20:53:1e:c9:b0:
fb:0d:f1:fd:fe:5f:b0:28:1e:02:87:84:6b:de:b8:
b2:84:bc:8a:dd:bf:c5:f8:ff:51:3d:5f:72:06:3e:
83:fd:99:81:a6:70:1a:ae:a0:9e:ab:f1:02:e5:34:
52:cd:b8:68:e5:17:9f:08:a3:65:2f:d7:dd:ce:cd:
98:b4:86:6f:95:49:26:f9:5c:2d:fe:c6:56:c9:12:
2e:d3:99:1a:01:02:01:2b:57:09:8e:62:7b:eb:e9:
d9:15:7e:5d:25:05:b7:b1:2b:0b:19:d2:f8:db:5d:
70:76:7a:6e:06:1e:15:0f:5f:e2:50:f0:7f:b0:9d:
75:0a:52:90:41:dd:50:0a:91:bc:f5:6b:74:20:42:
18:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:17:FA:2E:57:0A:17:B1:B4:19:96:2F:AC:40:DD:71:F8:F3:A2:F9
X509v3 Authority Key Identifier:
keyid:FC:90:03:CB:B1:88:B6:C7:97:16:EE:38:DC:EE:46:8A:C1:9D:8C:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_JADy7GItseXFu443O5GisGdjKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/08fd6b-02b4-4e34-97a9-74cff927b033/1/4xf6LlcKF7G0GZYvrEDdcfjzovk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/08fd6b-02b4-4e34-97a9-74cff927b033/1/_JADy7GItseXFu443O5GisGdjKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.104.0/22
IPv6:
2a0a:7040::/32
Signature Algorithm: sha256WithRSAEncryption
91:18:af:14:8c:d6:94:f0:4f:30:93:2c:51:7a:79:38:64:a4:
62:e5:88:5a:74:e7:80:0a:44:9f:f7:f2:02:ff:0e:8c:7a:7f:
5e:31:1d:3c:76:b2:8c:46:6b:e8:d7:65:5f:52:b3:ab:ef:2d:
40:a9:c8:b8:4b:2a:b0:17:2b:5c:cc:6a:99:1b:06:c1:42:5d:
66:17:76:aa:6c:38:d2:11:49:25:d5:b1:01:35:37:02:b4:9f:
65:56:ef:2d:08:1b:f0:44:ee:b6:ad:8c:3a:4b:80:c8:e8:37:
10:33:a9:66:18:53:61:aa:9b:c7:a7:35:9e:47:e3:40:f1:bb:
8a:a3:85:20:c0:92:ce:77:23:18:53:b9:ca:ef:04:75:88:98:
e1:b1:d1:29:e4:9a:93:a2:2a:2d:2b:a6:60:18:af:95:84:d2:
ee:1a:f5:d3:b1:47:6c:e5:57:9a:72:ca:97:d0:99:32:a5:4a:
65:d9:ec:10:8d:82:ff:b3:02:f5:b6:4c:f8:a7:68:84:8f:d6:
fe:d1:9f:8c:f7:ba:39:09:09:8c:c1:46:02:01:27:c0:26:17:
35:21:84:ff:f3:88:3f:be:e8:f7:2d:83:6d:9d:cc:76:1d:d8:
49:27:df:2f:c8:19:23:b0:54:31:76:e6:52:df:52:bc:b5:8e:
97:4e:f0:c7
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAxgotTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YzkwMDNjYmIxODhiNmM3OTcxNmVlMzhkY2VlNDY4YWMxOWQ4Y2FiMB4XDTIyMDIw
OTEzNTIwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTMxN2ZhMmU1NzBh
MTdiMWI0MTk5NjJmYWM0MGRkNzFmOGYzYTJmOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKaLJPiNfXRCw5R5CbAhx69JqiIN4dsRGEjmVl4Ms1khbgIX
MofunpBWlZgQ+QXqgdnigz5eenp9qz2oIIN16LTF3qVffq8DPa2IelMB8xr+oXVq
Zb1Jl+vheSw/BUhQyUnYngzt54Ru+mvHnWdomeEFyCBTHsmw+w3x/f5fsCgeAoeE
a964soS8it2/xfj/UT1fcgY+g/2ZgaZwGq6gnqvxAuU0Us24aOUXnwijZS/X3c7N
mLSGb5VJJvlcLf7GVskSLtOZGgECAStXCY5ie+vp2RV+XSUFt7ErCxnS+NtdcHZ6
bgYeFQ9f4lDwf7CddQpSkEHdUAqRvPVrdCBCGHkCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTjF/ouVwoXsbQZli+sQN1x+POi+TAfBgNVHSMEGDAWgBT8kAPLsYi2x5cW
7jjc7kaKwZ2MqzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19KQUR5N0dJdHNlWEZ1NDQzTzVHaXNHZGpLcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGEvMDhmZDZiLTAyYjQtNGUzNC05N2E5LTc0Y2ZmOTI3YjAzMy8x
LzR4ZjZMbGNLRjdHMEdaWXZyRURkY2Zqem92ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGEv
MDhmZDZiLTAyYjQtNGUzNC05N2E5LTc0Y2ZmOTI3YjAzMy8xL19KQUR5N0dJdHNl
WEZ1NDQzTzVHaXNHZGpLcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArl+aDANBAIAAjAHAwUAKgpwQDAN
BgkqhkiG9w0BAQsFAAOCAQEAkRivFIzWlPBPMJMsUXp5OGSkYuWIWnTngApEn/fy
Av8OjHp/XjEdPHayjEZr6NdlX1Kzq+8tQKnIuEsqsBcrXMxqmRsGwUJdZhd2qmw4
0hFJJdWxATU3ArSfZVbvLQgb8ETutq2MOkuAyOg3EDOpZhhTYaqbx6c1nkfjQPG7
iqOFIMCSzncjGFO5yu8EdYiY4bHRKeSak6IqLSumYBivlYTS7hr107FHbOVXmnLK
l9CZMqVKZdnsEI2C/7MC9bZM+KdohI/W/tGfjPe6OQkJjMFGAgEnwCYXNSGE//OI
P77o9y2DbZ3Mdh3YSSffL8gZI7BUMXbmUt9SvLWOl07wxw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:26 2023 by rpki-client on console-fra.rpki-client.org