Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/9f8ae2-0fb5-4c04-ad93-4ce477dbb407/1/2xT9egjVZNu1-23WP4i98OlExEc.roa
File: 2xT9egjVZNu1-23WP4i98OlExEc.roa (raw, json)
Hash identifier: vEecwvJtSJ1YYQLSc/3IulojnLUODFu2AF7Tjk9YIJI=
Subject key identifier: DB:14:FD:7A:08:D5:64:DB:B5:FB:6D:D6:3F:88:BD:F0:E9:44:C4:47
Certificate issuer: /CN=7c835498f35199a1571964d855c3877751681ab9
Certificate serial: 179B5B05
Authority key identifier: 7C:83:54:98:F3:51:99:A1:57:19:64:D8:55:C3:87:77:51:68:1A:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fINUmPNRmaFXGWTYVcOHd1FoGrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/9f8ae2-0fb5-4c04-ad93-4ce477dbb407/1/2xT9egjVZNu1-23WP4i98OlExEc.roa
Signing time: Sat 01 Jan 2022 14:02:47 +0000
ROA not before: Sat 01 Jan 2022 14:02:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61207
IP address blocks: 185.15.120.0/22 maxlen: 22
2a02:fc00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396057349 (0x179b5b05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c835498f35199a1571964d855c3877751681ab9
Validity
Not Before: Jan 1 14:02:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db14fd7a08d564dbb5fb6dd63f88bdf0e944c447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:1f:2f:33:7f:cd:06:c1:ce:13:18:1a:9c:8b:
be:74:d5:6c:82:6e:a0:6e:83:6c:70:a9:fd:f9:3f:
a6:54:b8:f4:c0:a8:73:1c:9b:8e:67:40:bc:db:3d:
ad:50:a8:ef:74:fe:11:65:60:aa:80:f8:40:04:62:
52:d9:2a:47:7d:62:2a:17:7b:1d:e5:f4:ab:38:18:
5e:6c:d3:15:6b:a0:47:52:06:3e:bb:7c:81:a0:01:
38:9e:42:1c:5c:d0:cb:41:3f:a0:9c:f4:cd:b3:cc:
a1:64:7e:58:82:a6:5f:11:51:1d:29:f6:ca:61:33:
27:e8:b6:7d:0c:6f:5f:46:ef:2a:58:ae:87:ad:6b:
53:da:a8:65:e0:88:4c:df:fe:88:26:de:1c:1c:31:
25:59:71:6a:05:78:99:83:bf:10:24:5f:71:5e:a3:
2d:c5:21:d4:6f:7e:2e:b9:3c:bc:4c:64:49:87:68:
f5:01:06:c2:c4:f7:85:02:5a:36:32:3a:dd:39:91:
c6:0b:03:bf:45:22:46:a0:99:4b:94:30:8e:eb:28:
4c:0f:f6:28:f0:74:89:6a:af:ca:cc:a4:37:d3:46:
14:76:2f:f1:73:7d:4a:0a:20:eb:34:d9:8b:eb:81:
89:50:0a:29:d1:f6:72:53:4d:95:8e:62:bd:25:d6:
9c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:14:FD:7A:08:D5:64:DB:B5:FB:6D:D6:3F:88:BD:F0:E9:44:C4:47
X509v3 Authority Key Identifier:
keyid:7C:83:54:98:F3:51:99:A1:57:19:64:D8:55:C3:87:77:51:68:1A:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fINUmPNRmaFXGWTYVcOHd1FoGrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/9f8ae2-0fb5-4c04-ad93-4ce477dbb407/1/2xT9egjVZNu1-23WP4i98OlExEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/9f8ae2-0fb5-4c04-ad93-4ce477dbb407/1/fINUmPNRmaFXGWTYVcOHd1FoGrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.15.120.0/22
IPv6:
2a02:fc00::/29
Signature Algorithm: sha256WithRSAEncryption
1c:d2:cc:ca:f8:54:80:65:e8:64:63:e4:34:3b:fb:93:b6:66:
53:06:d8:c1:0a:69:24:29:d2:50:a8:65:31:3f:9c:a9:fc:69:
16:e2:6a:25:d3:0c:29:47:3b:c1:50:4d:c9:5c:8a:ce:27:44:
4a:41:8b:89:4c:6b:59:30:f5:52:90:58:0e:b2:e9:76:80:20:
74:98:a1:ee:ce:a0:21:79:04:e0:b3:c2:f4:a6:d7:3b:84:8d:
9a:28:87:c0:ba:3b:05:73:85:22:ed:a4:4b:a3:02:eb:01:0b:
9e:2b:b2:18:4e:67:ed:a4:dc:82:7c:2f:10:b7:f0:b5:c1:b3:
f6:ae:cb:b2:a7:95:e0:01:0a:ab:3b:df:e0:db:f8:a8:16:4e:
3d:b6:a6:65:8a:9b:08:8b:29:c4:45:41:3c:e3:ed:25:3d:01:
9a:63:93:83:11:f8:95:b3:76:06:1b:9b:6c:9c:00:c8:1e:c9:
e9:f8:f7:72:83:b8:d6:c7:b1:02:80:6d:73:36:e5:f0:9f:26:
d3:53:28:0d:23:b7:9d:a1:7f:0e:2c:4c:22:38:ca:a0:93:95:
97:91:b4:f0:f5:4c:ab:53:43:c9:86:43:7c:f9:e3:33:39:7d:
64:f4:5e:b6:2a:0c:3d:56:e3:cc:75:65:f2:95:d6:65:3e:de:
95:0e:a3:72
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEF5tbBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YzgzNTQ5OGYzNTE5OWExNTcxOTY0ZDg1NWMzODc3NzUxNjgxYWI5MB4XDTIyMDEw
MTE0MDI0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGIxNGZkN2EwOGQ1
NjRkYmI1ZmI2ZGQ2M2Y4OGJkZjBlOTQ0YzQ0NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIkfLzN/zQbBzhMYGpyLvnTVbIJuoG6DbHCp/fk/plS49MCo
cxybjmdAvNs9rVCo73T+EWVgqoD4QARiUtkqR31iKhd7HeX0qzgYXmzTFWugR1IG
Prt8gaABOJ5CHFzQy0E/oJz0zbPMoWR+WIKmXxFRHSn2ymEzJ+i2fQxvX0bvKliu
h61rU9qoZeCITN/+iCbeHBwxJVlxagV4mYO/ECRfcV6jLcUh1G9+Lrk8vExkSYdo
9QEGwsT3hQJaNjI63TmRxgsDv0UiRqCZS5QwjusoTA/2KPB0iWqvysykN9NGFHYv
8XN9Sgog6zTZi+uBiVAKKdH2clNNlY5ivSXWnGkCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTbFP16CNVk27X7bdY/iL3w6UTERzAfBgNVHSMEGDAWgBR8g1SY81GZoVcZ
ZNhVw4d3UWgauTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZJTlVtUE5SbWFGWEdXVFlWY09IZDFGb0dyay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGMvOWY4YWUyLTBmYjUtNGMwNC1hZDkzLTRjZTQ3N2RiYjQwNy8x
LzJ4VDllZ2pWWk51MS0yM1dQNGk5OE9sRXhFYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGMv
OWY4YWUyLTBmYjUtNGMwNC1hZDkzLTRjZTQ3N2RiYjQwNy8xL2ZJTlVtUE5SbWFG
WEdXVFlWY09IZDFGb0dyay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArkPeDANBAIAAjAHAwUDKgL8ADAN
BgkqhkiG9w0BAQsFAAOCAQEAHNLMyvhUgGXoZGPkNDv7k7ZmUwbYwQppJCnSUKhl
MT+cqfxpFuJqJdMMKUc7wVBNyVyKzidESkGLiUxrWTD1UpBYDrLpdoAgdJih7s6g
IXkE4LPC9KbXO4SNmiiHwLo7BXOFIu2kS6MC6wELniuyGE5n7aTcgnwvELfwtcGz
9q7LsqeV4AEKqzvf4Nv4qBZOPbamZYqbCIspxEVBPOPtJT0BmmOTgxH4lbN2Bhub
bJwAyB7J6fj3coO41sexAoBtczbl8J8m01MoDSO3naF/DixMIjjKoJOVl5G08PVM
q1NDyYZDfPnjMzl9ZPRetioMPVbjzHVl8pXWZT7elQ6jcg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:37 2023 by rpki-client on console-fra.rpki-client.org