Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/fjziThVfdvOKr-9xgWsCUr9nNRU.roa
File: fjziThVfdvOKr-9xgWsCUr9nNRU.roa (raw, json)
Hash identifier: Fnxm9Afx0fOlW4L6q/VfsLxnzaqMJlenWVzq5wZN17A=
Subject key identifier: 7E:3C:E2:4E:15:5F:76:F3:8A:AF:EF:71:81:6B:02:52:BF:67:35:15
Certificate issuer: /CN=64aec8024caa103a8412696c7e72f77803cd8695
Certificate serial: 0220E4B2
Authority key identifier: 64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/fjziThVfdvOKr-9xgWsCUr9nNRU.roa
Signing time: Tue 08 Mar 2022 09:15:37 +0000
ROA not before: Tue 08 Mar 2022 09:15:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15525
IP address blocks: 193.43.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35710130 (0x220e4b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64aec8024caa103a8412696c7e72f77803cd8695
Validity
Not Before: Mar 8 09:15:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e3ce24e155f76f38aafef71816b0252bf673515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0b:f1:37:69:a2:27:77:35:4b:4e:bc:58:81:
b6:42:77:91:85:53:d0:1a:99:03:67:03:0e:93:f3:
4a:04:d1:f6:86:2f:ed:51:31:e3:ce:1d:3e:cb:ad:
47:8a:4a:9c:f4:eb:28:b9:e6:ac:b2:c7:ff:5c:94:
34:bf:ed:78:5d:3f:c1:ea:b3:5d:be:89:d7:9e:c4:
41:b5:78:c9:bc:a8:8a:e6:31:eb:e9:c8:27:44:0a:
ee:f8:63:b0:db:5b:47:35:ee:76:e3:a5:af:ca:6c:
65:9d:9f:ee:bc:f8:f5:48:69:14:98:2d:c6:6d:94:
6a:6a:6c:e9:42:06:52:58:55:5d:aa:97:8b:d4:d4:
22:7b:cd:83:8c:21:0a:82:0a:db:5d:56:02:e8:e8:
2e:23:fd:95:19:79:c7:a1:99:ea:3b:67:4e:07:98:
c0:d7:48:3e:22:04:25:80:c1:10:b4:2b:1c:a7:eb:
dc:42:e2:4a:98:a6:6d:d0:6d:f5:ba:2d:5c:75:e3:
52:7a:6f:c5:49:cd:a6:16:dd:39:20:83:c9:d0:63:
b1:b6:7e:ca:90:48:14:aa:3e:1d:e7:93:49:18:13:
89:13:ce:30:60:5a:32:44:1c:11:48:b2:e1:ac:c0:
80:c7:35:30:13:ae:63:2d:14:64:6b:f6:55:99:b0:
74:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:3C:E2:4E:15:5F:76:F3:8A:AF:EF:71:81:6B:02:52:BF:67:35:15
X509v3 Authority Key Identifier:
keyid:64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/fjziThVfdvOKr-9xgWsCUr9nNRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.40.0/24
Signature Algorithm: sha256WithRSAEncryption
33:ae:10:32:fb:00:b5:2e:a9:28:47:f4:bc:73:33:69:f9:60:
ab:87:4a:40:a3:b7:40:4c:5d:ae:79:ce:66:99:4c:b5:fc:75:
f0:31:83:c1:10:65:e7:59:44:53:48:e6:b5:e1:3f:34:36:50:
af:57:aa:92:d2:d9:43:68:9e:d8:a8:b2:51:57:2c:18:3d:14:
9d:f2:47:01:89:c9:30:88:86:f4:72:13:60:2e:ce:1f:71:2c:
78:60:26:f9:d5:88:31:84:40:1d:1f:91:8f:1f:b7:d4:f7:5e:
7c:1b:0c:fc:b5:90:77:18:53:c1:95:f6:86:99:75:99:fd:d4:
62:b2:12:7f:30:db:ec:95:c6:b1:39:72:c8:73:8c:d6:08:a6:
20:ee:a4:72:0e:e6:ac:ee:3c:2f:00:93:1a:f3:c9:7e:f2:4e:
07:43:6b:d3:a8:4d:13:2e:2c:56:33:42:15:11:a4:f2:29:09:
b1:2c:f2:df:8d:a2:35:19:e0:d1:eb:17:dd:01:26:f4:7c:7d:
a2:9b:39:5b:71:dc:fc:47:f9:59:c2:21:7b:47:c0:1d:8a:d5:
3e:6d:02:5c:70:26:0c:43:41:77:65:76:b0:45:fc:24:57:56:
0e:1a:00:be:29:9e:c6:3e:40:64:97:49:f4:9f:b1:30:69:a6:
7f:eb:d1:09
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAiDksjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NGFlYzgwMjRjYWExMDNhODQxMjY5NmM3ZTcyZjc3ODAzY2Q4Njk1MB4XDTIyMDMw
ODA5MTUzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2UzY2UyNGUxNTVm
NzZmMzhhYWZlZjcxODE2YjAyNTJiZjY3MzUxNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANAL8Tdpoid3NUtOvFiBtkJ3kYVT0BqZA2cDDpPzSgTR9oYv
7VEx484dPsutR4pKnPTrKLnmrLLH/1yUNL/teF0/weqzXb6J157EQbV4ybyoiuYx
6+nIJ0QK7vhjsNtbRzXuduOlr8psZZ2f7rz49UhpFJgtxm2Uamps6UIGUlhVXaqX
i9TUInvNg4whCoIK211WAujoLiP9lRl5x6GZ6jtnTgeYwNdIPiIEJYDBELQrHKfr
3ELiSpimbdBt9botXHXjUnpvxUnNphbdOSCDydBjsbZ+ypBIFKo+HeeTSRgTiRPO
MGBaMkQcEUiy4azAgMc1MBOuYy0UZGv2VZmwdGkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR+POJOFV9284qv73GBawJSv2c1FTAfBgNVHSMEGDAWgBRkrsgCTKoQOoQS
aWx+cvd4A82GlTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1pLN0lBa3lxRURxRUVtbHNmbkwzZUFQTmhwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTEvMGYyNGRkLWVmNGEtNGRiZi1iMjBkLWIwMzljMjRiOTljYS8x
L2ZqemlUaFZmZHZPS3ItOXhnV3NDVXI5bk5SVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEv
MGYyNGRkLWVmNGEtNGRiZi1iMjBkLWIwMzljMjRiOTljYS8xL1pLN0lBa3lxRURx
RUVtbHNmbkwzZUFQTmhwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMErKDANBgkqhkiG9w0BAQsFAAOC
AQEAM64QMvsAtS6pKEf0vHMzaflgq4dKQKO3QExdrnnOZplMtfx18DGDwRBl51lE
U0jmteE/NDZQr1eqktLZQ2ie2KiyUVcsGD0UnfJHAYnJMIiG9HITYC7OH3EseGAm
+dWIMYRAHR+Rjx+31PdefBsM/LWQdxhTwZX2hpl1mf3UYrISfzDb7JXGsTlyyHOM
1gimIO6kcg7mrO48LwCTGvPJfvJOB0Nr06hNEy4sVjNCFRGk8ikJsSzy342iNRng
0esX3QEm9Hx9ops5W3Hc/Ef5WcIhe0fAHYrVPm0CXHAmDENBd2V2sEX8JFdWDhoA
vimexj5AZJdJ9J+xMGmmf+vRCQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:33 2024 by rpki-client on console-fra.rpki-client.org