Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/393911-49a2-4a76-be14-f46d6ab3d326/1/fg027Fod0nKwi2ZQB6-Uzl7BYks.roa
File: fg027Fod0nKwi2ZQB6-Uzl7BYks.roa (raw, json)
Hash identifier: 5zsfoCBwRjmlSmPsD2wnMu4vJ3LnWQeLyxWl9rxK3tQ=
Subject key identifier: 7E:0D:36:EC:5A:1D:D2:72:B0:8B:66:50:07:AF:94:CE:5E:C1:62:4B
Certificate issuer: /CN=03c6cea2a80220361231b6afbbc8c8cdaa4fd517
Certificate serial: 01B4FA0E
Authority key identifier: 03:C6:CE:A2:A8:02:20:36:12:31:B6:AF:BB:C8:C8:CD:AA:4F:D5:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A8bOoqgCIDYSMbavu8jIzapP1Rc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/393911-49a2-4a76-be14-f46d6ab3d326/1/fg027Fod0nKwi2ZQB6-Uzl7BYks.roa
Signing time: Sat 01 Jan 2022 05:59:47 +0000
ROA not before: Sat 01 Jan 2022 05:59:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 193.107.65.0/24 maxlen: 24
89.37.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28637710 (0x1b4fa0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03c6cea2a80220361231b6afbbc8c8cdaa4fd517
Validity
Not Before: Jan 1 05:59:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e0d36ec5a1dd272b08b665007af94ce5ec1624b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:eb:09:ea:a6:75:bb:1d:ce:56:a4:c2:e4:82:
cd:45:e7:6d:23:60:38:e8:e5:c4:2a:8a:12:dd:65:
10:c9:ee:aa:0c:11:7c:60:75:f8:01:78:66:26:4f:
c4:c6:7d:78:46:d9:56:0e:f8:f3:b0:f5:1a:d0:20:
d4:95:55:5e:5e:f9:30:f9:23:9e:4a:7f:06:12:f1:
f5:ad:1e:c9:f6:6d:bd:16:e8:73:ea:1e:ca:c5:ac:
d6:48:bc:a2:3c:8f:6a:85:37:52:a7:eb:ad:59:be:
42:60:d4:b5:b2:73:81:ce:18:64:08:c3:74:eb:08:
65:e4:96:c7:18:9b:dd:92:cf:8a:e5:69:f8:c5:55:
06:e8:d2:cf:98:c8:fe:c3:9a:d2:f2:e4:6e:5b:5a:
e2:0e:18:cd:90:43:13:03:8f:80:a8:57:a2:87:cb:
14:d0:df:b7:f4:1d:5a:43:50:f6:9f:f6:bb:5b:fe:
17:7e:8d:73:bf:7a:28:19:89:6f:50:16:45:8d:39:
c0:60:7a:24:37:8d:52:ee:ee:7a:1c:29:03:98:d9:
d9:d7:4e:a0:69:0c:1f:2a:b8:53:8e:f7:56:4c:78:
99:6d:d1:d0:f8:9f:0c:d4:dc:6d:45:1c:79:fd:7b:
da:34:0f:1e:7b:fd:f2:65:4b:62:fe:23:19:3c:e6:
7e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:0D:36:EC:5A:1D:D2:72:B0:8B:66:50:07:AF:94:CE:5E:C1:62:4B
X509v3 Authority Key Identifier:
keyid:03:C6:CE:A2:A8:02:20:36:12:31:B6:AF:BB:C8:C8:CD:AA:4F:D5:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A8bOoqgCIDYSMbavu8jIzapP1Rc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/393911-49a2-4a76-be14-f46d6ab3d326/1/fg027Fod0nKwi2ZQB6-Uzl7BYks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/393911-49a2-4a76-be14-f46d6ab3d326/1/A8bOoqgCIDYSMbavu8jIzapP1Rc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.140.0/24
193.107.65.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:5f:af:f7:3d:14:82:1d:b9:f7:d1:75:14:d2:88:04:5b:b6:
21:78:8f:0c:1d:d5:8c:10:46:38:fb:cb:59:96:e8:5a:17:1b:
76:63:a6:ab:f0:41:2a:18:e0:bb:af:94:71:8f:f1:43:50:80:
40:85:91:72:fd:11:fc:cb:f6:24:4e:01:0e:76:ea:b2:68:d4:
1f:e7:ea:1a:81:a3:7f:f4:b8:94:5c:a7:66:4e:0a:10:0c:6a:
0e:2d:e4:b2:22:65:ca:2c:30:c5:55:97:7e:e1:97:65:a2:89:
48:a0:92:3d:4e:85:1c:65:07:79:97:7c:0b:2a:4a:30:e1:64:
be:d4:82:4a:60:d6:d6:a4:51:d1:1f:28:f5:c2:3b:e7:2f:45:
4a:f4:0a:62:0f:61:6e:d5:12:90:6a:d6:b4:f4:55:05:4c:7a:
5e:68:7f:fa:46:e1:59:38:3e:29:07:5c:b9:ce:cd:6d:8e:34:
89:57:17:9b:72:e2:3a:92:94:a2:69:09:81:9f:fd:47:e1:a7:
5d:52:b1:40:1c:42:d0:11:18:32:0c:58:d3:75:c1:4c:ba:79:
52:e9:8f:ca:3e:95:ae:19:f6:49:bb:70:9d:79:7e:92:ab:f8:
30:86:e0:5b:df:ff:f1:2c:f9:e0:02:69:ee:6a:1c:64:d7:b7:
e6:4e:49:47
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAbT6DjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
M2M2Y2VhMmE4MDIyMDM2MTIzMWI2YWZiYmM4YzhjZGFhNGZkNTE3MB4XDTIyMDEw
MTA1NTk0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2UwZDM2ZWM1YTFk
ZDI3MmIwOGI2NjUwMDdhZjk0Y2U1ZWMxNjI0YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIXrCeqmdbsdzlakwuSCzUXnbSNgOOjlxCqKEt1lEMnuqgwR
fGB1+AF4ZiZPxMZ9eEbZVg7487D1GtAg1JVVXl75MPkjnkp/BhLx9a0eyfZtvRbo
c+oeysWs1ki8ojyPaoU3UqfrrVm+QmDUtbJzgc4YZAjDdOsIZeSWxxib3ZLPiuVp
+MVVBujSz5jI/sOa0vLkblta4g4YzZBDEwOPgKhXoofLFNDft/QdWkNQ9p/2u1v+
F36Nc796KBmJb1AWRY05wGB6JDeNUu7uehwpA5jZ2ddOoGkMHyq4U473Vkx4mW3R
0PifDNTcbUUcef172jQPHnv98mVLYv4jGTzmfvMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBR+DTbsWh3ScrCLZlAHr5TOXsFiSzAfBgNVHSMEGDAWgBQDxs6iqAIgNhIx
tq+7yMjNqk/VFzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0E4Yk9vcWdDSURZU01iYXZ1OGpJemFwUDFSYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTQvMzkzOTExLTQ5YTItNGE3Ni1iZTE0LWY0NmQ2YWIzZDMyNi8x
L2ZnMDI3Rm9kMG5Ld2kyWlFCNi1Vemw3Qllrcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTQv
MzkzOTExLTQ5YTItNGE3Ni1iZTE0LWY0NmQ2YWIzZDMyNi8xL0E4Yk9vcWdDSURZ
U01iYXZ1OGpJemFwUDFSYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFkljAMEAMFrQTANBgkqhkiG9w0B
AQsFAAOCAQEAL1+v9z0Ugh2599F1FNKIBFu2IXiPDB3VjBBGOPvLWZboWhcbdmOm
q/BBKhjgu6+UcY/xQ1CAQIWRcv0R/Mv2JE4BDnbqsmjUH+fqGoGjf/S4lFynZk4K
EAxqDi3ksiJlyiwwxVWXfuGXZaKJSKCSPU6FHGUHeZd8CypKMOFkvtSCSmDW1qRR
0R8o9cI75y9FSvQKYg9hbtUSkGrWtPRVBUx6Xmh/+kbhWTg+KQdcuc7NbY40iVcX
m3LiOpKUomkJgZ/9R+GnXVKxQBxC0BEYMgxY03XBTLp5UumPyj6Vrhn2SbtwnXl+
kqv4MIbgW9//8Sz54AJp7mocZNe35k5JRw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-ams.rpki-client.org