Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/fkjEjTiL_VC4s2W6_kbc7Xu5dxg.roa
File: fkjEjTiL_VC4s2W6_kbc7Xu5dxg.roa (raw, json)
Hash identifier: qeMgtYGCBpVkj4P40ieNqxxbDrhW0Vy3KBo4nomVNXs=
Subject key identifier: 7E:48:C4:8D:38:8B:FD:50:B8:B3:65:BA:FE:46:DC:ED:7B:B9:77:18
Certificate issuer: /CN=4ca13bdea54f76b8a85712afdb615186b33838c1
Certificate serial: 42BBBBCE
Authority key identifier: 4C:A1:3B:DE:A5:4F:76:B8:A8:57:12:AF:DB:61:51:86:B3:38:38:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/fkjEjTiL_VC4s2W6_kbc7Xu5dxg.roa
Signing time: Sat 01 Jan 2022 06:05:18 +0000
ROA not before: Sat 01 Jan 2022 06:05:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47309
IP address blocks: 194.8.90.0/23 maxlen: 23
130.0.20.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1119599566 (0x42bbbbce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca13bdea54f76b8a85712afdb615186b33838c1
Validity
Not Before: Jan 1 06:05:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e48c48d388bfd50b8b365bafe46dced7bb97718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:40:94:6b:06:58:a8:6c:c2:ad:73:f4:31:04:
e0:46:40:24:7e:95:39:61:47:f9:11:39:87:95:af:
37:ed:2d:03:4c:9a:38:0f:25:84:0d:30:e6:6b:2e:
a3:27:19:6d:25:2c:34:48:94:42:aa:80:f9:89:48:
9b:44:f5:b7:e0:39:d9:fd:bd:34:a8:c0:a1:b3:00:
19:e1:0d:f2:12:fa:2d:5b:e7:f6:1f:ae:af:51:c2:
cc:02:d6:e1:a4:a5:f0:21:cd:9f:08:9c:97:65:92:
b8:db:16:49:3a:9e:c2:c6:b8:0c:d4:9a:71:cd:42:
6e:7b:21:dc:ec:18:cf:3a:13:d6:d4:ea:fd:d7:3c:
3e:4d:85:d5:7c:ed:36:c7:8c:d6:5f:69:8f:82:a7:
f5:b6:4c:37:ac:cf:fa:ce:66:0b:11:47:07:cc:b7:
ba:db:23:f3:a3:e6:50:b8:b8:6e:2c:a4:5c:b6:a4:
7b:fb:a9:c9:d0:c1:c7:73:46:ab:a8:12:dc:22:22:
91:52:d5:1e:61:c1:39:55:38:45:55:05:9a:fb:95:
6d:4e:9a:29:9a:49:fa:eb:e6:55:37:7b:6f:95:56:
c4:86:c1:e9:a6:32:94:14:3b:fc:6a:e4:b2:7c:62:
38:c1:89:52:d9:3a:fc:a5:2d:56:ed:de:14:c7:a8:
f0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:48:C4:8D:38:8B:FD:50:B8:B3:65:BA:FE:46:DC:ED:7B:B9:77:18
X509v3 Authority Key Identifier:
keyid:4C:A1:3B:DE:A5:4F:76:B8:A8:57:12:AF:DB:61:51:86:B3:38:38:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/fkjEjTiL_VC4s2W6_kbc7Xu5dxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.0.20.0/23
194.8.90.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:77:de:af:1d:9e:01:7a:8e:67:9b:df:d5:38:3c:81:2d:b6:
3b:7a:91:6d:0e:82:7e:e4:55:c4:dc:a5:a6:6f:08:da:2b:47:
ea:37:be:f2:a9:64:a3:1b:f1:9d:d9:fd:d4:76:c6:42:53:ef:
43:39:bb:4f:38:2b:44:4d:07:25:97:82:1c:84:93:4b:c6:67:
0e:4e:c5:71:d0:d8:81:f9:6d:34:e8:86:b7:cc:a9:20:89:86:
8a:80:8c:03:21:c6:3f:fe:4f:13:d8:d7:78:49:7f:8d:3a:26:
b4:80:cb:30:4f:fa:c2:c4:d7:f0:6f:29:d1:d7:7d:76:c0:77:
cc:af:bc:29:b7:48:84:c1:52:d2:83:46:2e:6c:24:36:6c:6c:
54:e8:94:22:b5:91:cf:de:d6:67:d2:d9:04:33:08:8a:4d:e6:
37:14:43:aa:92:b9:2b:91:2b:4e:c3:e6:a4:d4:11:2d:2e:d4:
9f:be:25:65:bf:01:ea:52:0a:39:24:50:70:65:e5:ee:cb:bd:
1e:92:df:7c:14:d0:28:6b:62:6f:ea:7b:1b:92:e5:fd:34:e6:
b1:3a:6c:8b:2f:ec:e9:48:fa:5a:c8:ab:6f:ac:74:a9:fd:e5:
e7:ed:1e:49:b5:a1:54:bc:54:04:33:ff:b6:01:56:94:64:83:
fd:6d:8b:b0
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEQru7zjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
Y2ExM2JkZWE1NGY3NmI4YTg1NzEyYWZkYjYxNTE4NmIzMzgzOGMxMB4XDTIyMDEw
MTA2MDUxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2U0OGM0OGQzODhi
ZmQ1MGI4YjM2NWJhZmU0NmRjZWQ3YmI5NzcxODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALFAlGsGWKhswq1z9DEE4EZAJH6VOWFH+RE5h5WvN+0tA0ya
OA8lhA0w5msuoycZbSUsNEiUQqqA+YlIm0T1t+A52f29NKjAobMAGeEN8hL6LVvn
9h+ur1HCzALW4aSl8CHNnwicl2WSuNsWSTqewsa4DNSacc1Cbnsh3OwYzzoT1tTq
/dc8Pk2F1XztNseM1l9pj4Kn9bZMN6zP+s5mCxFHB8y3utsj86PmULi4biykXLak
e/upydDBx3NGq6gS3CIikVLVHmHBOVU4RVUFmvuVbU6aKZpJ+uvmVTd7b5VWxIbB
6aYylBQ7/GrksnxiOMGJUtk6/KUtVu3eFMeo8HcCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBR+SMSNOIv9ULizZbr+Rtzte7l3GDAfBgNVHSMEGDAWgBRMoTvepU92uKhX
Eq/bYVGGszg4wTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RLRTczcVZQZHJpb1Z4S3YyMkZSaHJNNE9NRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvYzYyZDEzLTdmMDMtNGQxOS04YjQ2LWZjOTE0MzNkMzY3ZC8x
L2ZrakVqVGlMX1ZDNHMyVzZfa2JjN1h1NWR4Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
YzYyZDEzLTdmMDMtNGQxOS04YjQ2LWZjOTE0MzNkMzY3ZC8xL1RLRTczcVZQZHJp
b1Z4S3YyMkZSaHJNNE9NRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAYIAFAMEAcIIWjANBgkqhkiG9w0B
AQsFAAOCAQEAinferx2eAXqOZ5vf1Tg8gS22O3qRbQ6CfuRVxNylpm8I2itH6je+
8qlkoxvxndn91HbGQlPvQzm7TzgrRE0HJZeCHISTS8ZnDk7FcdDYgfltNOiGt8yp
IImGioCMAyHGP/5PE9jXeEl/jTomtIDLME/6wsTX8G8p0dd9dsB3zK+8KbdIhMFS
0oNGLmwkNmxsVOiUIrWRz97WZ9LZBDMIik3mNxRDqpK5K5ErTsPmpNQRLS7Un74l
Zb8B6lIKOSRQcGXl7su9HpLffBTQKGtib+p7G5Ll/TTmsTpsiy/s6Uj6Wsirb6x0
qf3l5+0eSbWhVLxUBDP/tgFWlGSD/W2LsA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:31 2023 by rpki-client on console-fra.rpki-client.org