Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/1-J_0Iqn0y3gSbat9UnS6GHqrBCA.roa
File: 1-J_0Iqn0y3gSbat9UnS6GHqrBCA.roa (raw, json)
Hash identifier: MRiEUdv03clK/UccjNzQi3gd6SmwTDm/dI0t+3qfDvg=
Subject key identifier: F8:9F:F4:22:A9:F4:CB:78:12:6D:AB:7D:52:74:BA:18:7A:AB:04:20
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0B3E4FA9
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/1-J_0Iqn0y3gSbat9UnS6GHqrBCA.roa
Signing time: Sat 01 Jan 2022 13:04:54 +0000
ROA not before: Sat 01 Jan 2022 13:04:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20860
IP address blocks: 89.43.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188633001 (0xb3e4fa9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 1 13:04:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f89ff422a9f4cb78126dab7d5274ba187aab0420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:3f:e7:1a:05:ea:cb:a7:13:06:50:9d:48:5d:
2c:22:6b:a0:21:fa:83:15:7a:db:e1:f5:f7:84:9c:
c0:c1:6b:17:fb:f4:ed:bd:1a:ed:3f:9a:48:b6:c3:
f7:ad:b0:22:19:df:cd:f3:1e:bb:4c:de:23:8f:9b:
a2:b9:a8:06:ca:92:7a:44:c1:eb:e1:0b:f2:fa:c6:
e5:fa:c6:9a:04:17:a2:ab:db:34:32:5a:cb:03:3f:
b5:fe:4d:6b:19:30:26:09:ae:71:df:2c:2c:ad:84:
4d:41:21:48:b7:72:94:f5:45:e2:6d:1f:7c:f3:58:
8b:fe:7b:08:e2:7b:84:6f:3e:d9:b0:ff:18:78:cc:
87:8d:af:03:5f:9e:59:93:c5:b0:18:aa:9d:53:ef:
8d:5f:d1:82:49:ef:e2:31:e4:60:ea:dc:c8:06:57:
19:7b:fe:56:72:1c:10:96:e8:dd:a3:26:3b:51:df:
39:9d:59:dc:25:4b:90:58:96:3d:fe:9c:5a:df:12:
84:d2:7c:61:eb:4b:9f:f1:9a:86:6b:d1:29:26:cf:
9c:57:b1:73:9f:fd:ba:12:e1:d2:86:b7:20:e7:cf:
2e:72:a4:d5:03:f5:44:63:4c:c2:49:20:29:79:71:
bd:47:19:30:8b:66:6e:10:01:0c:fc:85:55:da:37:
bc:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:9F:F4:22:A9:F4:CB:78:12:6D:AB:7D:52:74:BA:18:7A:AB:04:20
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/1-J_0Iqn0y3gSbat9UnS6GHqrBCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.43.47.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:80:39:22:0d:7e:cb:a4:2c:37:cf:02:be:39:84:0f:03:84:
83:ed:b3:58:01:fd:ce:a1:ac:25:af:5a:59:0c:51:7b:18:80:
25:e0:cc:1c:c2:9e:e8:67:3a:3a:2e:e8:08:70:0c:1a:18:8d:
03:29:35:82:a2:95:ac:64:e3:ee:58:59:a0:3a:29:86:26:d2:
a4:4b:b4:96:41:08:f2:67:f9:a6:70:dd:44:9e:10:cf:b8:5e:
d4:74:48:c7:59:13:14:a9:41:85:95:c1:70:ea:55:9b:43:8c:
f9:fd:bd:0e:ed:d7:6d:2d:50:d5:ce:bf:54:94:db:ad:9c:b4:
3c:86:b5:15:ca:4c:69:bb:6c:e1:e5:12:a2:50:f3:19:40:cc:
01:12:a5:b0:6b:48:48:e0:9f:f0:2b:0a:03:2c:21:88:01:ec:
7e:ae:e4:7d:a8:21:44:ba:cd:8b:4a:bc:b4:e5:c1:e6:90:43:
b3:91:67:06:7c:ee:63:72:0e:09:ec:88:3a:28:a1:05:77:83:
2a:ce:84:22:df:48:a5:4d:b0:22:7c:0f:d2:74:f0:f2:13:2d:
c3:ef:24:3c:d2:2f:eb:7e:3b:93:9f:b2:2f:a6:bc:dd:db:cb:
d8:d1:59:ea:ba:80:a0:e9:4e:4c:f7:b4:86:73:29:7a:97:6a:
a6:3f:f6:c4
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIECz5PqTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZTU4OTUyZDM5MzkzNWYwZDNiY2U4MTRmZDkxNzhkMDQ2OTNhZWI5MB4XDTIyMDEw
MTEzMDQ1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjg5ZmY0MjJhOWY0
Y2I3ODEyNmRhYjdkNTI3NGJhMTg3YWFiMDQyMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO8/5xoF6sunEwZQnUhdLCJroCH6gxV62+H194ScwMFrF/v0
7b0a7T+aSLbD962wIhnfzfMeu0zeI4+bormoBsqSekTB6+EL8vrG5frGmgQXoqvb
NDJaywM/tf5NaxkwJgmucd8sLK2ETUEhSLdylPVF4m0ffPNYi/57COJ7hG8+2bD/
GHjMh42vA1+eWZPFsBiqnVPvjV/Rgknv4jHkYOrcyAZXGXv+VnIcEJbo3aMmO1Hf
OZ1Z3CVLkFiWPf6cWt8ShNJ8YetLn/GahmvRKSbPnFexc5/9uhLh0oa3IOfPLnKk
1QP1RGNMwkkgKXlxvUcZMItmbhABDPyFVdo3vPkCAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBT4n/QiqfTLeBJtq31SdLoYeqsEIDAfBgNVHSMEGDAWgBT+WJUtOTk18NO8
6BT9kXjQRpOuuTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19saVZMVGs1TmZEVHZPZ1VfWkY0MEVhVHJyay5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvYjI2YWE4LWFjZTctNGZhNi05ZThlLTVkNDhiNjVjZTU3My8x
LzEtSl8wSXFuMHkzZ1NiYXQ5VW5TNkdIcXJCQ0Eucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMw
L2IyNmFhOC1hY2U3LTRmYTYtOWU4ZS01ZDQ4YjY1Y2U1NzMvMS9fbGlWTFRrNU5m
RFR2T2dVX1pGNDBFYVRycmsuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABZKy8wDQYJKoZIhvcNAQELBQAD
ggEBAIyAOSINfsukLDfPAr45hA8DhIPts1gB/c6hrCWvWlkMUXsYgCXgzBzCnuhn
Ojou6AhwDBoYjQMpNYKilaxk4+5YWaA6KYYm0qRLtJZBCPJn+aZw3USeEM+4XtR0
SMdZExSpQYWVwXDqVZtDjPn9vQ7t120tUNXOv1SU262ctDyGtRXKTGm7bOHlEqJQ
8xlAzAESpbBrSEjgn/ArCgMsIYgB7H6u5H2oIUS6zYtKvLTlweaQQ7ORZwZ87mNy
DgnsiDoooQV3gyrOhCLfSKVNsCJ8D9J08PITLcPvJDzSL+t+O5Ofsi+mvN3by9jR
Weq6gKDpTkz3tIZzKXqXaqY/9sQ=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:08 2023 by rpki-client on console-fra.rpki-client.org