Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/7kfxT20KFsuUv_JxiCDh5HHoPv0.roa
File: 7kfxT20KFsuUv_JxiCDh5HHoPv0.roa (raw, json)
Hash identifier: cY52Yq4T9PDgffN3wExVd87fnDL+zYBX5dSosyY3Y1g=
Subject key identifier: EE:47:F1:4F:6D:0A:16:CB:94:BF:F2:71:88:20:E1:E4:71:E8:3E:FD
Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Certificate serial: 03ED2028
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/7kfxT20KFsuUv_JxiCDh5HHoPv0.roa
Signing time: Sat 01 Jan 2022 03:01:55 +0000
ROA not before: Sat 01 Jan 2022 03:01:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6672
IP address blocks: 37.202.8.0/21 maxlen: 21
212.113.96.0/19 maxlen: 24
2a02:9d8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65871912 (0x3ed2028)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Validity
Not Before: Jan 1 03:01:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee47f14f6d0a16cb94bff2718820e1e471e83efd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:61:d3:69:3c:b1:11:6d:03:02:96:49:b6:30:
50:4d:e9:ef:7e:db:2c:06:3e:05:ad:c4:0a:df:ed:
b0:d6:60:73:bf:bd:0c:3c:7b:53:21:06:27:00:4c:
6e:d6:6c:9e:fc:41:ed:19:b7:9d:6b:f5:04:54:d8:
6b:17:b8:c1:61:66:77:fc:68:3d:56:66:e4:76:66:
8b:b9:eb:30:2b:e7:2c:55:92:18:7e:50:45:89:e9:
bb:c2:0a:4a:af:bf:14:d0:64:6a:d7:cb:a0:4a:d1:
ca:92:39:5e:da:c3:e8:83:f5:0b:8e:91:4b:ac:1d:
4a:fe:79:51:cf:6e:a0:03:79:62:ef:8c:4a:b3:d1:
1a:58:29:dc:c0:cf:2e:76:08:76:6c:5c:fb:2a:88:
84:86:24:4c:f6:29:0e:b3:11:06:69:a7:d6:06:d4:
e5:79:ab:95:10:ba:02:00:85:21:78:dc:fa:ec:8c:
51:d9:92:d7:45:56:03:80:39:3d:22:de:01:e7:88:
76:16:93:7d:29:ba:77:91:88:de:fe:1c:fb:f0:c1:
3c:f0:e8:b3:65:b1:02:28:73:0b:b3:7b:51:f4:3d:
26:b2:08:5c:a3:50:8e:78:f1:cf:28:f7:2d:d7:39:
79:67:ee:76:c0:28:36:3e:af:d9:ed:c0:c0:fd:72:
b7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:47:F1:4F:6D:0A:16:CB:94:BF:F2:71:88:20:E1:E4:71:E8:3E:FD
X509v3 Authority Key Identifier:
keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/7kfxT20KFsuUv_JxiCDh5HHoPv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.8.0/21
212.113.96.0/19
IPv6:
2a02:9d8::/32
Signature Algorithm: sha256WithRSAEncryption
62:7e:7b:7c:ea:3b:34:82:3e:05:3c:e7:67:51:f5:8d:32:62:
5e:91:7d:a9:3f:9b:1a:f3:fd:40:29:b7:ed:9e:05:b1:6c:71:
54:42:15:3a:3f:94:05:ee:91:24:12:d1:dc:e9:2f:bc:4b:3d:
cd:38:8a:04:70:29:c0:14:4c:2c:c4:e1:e1:3e:0b:bc:15:e9:
ae:43:a3:ba:46:08:7d:60:60:f0:c3:bd:2d:d2:fb:c0:3c:e4:
bf:c9:0e:2c:94:5f:a8:ca:e2:03:40:16:92:29:f8:42:59:7e:
22:3b:4c:4b:ed:cf:77:a0:27:9e:01:57:5a:58:f8:b6:d5:d5:
75:02:db:5d:3c:f6:2d:c7:89:50:f5:f2:bb:ea:6b:31:62:39:
f5:25:83:8e:8d:bb:6f:95:b8:ee:17:61:d1:dc:29:8b:84:17:
76:33:47:10:25:be:77:c8:9a:c8:e2:cb:a6:c7:b0:e4:e4:09:
d4:95:2a:66:63:a8:87:b1:ec:e3:9b:bc:3c:50:5b:60:f3:5e:
47:39:1d:f9:81:91:e0:ae:50:6a:82:9b:8e:02:49:c8:0f:16:
2d:81:d3:83:fc:d5:6a:00:70:ae:5b:f0:1a:85:2c:2e:00:7d:
42:d1:25:4f:a9:ba:d8:58:86:c6:ae:1f:14:7d:ae:2a:87:38:
ca:f1:fd:6c
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEA+0gKDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NGNiZTViNDYyM2RhYjQyZjE1YTkwNTAwMmRiN2NlNjJlODU0ZjI5MB4XDTIyMDEw
MTAzMDE1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWU0N2YxNGY2ZDBh
MTZjYjk0YmZmMjcxODgyMGUxZTQ3MWU4M2VmZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALdh02k8sRFtAwKWSbYwUE3p737bLAY+Ba3ECt/tsNZgc7+9
DDx7UyEGJwBMbtZsnvxB7Rm3nWv1BFTYaxe4wWFmd/xoPVZm5HZmi7nrMCvnLFWS
GH5QRYnpu8IKSq+/FNBkatfLoErRypI5XtrD6IP1C46RS6wdSv55Uc9uoAN5Yu+M
SrPRGlgp3MDPLnYIdmxc+yqIhIYkTPYpDrMRBmmn1gbU5XmrlRC6AgCFIXjc+uyM
UdmS10VWA4A5PSLeAeeIdhaTfSm6d5GI3v4c+/DBPPDos2WxAihzC7N7UfQ9JrII
XKNQjnjxzyj3Ldc5eWfudsAoNj6v2e3AwP1ytx8CAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBTuR/FPbQoWy5S/8nGIIOHkceg+/TAfBgNVHSMEGDAWgBQEy+W0Yj2rQvFa
kFAC23zmLoVPKTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JNdmx0R0k5cTBMeFdwQlFBdHQ4NWk2RlR5ay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzEvM2QzYTJkLWEwMzktNDZmNC04Njg3LTA1NzgxN2JhOWZiNy8x
LzdrZnhUMjBLRnN1VXZfSnhpQ0RoNUhIb1B2MC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzEv
M2QzYTJkLWEwMzktNDZmNC04Njg3LTA1NzgxN2JhOWZiNy8xL0JNdmx0R0k5cTBM
eFdwQlFBdHQ4NWk2RlR5ay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAyXKCAMEBdRxYDANBAIAAjAHAwUA
KgIJ2DANBgkqhkiG9w0BAQsFAAOCAQEAYn57fOo7NII+BTznZ1H1jTJiXpF9qT+b
GvP9QCm37Z4FsWxxVEIVOj+UBe6RJBLR3OkvvEs9zTiKBHApwBRMLMTh4T4LvBXp
rkOjukYIfWBg8MO9LdL7wDzkv8kOLJRfqMriA0AWkin4Qll+IjtMS+3Pd6AnngFX
Wlj4ttXVdQLbXTz2LceJUPXyu+prMWI59SWDjo27b5W47hdh0dwpi4QXdjNHECW+
d8iayOLLpsew5OQJ1JUqZmOoh7Hs45u8PFBbYPNeRzkd+YGR4K5QaoKbjgJJyA8W
LYHTg/zVagBwrlvwGoUsLgB9QtElT6m62FiGxq4fFH2uKoc4yvH9bA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:56 2023 by rpki-client on console-ams.rpki-client.org