Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/fcoFPt2u1mSho4uqYUebwnb0uVA.roa
File: fcoFPt2u1mSho4uqYUebwnb0uVA.roa (raw, json)
Hash identifier: ESawAjeO/AmOiWaSsjMG69JKdeDhyCjvaO7aN6kWtCg=
Subject key identifier: 7D:CA:05:3E:DD:AE:D6:64:A1:A3:8B:AA:61:47:9B:C2:76:F4:B9:50
Certificate issuer: /CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Certificate serial: 0FBE5806
Authority key identifier: 28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/fcoFPt2u1mSho4uqYUebwnb0uVA.roa
Signing time: Sat 01 Jan 2022 10:54:48 +0000
ROA not before: Sat 01 Jan 2022 10:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206377
IP address blocks: 185.178.180.0/22 maxlen: 22
2a0a:6780::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 264132614 (0xfbe5806)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Validity
Not Before: Jan 1 10:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7dca053eddaed664a1a38baa61479bc276f4b950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fd:c8:f1:4f:27:cb:8d:59:cb:86:b3:44:8b:
90:4e:c8:34:95:70:57:fa:99:6b:4d:68:10:33:b3:
33:3c:72:c6:af:8e:bd:1a:52:c2:45:9c:2a:22:80:
43:8a:4d:40:6c:55:dd:a8:ee:e1:53:fc:c0:69:65:
7a:b5:0d:61:23:4c:d6:bd:b7:37:a7:1c:96:81:cd:
dd:3a:47:22:36:2b:43:36:4f:8d:bc:3c:e8:b7:c8:
0e:28:f0:50:2d:bd:b2:be:42:a4:77:78:b0:ed:17:
dd:ef:65:2a:25:f0:69:f8:37:fd:08:fb:58:55:cb:
92:9c:c9:13:94:8e:b1:4f:9f:72:6f:6e:1f:32:1c:
f9:24:d1:0a:15:c4:29:21:22:4b:5c:ee:d1:6f:a3:
05:a7:c7:90:1e:e0:41:ee:9c:bf:7b:22:81:69:45:
c0:16:4b:2c:ce:9a:18:f7:78:21:92:8f:9d:2c:8e:
35:15:06:0b:5b:5f:71:35:b0:61:24:8b:c4:ca:b2:
bd:d6:da:e1:18:a0:34:85:d2:66:ac:0c:e5:70:3c:
bf:97:c7:a5:5d:e3:7b:fc:92:18:34:f7:5a:ff:9f:
43:3d:e9:c9:4b:7c:55:84:72:cd:22:62:be:12:7e:
08:87:b6:3f:f3:f6:8d:95:31:c9:1c:66:c0:a9:3a:
03:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:CA:05:3E:DD:AE:D6:64:A1:A3:8B:AA:61:47:9B:C2:76:F4:B9:50
X509v3 Authority Key Identifier:
keyid:28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/fcoFPt2u1mSho4uqYUebwnb0uVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.180.0/22
IPv6:
2a0a:6780::/29
Signature Algorithm: sha256WithRSAEncryption
ae:ca:67:54:e0:f6:22:51:a3:79:e8:bd:60:f5:91:b2:ca:50:
3c:16:74:ac:7c:9b:33:9a:c7:be:e4:4b:33:0d:1d:4a:a8:1f:
52:66:d6:cc:7e:e4:8f:6d:39:4c:a9:de:06:46:09:28:3d:40:
fc:94:e6:98:ac:be:7b:d4:7e:7b:25:39:42:57:49:0c:94:8b:
91:f0:9d:45:bd:e2:ec:48:fc:b4:80:de:8c:7b:6b:63:65:34:
23:58:95:6b:f5:58:1e:48:6c:2a:03:74:c5:f6:0c:11:47:4c:
5e:c0:e6:3b:2e:fd:52:b6:f0:a3:7e:d4:71:b9:89:cd:25:89:
f3:43:3b:a1:5d:d0:50:af:41:88:fd:74:1a:7a:c7:cb:91:36:
57:6d:4f:72:97:06:9a:c9:a7:68:7c:ce:76:e9:39:d4:51:4f:
4f:bd:41:c0:db:3b:bf:a1:9f:f5:c3:21:16:54:07:34:93:e8:
e7:a8:80:65:b1:c4:38:d1:1f:77:e0:af:0c:1b:6f:46:74:e5:
29:5a:8b:01:d8:5a:b4:93:4f:aa:3b:49:51:1e:02:94:ad:ad:
d4:2a:de:6b:29:da:b3:96:b8:61:d7:28:0d:b5:21:7d:ca:bd:
e4:21:f7:95:80:de:1d:ab:e5:d4:d5:c0:df:fe:31:b9:4e:b3:
94:8e:0b:cd
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIED75YBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ODE2NGE1NzU3ZmRkNTcyNWE2MDg0NGYyYWU3ZWY3M2IxMDdhNGMwMB4XDTIyMDEw
MTEwNTQ0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2RjYTA1M2VkZGFl
ZDY2NGExYTM4YmFhNjE0NzliYzI3NmY0Yjk1MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMH9yPFPJ8uNWcuGs0SLkE7INJVwV/qZa01oEDOzMzxyxq+O
vRpSwkWcKiKAQ4pNQGxV3aju4VP8wGllerUNYSNM1r23N6ccloHN3TpHIjYrQzZP
jbw86LfIDijwUC29sr5CpHd4sO0X3e9lKiXwafg3/Qj7WFXLkpzJE5SOsU+fcm9u
HzIc+STRChXEKSEiS1zu0W+jBafHkB7gQe6cv3sigWlFwBZLLM6aGPd4IZKPnSyO
NRUGC1tfcTWwYSSLxMqyvdba4RigNIXSZqwM5XA8v5fHpV3je/ySGDT3Wv+fQz3p
yUt8VYRyzSJivhJ+CIe2P/P2jZUxyRxmwKk6A5MCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBR9ygU+3a7WZKGji6phR5vCdvS5UDAfBgNVHSMEGDAWgBQoFkpXV/3Vclpg
hE8q5+9zsQekwDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tCWktWMWY5MVhKYVlJUlBLdWZ2YzdFSHBNQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzgvOTU1MzViLWU2MzAtNDU3Zi04YTAxLWFlYWU1YmJjMzkyMC8x
L2Zjb0ZQdDJ1MW1TaG80dXFZVWVid25iMHVWQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzgv
OTU1MzViLWU2MzAtNDU3Zi04YTAxLWFlYWU1YmJjMzkyMC8xL0tCWktWMWY5MVhK
YVlJUlBLdWZ2YzdFSHBNQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArmytDANBAIAAjAHAwUDKgpngDAN
BgkqhkiG9w0BAQsFAAOCAQEArspnVOD2IlGjeei9YPWRsspQPBZ0rHybM5rHvuRL
Mw0dSqgfUmbWzH7kj205TKneBkYJKD1A/JTmmKy+e9R+eyU5QldJDJSLkfCdRb3i
7Ej8tIDejHtrY2U0I1iVa/VYHkhsKgN0xfYMEUdMXsDmOy79Urbwo37UcbmJzSWJ
80M7oV3QUK9BiP10GnrHy5E2V21PcpcGmsmnaHzOduk51FFPT71BwNs7v6Gf9cMh
FlQHNJPo56iAZbHEONEfd+CvDBtvRnTlKVqLAdhatJNPqjtJUR4ClK2t1Creayna
s5a4YdcoDbUhfcq95CH3lYDeHavl1NXA3/4xuU6zlI4LzQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:40 2023 by rpki-client on console-fra.rpki-client.org