Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/04df92-a979-421f-8046-1415c9779e17/1/fe7X1SN8EXvMykppoqcgIks62zk.roa
File: fe7X1SN8EXvMykppoqcgIks62zk.roa (raw, json)
Hash identifier: CUGbzlfhnmO2qQcpoWZKRVLm05VPpiWLLhWT1Whub14=
Subject key identifier: 7D:EE:D7:D5:23:7C:11:7B:CC:CA:4A:69:A2:A7:20:22:4B:3A:DB:39
Certificate issuer: /CN=184d1c002f060ec956e64e5cfe4f1dc098587fd6
Certificate serial: 4A31B5
Authority key identifier: 18:4D:1C:00:2F:06:0E:C9:56:E6:4E:5C:FE:4F:1D:C0:98:58:7F:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GE0cAC8GDslW5k5c_k8dwJhYf9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/04df92-a979-421f-8046-1415c9779e17/1/fe7X1SN8EXvMykppoqcgIks62zk.roa
Signing time: Wed 13 Apr 2022 16:08:17 +0000
ROA not before: Wed 13 Apr 2022 16:08:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201978
IP address blocks: 217.28.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4862389 (0x4a31b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=184d1c002f060ec956e64e5cfe4f1dc098587fd6
Validity
Not Before: Apr 13 16:08:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7deed7d5237c117bccca4a69a2a720224b3adb39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9b:21:01:70:80:80:18:c3:60:43:12:7b:50:
d8:9c:b0:e3:41:f4:83:f9:55:a2:6b:1d:8d:55:99:
aa:2e:dd:21:d0:2b:62:9e:8b:27:2d:34:d6:90:82:
70:03:d3:e0:4f:0f:2e:94:bc:d0:8f:9e:5d:9b:3b:
f3:af:a4:5c:6a:54:8a:26:da:a6:72:21:86:83:85:
e1:d4:11:80:e7:11:e9:3c:2a:52:b9:3e:58:05:02:
82:16:36:07:ea:00:2e:3c:57:31:d2:9e:37:1a:2f:
4e:60:fe:7f:80:0c:87:0b:63:ed:af:d8:cd:d3:5f:
fd:db:d0:3d:89:f6:cc:87:21:0b:61:37:2e:5b:16:
da:66:52:69:64:29:5c:80:a8:97:f6:c5:6e:85:27:
d8:6f:24:af:0f:d3:a2:d4:03:0a:ae:aa:dd:54:be:
80:08:11:00:e3:89:5a:d3:8b:c7:04:db:8a:92:bf:
20:3c:8e:8a:d0:02:f5:0e:35:98:b8:4d:58:46:00:
2f:7f:30:ea:02:5d:b3:55:6b:84:90:3c:28:4c:16:
b3:f6:31:57:6d:bd:51:6e:2d:08:a4:64:99:86:36:
6d:9a:b0:7b:fc:0e:46:7a:01:b1:dd:96:f9:3f:dd:
54:d1:cb:15:95:6a:8f:92:4e:a0:77:25:44:6d:32:
bf:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:EE:D7:D5:23:7C:11:7B:CC:CA:4A:69:A2:A7:20:22:4B:3A:DB:39
X509v3 Authority Key Identifier:
keyid:18:4D:1C:00:2F:06:0E:C9:56:E6:4E:5C:FE:4F:1D:C0:98:58:7F:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GE0cAC8GDslW5k5c_k8dwJhYf9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/04df92-a979-421f-8046-1415c9779e17/1/fe7X1SN8EXvMykppoqcgIks62zk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/04df92-a979-421f-8046-1415c9779e17/1/GE0cAC8GDslW5k5c_k8dwJhYf9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.139.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:5c:b9:86:06:cb:a5:ca:93:95:e3:28:f3:a4:4a:e5:16:1b:
21:e0:20:ae:67:59:c0:d8:ce:c5:be:ec:a4:d9:f5:58:cb:10:
9a:ec:3b:ff:49:d7:ab:df:57:2b:f9:00:fa:50:92:dd:ca:01:
af:c7:09:33:88:b7:a3:68:aa:05:7b:3d:0e:94:7f:ac:a7:8c:
25:a0:03:f8:13:27:b6:1a:c5:1c:ff:c9:86:ed:78:59:fa:d5:
07:bc:4c:05:b0:0b:de:75:45:e2:3f:28:31:91:31:a0:99:8a:
2c:02:2c:1f:3b:ae:55:17:d3:75:38:08:04:c5:bc:42:df:07:
8f:b9:fe:1e:88:f0:ef:9f:aa:28:e0:c9:ee:5a:db:14:a7:cf:
ac:e9:eb:e8:2c:a4:05:4e:1c:73:6d:1b:ae:d9:98:1a:61:2d:
46:1e:16:04:5d:50:5b:69:c9:a5:f0:87:7c:da:e3:ac:59:b7:
e4:61:59:b0:24:b8:0e:97:44:be:7f:03:7c:6d:c6:2e:3d:c9:
74:41:1b:9a:55:e1:7b:79:d4:f8:6a:9d:23:5b:c3:2d:1e:10:
d1:7a:46:fc:d7:f9:3a:2a:8b:99:ee:3a:ef:f0:bc:5b:9c:78:
3f:7a:8e:23:29:e5:0b:e6:87:e2:d3:9d:af:13:3b:e7:7a:47:
7f:76:b4:0e
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDSjG1MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDE4
NGQxYzAwMmYwNjBlYzk1NmU2NGU1Y2ZlNGYxZGMwOTg1ODdmZDYwHhcNMjIwNDEz
MTYwODE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg3ZGVlZDdkNTIzN2Mx
MTdiY2NjYTRhNjlhMmE3MjAyMjRiM2FkYjM5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAq5shAXCAgBjDYEMSe1DYnLDjQfSD+VWiax2NVZmqLt0h0Cti
nosnLTTWkIJwA9PgTw8ulLzQj55dmzvzr6RcalSKJtqmciGGg4Xh1BGA5xHpPCpS
uT5YBQKCFjYH6gAuPFcx0p43Gi9OYP5/gAyHC2Ptr9jN01/929A9ifbMhyELYTcu
WxbaZlJpZClcgKiX9sVuhSfYbySvD9Oi1AMKrqrdVL6ACBEA44la04vHBNuKkr8g
PI6K0AL1DjWYuE1YRgAvfzDqAl2zVWuEkDwoTBaz9jFXbb1Rbi0IpGSZhjZtmrB7
/A5GegGx3Zb5P91U0csVlWqPkk6gdyVEbTK/3wIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFH3u19UjfBF7zMpKaaKnICJLOts5MB8GA1UdIwQYMBaAFBhNHAAvBg7JVuZO
XP5PHcCYWH/WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
R0UwY0FDOEdEc2xXNWs1Y19rOGR3SmhZZjlZLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8zYi8wNGRmOTItYTk3OS00MjFmLTgwNDYtMTQxNWM5Nzc5ZTE3LzEv
ZmU3WDFTTjhFWHZNeWtwcG9xY2dJa3M2MnprLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8w
NGRmOTItYTk3OS00MjFmLTgwNDYtMTQxNWM5Nzc5ZTE3LzEvR0UwY0FDOEdEc2xX
NWs1Y19rOGR3SmhZZjlZLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2RyLMA0GCSqGSIb3DQEBCwUAA4IB
AQA8XLmGBsulypOV4yjzpErlFhsh4CCuZ1nA2M7Fvuyk2fVYyxCa7Dv/Sder31cr
+QD6UJLdygGvxwkziLejaKoFez0OlH+sp4wloAP4Eye2GsUc/8mG7XhZ+tUHvEwF
sAvedUXiPygxkTGgmYosAiwfO65VF9N1OAgExbxC3wePuf4eiPDvn6oo4MnuWtsU
p8+s6evoLKQFThxzbRuu2ZgaYS1GHhYEXVBbacml8Id82uOsWbfkYVmwJLgOl0S+
fwN8bcYuPcl0QRuaVeF7edT4ap0jW8MtHhDRekb81/k6KouZ7jrv8LxbnHg/eo4j
KeUL5ofi052vEzvnekd/drQO
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:32 2023 by rpki-client on console-ams.rpki-client.org