Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/1wNYGFYEtcd_k8ltYtj61KKlfs0.roa
File: 1wNYGFYEtcd_k8ltYtj61KKlfs0.roa (raw, json)
Hash identifier: NezGmthdzYLPPhDZLod6bv2IaLjkASLBG3A9LPB8eng=
Subject key identifier: D7:03:58:18:56:04:B5:C7:7F:93:C9:6D:62:D8:FA:D4:A2:A5:7E:CD
Certificate issuer: /CN=c7983b3a9758fcbe78733d9155aed266c882a23c
Certificate serial: 039FDE02
Authority key identifier: C7:98:3B:3A:97:58:FC:BE:78:73:3D:91:55:AE:D2:66:C8:82:A2:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x5g7OpdY_L54cz2RVa7SZsiCojw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/1wNYGFYEtcd_k8ltYtj61KKlfs0.roa
Signing time: Sat 01 Jan 2022 10:54:32 +0000
ROA not before: Sat 01 Jan 2022 10:54:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29553
IP address blocks: 217.76.112.0/20 maxlen: 20
188.246.128.0/19 maxlen: 19
188.246.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60808706 (0x39fde02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7983b3a9758fcbe78733d9155aed266c882a23c
Validity
Not Before: Jan 1 10:54:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d70358185604b5c77f93c96d62d8fad4a2a57ecd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9e:d9:e1:04:f6:34:66:34:a2:fc:0b:b7:da:
1b:c8:78:2a:8b:eb:cc:ec:cd:94:d3:2e:d1:bc:0c:
69:7d:57:f3:a5:80:9c:9e:f6:0e:59:2d:cb:e5:69:
38:e2:da:3b:bc:75:d4:fb:fc:ab:94:00:51:66:85:
8e:52:19:ad:c0:56:37:98:05:a4:71:f1:41:16:1e:
e8:06:cb:82:a6:57:da:05:a9:f4:97:23:b0:c9:a8:
de:d0:90:88:c9:71:a9:62:89:2f:18:90:a0:04:b5:
64:b3:1a:7d:b0:88:88:d5:0c:e6:86:e1:7e:7c:9f:
a3:3b:f4:13:c2:35:5e:0f:60:68:62:22:00:5f:73:
1c:de:14:e2:cd:75:af:a9:ee:94:ed:ba:de:8e:21:
92:d8:0b:08:44:d3:4a:63:2d:d7:c3:fe:45:6c:31:
87:d3:13:42:a2:4d:7a:ac:01:75:a1:e3:0e:9e:64:
da:90:bd:5a:0c:f8:16:ce:6f:f2:55:62:bc:a7:83:
ce:75:34:73:93:3c:8c:f6:e7:a9:df:e4:80:52:a6:
6f:41:f3:92:95:ce:10:82:64:85:4c:3a:6b:4e:4c:
89:19:9d:d4:69:52:cc:b1:d6:d5:e4:a4:e0:5b:8d:
69:3f:20:32:1c:84:db:4c:fc:f2:cb:11:5d:14:5f:
b3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:03:58:18:56:04:B5:C7:7F:93:C9:6D:62:D8:FA:D4:A2:A5:7E:CD
X509v3 Authority Key Identifier:
keyid:C7:98:3B:3A:97:58:FC:BE:78:73:3D:91:55:AE:D2:66:C8:82:A2:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x5g7OpdY_L54cz2RVa7SZsiCojw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/1wNYGFYEtcd_k8ltYtj61KKlfs0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/x5g7OpdY_L54cz2RVa7SZsiCojw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.246.128.0/19
217.76.112.0/20
Signature Algorithm: sha256WithRSAEncryption
6f:7b:2a:58:13:af:a7:5c:13:c8:83:69:ad:ed:8a:b4:a5:2d:
28:f0:fd:0c:0c:cf:91:1e:95:1c:82:d0:35:83:51:40:49:6d:
8a:d5:d2:e9:3e:36:f6:f9:ff:89:30:7b:d8:e3:a5:ca:ff:93:
d8:dd:e1:a9:a8:6c:67:96:15:a9:7a:25:02:bf:65:f6:9c:ae:
cf:b5:06:d0:3c:4a:02:b0:ef:8a:ae:10:16:0e:f1:49:cd:71:
e8:97:81:57:e1:47:80:20:b8:fa:b0:15:77:94:a9:17:5d:ad:
b7:37:87:7c:36:a9:b2:e2:d7:b7:75:b6:1c:cc:df:47:b7:ce:
4b:9c:74:5c:19:84:71:91:44:33:78:4a:2e:42:6c:c0:93:0c:
22:87:46:c6:5e:8a:19:71:ef:f5:a3:61:f3:b1:21:1c:fa:53:
54:8e:91:e3:0d:c9:4e:ca:26:f0:79:2b:27:00:5b:a5:55:fb:
17:46:f1:3b:9a:63:ff:09:9f:e0:72:2a:05:60:96:1a:fb:e1:
da:76:cf:68:66:d9:b7:5e:a3:42:7c:fa:6c:50:06:4b:66:d7:
de:cf:f3:e7:83:f3:a4:b7:d7:ea:07:13:d8:7b:d3:5d:cf:d0:
c8:59:18:cc:05:26:53:d2:62:60:b3:01:af:e7:10:48:fd:a8:
e7:95:51:e0
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEA5/eAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
Nzk4M2IzYTk3NThmY2JlNzg3MzNkOTE1NWFlZDI2NmM4ODJhMjNjMB4XDTIyMDEw
MTEwNTQzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDcwMzU4MTg1NjA0
YjVjNzdmOTNjOTZkNjJkOGZhZDRhMmE1N2VjZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALee2eEE9jRmNKL8C7faG8h4KovrzOzNlNMu0bwMaX1X86WA
nJ72Dlkty+VpOOLaO7x11Pv8q5QAUWaFjlIZrcBWN5gFpHHxQRYe6AbLgqZX2gWp
9JcjsMmo3tCQiMlxqWKJLxiQoAS1ZLMafbCIiNUM5obhfnyfozv0E8I1Xg9gaGIi
AF9zHN4U4s11r6nulO263o4hktgLCETTSmMt18P+RWwxh9MTQqJNeqwBdaHjDp5k
2pC9Wgz4Fs5v8lVivKeDznU0c5M8jPbnqd/kgFKmb0HzkpXOEIJkhUw6a05MiRmd
1GlSzLHW1eSk4FuNaT8gMhyE20z88ssRXRRfs7kCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTXA1gYVgS1x3+TyW1i2PrUoqV+zTAfBgNVHSMEGDAWgBTHmDs6l1j8vnhz
PZFVrtJmyIKiPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3g1ZzdPcGRZX0w1NGN6MlJWYTdTWnNpQ29qdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2QvODExZDE2LWI1MTMtNDdlZC05ZTcxLTIzODQwNWYyY2RlOS8x
LzF3TllHRllFdGNkX2s4bHRZdGo2MUtLbGZzMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Qv
ODExZDE2LWI1MTMtNDdlZC05ZTcxLTIzODQwNWYyY2RlOS8xL3g1ZzdPcGRZX0w1
NGN6MlJWYTdTWnNpQ29qdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEBbz2gAMEBNlMcDANBgkqhkiG9w0B
AQsFAAOCAQEAb3sqWBOvp1wTyINpre2KtKUtKPD9DAzPkR6VHILQNYNRQEltitXS
6T429vn/iTB72OOlyv+T2N3hqahsZ5YVqXolAr9l9pyuz7UG0DxKArDviq4QFg7x
Sc1x6JeBV+FHgCC4+rAVd5SpF12ttzeHfDapsuLXt3W2HMzfR7fOS5x0XBmEcZFE
M3hKLkJswJMMIodGxl6KGXHv9aNh87EhHPpTVI6R4w3JTsom8HkrJwBbpVX7F0bx
O5pj/wmf4HIqBWCWGvvh2nbPaGbZt16jQnz6bFAGS2bX3s/z54PzpLfX6gcT2HvT
Xc/QyFkYzAUmU9JiYLMBr+cQSP2o55VR4A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:55 2023 by rpki-client on console-fra.rpki-client.org