Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/1d9dda-2adf-46bd-8af7-4d16be9ba132/1/fRqDYfdFM0GLhd6j3d5K6Txs10I.roa
File: fRqDYfdFM0GLhd6j3d5K6Txs10I.roa (raw, json)
Hash identifier: WetVzKUNUq1t/pdvhyr/jA46moo1WEcLp5nrtqU3HwI=
Subject key identifier: 7D:1A:83:61:F7:45:33:41:8B:85:DE:A3:DD:DE:4A:E9:3C:6C:D7:42
Certificate issuer: /CN=2236ed5f5623edeb7910acd31d5f6ee81e5cb17e
Certificate serial: 011A23
Authority key identifier: 22:36:ED:5F:56:23:ED:EB:79:10:AC:D3:1D:5F:6E:E8:1E:5C:B1:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IjbtX1Yj7et5EKzTHV9u6B5csX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/1d9dda-2adf-46bd-8af7-4d16be9ba132/1/fRqDYfdFM0GLhd6j3d5K6Txs10I.roa
Signing time: Mon 31 Jan 2022 15:13:21 +0000
ROA not before: Mon 31 Jan 2022 15:13:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42543
IP address blocks: 83.166.80.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72227 (0x11a23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2236ed5f5623edeb7910acd31d5f6ee81e5cb17e
Validity
Not Before: Jan 31 15:13:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d1a8361f74533418b85dea3ddde4ae93c6cd742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:04:9d:fc:08:5d:63:9e:5a:fb:52:4a:34:5f:
28:11:c6:81:3c:cf:a0:e3:2e:12:a2:1c:1b:41:da:
ed:a6:78:6e:52:b3:27:d3:05:db:55:c5:23:27:b4:
f5:a2:92:8c:21:55:91:0d:c4:67:79:b7:f5:cc:e6:
13:86:ba:f6:03:1a:8d:c3:3a:c4:44:ed:20:7f:ff:
fc:9b:b3:85:6c:36:5a:67:4c:8c:02:2c:5d:d5:35:
09:c6:d8:0e:98:ac:30:50:bb:bf:23:2e:da:2b:a5:
36:0e:62:9a:ab:cc:e7:6f:41:1d:ff:19:98:41:fe:
21:19:63:44:b8:29:2e:55:55:b5:c7:e6:b1:64:44:
ae:70:ea:b7:fb:3b:27:60:4d:06:16:e0:b2:71:86:
83:ac:49:e8:8f:bf:78:41:1a:74:35:42:cb:fe:3c:
40:45:6c:aa:08:4e:38:51:a4:4e:f9:b2:e1:c6:7c:
35:6f:f6:a7:77:a9:a6:2f:2d:87:36:27:ee:4c:4a:
dd:a7:0b:12:51:1e:aa:c4:4f:ed:9f:80:91:d0:75:
f5:ef:e3:39:b7:d0:bf:3f:ce:ec:11:76:a6:50:e9:
c9:d0:5b:f6:b6:55:89:cc:78:e6:36:36:85:28:d6:
fa:00:42:51:3d:90:7e:dc:ea:66:72:b5:e9:7b:f2:
7d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:1A:83:61:F7:45:33:41:8B:85:DE:A3:DD:DE:4A:E9:3C:6C:D7:42
X509v3 Authority Key Identifier:
keyid:22:36:ED:5F:56:23:ED:EB:79:10:AC:D3:1D:5F:6E:E8:1E:5C:B1:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IjbtX1Yj7et5EKzTHV9u6B5csX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/1d9dda-2adf-46bd-8af7-4d16be9ba132/1/fRqDYfdFM0GLhd6j3d5K6Txs10I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/1d9dda-2adf-46bd-8af7-4d16be9ba132/1/IjbtX1Yj7et5EKzTHV9u6B5csX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.166.80.0/21
Signature Algorithm: sha256WithRSAEncryption
09:f4:66:4a:5c:58:78:1b:a9:f7:03:50:f2:0a:7c:5c:bb:8d:
00:10:e8:17:40:ab:25:58:6c:48:32:fd:27:7a:38:fc:03:78:
bd:f8:79:38:c6:bd:b3:2c:2a:01:15:96:48:ba:3e:20:f3:0c:
66:86:2f:ef:59:1c:6e:9b:6a:56:35:bc:f3:6e:c6:8d:f4:be:
c5:b6:13:e1:66:c9:8f:7c:4f:f1:e9:0a:44:99:96:7e:42:0f:
20:d8:dd:4e:d4:4c:04:86:12:60:22:bf:3b:5c:da:81:44:68:
50:06:96:c5:2f:ab:a1:00:82:b5:21:e9:24:14:45:be:db:e6:
30:b5:cd:0a:af:d1:6c:77:83:1c:3f:ae:e4:3a:b5:41:bb:2d:
c1:fa:26:50:d8:49:a6:07:18:77:b5:60:06:61:ca:2c:62:61:
55:01:87:6b:f2:74:f0:1a:83:ed:f8:11:de:f1:eb:de:9f:36:
ad:a4:af:5a:7d:8b:da:5b:70:14:68:73:dd:c4:e4:0d:b9:64:
b7:c9:4d:bb:40:cf:cf:c5:72:ed:f9:d3:11:ea:b1:c5:96:29:
1d:dd:2a:45:df:e2:64:a2:e7:1f:4b:e8:24:4a:a1:c5:f8:37:
48:3b:ee:4b:02:bb:c3:be:74:75:57:b0:4a:da:e5:87:ab:71:
84:0b:d3:d2
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDARojMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDIy
MzZlZDVmNTYyM2VkZWI3OTEwYWNkMzFkNWY2ZWU4MWU1Y2IxN2UwHhcNMjIwMTMx
MTUxMzIxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg3ZDFhODM2MWY3NDUz
MzQxOGI4NWRlYTNkZGRlNGFlOTNjNmNkNzQyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAqgSd/AhdY55a+1JKNF8oEcaBPM+g4y4SohwbQdrtpnhuUrMn
0wXbVcUjJ7T1opKMIVWRDcRnebf1zOYThrr2AxqNwzrERO0gf//8m7OFbDZaZ0yM
Aixd1TUJxtgOmKwwULu/Iy7aK6U2DmKaq8znb0Ed/xmYQf4hGWNEuCkuVVW1x+ax
ZESucOq3+zsnYE0GFuCycYaDrEnoj794QRp0NULL/jxARWyqCE44UaRO+bLhxnw1
b/and6mmLy2HNifuTErdpwsSUR6qxE/tn4CR0HX17+M5t9C/P87sEXamUOnJ0Fv2
tlWJzHjmNjaFKNb6AEJRPZB+3OpmcrXpe/J9HQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFH0ag2H3RTNBi4Xeo93eSuk8bNdCMB8GA1UdIwQYMBaAFCI27V9WI+3reRCs
0x1fbugeXLF+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
SWpidFgxWWo3ZXQ1RUt6VEhWOXU2QjVjc1g0LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC80MC8xZDlkZGEtMmFkZi00NmJkLThhZjctNGQxNmJlOWJhMTMyLzEv
ZlJxRFlmZEZNMEdMaGQ2ajNkNUs2VHhzMTBJLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8x
ZDlkZGEtMmFkZi00NmJkLThhZjctNGQxNmJlOWJhMTMyLzEvSWpidFgxWWo3ZXQ1
RUt6VEhWOXU2QjVjc1g0LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDU6ZQMA0GCSqGSIb3DQEBCwUAA4IB
AQAJ9GZKXFh4G6n3A1DyCnxcu40AEOgXQKslWGxIMv0nejj8A3i9+Hk4xr2zLCoB
FZZIuj4g8wxmhi/vWRxum2pWNbzzbsaN9L7FthPhZsmPfE/x6QpEmZZ+Qg8g2N1O
1EwEhhJgIr87XNqBRGhQBpbFL6uhAIK1IekkFEW+2+Ywtc0Kr9Fsd4McP67kOrVB
uy3B+iZQ2EmmBxh3tWAGYcosYmFVAYdr8nTwGoPt+BHe8evenzatpK9afYvaW3AU
aHPdxOQNuWS3yU27QM/PxXLt+dMR6rHFlikd3SpF3+JkoucfS+gkSqHF+DdIO+5L
ArvDvnR1V7BK2uWHq3GEC9PS
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:46 2024 by rpki-client on console-fra.rpki-client.org