Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/8e7e30-c2b8-4591-8cfe-7b8e9d335ca8/1/Kg_oJiFuCeLV2kmnBzPaOQI9ElI.roa
File: Kg_oJiFuCeLV2kmnBzPaOQI9ElI.roa (raw, json)
Hash identifier: GsUNcTp03dhvMWe6Jo6m6oJEuE7rQFMcrL+GMCwjTJc=
Subject key identifier: 2A:0F:E8:26:21:6E:09:E2:D5:DA:49:A7:07:33:DA:39:02:3D:12:52
Certificate issuer: /CN=f7742725862b90bda4510a02e804fef3ad1142dc
Certificate serial: 1B0088BF
Authority key identifier: F7:74:27:25:86:2B:90:BD:A4:51:0A:02:E8:04:FE:F3:AD:11:42:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93QnJYYrkL2kUQoC6AT-860RQtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/8e7e30-c2b8-4591-8cfe-7b8e9d335ca8/1/Kg_oJiFuCeLV2kmnBzPaOQI9ElI.roa
Signing time: Sat 01 Jan 2022 06:59:17 +0000
ROA not before: Sat 01 Jan 2022 06:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207246
IP address blocks: 212.28.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 453019839 (0x1b0088bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7742725862b90bda4510a02e804fef3ad1142dc
Validity
Not Before: Jan 1 06:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a0fe826216e09e2d5da49a70733da39023d1252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:67:4c:40:04:07:95:9c:df:2f:ba:be:1c:a8:
cf:0f:ad:00:d2:dc:22:a4:6c:eb:cf:56:92:d6:a6:
70:04:87:18:69:8a:43:ac:5e:1e:d8:b5:ad:40:19:
af:f4:a7:bb:a7:a9:5a:16:e7:14:c3:a5:b6:c0:d1:
fe:a4:85:c1:b6:54:42:01:67:fe:48:2a:94:c8:aa:
c8:84:b0:3f:17:06:89:0a:60:f9:c7:34:e4:a1:62:
7e:4b:c4:91:c8:ef:ea:b0:8d:2d:c0:74:81:da:d9:
b0:03:86:01:b5:a5:2c:dd:e0:93:e4:fd:f7:36:f0:
df:0c:0b:e5:79:7e:73:30:dc:ff:f9:ec:36:27:10:
9b:ed:68:6a:8b:04:ac:ed:a2:aa:33:e5:5d:ce:07:
18:98:0f:73:26:12:9e:1f:25:13:f4:68:c3:2c:80:
b5:1b:6f:c4:c1:30:5c:af:79:ae:57:0b:e0:65:3f:
4b:06:64:64:1f:ca:f1:78:f0:8b:9e:6f:6a:72:95:
46:3d:0b:a9:56:b6:d4:2d:0e:61:fa:57:57:c7:91:
05:54:ea:36:c1:7c:c5:08:38:5d:11:c1:48:5a:75:
05:3c:c6:32:d0:e0:8c:6e:53:f9:b4:d0:de:09:b4:
03:42:43:66:bd:8e:5c:28:ff:b6:49:bb:7a:32:f6:
68:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:0F:E8:26:21:6E:09:E2:D5:DA:49:A7:07:33:DA:39:02:3D:12:52
X509v3 Authority Key Identifier:
keyid:F7:74:27:25:86:2B:90:BD:A4:51:0A:02:E8:04:FE:F3:AD:11:42:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93QnJYYrkL2kUQoC6AT-860RQtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8e7e30-c2b8-4591-8cfe-7b8e9d335ca8/1/Kg_oJiFuCeLV2kmnBzPaOQI9ElI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8e7e30-c2b8-4591-8cfe-7b8e9d335ca8/1/93QnJYYrkL2kUQoC6AT-860RQtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.28.77.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:ed:98:6e:7f:fe:fb:0a:90:9d:a9:ac:c8:70:64:9d:87:25:
8b:d7:53:f8:fd:03:c4:c8:05:34:bc:73:fc:1b:53:36:f9:c8:
b1:23:35:2d:42:b0:e3:f4:2e:b6:39:68:81:71:46:4c:aa:f4:
7d:28:66:82:85:1c:75:d8:be:47:a1:cf:b2:2f:d6:04:c1:22:
b1:7a:3e:df:69:33:2c:fd:d0:35:1d:94:92:46:bb:e1:47:67:
ad:8e:6b:70:c8:41:f1:5a:11:ee:4a:28:8b:c9:18:69:d2:5b:
be:d4:25:ed:03:79:4d:1c:09:3b:3d:b0:ae:d8:5b:4e:53:34:
92:c9:18:45:d9:8e:1c:3a:d0:cb:d2:49:6e:f1:c0:06:97:5f:
ae:50:7a:a0:49:0b:b8:f3:f9:27:47:83:d4:d0:cf:e4:f6:c2:
23:6e:0e:89:36:6a:ad:85:68:b1:c9:d8:69:01:a9:a4:c0:b8:
ce:2f:4f:18:d4:35:ad:84:6c:06:57:97:de:fd:04:55:6f:47:
c9:df:87:2c:36:01:81:29:fb:53:6c:87:79:45:55:00:74:7f:
a3:da:71:da:55:33:8a:65:26:84:34:33:bc:f8:e4:4f:6b:60:
31:15:38:85:5c:59:41:d5:6a:4c:8f:79:fb:8e:55:f5:b0:f0:
d5:a3:e4:82
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGwCIvzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
Nzc0MjcyNTg2MmI5MGJkYTQ1MTBhMDJlODA0ZmVmM2FkMTE0MmRjMB4XDTIyMDEw
MTA2NTkxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmEwZmU4MjYyMTZl
MDllMmQ1ZGE0OWE3MDczM2RhMzkwMjNkMTI1MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKhnTEAEB5Wc3y+6vhyozw+tANLcIqRs689WktamcASHGGmK
Q6xeHti1rUAZr/Snu6epWhbnFMOltsDR/qSFwbZUQgFn/kgqlMiqyISwPxcGiQpg
+cc05KFifkvEkcjv6rCNLcB0gdrZsAOGAbWlLN3gk+T99zbw3wwL5Xl+czDc//ns
NicQm+1oaosErO2iqjPlXc4HGJgPcyYSnh8lE/RowyyAtRtvxMEwXK95rlcL4GU/
SwZkZB/K8Xjwi55vanKVRj0LqVa21C0OYfpXV8eRBVTqNsF8xQg4XRHBSFp1BTzG
MtDgjG5T+bTQ3gm0A0JDZr2OXCj/tkm7ejL2aM8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQqD+gmIW4J4tXaSacHM9o5Aj0SUjAfBgNVHSMEGDAWgBT3dCclhiuQvaRR
CgLoBP7zrRFC3DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzkzUW5KWVlya0wya1VRb0M2QVQtODYwUlF0dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDYvOGU3ZTMwLWMyYjgtNDU5MS04Y2ZlLTdiOGU5ZDMzNWNhOC8x
L0tnX29KaUZ1Q2VMVjJrbW5CelBhT1FJOUVsSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYv
OGU3ZTMwLWMyYjgtNDU5MS04Y2ZlLTdiOGU5ZDMzNWNhOC8xLzkzUW5KWVlya0wy
a1VRb0M2QVQtODYwUlF0dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANQcTTANBgkqhkiG9w0BAQsFAAOC
AQEAOu2Ybn/++wqQnamsyHBknYcli9dT+P0DxMgFNLxz/BtTNvnIsSM1LUKw4/Qu
tjlogXFGTKr0fShmgoUcddi+R6HPsi/WBMEisXo+32kzLP3QNR2Ukka74UdnrY5r
cMhB8VoR7kooi8kYadJbvtQl7QN5TRwJOz2wrthbTlM0kskYRdmOHDrQy9JJbvHA
BpdfrlB6oEkLuPP5J0eD1NDP5PbCI24OiTZqrYVoscnYaQGppMC4zi9PGNQ1rYRs
BleX3v0EVW9Hyd+HLDYBgSn7U2yHeUVVAHR/o9px2lUzimUmhDQzvPjkT2tgMRU4
hVxZQdVqTI95+45V9bDw1aPkgg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:23 2023 by rpki-client on console-fra.rpki-client.org