Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/fy7LcvG9QDpvtFG09s70D1ZBcAk.roa
File: fy7LcvG9QDpvtFG09s70D1ZBcAk.roa (raw, json)
Hash identifier: s84mOtay9IcoRWHUBYoUYEXh3RH8+zD5euvrgWywGPc=
Subject key identifier: 7F:2E:CB:72:F1:BD:40:3A:6F:B4:51:B4:F6:CE:F4:0F:56:41:70:09
Certificate issuer: /CN=edb926f8c603aab79cb46a883bf632564a3faabf
Certificate serial: 01831CCC7257E57499A98B66286CCAC2ED52
Authority key identifier: ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/fy7LcvG9QDpvtFG09s70D1ZBcAk.roa
Signing time: Thu 08 Sep 2022 11:11:43 +0000
ROA not before: Thu 08 Sep 2022 11:11:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52011
IP address blocks: 103.81.142.0/24 maxlen: 24
31.132.57.0/24 maxlen: 24
31.132.56.0/24 maxlen: 24
89.46.84.0/23 maxlen: 23
89.46.87.0/24 maxlen: 24
2a03:b000:b00::/40 maxlen: 40
2a00:16d8:52::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1c:cc:72:57:e5:74:99:a9:8b:66:28:6c:ca:c2:ed:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb926f8c603aab79cb46a883bf632564a3faabf
Validity
Not Before: Sep 8 11:11:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f2ecb72f1bd403a6fb451b4f6cef40f56417009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:56:10:ab:86:e1:69:97:05:ab:50:cf:27:81:
f2:08:7a:96:92:de:af:ee:1d:1d:ab:67:fe:19:4f:
26:5d:5d:3a:7b:9d:36:c7:2d:68:94:dd:cd:31:00:
3d:3e:e3:32:0f:68:9f:13:4e:ed:70:6c:f1:60:e9:
ad:f5:f6:0f:f7:17:7c:17:ad:07:46:31:7d:b7:87:
dd:6b:70:95:f4:f0:cc:2b:78:da:84:4a:18:73:fb:
f7:e5:18:ff:7d:5c:cd:a9:b1:27:93:32:9d:48:8b:
56:25:e9:ae:15:25:d2:c1:d1:95:e9:ba:ac:a9:9c:
bd:76:d4:f3:3d:4f:6e:ce:b4:b9:c8:4b:44:71:e2:
0e:ba:ae:12:8f:fd:f2:2c:8e:c6:f6:ff:c2:2c:0a:
df:3d:7f:dc:23:64:82:66:6a:10:9d:e3:16:14:b6:
2a:93:4b:81:96:6a:4a:aa:55:3b:e5:dc:73:13:c3:
08:d8:db:59:a8:ff:17:55:d7:e2:6e:c5:b1:e0:5e:
a6:23:76:51:fb:01:3e:87:b5:c3:e9:3a:5c:36:69:
f2:ad:42:8c:19:f5:b6:cc:00:b6:e8:10:3b:ac:92:
e3:41:b5:26:02:3a:ee:2e:bc:d7:26:6a:ad:6e:67:
fb:64:de:f2:40:07:ce:f8:64:8d:69:eb:ea:b7:ad:
77:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2E:CB:72:F1:BD:40:3A:6F:B4:51:B4:F6:CE:F4:0F:56:41:70:09
X509v3 Authority Key Identifier:
keyid:ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/fy7LcvG9QDpvtFG09s70D1ZBcAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.132.56.0/23
89.46.84.0/23
89.46.87.0/24
103.81.142.0/24
IPv6:
2a00:16d8:52::/48
2a03:b000:b00::/40
Signature Algorithm: sha256WithRSAEncryption
3f:9a:cb:a2:2c:53:16:6e:0b:b5:ce:de:09:ba:f2:ee:5c:0c:
d8:26:97:87:49:24:dc:77:95:29:4f:11:d4:e6:dc:5b:55:9e:
3a:52:e1:b3:a7:45:f0:d0:4e:e6:6a:84:12:ce:ae:47:59:a4:
a3:1f:e8:bb:4c:68:22:9f:d0:51:99:8b:76:85:f0:f0:80:d5:
5b:59:ca:bd:3c:37:85:2c:62:82:b5:18:33:29:45:51:ec:33:
05:49:65:7b:c8:0d:54:71:78:77:33:4b:68:93:3f:24:f1:49:
e0:cb:5f:5d:fb:57:19:c8:4d:9c:47:54:c4:69:d9:88:9d:db:
69:70:59:1f:2d:2a:0f:30:ae:33:27:53:f6:d6:4a:48:a3:1b:
00:a3:12:8d:54:c6:bb:af:4c:c7:45:d3:d9:9a:f3:82:91:24:
00:e7:dc:1e:cc:62:d7:8f:36:22:41:eb:ae:2d:8d:49:ba:8a:
ce:37:eb:20:2d:bc:05:76:9c:47:a7:5f:ae:84:16:77:7f:47:
7c:c2:c3:c9:ea:9c:40:49:8a:22:de:5d:67:a8:d9:c5:09:48:
1a:05:72:b8:23:f2:cd:72:92:f3:fb:17:5a:58:f2:36:17:84:
2b:d7:df:1b:32:94:82:48:63:c2:68:03:87:02:92:c3:bb:91:
e6:28:00:51
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgISAYMczHJX5XSZqYtmKGzKwu1SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkYjkyNmY4YzYwM2FhYjc5Y2I0NmE4ODNiZjYzMjU2NGEz
ZmFhYmYwHhcNMjIwOTA4MTExMTQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZjJlY2I3MmYxYmQ0MDNhNmZiNDUxYjRmNmNlZjQwZjU2NDE3MDA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmVYQq4bhaZcFq1DPJ4HyCHqWkt6v
7h0dq2f+GU8mXV06e502xy1olN3NMQA9PuMyD2ifE07tcGzxYOmt9fYP9xd8F60H
RjF9t4fda3CV9PDMK3jahEoYc/v35Rj/fVzNqbEnkzKdSItWJemuFSXSwdGV6bqs
qZy9dtTzPU9uzrS5yEtEceIOuq4Sj/3yLI7G9v/CLArfPX/cI2SCZmoQneMWFLYq
k0uBlmpKqlU75dxzE8MI2NtZqP8XVdfibsWx4F6mI3ZR+wE+h7XD6TpcNmnyrUKM
GfW2zAC26BA7rJLjQbUmAjruLrzXJmqtbmf7ZN7yQAfO+GSNaevqt613EwIDAQAB
o4ICNDCCAjAwHQYDVR0OBBYEFH8uy3LxvUA6b7RRtPbO9A9WQXAJMB8GA1UdIwQY
MBaAFO25JvjGA6q3nLRqiDv2MlZKP6q/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2JrbS1NWURxcmVjdEdxSU9fWXlWa29fcXI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy81NmM5MzQtY2YxNC00YTRmLWFlN2Mt
M2JkMTk3OGJmMmY2LzEvZnk3TGN2RzlRRHB2dEZHMDlzNzBEMVpCY0FrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy81NmM5MzQtY2YxNC00YTRmLWFlN2MtM2JkMTk3OGJmMmY2
LzEvN2JrbS1NWURxcmVjdEdxSU9fWXlWa29fcXI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEoGCCsGAQUFBwEHAQH/BDswOTAeBAIAATAYAwQBH4Q4AwQB
WS5UAwQAWS5XAwQAZ1GOMBcEAgACMBEDBwAqABbYAFIDBgAqA7AACzANBgkqhkiG
9w0BAQsFAAOCAQEAP5rLoixTFm4Ltc7eCbry7lwM2CaXh0kk3HeVKU8R1ObcW1We
OlLhs6dF8NBO5mqEEs6uR1mkox/ou0xoIp/QUZmLdoXw8IDVW1nKvTw3hSxigrUY
MylFUewzBUlle8gNVHF4dzNLaJM/JPFJ4MtfXftXGchNnEdUxGnZiJ3baXBZHy0q
DzCuMydT9tZKSKMbAKMSjVTGu69Mx0XT2ZrzgpEkAOfcHsxi1482IkHrri2NSbqK
zjfrIC28BXacR6dfroQWd39HfMLDyeqcQEmKIt5dZ6jZxQlIGgVyuCPyzXKS8/sX
WljyNheEK9ffGzKUgkhjwmgDhwKSw7uR5igAUQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:35 2023 by rpki-client on console-ams.rpki-client.org