Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/b29c5c-d7c4-40dd-9639-55731c0a53a4/1/7WFBjluN-GGaZIfwv-XMZXFyXrk.roa
File: 7WFBjluN-GGaZIfwv-XMZXFyXrk.roa (raw, json)
Hash identifier: RC9kCJhcggaEMm3AYPuFl9EwixFkcjh4Mb3Q7YgHKGU=
Subject key identifier: ED:61:41:8E:5B:8D:F8:61:9A:64:87:F0:BF:E5:CC:65:71:72:5E:B9
Certificate issuer: /CN=72a759a825025241e1a8e012bf9ecc6f2a7c527b
Certificate serial: 17F05B5C
Authority key identifier: 72:A7:59:A8:25:02:52:41:E1:A8:E0:12:BF:9E:CC:6F:2A:7C:52:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cqdZqCUCUkHhqOASv57Mbyp8Uns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/b29c5c-d7c4-40dd-9639-55731c0a53a4/1/7WFBjluN-GGaZIfwv-XMZXFyXrk.roa
Signing time: Sat 01 Jan 2022 07:03:07 +0000
ROA not before: Sat 01 Jan 2022 07:03:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29305
IP address blocks: 195.225.136.0/22 maxlen: 22
194.177.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401627996 (0x17f05b5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72a759a825025241e1a8e012bf9ecc6f2a7c527b
Validity
Not Before: Jan 1 07:03:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed61418e5b8df8619a6487f0bfe5cc6571725eb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:18:d4:0b:bf:ae:bc:37:17:a0:35:14:82:29:
cf:79:3b:ac:22:8f:93:c8:00:cd:e2:eb:3e:8f:a7:
35:7a:67:cc:4b:94:ce:e4:a5:31:7b:58:78:07:51:
49:15:e5:de:52:f1:42:0d:2f:53:0a:fa:95:d7:4a:
01:a4:63:e5:4f:3e:9e:b1:64:04:68:71:4f:88:06:
28:9e:9d:7c:26:33:67:70:28:9c:1a:92:98:df:37:
49:64:82:2c:23:bf:38:cc:fc:ef:1e:3a:05:72:1f:
79:8f:32:eb:2c:e2:1c:10:94:03:cd:52:f9:2b:3d:
95:00:79:2f:a4:d7:8b:d8:70:dd:e7:8d:ff:33:7c:
49:4a:c4:39:71:0e:e4:be:89:c8:e5:77:57:85:7b:
2b:e3:0d:6d:67:ef:8e:74:e6:bb:b8:2f:af:f8:82:
bc:c6:3d:cc:d3:0a:52:9d:e5:4f:60:ac:46:e0:68:
a5:60:aa:33:05:a1:13:ef:a0:c6:0f:e7:07:1f:4f:
ba:da:68:8d:03:a6:f0:8d:1f:d5:61:f2:8e:15:93:
c2:7d:3d:14:8d:f7:56:0e:8e:80:1d:67:2a:51:e5:
f8:8a:be:47:35:5f:a4:24:91:b2:14:c1:03:88:69:
cc:d0:bb:32:f2:69:f6:86:55:f1:89:0c:6a:5a:00:
b3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:61:41:8E:5B:8D:F8:61:9A:64:87:F0:BF:E5:CC:65:71:72:5E:B9
X509v3 Authority Key Identifier:
keyid:72:A7:59:A8:25:02:52:41:E1:A8:E0:12:BF:9E:CC:6F:2A:7C:52:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cqdZqCUCUkHhqOASv57Mbyp8Uns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/b29c5c-d7c4-40dd-9639-55731c0a53a4/1/7WFBjluN-GGaZIfwv-XMZXFyXrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/b29c5c-d7c4-40dd-9639-55731c0a53a4/1/cqdZqCUCUkHhqOASv57Mbyp8Uns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.177.4.0/22
195.225.136.0/22
Signature Algorithm: sha256WithRSAEncryption
00:1a:a5:98:9a:4b:b1:67:ae:99:03:06:2a:08:39:bf:c1:92:
80:f3:ca:5e:fb:36:05:d3:18:83:dd:62:78:0b:5c:92:df:86:
27:a6:48:d3:38:6e:2a:ba:44:ba:46:47:af:c4:12:1f:9b:9c:
4d:94:14:4f:44:2e:1a:74:d6:2b:6f:13:e7:43:61:11:48:06:
56:e9:0e:46:ae:a9:1d:96:75:d2:85:5f:cd:b1:c8:65:6b:5f:
b6:00:cf:87:e3:34:b2:ea:01:4a:19:ac:a7:38:c8:3a:c8:62:
cf:9e:20:52:a5:8c:47:02:11:d8:9f:cd:b2:a7:59:b7:f9:c6:
a0:2a:81:40:73:b0:6a:a0:79:ff:05:b1:95:bf:81:c6:04:95:
ba:24:f4:b4:1f:9c:2a:ed:ea:b5:bf:22:cc:c8:f3:c1:66:8c:
d2:1f:17:8a:79:db:7d:d5:0a:86:f9:07:89:58:5f:86:29:b7:
17:89:64:d0:45:bb:73:82:4a:82:07:17:3b:7e:b4:de:1b:40:
68:b3:b6:d3:e6:6c:b5:26:4d:2c:57:40:29:e0:59:73:e9:a0:
90:1c:74:57:a6:48:f7:d7:69:44:4a:19:3c:8a:e2:54:42:dd:
0a:18:48:98:78:2c:0d:18:c9:ae:18:bc:4d:e0:5a:c3:0f:33:
88:ba:8c:18
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEF/BbXDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MmE3NTlhODI1MDI1MjQxZTFhOGUwMTJiZjllY2M2ZjJhN2M1MjdiMB4XDTIyMDEw
MTA3MDMwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWQ2MTQxOGU1Yjhk
Zjg2MTlhNjQ4N2YwYmZlNWNjNjU3MTcyNWViOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKsY1Au/rrw3F6A1FIIpz3k7rCKPk8gAzeLrPo+nNXpnzEuU
zuSlMXtYeAdRSRXl3lLxQg0vUwr6lddKAaRj5U8+nrFkBGhxT4gGKJ6dfCYzZ3Ao
nBqSmN83SWSCLCO/OMz87x46BXIfeY8y6yziHBCUA81S+Ss9lQB5L6TXi9hw3eeN
/zN8SUrEOXEO5L6JyOV3V4V7K+MNbWfvjnTmu7gvr/iCvMY9zNMKUp3lT2CsRuBo
pWCqMwWhE++gxg/nBx9PutpojQOm8I0f1WHyjhWTwn09FI33Vg6OgB1nKlHl+Iq+
RzVfpCSRshTBA4hpzNC7MvJp9oZV8YkMaloAs6kCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTtYUGOW434YZpkh/C/5cxlcXJeuTAfBgNVHSMEGDAWgBRyp1moJQJSQeGo
4BK/nsxvKnxSezAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NxZFpxQ1VDVWtIaHFPQVN2NTdNYnlwOFVucy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvYjI5YzVjLWQ3YzQtNDBkZC05NjM5LTU1NzMxYzBhNTNhNC8x
LzdXRkJqbHVOLUdHYVpJZnd2LVhNWlhGeVhyay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
YjI5YzVjLWQ3YzQtNDBkZC05NjM5LTU1NzMxYzBhNTNhNC8xL2NxZFpxQ1VDVWtI
aHFPQVN2NTdNYnlwOFVucy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAsKxBAMEAsPhiDANBgkqhkiG9w0B
AQsFAAOCAQEAABqlmJpLsWeumQMGKgg5v8GSgPPKXvs2BdMYg91ieAtckt+GJ6ZI
0zhuKrpEukZHr8QSH5ucTZQUT0QuGnTWK28T50NhEUgGVukORq6pHZZ10oVfzbHI
ZWtftgDPh+M0suoBShmspzjIOshiz54gUqWMRwIR2J/NsqdZt/nGoCqBQHOwaqB5
/wWxlb+BxgSVuiT0tB+cKu3qtb8izMjzwWaM0h8XinnbfdUKhvkHiVhfhim3F4lk
0EW7c4JKggcXO3603htAaLO20+ZstSZNLFdAKeBZc+mgkBx0V6ZI99dpREoZPIri
VELdChhImHgsDRjJrhi8TeBaww8ziLqMGA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:23 2023 by rpki-client on console-fra.rpki-client.org