Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f6f339-8455-4db4-a650-7f78a3baa7c1/1/f4tzRNWyUrbepAPQW7UBKUpzqbg.roa
File: f4tzRNWyUrbepAPQW7UBKUpzqbg.roa (raw, json)
Hash identifier: A7wh29A8SB5DH1/Qcb2BJnu4s2dt9vU8eyH8cNJX/Yo=
Subject key identifier: 7F:8B:73:44:D5:B2:52:B6:DE:A4:03:D0:5B:B5:01:29:4A:73:A9:B8
Certificate issuer: /CN=2688ef373f8f00e01c25cf924b4f2e8ec6a219d1
Certificate serial: 415734CC
Authority key identifier: 26:88:EF:37:3F:8F:00:E0:1C:25:CF:92:4B:4F:2E:8E:C6:A2:19:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JojvNz-PAOAcJc-SS08ujsaiGdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f6f339-8455-4db4-a650-7f78a3baa7c1/1/f4tzRNWyUrbepAPQW7UBKUpzqbg.roa
Signing time: Sat 01 Jan 2022 11:57:58 +0000
ROA not before: Sat 01 Jan 2022 11:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205868
IP address blocks: 37.130.140.0/22 maxlen: 24
2a00:7380:feed::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1096234188 (0x415734cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2688ef373f8f00e01c25cf924b4f2e8ec6a219d1
Validity
Not Before: Jan 1 11:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f8b7344d5b252b6dea403d05bb501294a73a9b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:00:89:1c:e1:7e:2f:49:7e:e4:05:8b:d7:d7:
a3:9e:55:96:6f:7b:14:4c:31:9c:57:39:21:d8:b1:
9a:d5:a1:8c:54:63:33:69:4d:6e:78:88:db:38:5b:
78:ef:03:66:1a:30:bc:b9:10:a8:fc:11:83:55:8c:
77:a4:a3:80:2b:1d:d5:5a:69:63:20:7a:95:83:96:
19:34:2d:c5:62:86:f7:f6:1e:0d:41:ea:c7:d3:a5:
50:8f:93:2b:50:5b:9e:63:f1:cb:ac:3a:ed:e4:98:
79:3f:9d:1c:18:43:57:de:af:74:e3:e9:d8:50:aa:
a8:b9:fc:8a:30:09:02:12:99:fb:eb:fd:c3:2a:ae:
fc:37:3a:fc:e3:33:a2:1d:3e:89:e5:9a:a5:08:5d:
dc:85:cd:a3:9a:49:07:12:5c:9a:ab:b7:bc:84:26:
73:db:c3:65:1a:06:84:db:66:93:f6:b5:28:bd:e0:
4f:bd:58:fa:b1:f7:4f:f2:f3:93:a2:a5:9e:79:7a:
ef:43:2f:b7:34:68:04:c9:a6:a9:e2:7c:54:df:d0:
75:89:19:0c:59:85:2d:ae:3b:6e:2c:43:ba:00:78:
f2:e6:d1:2d:c0:03:0c:ae:8f:ee:be:dc:5a:bb:e7:
fd:6c:24:0a:a3:cf:b5:2f:92:32:86:21:4c:f6:6a:
d5:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:8B:73:44:D5:B2:52:B6:DE:A4:03:D0:5B:B5:01:29:4A:73:A9:B8
X509v3 Authority Key Identifier:
keyid:26:88:EF:37:3F:8F:00:E0:1C:25:CF:92:4B:4F:2E:8E:C6:A2:19:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JojvNz-PAOAcJc-SS08ujsaiGdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f6f339-8455-4db4-a650-7f78a3baa7c1/1/f4tzRNWyUrbepAPQW7UBKUpzqbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f6f339-8455-4db4-a650-7f78a3baa7c1/1/JojvNz-PAOAcJc-SS08ujsaiGdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.130.140.0/22
IPv6:
2a00:7380:feed::/48
Signature Algorithm: sha256WithRSAEncryption
20:23:9a:e0:ca:60:95:53:38:0f:4c:2c:94:3d:d1:e3:68:b4:
99:82:7f:bd:57:5c:ad:58:bc:41:76:63:17:88:4a:a1:68:72:
18:c7:28:9a:ae:80:6f:ce:13:8a:9f:4a:f3:30:5f:8b:85:e9:
56:9f:28:72:4a:00:33:3d:8f:7a:82:39:c3:bd:ab:26:35:82:
53:82:21:d9:9a:57:3a:fc:87:bf:c6:eb:28:ff:fd:27:56:80:
a6:d2:19:a2:87:a9:21:a5:7e:50:2b:1b:d4:12:b7:f7:30:c8:
a0:d4:38:43:11:89:52:8f:a8:57:b8:07:a4:e0:37:28:ae:6f:
92:50:85:40:eb:fd:5b:f1:22:c1:eb:da:77:9e:ca:c3:51:0c:
b5:a8:51:20:f7:13:db:d3:4a:b2:c5:61:43:60:6e:52:2f:18:
28:8b:9e:69:ad:84:d1:c4:d9:b3:c1:20:da:48:71:1e:76:d1:
a1:15:35:4b:96:a2:c4:c9:b4:d2:c8:a7:94:86:d0:da:3d:46:
77:8d:b5:66:78:09:2b:23:e8:f4:0b:19:6e:5e:5e:fd:fc:8b:
8f:ca:15:d3:f5:e1:1a:67:5f:cd:ad:e9:da:ca:86:dc:cd:38:
69:ad:33:81:a6:02:6c:87:64:35:84:42:36:c4:5f:4e:8c:e3:
df:4a:17:81
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEQVc0zDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
Njg4ZWYzNzNmOGYwMGUwMWMyNWNmOTI0YjRmMmU4ZWM2YTIxOWQxMB4XDTIyMDEw
MTExNTc1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2Y4YjczNDRkNWIy
NTJiNmRlYTQwM2QwNWJiNTAxMjk0YTczYTliODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALsAiRzhfi9JfuQFi9fXo55Vlm97FEwxnFc5IdixmtWhjFRj
M2lNbniI2zhbeO8DZhowvLkQqPwRg1WMd6SjgCsd1VppYyB6lYOWGTQtxWKG9/Ye
DUHqx9OlUI+TK1BbnmPxy6w67eSYeT+dHBhDV96vdOPp2FCqqLn8ijAJAhKZ++v9
wyqu/Dc6/OMzoh0+ieWapQhd3IXNo5pJBxJcmqu3vIQmc9vDZRoGhNtmk/a1KL3g
T71Y+rH3T/Lzk6Klnnl670MvtzRoBMmmqeJ8VN/QdYkZDFmFLa47bixDugB48ubR
LcADDK6P7r7cWrvn/WwkCqPPtS+SMoYhTPZq1YsCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBR/i3NE1bJStt6kA9BbtQEpSnOpuDAfBgNVHSMEGDAWgBQmiO83P48A4Bwl
z5JLTy6OxqIZ0TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0pvanZOei1QQU9BY0pjLVNTMDh1anNhaUdkRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2MvZjZmMzM5LTg0NTUtNGRiNC1hNjUwLTdmNzhhM2JhYTdjMS8x
L2Y0dHpSTld5VXJiZXBBUFFXN1VCS1VwenFiZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Mv
ZjZmMzM5LTg0NTUtNGRiNC1hNjUwLTdmNzhhM2JhYTdjMS8xL0pvanZOei1QQU9B
Y0pjLVNTMDh1anNhaUdkRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAiWCjDAPBAIAAjAJAwcAKgBzgP7t
MA0GCSqGSIb3DQEBCwUAA4IBAQAgI5rgymCVUzgPTCyUPdHjaLSZgn+9V1ytWLxB
dmMXiEqhaHIYxyiaroBvzhOKn0rzMF+LhelWnyhySgAzPY96gjnDvasmNYJTgiHZ
mlc6/Ie/xuso//0nVoCm0hmih6khpX5QKxvUErf3MMig1DhDEYlSj6hXuAek4Dco
rm+SUIVA6/1b8SLB69p3nsrDUQy1qFEg9xPb00qyxWFDYG5SLxgoi55prYTRxNmz
wSDaSHEedtGhFTVLlqLEybTSyKeUhtDaPUZ3jbVmeAkrI+j0CxluXl79/IuPyhXT
9eEaZ1/NrenayobczThprTOBpgJsh2Q1hEI2xF9OjOPfSheB
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:09 2025 by rpki-client