Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/_hFD6euJWT1XZ8bBCXSNyfNHvy4.roa
File: _hFD6euJWT1XZ8bBCXSNyfNHvy4.roa (raw, json)
Hash identifier: XLWYD0PM5IpByTElyoog41wfS7HjzNNFVDLJGM72L08=
Subject key identifier: FE:11:43:E9:EB:89:59:3D:57:67:C6:C1:09:74:8D:C9:F3:47:BF:2E
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 0DF2D148
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/_hFD6euJWT1XZ8bBCXSNyfNHvy4.roa
Signing time: Sat 01 Jan 2022 10:54:16 +0000
ROA not before: Sat 01 Jan 2022 10:54:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213391
IP address blocks: 147.136.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 234017096 (0xdf2d148)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 10:54:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe1143e9eb89593d5767c6c109748dc9f347bf2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f9:73:5f:35:4d:ee:38:9f:95:f4:8f:f1:89:
a6:ee:a5:cc:fb:ad:7b:16:4c:2d:13:32:8a:dc:d4:
57:e6:d2:1a:7d:6b:ba:5b:6c:8c:54:16:5e:ff:ad:
09:d9:a8:0b:3a:6b:9a:b5:70:ab:57:16:66:d3:70:
c9:de:d2:33:83:ad:76:5d:89:74:96:2e:03:80:d3:
ab:20:9b:a0:de:ed:51:7b:1d:3d:19:c0:e9:59:e7:
ee:ce:4b:c3:75:3a:f0:e9:13:07:fb:bc:73:81:e9:
a2:0f:b9:00:85:19:15:c2:4d:05:43:53:a5:21:c1:
66:a5:f7:5f:04:74:27:c4:c3:1f:df:03:bb:ea:d7:
aa:e1:4f:a2:5e:95:c8:c0:71:75:c6:da:fb:c4:c9:
b8:a7:e7:c5:ef:a5:d3:b2:18:4d:bf:5c:93:d8:4b:
9d:5e:f7:55:6e:00:af:1b:03:f4:d5:33:a9:ea:56:
5d:fa:e0:2d:77:4d:18:f6:d0:5e:c0:25:ec:d0:a5:
5d:7a:2c:52:51:8d:93:ee:93:59:de:30:5b:5f:2a:
aa:a4:03:b6:da:d3:51:b0:ab:99:20:0c:5e:d7:11:
2a:29:04:40:d5:f5:cc:10:73:f5:cc:d2:f8:9b:b7:
74:cb:6c:f5:3a:52:1a:59:ac:52:46:ad:14:1d:3a:
82:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:11:43:E9:EB:89:59:3D:57:67:C6:C1:09:74:8D:C9:F3:47:BF:2E
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/_hFD6euJWT1XZ8bBCXSNyfNHvy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.136.88.0/22
Signature Algorithm: sha256WithRSAEncryption
01:db:5c:d8:6d:59:33:5e:8b:62:75:cf:b1:c1:38:ac:6e:b3:
a7:06:49:22:92:f3:56:76:26:5b:1f:2f:db:18:16:69:cb:5d:
17:a7:cf:41:f1:84:cf:43:23:43:44:6e:f1:14:38:4c:ad:9b:
b4:e5:db:96:98:05:6b:c4:82:cf:f6:ab:c4:91:aa:c5:50:ea:
b5:e2:6c:4e:d8:dc:de:71:7f:b0:46:0f:2f:e3:a7:b3:07:c1:
af:41:cd:1b:3a:eb:aa:c1:26:c5:af:6c:f9:88:16:8d:ef:3d:
fc:5c:90:21:30:96:05:99:d1:d4:00:d7:4b:95:b5:8f:8e:04:
c4:54:6f:2f:a2:07:cf:b1:8d:e6:4e:ef:7f:73:d7:10:68:5e:
38:74:8f:54:b3:28:b3:e4:d6:e0:3d:d1:f1:32:75:45:96:d2:
50:a4:9c:a0:f4:03:2c:6d:58:ee:19:3b:02:43:e2:4b:04:1a:
0e:a3:28:d6:e6:bc:9e:5e:45:cd:2c:fa:f6:55:7f:9f:ac:6d:
5b:5f:1d:23:25:3e:5c:54:da:1c:27:d6:c5:c9:7b:3f:60:e0:
df:0e:94:d0:cd:50:e0:5e:ac:66:14:fc:f5:f8:b9:f9:dd:8b:
46:fa:3e:c1:94:d3:a4:07:eb:c0:19:47:c2:d3:d8:07:d2:d6:
00:32:56:1b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDfLRSDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MjY2MDViNGQyN2YxMzk2OGU4Nzk0ZTZlZjA5MTIyMzc0ODgxN2Q4MB4XDTIyMDEw
MTEwNTQxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmUxMTQzZTllYjg5
NTkzZDU3NjdjNmMxMDk3NDhkYzlmMzQ3YmYyZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM/5c181Te44n5X0j/GJpu6lzPutexZMLRMyitzUV+bSGn1r
ultsjFQWXv+tCdmoCzprmrVwq1cWZtNwyd7SM4Otdl2JdJYuA4DTqyCboN7tUXsd
PRnA6Vnn7s5Lw3U68OkTB/u8c4Hpog+5AIUZFcJNBUNTpSHBZqX3XwR0J8TDH98D
u+rXquFPol6VyMBxdcba+8TJuKfnxe+l07IYTb9ck9hLnV73VW4ArxsD9NUzqepW
XfrgLXdNGPbQXsAl7NClXXosUlGNk+6TWd4wW18qqqQDttrTUbCrmSAMXtcRKikE
QNX1zBBz9czS+Ju3dMts9TpSGlmsUkatFB06gpsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT+EUPp64lZPVdnxsEJdI3J80e/LjAfBgNVHSMEGDAWgBSCZgW00n8Tlo6H
lObvCRIjdIgX2DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2dtWUZ0TkpfRTVhT2g1VG03d2tTSTNTSUY5Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODcvZmJjYzMyLTMzYzgtNDFmZi04OWZhLTJkMTkxOGJhMWMwZS8x
L19oRkQ2ZXVKV1QxWFo4YkJDWFNOeWZOSHZ5NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcv
ZmJjYzMyLTMzYzgtNDFmZi04OWZhLTJkMTkxOGJhMWMwZS8xL2dtWUZ0TkpfRTVh
T2g1VG03d2tTSTNTSUY5Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEApOIWDANBgkqhkiG9w0BAQsFAAOC
AQEAAdtc2G1ZM16LYnXPscE4rG6zpwZJIpLzVnYmWx8v2xgWactdF6fPQfGEz0Mj
Q0Ru8RQ4TK2btOXblpgFa8SCz/arxJGqxVDqteJsTtjc3nF/sEYPL+OnswfBr0HN
GzrrqsEmxa9s+YgWje89/FyQITCWBZnR1ADXS5W1j44ExFRvL6IHz7GN5k7vf3PX
EGheOHSPVLMos+TW4D3R8TJ1RZbSUKScoPQDLG1Y7hk7AkPiSwQaDqMo1ua8nl5F
zSz69lV/n6xtW18dIyU+XFTaHCfWxcl7P2Dg3w6U0M1Q4F6sZhT89fi5+d2LRvo+
wZTTpAfrwBlHwtPYB9LWADJWGw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:37 2023 by rpki-client on console-ams.rpki-client.org