Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/fkr8NO7qCVddOqIP4LRf-nVqDGk.roa
File: fkr8NO7qCVddOqIP4LRf-nVqDGk.roa (raw, json)
Hash identifier: 08KQ3Po/Vym0jMId/t9Qy5Yrqn9y2zOx4OB0cUCh1pM=
Subject key identifier: 7E:4A:FC:34:EE:EA:09:57:5D:3A:A2:0F:E0:B4:5F:FA:75:6A:0C:69
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 38276638
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/fkr8NO7qCVddOqIP4LRf-nVqDGk.roa
Signing time: Sat 02 Apr 2022 14:03:49 +0000
ROA not before: Sat 02 Apr 2022 14:03:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 37.148.218.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 942106168 (0x38276638)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Apr 2 14:03:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e4afc34eeea09575d3aa20fe0b45ffa756a0c69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f1:65:75:80:06:ff:17:96:7d:38:d7:e3:77:
d0:29:fe:8d:82:d5:5c:cc:a5:9e:3e:5b:6d:05:c3:
69:27:af:8d:5f:6c:ad:98:9e:b2:e4:fc:a6:c1:d6:
2c:98:f7:d2:6b:54:5f:f7:75:1e:86:0d:b8:6f:f8:
61:5f:a9:42:b0:2d:3b:ce:bd:70:90:ec:74:19:43:
1d:94:6f:6c:16:fa:d3:f4:2a:80:0f:78:e5:85:f3:
12:d1:41:d1:9f:bf:12:a9:1d:93:c9:fe:93:d7:9d:
2a:99:98:db:ab:3c:f2:3d:6c:10:d0:43:1d:13:eb:
55:e7:91:76:af:06:27:cd:aa:c0:0e:55:f4:36:9a:
3c:b7:29:e1:f2:16:67:06:ae:d9:eb:64:12:e6:42:
e4:48:89:18:03:68:4a:1c:40:a1:01:96:48:73:d5:
53:60:21:cb:b0:67:b6:1a:3e:1d:9a:1f:70:e8:e5:
75:58:38:0a:b1:19:ee:1e:e2:91:c3:71:1c:90:b5:
a3:39:bd:2a:46:f9:59:49:f0:16:35:79:d1:af:27:
1c:9f:42:76:21:a0:11:6e:3c:f9:12:20:6e:59:7d:
27:aa:40:e6:dc:2b:d8:a8:5e:30:40:53:74:87:11:
86:37:da:97:18:b7:b2:c3:fc:91:1c:b3:06:af:69:
7c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:4A:FC:34:EE:EA:09:57:5D:3A:A2:0F:E0:B4:5F:FA:75:6A:0C:69
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/fkr8NO7qCVddOqIP4LRf-nVqDGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.218.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:b1:61:e4:55:6a:ec:8a:8c:21:3b:73:a5:f9:02:fb:14:fe:
a6:fc:bd:a2:c4:d0:29:f4:49:71:04:64:19:9b:da:c2:29:ce:
0c:e4:5f:eb:ba:e4:81:9a:bc:31:90:67:92:f5:1c:0a:11:aa:
32:6c:a8:60:a2:dc:1c:ef:fb:e4:40:6b:30:af:4a:0d:e6:44:
dd:da:55:00:9f:cd:5b:b0:fb:39:14:23:1d:8e:35:37:46:fe:
71:07:31:c4:9f:11:af:52:df:4a:a7:d3:2c:b1:95:1e:a0:cd:
b7:ee:c1:a1:4e:f1:aa:b9:7c:4a:6d:a3:9d:a8:e1:53:21:b1:
2c:ec:08:8a:78:2f:10:62:20:4a:5c:ae:74:b9:d6:74:d1:0c:
9f:a3:69:04:07:bb:39:9e:10:5c:db:39:cb:db:94:8e:29:aa:
c2:0a:c6:8d:bb:7b:75:58:e6:ae:29:3d:51:34:90:36:ce:35:
ba:2c:a8:2d:c2:e8:66:e7:b3:94:ca:b6:af:3d:bd:ef:f9:bb:
5d:9a:a7:d8:21:c2:d8:f9:2c:f2:7b:8f:a5:c9:d3:1d:fe:cd:
a1:17:14:19:7b:3a:77:ec:e7:1e:6c:5f:e9:a2:c2:55:00:5b:
ef:47:aa:a0:e7:ac:f8:3c:7b:84:51:61:4d:36:09:b0:2b:0e:
c3:25:7c:c1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOCdmODANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
OGIzZWVkMWM3YWNhNjM2ZDYyNDU4NTJiODAyZTBlNzM3NTRkZjYzMB4XDTIyMDQw
MjE0MDM0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2U0YWZjMzRlZWVh
MDk1NzVkM2FhMjBmZTBiNDVmZmE3NTZhMGM2OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMHxZXWABv8Xln041+N30Cn+jYLVXMylnj5bbQXDaSevjV9s
rZiesuT8psHWLJj30mtUX/d1HoYNuG/4YV+pQrAtO869cJDsdBlDHZRvbBb60/Qq
gA945YXzEtFB0Z+/Eqkdk8n+k9edKpmY26s88j1sENBDHRPrVeeRdq8GJ82qwA5V
9DaaPLcp4fIWZwau2etkEuZC5EiJGANoShxAoQGWSHPVU2Ahy7Bntho+HZofcOjl
dVg4CrEZ7h7ikcNxHJC1ozm9Kkb5WUnwFjV50a8nHJ9CdiGgEW48+RIgbll9J6pA
5twr2KheMEBTdIcRhjfalxi3ssP8kRyzBq9pfBkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR+Svw07uoJV106og/gtF/6dWoMaTAfBgNVHSMEGDAWgBTos+7Rx6ymNtYk
WFK4AuDnN1TfYzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZMUHUwY2VzcGpiV0pGaFN1QUxnNXpkVTMyTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWYvMTc3MzI5LTI4Y2QtNDg2NC05ZTE2LTk0NjQwNGVjMWFhNC8x
L2ZrcjhOTzdxQ1ZkZE9xSVA0TFJmLW5WcURHay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWYv
MTc3MzI5LTI4Y2QtNDg2NC05ZTE2LTk0NjQwNGVjMWFhNC8xLzZMUHUwY2VzcGpi
V0pGaFN1QUxnNXpkVTMyTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASWU2jANBgkqhkiG9w0BAQsFAAOC
AQEAjbFh5FVq7IqMITtzpfkC+xT+pvy9osTQKfRJcQRkGZvawinODORf67rkgZq8
MZBnkvUcChGqMmyoYKLcHO/75EBrMK9KDeZE3dpVAJ/NW7D7ORQjHY41N0b+cQcx
xJ8Rr1LfSqfTLLGVHqDNt+7BoU7xqrl8Sm2jnajhUyGxLOwIingvEGIgSlyudLnW
dNEMn6NpBAe7OZ4QXNs5y9uUjimqwgrGjbt7dVjmrik9UTSQNs41uiyoLcLoZuez
lMq2rz297/m7XZqn2CHC2Pks8nuPpcnTHf7NoRcUGXs6d+znHmxf6aLCVQBb70eq
oOes+Dx7hFFhTTYJsCsOwyV8wQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:08 2024 by rpki-client on console-fra.rpki-client.org