Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/FdWCNsgS5W3DIusOeh7y-XT2o8E.roa
File: FdWCNsgS5W3DIusOeh7y-XT2o8E.roa (raw, json)
Hash identifier: oJwTYXoZbc0Es/HRKViKMPNaofLxS2GTZCMIiT8YslU=
Subject key identifier: 15:D5:82:36:C8:12:E5:6D:C3:22:EB:0E:7A:1E:F2:F9:74:F6:A3:C1
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 031874BB
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/FdWCNsgS5W3DIusOeh7y-XT2o8E.roa
Signing time: Sat 01 Jan 2022 12:04:18 +0000
ROA not before: Sat 01 Jan 2022 12:04:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43063
IP address blocks: 88.80.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51934395 (0x31874bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jan 1 12:04:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15d58236c812e56dc322eb0e7a1ef2f974f6a3c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fa:98:30:d2:2a:87:df:d0:7a:a0:77:8c:ff:
93:40:7b:0c:e8:d4:11:0c:71:ac:66:63:b2:9f:29:
6c:de:1e:97:0f:7b:63:b0:f5:d3:c4:0c:97:81:24:
94:ff:e3:89:0e:8f:75:f0:c0:30:83:bf:e4:34:42:
c4:9c:48:ed:f8:13:0b:c2:7b:73:77:5a:7a:45:7e:
fe:c9:5c:b1:fc:44:f7:f1:a0:5c:8e:3b:3e:e1:09:
79:65:98:44:c3:a9:74:26:83:12:57:49:d5:fb:35:
4a:91:37:30:dd:78:db:81:44:1a:fe:95:e4:61:90:
bf:01:fc:9f:3c:50:35:bc:c9:c6:b8:71:3c:05:4f:
47:bf:5e:e6:05:c5:c3:ce:b9:90:83:88:a9:fd:7d:
ea:cd:4a:c0:58:fe:e9:c8:67:d9:5c:51:31:a3:b4:
a9:6b:33:28:77:45:01:8b:15:f3:80:d9:da:c2:a8:
4f:d0:b7:f7:63:f5:5c:a7:88:5e:ab:46:0a:a8:c4:
be:da:15:9f:52:ad:10:95:50:c2:9c:04:45:5b:6c:
69:9e:82:63:67:41:46:87:36:80:53:48:9b:28:12:
b4:5e:e2:bd:c6:7c:8c:ef:28:58:78:24:f7:74:93:
a0:b5:fb:45:9e:18:f1:eb:28:9b:96:77:32:a5:8b:
a7:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:D5:82:36:C8:12:E5:6D:C3:22:EB:0E:7A:1E:F2:F9:74:F6:A3:C1
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/FdWCNsgS5W3DIusOeh7y-XT2o8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.130.0/24
Signature Algorithm: sha256WithRSAEncryption
83:e3:76:1f:e7:35:33:9c:68:8e:ea:79:e2:54:c0:0d:ca:ba:
72:f1:5c:f2:7e:b6:8d:0a:dd:b8:1c:3e:e7:75:26:7b:89:ba:
02:9d:b8:23:17:1c:b3:cc:09:4e:f2:31:81:c2:f8:94:05:d6:
5e:a4:00:69:28:7e:05:d6:f3:04:db:75:c9:82:8a:5d:34:69:
5a:54:7e:d1:c0:a5:30:d5:2c:52:ce:2c:68:26:54:37:16:de:
2e:46:be:fb:f4:cb:31:df:92:a9:b1:ba:a2:a5:df:d2:8a:3b:
10:6a:5d:e0:13:78:5a:84:86:0a:86:32:c6:36:4f:a6:b5:c8:
28:ab:a2:4a:cd:f9:4a:14:3c:ed:db:2f:72:b5:59:37:44:12:
e4:ea:3d:80:98:3b:3f:55:9c:3a:fd:e2:03:96:a7:10:f1:8c:
60:7d:ea:42:60:50:37:49:a1:c5:22:44:5a:45:30:23:5c:d2:
36:b4:98:04:a5:5b:ac:82:d1:99:27:aa:b1:75:37:12:a9:37:
59:41:88:ae:49:42:71:86:30:17:ec:55:da:14:d7:88:fa:0c:
d8:7b:2b:e8:d2:ff:3f:37:c1:ab:9a:0e:26:21:77:a0:e8:0b:
46:0c:5f:1c:e6:6c:e7:9c:b1:05:fe:fb:7f:67:b0:06:f0:8a:
08:dc:e2:b3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAxh0uzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MTI0ZmJhMWU0MDFjMDNlNWJhMWNkNzdhZTllZTM5Y2ZkNjMxYmZiMB4XDTIyMDEw
MTEyMDQxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTVkNTgyMzZjODEy
ZTU2ZGMzMjJlYjBlN2ExZWYyZjk3NGY2YTNjMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALf6mDDSKoff0Hqgd4z/k0B7DOjUEQxxrGZjsp8pbN4elw97
Y7D108QMl4EklP/jiQ6PdfDAMIO/5DRCxJxI7fgTC8J7c3daekV+/slcsfxE9/Gg
XI47PuEJeWWYRMOpdCaDEldJ1fs1SpE3MN1424FEGv6V5GGQvwH8nzxQNbzJxrhx
PAVPR79e5gXFw865kIOIqf196s1KwFj+6chn2VxRMaO0qWszKHdFAYsV84DZ2sKo
T9C392P1XKeIXqtGCqjEvtoVn1KtEJVQwpwERVtsaZ6CY2dBRoc2gFNImygStF7i
vcZ8jO8oWHgk93SToLX7RZ4Y8esom5Z3MqWLp7sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQV1YI2yBLlbcMi6w56HvL5dPajwTAfBgNVHSMEGDAWgBRRJPuh5AHAPluh
zXeunuOc/WMb+zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VTVDdvZVFCd0Q1Ym9jMTNycDdqblAxakdfcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTMvYjcxNGFkLTFmNzgtNGExMC04ZTYxLWFiOGYxZjMzODdlZS8x
L0ZkV0NOc2dTNVczREl1c09laDd5LVhUMm84RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTMv
YjcxNGFkLTFmNzgtNGExMC04ZTYxLWFiOGYxZjMzODdlZS8xL1VTVDdvZVFCd0Q1
Ym9jMTNycDdqblAxakdfcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFhQgjANBgkqhkiG9w0BAQsFAAOC
AQEAg+N2H+c1M5xojup54lTADcq6cvFc8n62jQrduBw+53Ume4m6Ap24Ixccs8wJ
TvIxgcL4lAXWXqQAaSh+BdbzBNt1yYKKXTRpWlR+0cClMNUsUs4saCZUNxbeLka+
+/TLMd+SqbG6oqXf0oo7EGpd4BN4WoSGCoYyxjZPprXIKKuiSs35ShQ87dsvcrVZ
N0QS5Oo9gJg7P1WcOv3iA5anEPGMYH3qQmBQN0mhxSJEWkUwI1zSNrSYBKVbrILR
mSeqsXU3Eqk3WUGIrklCcYYwF+xV2hTXiPoM2Hsr6NL/PzfBq5oOJiF3oOgLRgxf
HOZs55yxBf77f2ewBvCKCNzisw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:13 2024 by rpki-client on console-fra.rpki-client.org