Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/fPlKzrfsw8_kCmf5hLLZrYl5J0E.roa
File: fPlKzrfsw8_kCmf5hLLZrYl5J0E.roa (raw, json)
Hash identifier: LcaPODhN9Q+DVKrbEysPxub2kzaU+aQRAZgBHBIx7bw=
Subject key identifier: 7C:F9:4A:CE:B7:EC:C3:CF:E4:0A:67:F9:84:B2:D9:AD:89:79:27:41
Certificate issuer: /CN=d2dce870e473c354273e89c5e4e2ed3e0c069356
Certificate serial: 0184E11F3232D3FFA3E46C5F6A074CDC054A
Authority key identifier: D2:DC:E8:70:E4:73:C3:54:27:3E:89:C5:E4:E2:ED:3E:0C:06:93:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/fPlKzrfsw8_kCmf5hLLZrYl5J0E.roa
Signing time: Mon 05 Dec 2022 07:10:28 +0000
ROA not before: Mon 05 Dec 2022 07:10:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57445
IP address blocks: 91.232.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e1:1f:32:32:d3:ff:a3:e4:6c:5f:6a:07:4c:dc:05:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2dce870e473c354273e89c5e4e2ed3e0c069356
Validity
Not Before: Dec 5 07:10:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7cf94aceb7ecc3cfe40a67f984b2d9ad89792741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:7a:d3:2d:c6:8d:ec:f8:f2:1d:07:ca:a3:b9:
4b:71:e5:25:9e:e4:7e:11:8b:d7:1d:2c:56:23:54:
72:be:0c:ac:07:b4:02:f4:0a:a2:80:e2:92:c4:cc:
4c:6b:2e:e1:69:fe:7b:23:7e:11:22:5b:60:74:71:
81:7d:c9:a6:e2:70:6b:c8:61:4d:47:c6:00:22:85:
fa:f2:c7:98:ef:44:32:ab:97:05:c2:60:37:6f:45:
47:6f:7a:fd:03:ed:fb:c4:ee:0a:94:5a:5d:19:69:
c7:07:84:70:07:6f:a7:1a:ec:29:7d:5b:b7:a3:d5:
f7:e7:25:ef:4e:7e:57:a9:ee:ab:5c:bb:0f:57:04:
06:92:e9:cc:e7:13:23:36:ab:f9:73:9e:1a:4f:ba:
2e:79:64:d5:f7:d0:3a:84:03:fd:0c:aa:8c:0f:0e:
75:70:5a:48:09:4c:01:53:5d:8c:d2:7e:bc:a8:bc:
cc:5e:d7:9c:b0:63:00:b4:f8:0b:22:a6:ed:89:da:
87:cd:83:05:ae:e7:fb:3e:4c:6f:50:87:3d:69:86:
00:4c:2e:6e:05:c9:a9:55:64:70:bb:1b:f0:bc:53:
16:e4:49:33:0a:d0:11:42:6e:34:f4:d2:c5:3b:69:
6e:d3:4e:71:12:ed:99:76:96:0c:67:f2:6f:3b:46:
8a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F9:4A:CE:B7:EC:C3:CF:E4:0A:67:F9:84:B2:D9:AD:89:79:27:41
X509v3 Authority Key Identifier:
keyid:D2:DC:E8:70:E4:73:C3:54:27:3E:89:C5:E4:E2:ED:3E:0C:06:93:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/fPlKzrfsw8_kCmf5hLLZrYl5J0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.26.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:32:62:f3:1b:01:b2:25:13:38:b1:ad:e2:b4:e4:ab:87:ee:
55:dc:69:87:53:91:0e:d9:97:09:41:6c:ce:43:8a:69:4f:24:
f1:d6:20:c3:50:da:e0:19:cd:e6:a2:f7:4f:ae:70:00:df:7a:
90:27:20:15:cc:1b:02:ae:49:94:d8:ce:db:45:a7:95:df:d2:
58:01:65:84:f4:6b:be:78:b0:38:f3:f7:ea:48:e5:0d:24:86:
ba:26:55:31:9a:c8:10:04:76:c0:07:ab:2d:2a:6f:31:6e:69:
47:78:15:19:71:8c:c8:ec:07:40:5f:88:9e:cb:63:09:a1:8c:
91:a1:5b:da:6a:58:d8:06:10:2c:c0:49:5d:a2:c6:3f:27:f8:
f4:f0:39:91:ee:c4:08:2f:f3:39:54:b7:b9:83:ba:ae:55:f9:
e3:81:88:a6:37:c1:f2:4e:6c:fe:54:56:09:54:c0:c3:d3:f0:
db:df:58:cd:ec:3a:ee:bf:f1:b8:d5:37:18:3a:f2:3f:d8:5d:
ce:92:14:02:15:a3:22:96:be:84:62:fc:18:a6:24:9a:84:c1:
1a:b2:af:ff:cf:5e:33:5d:1f:bf:bc:f8:7a:87:2a:99:40:3e:
cc:0c:56:2b:00:51:c7:ab:ba:9f:ab:72:d6:31:51:af:2c:2d:
59:49:70:e4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYThHzIy0/+j5GxfagdM3AVKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyZGNlODcwZTQ3M2MzNTQyNzNlODljNWU0ZTJlZDNlMGMw
NjkzNTYwHhcNMjIxMjA1MDcxMDI4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Y2Y5NGFjZWI3ZWNjM2NmZTQwYTY3Zjk4NGIyZDlhZDg5NzkyNzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmHrTLcaN7PjyHQfKo7lLceUlnuR+
EYvXHSxWI1RyvgysB7QC9AqigOKSxMxMay7haf57I34RIltgdHGBfcmm4nBryGFN
R8YAIoX68seY70Qyq5cFwmA3b0VHb3r9A+37xO4KlFpdGWnHB4RwB2+nGuwpfVu3
o9X35yXvTn5Xqe6rXLsPVwQGkunM5xMjNqv5c54aT7oueWTV99A6hAP9DKqMDw51
cFpICUwBU12M0n68qLzMXtecsGMAtPgLIqbtidqHzYMFruf7PkxvUIc9aYYATC5u
BcmpVWRwuxvwvFMW5EkzCtARQm409NLFO2lu005xEu2ZdpYMZ/JvO0aKHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHz5Ss637MPP5Apn+YSy2a2JeSdBMB8GA1UdIwQY
MBaAFNLc6HDkc8NUJz6JxeTi7T4MBpNWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHR6b2NPUnp3MVFuUG9uRjVPTHRQZ3dHazFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi8xMTNmNWYtYmU1OC00NzhjLTkwMzAt
MzJkODBkOGQxNjE1LzEvZlBsS3pyZnN3OF9rQ21mNWhMTFpyWWw1SjBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi8xMTNmNWYtYmU1OC00NzhjLTkwMzAtMzJkODBkOGQxNjE1
LzEvMHR6b2NPUnp3MVFuUG9uRjVPTHRQZ3dHazFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+gaMA0G
CSqGSIb3DQEBCwUAA4IBAQCMMmLzGwGyJRM4sa3itOSrh+5V3GmHU5EO2ZcJQWzO
Q4ppTyTx1iDDUNrgGc3movdPrnAA33qQJyAVzBsCrkmU2M7bRaeV39JYAWWE9Gu+
eLA48/fqSOUNJIa6JlUxmsgQBHbAB6stKm8xbmlHeBUZcYzI7AdAX4iey2MJoYyR
oVvaaljYBhAswEldosY/J/j08DmR7sQIL/M5VLe5g7quVfnjgYimN8HyTmz+VFYJ
VMDD0/Db31jN7Druv/G41TcYOvI/2F3OkhQCFaMilr6EYvwYpiSahMEasq//z14z
XR+/vPh6hyqZQD7MDFYrAFHHq7qfq3LWMVGvLC1ZSXDk
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:47 2023 by rpki-client on console-fra.rpki-client.org