Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/82c6fb-0931-442c-abe5-aa898138994c/1/TwF7-KHE5DR_cFjZ__e7-bsgZcg.roa
File: TwF7-KHE5DR_cFjZ__e7-bsgZcg.roa (raw, json)
Hash identifier: qyyJUSxN1trSw0JtcVreSQtSLtVPPX7TuNjZyzBUDP0=
Subject key identifier: 4F:01:7B:F8:A1:C4:E4:34:7F:70:58:D9:FF:F7:BB:F9:BB:20:65:C8
Certificate issuer: /CN=3af9ea8bdc371b5a6604200c51717897d60c7d3d
Certificate serial: 029BCD20
Authority key identifier: 3A:F9:EA:8B:DC:37:1B:5A:66:04:20:0C:51:71:78:97:D6:0C:7D:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ovnqi9w3G1pmBCAMUXF4l9YMfT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/82c6fb-0931-442c-abe5-aa898138994c/1/TwF7-KHE5DR_cFjZ__e7-bsgZcg.roa
Signing time: Sat 01 Jan 2022 11:00:29 +0000
ROA not before: Sat 01 Jan 2022 11:00:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49451
IP address blocks: 185.1.177.0/24 maxlen: 24
2001:7f8:fa::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43765024 (0x29bcd20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af9ea8bdc371b5a6604200c51717897d60c7d3d
Validity
Not Before: Jan 1 11:00:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f017bf8a1c4e4347f7058d9fff7bbf9bb2065c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6a:26:26:53:58:74:a1:35:7c:92:4e:22:48:
71:93:d7:a2:ad:f5:3f:3b:54:cc:cf:3a:cf:fc:3d:
7a:6c:76:81:2e:74:af:75:d8:63:54:f8:ce:29:c0:
0d:96:52:e4:98:5a:e1:d3:13:20:33:f5:1a:cc:4f:
b2:22:25:7d:21:c3:77:c4:79:2b:f2:32:57:14:7f:
9c:6b:84:aa:5e:e7:8a:f6:39:c5:bb:7e:fe:df:8c:
e8:f0:57:c3:ed:d9:6f:df:72:4b:6f:90:79:a4:76:
09:c3:53:ab:e4:ce:93:28:fb:fe:4e:69:0f:8a:e1:
7d:b7:29:16:4e:c0:90:ce:9f:d4:ab:6f:dd:92:35:
61:ab:56:1e:d7:03:d1:89:78:05:84:ef:98:d9:8c:
f3:f6:64:10:d7:15:a2:39:41:b1:81:c1:9b:ac:dc:
2a:2e:65:87:5e:57:dd:ee:90:c7:e1:62:fa:29:97:
01:1c:12:76:41:63:8f:aa:86:d8:3b:30:77:8a:5b:
61:30:51:5f:ec:38:b1:62:20:23:11:ac:5c:83:5a:
18:35:fe:8f:76:fa:07:7c:19:5d:da:6e:26:78:af:
2a:ea:e5:ef:b1:0f:64:27:32:c8:5f:99:66:5f:75:
f7:29:e4:eb:8a:70:3f:3e:8a:82:d2:68:b7:a8:0d:
57:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:01:7B:F8:A1:C4:E4:34:7F:70:58:D9:FF:F7:BB:F9:BB:20:65:C8
X509v3 Authority Key Identifier:
keyid:3A:F9:EA:8B:DC:37:1B:5A:66:04:20:0C:51:71:78:97:D6:0C:7D:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ovnqi9w3G1pmBCAMUXF4l9YMfT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/82c6fb-0931-442c-abe5-aa898138994c/1/TwF7-KHE5DR_cFjZ__e7-bsgZcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/82c6fb-0931-442c-abe5-aa898138994c/1/Ovnqi9w3G1pmBCAMUXF4l9YMfT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.177.0/24
IPv6:
2001:7f8:fa::/48
Signature Algorithm: sha256WithRSAEncryption
8d:ab:0e:0b:2b:d7:fd:2f:cc:d4:46:aa:11:0e:f0:0d:6f:14:
a9:c7:b2:e8:35:9d:d8:e3:22:85:d3:0b:07:c9:66:46:78:e3:
74:cc:2b:8b:d6:34:d1:8a:55:3a:69:68:75:e0:5e:85:0b:cc:
b8:d7:8c:43:5c:d4:20:55:53:ed:2d:e2:5d:9d:09:3e:d4:79:
4c:34:5b:ec:06:75:c1:5e:21:b6:d8:64:da:27:56:e5:ea:df:
ce:0b:81:cf:c4:7e:3b:b7:44:59:e0:41:55:5a:d3:08:95:6a:
43:aa:e7:3c:03:a7:c5:8f:08:c4:9a:16:0c:f2:39:03:71:af:
61:90:e8:19:fa:b2:31:4d:04:d8:6a:3c:18:dc:41:c2:32:9c:
4b:26:6c:22:76:bf:31:83:87:e0:ac:52:97:f4:94:9b:ab:5b:
64:28:2e:8a:e0:a6:79:d5:04:f2:64:53:8e:a7:12:03:b2:b1:
f9:52:26:66:44:de:43:b0:a1:c2:8e:89:05:77:b4:36:ad:0c:
e3:83:c7:c4:c5:2d:25:a2:33:7e:ef:22:a2:80:9f:4a:bb:f4:
16:1a:00:bc:b6:5d:69:42:9d:98:ed:2b:4f:98:59:68:b2:53:
9b:d8:01:8e:5e:d8:7c:73:85:77:db:6f:cf:50:90:ed:8e:df:
d2:21:b7:c5
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEApvNIDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YWY5ZWE4YmRjMzcxYjVhNjYwNDIwMGM1MTcxNzg5N2Q2MGM3ZDNkMB4XDTIyMDEw
MTExMDAyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGYwMTdiZjhhMWM0
ZTQzNDdmNzA1OGQ5ZmZmN2JiZjliYjIwNjVjODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKhqJiZTWHShNXySTiJIcZPXoq31PztUzM86z/w9emx2gS50
r3XYY1T4zinADZZS5Jha4dMTIDP1GsxPsiIlfSHDd8R5K/IyVxR/nGuEql7nivY5
xbt+/t+M6PBXw+3Zb99yS2+QeaR2CcNTq+TOkyj7/k5pD4rhfbcpFk7AkM6f1Ktv
3ZI1YatWHtcD0Yl4BYTvmNmM8/ZkENcVojlBsYHBm6zcKi5lh15X3e6Qx+Fi+imX
ARwSdkFjj6qG2Dswd4pbYTBRX+w4sWIgIxGsXINaGDX+j3b6B3wZXdpuJnivKurl
77EPZCcyyF+ZZl919ynk64pwPz6KgtJot6gNV3kCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRPAXv4ocTkNH9wWNn/97v5uyBlyDAfBgNVHSMEGDAWgBQ6+eqL3DcbWmYE
IAxRcXiX1gx9PTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L092bnFpOXczRzFwbUJDQU1VWEY0bDlZTWZUMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTYvODJjNmZiLTA5MzEtNDQyYy1hYmU1LWFhODk4MTM4OTk0Yy8x
L1R3RjctS0hFNURSX2NGalpfX2U3LWJzZ1pjZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTYv
ODJjNmZiLTA5MzEtNDQyYy1hYmU1LWFhODk4MTM4OTk0Yy8xL092bnFpOXczRzFw
bUJDQU1VWEY0bDlZTWZUMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEALkBsTAPBAIAAjAJAwcAIAEH+AD6
MA0GCSqGSIb3DQEBCwUAA4IBAQCNqw4LK9f9L8zURqoRDvANbxSpx7LoNZ3Y4yKF
0wsHyWZGeON0zCuL1jTRilU6aWh14F6FC8y414xDXNQgVVPtLeJdnQk+1HlMNFvs
BnXBXiG22GTaJ1bl6t/OC4HPxH47t0RZ4EFVWtMIlWpDquc8A6fFjwjEmhYM8jkD
ca9hkOgZ+rIxTQTYajwY3EHCMpxLJmwidr8xg4fgrFKX9JSbq1tkKC6K4KZ51QTy
ZFOOpxIDsrH5UiZmRN5DsKHCjokFd7Q2rQzjg8fExS0lojN+7yKigJ9Ku/QWGgC8
tl1pQp2Y7StPmFloslOb2AGOXth8c4V322/PUJDtjt/SIbfF
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:48 2023 by rpki-client on console-fra.rpki-client.org