Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/_QCnrMGjMIM1ZvAq0xY3M_9ddu8.roa
File: _QCnrMGjMIM1ZvAq0xY3M_9ddu8.roa (raw, json)
Hash identifier: /nzIMwcYADaKgQhGsi7zS78jnGYf/y4TiEa7IceZ76g=
Subject key identifier: FD:00:A7:AC:C1:A3:30:83:35:66:F0:2A:D3:16:37:33:FF:5D:76:EF
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17D068D7
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/_QCnrMGjMIM1ZvAq0xY3M_9ddu8.roa
Signing time: Sat 01 Jan 2022 00:54:29 +0000
ROA not before: Sat 01 Jan 2022 00:54:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34073
IP address blocks: 94.100.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399534295 (0x17d068d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd00a7acc1a330833566f02ad3163733ff5d76ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a0:8a:66:15:d3:3e:a5:50:3b:50:f0:f3:2d:
c0:6f:85:f7:22:e9:25:24:66:8d:93:ae:5c:84:cc:
98:1f:c6:b8:f2:ff:84:c0:7a:c7:07:b7:40:ac:52:
f9:ab:95:9f:b8:3d:9a:93:af:79:97:d8:1a:86:6d:
3e:7d:45:88:b8:3d:fa:1e:0c:da:e2:c4:07:cf:b5:
24:0c:dd:6c:27:18:e5:e3:52:ab:9a:f9:a2:1b:04:
fa:83:c2:7b:13:fc:c7:92:05:05:a5:5a:61:e9:bc:
d3:cc:8e:9b:0f:b0:ac:c0:9d:77:e5:9a:45:63:62:
4d:17:af:02:f1:87:19:a7:bf:9e:49:b1:0e:ed:0e:
13:63:bb:be:e0:46:3f:16:33:69:79:ac:48:4a:99:
03:6e:f2:1b:21:f7:fc:a1:b4:ef:ea:0f:0b:45:98:
a3:a2:09:5e:48:5d:7b:31:c8:98:0e:e4:d7:41:b7:
f4:16:55:ab:1e:ed:6b:12:4f:0b:28:b8:8c:87:85:
50:15:d2:24:19:e9:03:de:a1:46:c9:8f:e0:d3:bf:
ef:18:d5:d4:01:b5:67:40:1c:f4:42:a6:43:80:4a:
79:c6:f1:04:1b:bf:45:9a:a6:dc:44:6e:7b:94:e9:
ee:2f:ab:0c:be:14:2a:55:47:ce:01:10:bf:59:9f:
43:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:00:A7:AC:C1:A3:30:83:35:66:F0:2A:D3:16:37:33:FF:5D:76:EF
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/_QCnrMGjMIM1ZvAq0xY3M_9ddu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.100.10.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:fb:a1:05:49:fa:da:07:2f:b2:e4:5e:3a:75:cd:97:a1:56:
bc:de:96:61:1d:4f:ad:f2:55:85:08:c1:54:4c:e3:42:89:5a:
33:ef:b2:07:ca:fa:c4:9d:1f:70:c8:3b:62:54:f1:5d:2c:42:
0c:5b:16:4d:95:19:da:a7:a9:53:84:d8:0a:44:c5:bc:6b:28:
69:aa:43:35:3a:d7:ef:37:3c:c5:58:6e:a2:57:75:d7:8a:e2:
77:ec:0f:d7:6e:41:1b:e3:b3:ab:f1:ec:04:94:2d:a7:82:d9:
de:1a:00:79:83:ec:8a:74:a5:be:44:23:d6:ad:5d:c2:5e:82:
1f:a9:e5:c3:53:85:c4:f8:f3:dc:fd:4a:8a:71:e6:d1:95:40:
b8:07:36:74:cf:bb:56:91:3e:3a:30:b9:fb:60:3a:f5:11:5a:
61:3e:7e:3e:5a:d7:ff:dc:ae:46:9d:c3:f7:b7:39:4c:22:44:
d1:d9:5c:0d:37:36:41:b3:a5:16:e4:0c:83:5f:a0:92:f8:e5:
24:b9:09:69:6a:16:7c:78:8e:6a:cd:f6:cf:23:f7:0e:0a:d6:
88:8d:75:e8:3c:47:f2:26:8a:27:d7:08:3e:d1:ff:0c:ec:c9:
4e:9f:8f:19:ee:cf:90:b4:cb:a0:95:ed:4a:d6:12:40:54:19:
d6:47:b5:30
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF9Bo1zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MzM4OTdmYzdhOTYzZjE0MjE1ZDU4ZTE4MjQxNDRhYjE5ZmQ1ODEwMB4XDTIyMDEw
MTAwNTQyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmQwMGE3YWNjMWEz
MzA4MzM1NjZmMDJhZDMxNjM3MzNmZjVkNzZlZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMCgimYV0z6lUDtQ8PMtwG+F9yLpJSRmjZOuXITMmB/GuPL/
hMB6xwe3QKxS+auVn7g9mpOveZfYGoZtPn1FiLg9+h4M2uLEB8+1JAzdbCcY5eNS
q5r5ohsE+oPCexP8x5IFBaVaYem808yOmw+wrMCdd+WaRWNiTRevAvGHGae/nkmx
Du0OE2O7vuBGPxYzaXmsSEqZA27yGyH3/KG07+oPC0WYo6IJXkhdezHImA7k10G3
9BZVqx7taxJPCyi4jIeFUBXSJBnpA96hRsmP4NO/7xjV1AG1Z0Ac9EKmQ4BKecbx
BBu/RZqm3ERue5Tp7i+rDL4UKlVHzgEQv1mfQ6kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT9AKeswaMwgzVm8CrTFjcz/1127zAfBgNVHSMEGDAWgBQTOJf8epY/FCFd
WOGCQUSrGf1YEDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0V6aVhfSHFXUHhRaFhWamhna0ZFcXhuOVdCQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWMvOGJlNGFmLTYyYmUtNDE4MC1iZWM5LWYyYjg3ZjM4YjlkZC8x
L19RQ25yTUdqTUlNMVp2QXEweFkzTV85ZGR1OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWMv
OGJlNGFmLTYyYmUtNDE4MC1iZWM5LWYyYjg3ZjM4YjlkZC8xL0V6aVhfSHFXUHhR
aFhWamhna0ZFcXhuOVdCQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAF5kCjANBgkqhkiG9w0BAQsFAAOC
AQEAyvuhBUn62gcvsuReOnXNl6FWvN6WYR1PrfJVhQjBVEzjQolaM++yB8r6xJ0f
cMg7YlTxXSxCDFsWTZUZ2qepU4TYCkTFvGsoaapDNTrX7zc8xVhuold114rid+wP
125BG+Ozq/HsBJQtp4LZ3hoAeYPsinSlvkQj1q1dwl6CH6nlw1OFxPjz3P1KinHm
0ZVAuAc2dM+7VpE+OjC5+2A69RFaYT5+PlrX/9yuRp3D97c5TCJE0dlcDTc2QbOl
FuQMg1+gkvjlJLkJaWoWfHiOas32zyP3DgrWiI116DxH8iaKJ9cIPtH/DOzJTp+P
Ge7PkLTLoJXtStYSQFQZ1ke1MA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:02 2023 by rpki-client on console-ams.rpki-client.org