Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/02bf2a-e919-4add-a18e-e9e023609c7f/1/Fvf7Z8PIE_y1MfU9958_jZ_QLnA.roa
File: Fvf7Z8PIE_y1MfU9958_jZ_QLnA.roa (raw, json)
Hash identifier: NI1RYzBspK0QqAFhgBxPcjtfHi/FcrmHe5ZBaLzX5AE=
Subject key identifier: 16:F7:FB:67:C3:C8:13:FC:B5:31:F5:3D:F7:9F:3F:8D:9F:D0:2E:70
Certificate issuer: /CN=8131240bdaa7c12e810a1738bcdf75a746530bc1
Certificate serial: 0183127B239ADF0E2D2BC8A6FA78BDD30334
Authority key identifier: 81:31:24:0B:DA:A7:C1:2E:81:0A:17:38:BC:DF:75:A7:46:53:0B:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gTEkC9qnwS6BChc4vN91p0ZTC8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/02bf2a-e919-4add-a18e-e9e023609c7f/1/Fvf7Z8PIE_y1MfU9958_jZ_QLnA.roa
Signing time: Tue 06 Sep 2022 11:06:43 +0000
ROA not before: Tue 06 Sep 2022 11:06:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207346
IP address blocks: 185.242.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:12:7b:23:9a:df:0e:2d:2b:c8:a6:fa:78:bd:d3:03:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8131240bdaa7c12e810a1738bcdf75a746530bc1
Validity
Not Before: Sep 6 11:06:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16f7fb67c3c813fcb531f53df79f3f8d9fd02e70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ae:9f:93:01:93:67:61:15:e3:2f:4a:0a:2f:
fc:9c:b4:00:ab:55:37:be:4f:9d:b8:df:97:68:c0:
4e:6e:49:7d:73:65:9c:f8:6d:20:15:7e:17:84:71:
5e:0a:1a:0c:46:04:db:0a:3f:af:3f:69:0c:13:08:
10:52:91:72:4e:0e:a8:3b:05:17:42:21:5a:46:8b:
e0:75:c7:7a:d4:ee:5b:b1:97:64:7d:86:bc:85:ce:
48:b8:7c:6e:6a:c0:e0:96:b6:11:90:c6:da:d3:fc:
2d:82:bb:73:a2:6f:d8:0f:54:8e:fe:32:63:f0:b9:
80:0a:31:33:bb:91:c7:cf:e9:7d:b0:2e:69:0d:b5:
9a:a6:1f:a2:e1:83:01:38:1f:09:da:4e:4e:ec:4a:
72:ea:68:22:3c:48:3d:87:e9:b8:d4:95:fa:41:80:
0b:c8:73:dc:e1:c9:e4:5c:14:6f:b6:ac:fa:93:92:
28:1c:dc:9e:e6:21:6d:2d:71:0f:98:96:31:3c:7c:
cf:95:b4:5f:0f:66:0e:e5:21:d8:ce:60:22:94:80:
53:cb:fc:92:70:d8:75:6c:c9:00:62:57:68:2f:dd:
b2:b4:88:3d:15:93:9c:ab:1a:c5:3b:f4:92:1a:8a:
a4:06:75:96:c3:65:0e:3e:bf:4b:43:f5:09:7d:e1:
28:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F7:FB:67:C3:C8:13:FC:B5:31:F5:3D:F7:9F:3F:8D:9F:D0:2E:70
X509v3 Authority Key Identifier:
keyid:81:31:24:0B:DA:A7:C1:2E:81:0A:17:38:BC:DF:75:A7:46:53:0B:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTEkC9qnwS6BChc4vN91p0ZTC8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/02bf2a-e919-4add-a18e-e9e023609c7f/1/Fvf7Z8PIE_y1MfU9958_jZ_QLnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/02bf2a-e919-4add-a18e-e9e023609c7f/1/gTEkC9qnwS6BChc4vN91p0ZTC8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.216.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:ff:71:c5:ac:c2:49:71:0b:1f:b5:09:e1:b6:75:00:45:44:
da:3e:86:7f:6a:35:5c:d3:54:cb:22:cb:d5:5c:6f:68:6b:a4:
4c:85:86:6a:02:37:e0:ec:47:b0:02:0c:97:37:b3:84:fd:72:
02:95:f5:eb:38:2c:09:b9:40:0d:d0:2d:77:d8:9e:6d:d2:51:
cc:bb:d3:4b:4d:1d:a1:21:ce:5b:69:6e:e4:49:82:ab:2c:d5:
8d:ac:2e:2e:d3:89:04:a9:23:da:5c:b1:b1:f7:38:71:df:22:
bf:61:44:b2:06:46:66:5c:a6:a2:d4:7b:8a:c3:3f:a9:61:35:
4d:84:87:82:00:66:f9:eb:fd:2b:1d:b9:fc:b0:19:7c:1e:a8:
bc:fd:b2:4b:4c:52:73:df:b8:9e:7f:82:fa:62:16:69:c9:b5:
39:99:bf:45:db:c8:24:f7:97:42:af:03:5b:93:91:04:80:14:
65:0e:8a:3b:4a:91:a8:2b:b1:56:85:2d:fc:50:ed:9d:21:73:
d0:a8:2e:53:e0:fc:ed:27:a6:b9:e3:65:49:00:d2:1b:e1:30:
71:65:5d:f0:2d:60:d8:dc:5e:df:c9:da:4d:c9:90:71:43:f1:
d6:3b:ae:e6:9e:96:fb:21:7c:3f:3f:30:67:c1:35:b3:b3:b9:
52:08:ee:49
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMSeyOa3w4tK8im+ni90wM0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxMzEyNDBiZGFhN2MxMmU4MTBhMTczOGJjZGY3NWE3NDY1
MzBiYzEwHhcNMjIwOTA2MTEwNjQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNmY3ZmI2N2MzYzgxM2ZjYjUzMWY1M2RmNzlmM2Y4ZDlmZDAyZTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAka6fkwGTZ2EV4y9KCi/8nLQAq1U3
vk+duN+XaMBObkl9c2Wc+G0gFX4XhHFeChoMRgTbCj+vP2kMEwgQUpFyTg6oOwUX
QiFaRovgdcd61O5bsZdkfYa8hc5IuHxuasDglrYRkMba0/wtgrtzom/YD1SO/jJj
8LmACjEzu5HHz+l9sC5pDbWaph+i4YMBOB8J2k5O7Epy6mgiPEg9h+m41JX6QYAL
yHPc4cnkXBRvtqz6k5IoHNye5iFtLXEPmJYxPHzPlbRfD2YO5SHYzmAilIBTy/yS
cNh1bMkAYldoL92ytIg9FZOcqxrFO/SSGoqkBnWWw2UOPr9LQ/UJfeEoBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBb3+2fDyBP8tTH1PfefP42f0C5wMB8GA1UdIwQY
MBaAFIExJAvap8EugQoXOLzfdadGUwvBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1RFa0M5cW53UzZCQ2hjNHZOOTFwMFpUQzhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8wMmJmMmEtZTkxOS00YWRkLWExOGUt
ZTllMDIzNjA5YzdmLzEvRnZmN1o4UElFX3kxTWZVOTk1OF9qWl9RTG5BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi8wMmJmMmEtZTkxOS00YWRkLWExOGUtZTllMDIzNjA5Yzdm
LzEvZ1RFa0M5cW53UzZCQ2hjNHZOOTFwMFpUQzhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufLYMA0G
CSqGSIb3DQEBCwUAA4IBAQDA/3HFrMJJcQsftQnhtnUARUTaPoZ/ajVc01TLIsvV
XG9oa6RMhYZqAjfg7EewAgyXN7OE/XIClfXrOCwJuUAN0C132J5t0lHMu9NLTR2h
Ic5baW7kSYKrLNWNrC4u04kEqSPaXLGx9zhx3yK/YUSyBkZmXKai1HuKwz+pYTVN
hIeCAGb56/0rHbn8sBl8Hqi8/bJLTFJz37ief4L6YhZpybU5mb9F28gk95dCrwNb
k5EEgBRlDoo7SpGoK7FWhS38UO2dIXPQqC5T4PztJ6a542VJANIb4TBxZV3wLWDY
3F7fydpNyZBxQ/HWO67mnpb7IXw/PzBnwTWzs7lSCO5J
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:32 2023 by rpki-client on console-ams.rpki-client.org