Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/fClGXOeiLcmRZoB2TT_E3EpUNhw.roa
File: fClGXOeiLcmRZoB2TT_E3EpUNhw.roa (raw, json)
Hash identifier: alUxeVK7LbYrI5WRAHQ++pbMFa7l+Ek2YD5Z3v59N4I=
Subject key identifier: 7C:29:46:5C:E7:A2:2D:C9:91:66:80:76:4D:3F:C4:DC:4A:54:36:1C
Certificate issuer: /CN=c755702467770ed69b367b77bbe640bc6db4153e
Certificate serial: 03242AC5
Authority key identifier: C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/fClGXOeiLcmRZoB2TT_E3EpUNhw.roa
Signing time: Thu 30 Jun 2022 11:03:02 +0000
ROA not before: Thu 30 Jun 2022 11:03:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7155
IP address blocks: 213.209.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52701893 (0x3242ac5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c755702467770ed69b367b77bbe640bc6db4153e
Validity
Not Before: Jun 30 11:03:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c29465ce7a22dc9916680764d3fc4dc4a54361c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:57:03:65:15:f9:45:71:cf:f8:a5:9d:f6:96:
aa:56:30:76:df:c7:57:c8:7f:ae:0a:ed:16:0a:ab:
60:d2:ec:9a:ca:86:8c:d9:f2:96:4a:16:80:50:65:
c2:be:e7:35:d9:20:a9:51:70:2c:bb:cf:70:7f:ee:
a5:b5:58:6f:3b:7c:b0:53:40:bc:1d:a2:ab:da:d3:
e8:3a:7e:f7:f5:ec:f7:7a:f1:ad:6b:a7:cd:91:fa:
62:49:89:3a:5b:de:61:06:63:53:e8:c7:00:73:0f:
d7:be:2e:58:17:fc:9e:f9:1d:b4:2d:28:b5:fa:95:
9b:42:54:a4:8d:8d:69:b5:a0:c5:b9:b3:13:e8:3a:
82:ca:8d:10:bd:5e:eb:12:fd:70:86:15:bc:2d:7f:
cb:1f:5b:eb:e5:43:b4:06:df:dc:93:93:cc:f9:33:
03:e1:5b:45:0a:9b:7f:25:ff:7b:37:53:d8:e7:7e:
d5:63:4e:f9:86:7f:70:5f:dd:f4:ac:76:7f:38:74:
c2:b6:40:97:bd:5a:e2:04:77:ba:d3:61:96:4d:d2:
17:8e:2e:5c:77:db:6f:aa:d7:54:b0:c0:04:b5:8c:
05:97:bb:0f:91:29:aa:3d:7c:8a:44:38:a8:16:35:
1c:58:f6:86:61:6d:48:60:0c:21:6e:11:6a:2f:55:
e4:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:29:46:5C:E7:A2:2D:C9:91:66:80:76:4D:3F:C4:DC:4A:54:36:1C
X509v3 Authority Key Identifier:
keyid:C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/fClGXOeiLcmRZoB2TT_E3EpUNhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/x1VwJGd3DtabNnt3u-ZAvG20FT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.209.176.0/20
Signature Algorithm: sha256WithRSAEncryption
7d:4d:3c:21:02:91:2c:c2:fe:33:57:9f:fa:a1:d4:83:40:c0:
f4:bf:a7:7e:b8:79:31:dd:25:fa:cb:c6:a4:eb:f7:cd:6b:08:
0f:36:5d:b4:87:81:42:0f:ff:99:38:22:31:15:ea:7f:8a:eb:
9a:36:cc:ec:0c:95:ad:ef:2c:4e:33:c6:02:20:f1:81:10:d7:
c3:80:19:3d:6e:44:c5:f7:7f:fd:6f:a0:c7:a6:55:2d:b9:96:
09:2a:ee:cc:1a:83:3d:db:fb:74:3d:47:fc:06:bf:60:b5:20:
6f:be:5d:3a:f7:38:2c:ca:bd:e5:c1:4c:cc:7c:95:bc:d7:67:
95:0b:3a:64:d7:7e:fd:90:61:5c:ee:22:cb:fa:6c:25:36:2b:
e7:86:bc:c0:51:a3:12:3d:ce:d0:88:c3:21:e5:70:2d:ff:3d:
5e:4a:bb:c4:ed:76:02:04:16:2f:66:2b:7d:0a:a1:2c:a8:28:
54:47:8c:14:c1:fe:1a:da:2c:26:5c:47:01:72:44:e0:b5:c3:
ef:1a:52:46:10:7f:41:69:27:cc:91:87:29:ca:41:8d:97:40:
6b:7f:55:7a:3c:ea:bb:4c:dd:33:b2:e5:99:cf:3a:c8:22:d2:
52:31:77:d9:46:05:17:39:17:08:4f:fc:20:b6:02:67:31:5f:
85:85:de:c0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAyQqxTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NzU1NzAyNDY3NzcwZWQ2OWIzNjdiNzdiYmU2NDBiYzZkYjQxNTNlMB4XDTIyMDYz
MDExMDMwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2MyOTQ2NWNlN2Ey
MmRjOTkxNjY4MDc2NGQzZmM0ZGM0YTU0MzYxYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJZXA2UV+UVxz/ilnfaWqlYwdt/HV8h/rgrtFgqrYNLsmsqG
jNnylkoWgFBlwr7nNdkgqVFwLLvPcH/upbVYbzt8sFNAvB2iq9rT6Dp+9/Xs93rx
rWunzZH6YkmJOlveYQZjU+jHAHMP174uWBf8nvkdtC0otfqVm0JUpI2NabWgxbmz
E+g6gsqNEL1e6xL9cIYVvC1/yx9b6+VDtAbf3JOTzPkzA+FbRQqbfyX/ezdT2Od+
1WNO+YZ/cF/d9Kx2fzh0wrZAl71a4gR3utNhlk3SF44uXHfbb6rXVLDABLWMBZe7
D5Epqj18ikQ4qBY1HFj2hmFtSGAMIW4Rai9V5CUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR8KUZc56ItyZFmgHZNP8TcSlQ2HDAfBgNVHSMEGDAWgBTHVXAkZ3cO1ps2
e3e75kC8bbQVPjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3gxVndKR2QzRHRhYk5udDN1LVpBdkcyMEZUNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzcvMjQzZjkxLTg3NDctNDk4MS05Y2JmLTFkMzczNDk5OTI0ZS8x
L2ZDbEdYT2VpTGNtUlpvQjJUVF9FM0VwVU5ody5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcv
MjQzZjkxLTg3NDctNDk4MS05Y2JmLTFkMzczNDk5OTI0ZS8xL3gxVndKR2QzRHRh
Yk5udDN1LVpBdkcyMEZUNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNXRsDANBgkqhkiG9w0BAQsFAAOC
AQEAfU08IQKRLML+M1ef+qHUg0DA9L+nfrh5Md0l+svGpOv3zWsIDzZdtIeBQg//
mTgiMRXqf4rrmjbM7AyVre8sTjPGAiDxgRDXw4AZPW5Exfd//W+gx6ZVLbmWCSru
zBqDPdv7dD1H/Aa/YLUgb75dOvc4LMq95cFMzHyVvNdnlQs6ZNd+/ZBhXO4iy/ps
JTYr54a8wFGjEj3O0IjDIeVwLf89Xkq7xO12AgQWL2YrfQqhLKgoVEeMFMH+Gtos
JlxHAXJE4LXD7xpSRhB/QWknzJGHKcpBjZdAa39Vejzqu0zdM7Llmc86yCLSUjF3
2UYFFzkXCE/8ILYCZzFfhYXewA==
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:25:31 2025 by rpki-client