Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/fLhv1x3Nk18-2vQEnmDf3mw91xc.roa
File: fLhv1x3Nk18-2vQEnmDf3mw91xc.roa (raw, json)
Hash identifier: hHK3R70R41f+lykm0DY3uIefyGmVwSIIvGQvAenfSMU=
Subject key identifier: 7C:B8:6F:D7:1D:CD:93:5F:3E:DA:F4:04:9E:60:DF:DE:6C:3D:D7:17
Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Certificate serial: 393B05E1
Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/fLhv1x3Nk18-2vQEnmDf3mw91xc.roa
Signing time: Sat 01 Jan 2022 03:52:55 +0000
ROA not before: Sat 01 Jan 2022 03:52:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8253
IP address blocks: 83.212.128.0/19 maxlen: 19
83.212.160.0/21 maxlen: 21
2001:648:2e80::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 960169441 (0x393b05e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Validity
Not Before: Jan 1 03:52:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7cb86fd71dcd935f3edaf4049e60dfde6c3dd717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a2:59:c1:b6:7c:ec:6d:dd:b0:ca:c6:f1:18:
2b:da:08:fb:a3:2d:3f:85:68:63:00:42:26:9e:7d:
aa:10:de:0c:d5:c3:ad:4c:b7:82:e8:6a:70:67:de:
9e:4a:c9:39:a8:49:99:d8:36:83:c5:8a:d6:11:c3:
db:1b:92:b4:42:3d:51:9f:01:14:39:70:33:ba:2c:
60:78:00:90:14:5d:e6:18:c7:7a:64:e2:d3:d8:62:
f9:ee:9f:d8:3a:a6:9e:77:ee:8f:06:b2:39:19:c5:
c6:9c:21:c7:ed:98:b7:9a:e1:ba:2d:cc:7c:f6:90:
5c:34:d7:bf:a7:2d:ba:5b:3e:2a:14:a1:cc:ef:d2:
0e:9f:05:8c:61:ac:86:e0:58:b2:ec:55:55:f7:09:
ee:19:05:6a:d7:5b:0a:64:4b:84:a7:d7:18:cd:dc:
80:0d:51:a7:91:39:20:22:a1:4c:92:b9:a0:5f:98:
df:27:a1:23:b9:c3:53:b0:b8:16:59:4d:ba:23:5f:
0d:f4:5e:31:ec:c5:96:d3:c4:94:54:0e:59:c1:3f:
21:72:ec:72:52:6b:1c:f1:08:2b:84:f7:60:31:36:
e6:1f:ef:51:af:60:15:25:02:15:d2:0f:d8:3f:ed:
63:5d:41:fc:00:7a:c9:6e:0a:5e:38:ae:a1:ee:96:
23:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:B8:6F:D7:1D:CD:93:5F:3E:DA:F4:04:9E:60:DF:DE:6C:3D:D7:17
X509v3 Authority Key Identifier:
keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/fLhv1x3Nk18-2vQEnmDf3mw91xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.212.128.0-83.212.167.255
IPv6:
2001:648:2e80::/48
Signature Algorithm: sha256WithRSAEncryption
b2:49:88:63:23:17:6a:e3:d9:d5:9b:f2:77:45:df:f2:52:f6:
71:36:67:f2:44:81:41:80:67:b7:ba:29:dd:bc:19:ad:ea:a0:
3c:08:a7:b4:f1:aa:b4:1f:3b:63:a2:4b:3c:0d:ce:bd:0b:4c:
c6:21:b8:4f:33:41:fa:33:63:11:8c:b3:1b:3f:89:46:2d:07:
87:34:f7:ba:9f:fd:4a:98:6a:49:6b:3d:02:75:95:c4:28:6f:
a7:a9:b4:66:72:4e:5c:c2:b0:1a:b8:2a:d6:21:a8:4b:ff:9e:
eb:c9:01:69:49:ca:84:b2:f7:73:b2:60:cc:43:fd:46:7a:15:
5a:cb:65:c1:ab:4b:6f:3a:13:e2:32:4b:1e:05:ea:17:88:3e:
52:f5:ed:db:a9:04:83:3f:20:13:27:c6:4b:89:d0:32:09:a7:
24:7f:ac:34:8d:c6:be:0b:d9:cc:ca:bd:65:ce:24:34:c7:2e:
24:85:2b:10:55:65:ab:f5:76:59:24:90:ba:a9:16:91:d8:1a:
1d:01:78:c0:46:23:d1:60:e7:29:44:87:b7:75:b6:b9:f3:5e:
d1:dd:2b:bd:4c:d2:88:20:1b:6c:da:3b:e0:67:3d:25:ae:80:
86:52:09:78:67:0e:53:6b:41:bb:34:21:7a:93:bd:04:45:74:
23:7b:22:b3
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgIEOTsF4TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YTZmOTI5NTUyMWRmMzBhMTU4ZjUwNmJhN2NiODczYWI5NTI5ZGMzMB4XDTIyMDEw
MTAzNTI1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2NiODZmZDcxZGNk
OTM1ZjNlZGFmNDA0OWU2MGRmZGU2YzNkZDcxNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM6iWcG2fOxt3bDKxvEYK9oI+6MtP4VoYwBCJp59qhDeDNXD
rUy3guhqcGfenkrJOahJmdg2g8WK1hHD2xuStEI9UZ8BFDlwM7osYHgAkBRd5hjH
emTi09hi+e6f2DqmnnfujwayORnFxpwhx+2Yt5rhui3MfPaQXDTXv6ctuls+KhSh
zO/SDp8FjGGshuBYsuxVVfcJ7hkFatdbCmRLhKfXGM3cgA1Rp5E5ICKhTJK5oF+Y
3yehI7nDU7C4FllNuiNfDfReMezFltPElFQOWcE/IXLsclJrHPEIK4T3YDE25h/v
Ua9gFSUCFdIP2D/tY11B/AB6yW4KXjiuoe6WIw0CAwEAAaOCAiIwggIeMB0GA1Ud
DgQWBBR8uG/XHc2TXz7a9ASeYN/ebD3XFzAfBgNVHSMEGDAWgBRab5KVUh3zChWP
UGuny4c6uVKdwzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dtLVNsVklkOHdvVmoxQnJwOHVIT3JsU25jTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvYTlmOTNiLWJlMzEtNDVjZi1hYTdlLWFhYTQ1NTNkMmFiZC8x
L2ZMaHYxeDNOazE4LTJ2UUVubURmM213OTF4Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
YTlmOTNiLWJlMzEtNDVjZi1hYTdlLWFhYTQ1NTNkMmFiZC8xL1dtLVNsVklkOHdv
VmoxQnJwOHVIT3JsU25jTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA4
BggrBgEFBQcBBwEB/wQpMCcwFAQCAAEwDjAMAwQHU9SAAwQDU9SgMA8EAgACMAkD
BwAgAQZILoAwDQYJKoZIhvcNAQELBQADggEBALJJiGMjF2rj2dWb8ndF3/JS9nE2
Z/JEgUGAZ7e6Kd28Ga3qoDwIp7TxqrQfO2OiSzwNzr0LTMYhuE8zQfozYxGMsxs/
iUYtB4c097qf/UqYaklrPQJ1lcQob6eptGZyTlzCsBq4KtYhqEv/nuvJAWlJyoSy
93OyYMxD/UZ6FVrLZcGrS286E+IySx4F6heIPlL17dupBIM/IBMnxkuJ0DIJpyR/
rDSNxr4L2czKvWXOJDTHLiSFKxBVZav1dlkkkLqpFpHYGh0BeMBGI9Fg5ylEh7d1
trnzXtHdK71M0oggG2zaO+BnPSWugIZSCXhnDlNrQbs0IXqTvQRFdCN7IrM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org