Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/_HA72Qn9hNte7FwF5x3u33c3LGo.roa
File: _HA72Qn9hNte7FwF5x3u33c3LGo.roa (raw, json)
Hash identifier: 7BF618MQBYJlo4FYvjq7w3l3/qDgPqWyTOzLo36cYZ8=
Subject key identifier: FC:70:3B:D9:09:FD:84:DB:5E:EC:5C:05:E7:1D:EE:DF:77:37:2C:6A
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 0A340762
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/_HA72Qn9hNte7FwF5x3u33c3LGo.roa
Signing time: Wed 15 Jun 2022 13:35:44 +0000
ROA not before: Wed 15 Jun 2022 13:35:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 132335
IP address blocks: 92.249.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171181922 (0xa340762)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Jun 15 13:35:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc703bd909fd84db5eec5c05e71deedf77372c6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:93:c5:16:5f:e4:f0:c1:48:4c:5b:a9:67:e5:
8f:db:b8:53:58:27:e2:3c:81:fc:10:0a:b6:37:3e:
c9:77:5c:29:4b:55:63:58:58:3f:7f:7a:70:7a:94:
03:0d:6d:bc:31:d8:5e:f4:fc:a0:75:de:d3:25:6d:
b5:9a:5a:63:a8:24:b7:cc:7f:34:d4:74:6c:5f:7f:
3b:16:8b:18:af:60:fa:74:c6:7b:2c:59:d8:f9:40:
51:bd:40:56:98:85:5f:b7:13:fc:8b:79:ce:cc:23:
dd:09:68:1c:86:84:4f:93:20:5e:00:55:73:13:ea:
11:dc:62:bc:d7:17:17:2a:33:3c:b3:1b:7a:c7:77:
2e:a4:11:eb:7b:47:e2:d8:90:66:47:12:7c:26:6d:
bb:4d:67:36:bf:e5:34:1e:4b:94:b4:8f:63:f0:7e:
e8:70:aa:41:9e:88:85:f2:2e:ed:98:a0:4f:cf:ba:
ed:d4:b4:a8:98:b7:59:f7:1d:3c:b6:ae:09:db:af:
de:c0:e3:b3:43:80:f8:00:c1:29:9d:b6:9b:43:be:
f8:9d:e7:b0:e6:0a:8c:51:ff:48:dd:56:9e:be:0e:
54:3e:f7:14:f1:79:40:07:29:b2:08:16:49:73:76:
be:4d:16:8f:2f:c1:33:1b:2b:23:38:99:bd:fc:fd:
55:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:70:3B:D9:09:FD:84:DB:5E:EC:5C:05:E7:1D:EE:DF:77:37:2C:6A
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/_HA72Qn9hNte7FwF5x3u33c3LGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.249.29.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:6e:a2:ef:5d:da:6b:e9:8e:da:8c:20:b9:33:e1:3f:59:ee:
9f:71:bb:bf:85:5a:31:a9:78:97:a1:35:c0:01:50:85:83:1d:
ae:43:64:47:94:5f:af:05:84:6c:a0:63:a9:cb:d7:a5:3d:a4:
c6:df:60:17:99:de:28:98:a7:e1:0f:60:1b:09:c8:f8:96:95:
96:49:bd:9d:94:3e:84:47:4a:94:3a:56:e4:da:23:71:00:12:
1d:33:f5:52:1c:b3:73:63:e8:c4:e2:b0:e0:24:42:96:96:fa:
01:8a:21:dd:be:75:df:af:08:98:af:ba:93:ba:d4:9e:f7:4c:
50:ef:de:09:47:5a:d2:f9:07:67:23:a0:c2:2f:52:b8:f3:a4:
3b:94:bf:b3:df:05:0a:59:e0:a9:a2:b3:68:85:cf:cf:11:4e:
29:d3:44:5b:2c:ca:d7:66:8e:dd:2f:0e:e1:33:63:c7:1d:79:
f0:53:44:64:ed:90:a2:11:80:74:3a:e0:29:aa:80:69:40:19:
a9:94:1f:bd:b8:60:a2:bd:6a:b8:46:0a:3d:12:0f:af:2b:b6:
5d:f5:82:c3:ff:ca:26:10:77:6a:75:67:be:00:3f:20:69:5f:
fb:ec:43:1c:c2:59:b4:23:c2:9e:69:a1:d7:ff:c6:88:8c:ec:
f7:ec:b2:d0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECjQHYjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MmI3OGY2NjgyZmMzOWM1NWI0MWQ0OGY4MGI4ODM4ZDVkMmRiZjA3MB4XDTIyMDYx
NTEzMzU0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmM3MDNiZDkwOWZk
ODRkYjVlZWM1YzA1ZTcxZGVlZGY3NzM3MmM2YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMaTxRZf5PDBSExbqWflj9u4U1gn4jyB/BAKtjc+yXdcKUtV
Y1hYP396cHqUAw1tvDHYXvT8oHXe0yVttZpaY6gkt8x/NNR0bF9/OxaLGK9g+nTG
eyxZ2PlAUb1AVpiFX7cT/It5zswj3QloHIaET5MgXgBVcxPqEdxivNcXFyozPLMb
esd3LqQR63tH4tiQZkcSfCZtu01nNr/lNB5LlLSPY/B+6HCqQZ6IhfIu7ZigT8+6
7dS0qJi3WfcdPLauCduv3sDjs0OA+ADBKZ22m0O++J3nsOYKjFH/SN1Wnr4OVD73
FPF5QAcpsggWSXN2vk0Wjy/BMxsrIziZvfz9VQECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT8cDvZCf2E217sXAXnHe7fdzcsajAfBgNVHSMEGDAWgBRyt49mgvw5xVtB
1I+AuIONXS2/BzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NyZVBab0w4T2NWYlFkU1BnTGlEalYwdHZ3Yy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2EvM2M0YjhhLWJmYzctNDFlOS05OWUxLWYzZTUwNmFlYWEwMS8x
L19IQTcyUW45aE50ZTdGd0Y1eDN1MzNjM0xHby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Ev
M2M0YjhhLWJmYzctNDFlOS05OWUxLWYzZTUwNmFlYWEwMS8xL2NyZVBab0w4T2NW
YlFkU1BnTGlEalYwdHZ3Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFz5HTANBgkqhkiG9w0BAQsFAAOC
AQEAmm6i713aa+mO2owguTPhP1nun3G7v4VaMal4l6E1wAFQhYMdrkNkR5RfrwWE
bKBjqcvXpT2kxt9gF5neKJin4Q9gGwnI+JaVlkm9nZQ+hEdKlDpW5NojcQASHTP1
Uhyzc2PoxOKw4CRClpb6AYoh3b51368ImK+6k7rUnvdMUO/eCUda0vkHZyOgwi9S
uPOkO5S/s98FClngqaKzaIXPzxFOKdNEWyzK12aO3S8O4TNjxx158FNEZO2QohGA
dDrgKaqAaUAZqZQfvbhgor1quEYKPRIPryu2XfWCw//KJhB3anVnvgA/IGlf++xD
HMJZtCPCnmmh1//GiIzs9+yy0A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:49 2023 by rpki-client on console-ams.rpki-client.org