Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/b8c687-a23d-47b0-8462-93252014ccf8/1/fZGiT4euhaPaIAdxCHCE5zHrk4o.roa
File: fZGiT4euhaPaIAdxCHCE5zHrk4o.roa (raw, json)
Hash identifier: xSLPzTTD0n+v/UxKns+yogJoQfUMVmkvFdPVDnySktU=
Subject key identifier: 7D:91:A2:4F:87:AE:85:A3:DA:20:07:71:08:70:84:E7:31:EB:93:8A
Certificate issuer: /CN=927a47d7477f25689f64d064b3eca09647e8cea2
Certificate serial: 0217138E
Authority key identifier: 92:7A:47:D7:47:7F:25:68:9F:64:D0:64:B3:EC:A0:96:47:E8:CE:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/knpH10d_JWifZNBks-yglkfozqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/b8c687-a23d-47b0-8462-93252014ccf8/1/fZGiT4euhaPaIAdxCHCE5zHrk4o.roa
Signing time: Sat 01 Jan 2022 05:02:25 +0000
ROA not before: Sat 01 Jan 2022 05:02:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60076
IP address blocks: 193.107.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35066766 (0x217138e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=927a47d7477f25689f64d064b3eca09647e8cea2
Validity
Not Before: Jan 1 05:02:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d91a24f87ae85a3da200771087084e731eb938a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5c:8c:f9:f4:82:6f:5b:52:4a:e4:33:c6:05:
8d:a0:82:de:3c:f5:d6:9a:05:b0:20:34:a3:48:26:
d4:60:2d:7f:4c:d7:92:4b:33:7f:34:de:b1:3f:ca:
4f:2d:8c:dc:2b:4a:c3:50:cf:e5:01:ae:81:d7:24:
2d:89:7f:e0:a1:98:aa:58:07:3d:d2:e8:b0:e0:ab:
ef:1e:1b:0a:a7:de:5d:27:16:02:c7:eb:86:d7:ac:
44:58:24:1c:90:51:5d:19:49:01:7a:4b:32:b9:54:
58:cc:76:fe:f6:28:ca:fd:f3:04:64:1d:bc:c4:0a:
8a:80:c0:27:53:87:02:42:63:d0:6c:cc:c2:ab:05:
12:c5:d6:b7:fa:a0:de:07:75:52:d8:94:41:a0:8e:
fc:7f:05:da:22:90:a5:5f:1a:0c:fe:be:71:ca:42:
c9:b2:2b:0c:a0:de:a2:e7:f1:2e:b5:24:88:d6:d3:
e0:d6:f7:1e:19:dc:44:85:29:4c:e4:bc:42:8b:65:
fd:95:80:3b:21:fb:e3:17:9e:e1:68:c1:2f:14:6f:
f6:bf:52:b6:c3:21:3e:d6:4c:25:c3:53:e5:f3:d9:
4d:0a:3f:57:a4:8c:4f:12:b7:18:ba:0a:4f:6d:42:
b2:06:96:95:b7:ff:f7:e0:d4:a1:ca:24:00:04:30:
6e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:91:A2:4F:87:AE:85:A3:DA:20:07:71:08:70:84:E7:31:EB:93:8A
X509v3 Authority Key Identifier:
keyid:92:7A:47:D7:47:7F:25:68:9F:64:D0:64:B3:EC:A0:96:47:E8:CE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/knpH10d_JWifZNBks-yglkfozqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/b8c687-a23d-47b0-8462-93252014ccf8/1/fZGiT4euhaPaIAdxCHCE5zHrk4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/b8c687-a23d-47b0-8462-93252014ccf8/1/knpH10d_JWifZNBks-yglkfozqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.66.0/24
Signature Algorithm: sha256WithRSAEncryption
54:15:c8:08:b9:22:a6:02:6f:a5:44:0b:48:ca:ef:5a:73:67:
2d:ec:0b:1f:99:9b:72:08:d2:11:c8:b2:28:86:fd:5f:a0:0c:
ab:12:1e:67:b5:52:9c:85:f9:15:e6:93:ee:96:73:ee:bd:73:
40:46:66:85:14:2f:fa:40:1d:29:42:c1:d5:ef:e2:99:7a:b7:
10:50:5d:4d:67:75:c6:70:21:34:ec:27:2b:44:3d:5d:2d:52:
f3:08:bc:05:a3:38:db:1f:b5:bc:b3:83:0e:50:fd:1f:fc:4c:
de:44:15:7e:2b:8b:ff:94:7a:e0:8e:ad:ab:53:70:55:77:e9:
fa:45:39:41:e0:de:18:72:07:d7:7b:7d:18:2a:7b:e1:f8:0e:
e4:aa:68:32:26:83:8a:61:20:5b:69:04:4d:2d:fe:2c:41:88:
e7:1b:5d:54:ec:72:e4:49:64:83:4e:01:93:a2:b6:3f:08:05:
11:6e:7b:5d:b9:fd:56:d7:57:52:cd:23:de:e2:e6:41:26:ea:
61:35:04:fb:2a:42:3b:77:ba:76:45:a5:ca:46:16:5d:8a:47:
6d:23:6a:8d:61:86:20:f5:75:7a:6c:df:4a:6c:eb:53:01:c7:
96:fa:1a:62:cb:80:a9:f6:e4:72:2e:cd:33:b5:b0:8f:b4:42:
fc:77:c3:9a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAhcTjjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MjdhNDdkNzQ3N2YyNTY4OWY2NGQwNjRiM2VjYTA5NjQ3ZThjZWEyMB4XDTIyMDEw
MTA1MDIyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2Q5MWEyNGY4N2Fl
ODVhM2RhMjAwNzcxMDg3MDg0ZTczMWViOTM4YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMBcjPn0gm9bUkrkM8YFjaCC3jz11poFsCA0o0gm1GAtf0zX
kkszfzTesT/KTy2M3CtKw1DP5QGugdckLYl/4KGYqlgHPdLosOCr7x4bCqfeXScW
AsfrhtesRFgkHJBRXRlJAXpLMrlUWMx2/vYoyv3zBGQdvMQKioDAJ1OHAkJj0GzM
wqsFEsXWt/qg3gd1UtiUQaCO/H8F2iKQpV8aDP6+ccpCybIrDKDeoufxLrUkiNbT
4Nb3HhncRIUpTOS8Qotl/ZWAOyH74xee4WjBLxRv9r9StsMhPtZMJcNT5fPZTQo/
V6SMTxK3GLoKT21CsgaWlbf/9+DUocokAAQwbu8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR9kaJPh66Fo9ogB3EIcITnMeuTijAfBgNVHSMEGDAWgBSSekfXR38laJ9k
0GSz7KCWR+jOojAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2tucEgxMGRfSldpZlpOQmtzLXlnbGtmb3pxSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2MvYjhjNjg3LWEyM2QtNDdiMC04NDYyLTkzMjUyMDE0Y2NmOC8x
L2ZaR2lUNGV1aGFQYUlBZHhDSENFNXpIcms0by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Mv
YjhjNjg3LWEyM2QtNDdiMC04NDYyLTkzMjUyMDE0Y2NmOC8xL2tucEgxMGRfSldp
ZlpOQmtzLXlnbGtmb3pxSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMFrQjANBgkqhkiG9w0BAQsFAAOC
AQEAVBXICLkipgJvpUQLSMrvWnNnLewLH5mbcgjSEciyKIb9X6AMqxIeZ7VSnIX5
FeaT7pZz7r1zQEZmhRQv+kAdKULB1e/imXq3EFBdTWd1xnAhNOwnK0Q9XS1S8wi8
BaM42x+1vLODDlD9H/xM3kQVfiuL/5R64I6tq1NwVXfp+kU5QeDeGHIH13t9GCp7
4fgO5KpoMiaDimEgW2kETS3+LEGI5xtdVOxy5Elkg04Bk6K2PwgFEW57Xbn9VtdX
Us0j3uLmQSbqYTUE+ypCO3e6dkWlykYWXYpHbSNqjWGGIPV1emzfSmzrUwHHlvoa
YsuAqfbkci7NM7Wwj7RC/HfDmg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:10 2024 by rpki-client on console-fra.rpki-client.org