Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/P7pCL0Tsk6IVgom9SX9-OFvSsYQ.roa
File: P7pCL0Tsk6IVgom9SX9-OFvSsYQ.roa (raw, json)
Hash identifier: n5yJ3Q7ldiEOzsZwnB5Ww3GlEASgeW+M4CkeywB9C2o=
Subject key identifier: 3F:BA:42:2F:44:EC:93:A2:15:82:89:BD:49:7F:7E:38:5B:D2:B1:84
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0BF4BA94
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/P7pCL0Tsk6IVgom9SX9-OFvSsYQ.roa
Signing time: Sun 01 May 2022 08:19:35 +0000
ROA not before: Sun 01 May 2022 08:19:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213271
IP address blocks: 151.237.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200587924 (0xbf4ba94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: May 1 08:19:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fba422f44ec93a2158289bd497f7e385bd2b184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:fd:61:6d:4d:42:7f:90:bc:3c:3b:47:c1:a1:
77:61:f9:2b:67:41:06:6b:33:1b:03:3b:6c:08:d6:
36:1a:88:4b:08:90:89:c3:81:3c:64:2d:6a:07:b4:
df:7f:e2:ba:04:5e:b4:f1:04:c4:1f:81:ce:18:a9:
a2:fc:c5:76:74:e4:19:3a:90:f4:d0:f5:66:7c:fb:
fb:a9:9f:a6:84:6e:a2:9a:32:2c:b9:09:b6:1d:b0:
77:c2:99:3a:dc:89:6b:18:c4:31:15:a3:cd:92:62:
f1:94:a3:18:e1:10:e7:3c:0b:d8:d0:15:cd:d9:c1:
ff:9e:c0:57:85:b0:47:28:ec:be:0e:8f:6a:e7:cd:
82:2c:f2:83:da:23:de:41:ec:f8:4b:07:92:6f:cd:
dc:b6:b6:8a:ce:a0:a0:1b:11:55:77:87:ad:f8:90:
47:50:c1:d1:3c:5f:42:f6:bf:66:6e:38:e5:c3:9e:
4e:81:f8:53:b0:d9:e8:80:05:c1:41:5b:40:68:b8:
1f:a0:e2:37:f1:9e:27:48:02:95:61:f5:5b:21:68:
a9:b5:94:6e:52:42:2f:dd:33:6b:10:ef:4d:69:ed:
e5:8d:0e:26:5f:f1:c7:27:c6:e2:e5:1c:c6:5e:e8:
c5:88:b7:5a:c7:d2:ab:0d:c1:22:3c:67:17:03:29:
e1:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:BA:42:2F:44:EC:93:A2:15:82:89:BD:49:7F:7E:38:5B:D2:B1:84
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/P7pCL0Tsk6IVgom9SX9-OFvSsYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.237.18.0/24
Signature Algorithm: sha256WithRSAEncryption
95:82:bb:e6:78:76:e1:11:ea:f1:d6:c1:f1:79:80:4b:c5:ab:
be:02:44:e2:56:36:ac:ae:7a:dd:e7:7e:98:5b:a7:f1:9a:de:
3b:a9:fd:6c:b7:f6:76:0b:12:68:31:92:d0:9a:08:5d:51:6e:
ed:d9:f9:67:6c:d7:b0:d3:30:53:a4:9b:c1:fe:52:ee:90:45:
33:22:8a:b1:b4:ca:01:a2:cb:9f:6a:be:89:39:a5:f9:9b:7f:
6b:44:8a:70:e2:3a:ad:f4:13:e7:75:fa:13:7b:b5:ad:c9:f8:
ef:cf:24:46:5d:c0:47:db:9d:cf:22:7a:8c:c7:56:0f:f2:fd:
b5:c7:4f:13:de:db:c0:58:50:97:c7:c1:96:66:49:2a:e1:55:
db:1f:2a:a4:19:ac:6e:87:31:37:d6:65:f1:56:7a:35:3a:a2:
62:f5:64:c9:b9:dd:ee:e1:ec:5a:a2:91:fe:1e:8a:f0:c7:b2:
35:b7:08:13:e8:b1:00:b7:54:40:33:e4:5d:eb:b2:32:4f:30:
78:66:ed:52:b1:76:a5:5c:0a:90:ab:8d:e1:d1:b4:8b:f0:84:
d2:ad:31:25:24:b6:80:07:21:4d:21:b0:75:a6:1d:07:5a:a7:
c8:29:31:2d:28:75:82:6b:ad:cb:f9:18:2c:07:00:55:51:4c:
f8:e0:ec:23
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEC/S6lDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZWJmMzAyMDFmMTJhMDQwZDM4NmQyYjRlZWQ0NDg0NjIzZTRkMTFiMB4XDTIyMDUw
MTA4MTkzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2ZiYTQyMmY0NGVj
OTNhMjE1ODI4OWJkNDk3ZjdlMzg1YmQyYjE4NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJj9YW1NQn+QvDw7R8Ghd2H5K2dBBmszGwM7bAjWNhqISwiQ
icOBPGQtage033/iugRetPEExB+BzhipovzFdnTkGTqQ9ND1Znz7+6mfpoRuopoy
LLkJth2wd8KZOtyJaxjEMRWjzZJi8ZSjGOEQ5zwL2NAVzdnB/57AV4WwRyjsvg6P
aufNgizyg9oj3kHs+EsHkm/N3La2is6goBsRVXeHrfiQR1DB0TxfQva/Zm445cOe
ToH4U7DZ6IAFwUFbQGi4H6DiN/GeJ0gClWH1WyFoqbWUblJCL90zaxDvTWnt5Y0O
Jl/xxyfG4uUcxl7oxYi3WsfSqw3BIjxnFwMp4R8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ/ukIvROyTohWCib1Jf344W9KxhDAfBgNVHSMEGDAWgBT+vzAgHxKgQNOG
0rTu1EhGI+TRGzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19yOHdJQjhTb0VEVGh0SzA3dFJJUmlQazBScy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2MvZjhjNGEyLTk2YWMtNGI0ZS1hMTk1LWE5N2MwZGMwYTc0OS8x
L1A3cENMMFRzazZJVmdvbTlTWDktT0Z2U3NZUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Mv
ZjhjNGEyLTk2YWMtNGI0ZS1hMTk1LWE5N2MwZGMwYTc0OS8xL19yOHdJQjhTb0VE
VGh0SzA3dFJJUmlQazBScy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJftEjANBgkqhkiG9w0BAQsFAAOC
AQEAlYK75nh24RHq8dbB8XmAS8WrvgJE4lY2rK563ed+mFun8ZreO6n9bLf2dgsS
aDGS0JoIXVFu7dn5Z2zXsNMwU6Sbwf5S7pBFMyKKsbTKAaLLn2q+iTml+Zt/a0SK
cOI6rfQT53X6E3u1rcn4788kRl3AR9udzyJ6jMdWD/L9tcdPE97bwFhQl8fBlmZJ
KuFV2x8qpBmsbocxN9Zl8VZ6NTqiYvVkybnd7uHsWqKR/h6K8MeyNbcIE+ixALdU
QDPkXeuyMk8weGbtUrF2pVwKkKuN4dG0i/CE0q0xJSS2gAchTSGwdaYdB1qnyCkx
LSh1gmuty/kYLAcAVVFM+ODsIw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org