Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/RGqOWfM-gljeloci_6uvAa_4hRc.roa
File: RGqOWfM-gljeloci_6uvAa_4hRc.roa (raw, json)
Hash identifier: rh0eYuJi9SV/fKYrAnxovvzB6AJ4g/Y7l9BSFOx2V78=
Subject key identifier: 44:6A:8E:59:F3:3E:82:58:DE:96:87:22:FF:AB:AF:01:AF:F8:85:17
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0A8D577B
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/RGqOWfM-gljeloci_6uvAa_4hRc.roa
Signing time: Sat 01 Jan 2022 16:07:18 +0000
ROA not before: Sat 01 Jan 2022 16:07:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204554
IP address blocks: 151.237.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177035131 (0xa8d577b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 16:07:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=446a8e59f33e8258de968722ffabaf01aff88517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:41:c5:ea:63:7c:d4:d6:c4:a4:31:39:ea:c4:
e8:21:5e:d4:0a:0d:f4:aa:57:ca:ab:d7:89:5b:2c:
68:dd:1f:5f:1c:5d:3c:12:33:b4:e3:4c:38:4a:88:
ab:88:66:cf:35:16:8d:2d:64:e1:bd:56:b8:6f:6b:
bc:f7:82:3e:7a:5f:14:4c:37:50:4b:e4:6c:c0:90:
17:00:08:05:fe:67:e0:57:aa:60:6f:52:52:6d:77:
e0:91:ea:2c:72:b0:a6:41:d7:11:d6:4d:17:6f:14:
ce:9b:e0:ea:aa:e9:99:fb:c4:be:c4:e4:5d:c1:35:
b6:59:f0:1c:f8:b9:f3:a8:3c:ac:f2:65:2a:0c:94:
75:f1:d5:8a:0d:ef:53:25:c6:66:90:06:84:9e:11:
18:84:41:70:88:fb:3f:93:a5:ce:bb:1d:94:54:b6:
cc:fe:18:df:50:07:7a:0e:53:18:78:f5:c7:e5:6b:
01:b2:3a:1b:44:b7:6c:d6:0a:ee:55:ed:bf:17:8d:
34:2d:77:5d:df:b5:eb:1e:dd:17:a0:18:a6:c7:2e:
cb:3f:2f:23:45:24:c5:c1:88:b1:6b:3e:ef:f7:32:
c9:40:d5:64:a4:69:eb:04:73:9d:82:ad:40:76:97:
38:bc:7d:0c:9c:ab:93:98:47:da:27:89:e2:49:7c:
15:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:6A:8E:59:F3:3E:82:58:DE:96:87:22:FF:AB:AF:01:AF:F8:85:17
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/RGqOWfM-gljeloci_6uvAa_4hRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.237.28.0/24
Signature Algorithm: sha256WithRSAEncryption
e2:d4:72:95:e6:d5:66:c9:d0:cf:ce:34:cd:d9:fa:50:7a:3b:
24:d5:1f:cc:ce:0d:68:8b:00:34:6b:b2:28:0c:60:d8:3a:09:
5d:f0:28:67:a4:d5:c3:40:6f:ad:9f:51:8c:1a:b2:7a:09:34:
c5:35:af:3b:0c:f9:46:41:ab:2a:dc:4c:4a:72:51:04:d7:bc:
22:ce:70:e6:4d:94:6b:76:d0:02:92:c9:83:53:29:d5:ce:be:
fa:43:2a:a9:85:8e:e9:7a:09:5f:25:3a:4e:04:59:b0:31:86:
c0:cb:fe:f1:15:f0:24:60:48:a5:d2:97:02:7f:ff:b1:57:dd:
9e:7d:4e:fd:8e:6e:f0:6e:19:fb:f9:5f:f9:01:09:96:6a:d9:
67:29:30:d8:9c:9b:c0:70:7f:e9:3e:d6:83:c5:e3:e0:1b:88:
92:49:33:9d:7f:e1:20:f0:52:21:27:0a:9a:26:37:c2:d8:0f:
83:fe:0d:b2:f6:fa:cc:b0:44:e3:23:34:b7:9f:1f:3c:51:24:
a2:bc:85:15:27:79:e2:8a:a2:55:af:e3:ec:07:1d:cf:08:e0:
4a:55:62:bd:36:83:a7:cd:a5:45:d8:9c:2c:91:e6:80:d0:23:
1e:31:b2:ff:49:95:05:be:9a:18:2e:dc:c6:f7:55:c8:a1:c2:
1d:52:91:ec
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECo1XezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZWJmMzAyMDFmMTJhMDQwZDM4NmQyYjRlZWQ0NDg0NjIzZTRkMTFiMB4XDTIyMDEw
MTE2MDcxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDQ2YThlNTlmMzNl
ODI1OGRlOTY4NzIyZmZhYmFmMDFhZmY4ODUxNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALxBxepjfNTWxKQxOerE6CFe1AoN9KpXyqvXiVssaN0fXxxd
PBIztONMOEqIq4hmzzUWjS1k4b1WuG9rvPeCPnpfFEw3UEvkbMCQFwAIBf5n4Feq
YG9SUm134JHqLHKwpkHXEdZNF28Uzpvg6qrpmfvEvsTkXcE1tlnwHPi586g8rPJl
KgyUdfHVig3vUyXGZpAGhJ4RGIRBcIj7P5OlzrsdlFS2zP4Y31AHeg5TGHj1x+Vr
AbI6G0S3bNYK7lXtvxeNNC13Xd+16x7dF6AYpscuyz8vI0UkxcGIsWs+7/cyyUDV
ZKRp6wRznYKtQHaXOLx9DJyrk5hH2ieJ4kl8FY0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBREao5Z8z6CWN6WhyL/q68Br/iFFzAfBgNVHSMEGDAWgBT+vzAgHxKgQNOG
0rTu1EhGI+TRGzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19yOHdJQjhTb0VEVGh0SzA3dFJJUmlQazBScy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2MvZjhjNGEyLTk2YWMtNGI0ZS1hMTk1LWE5N2MwZGMwYTc0OS8x
L1JHcU9XZk0tZ2xqZWxvY2lfNnV2QWFfNGhSYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Mv
ZjhjNGEyLTk2YWMtNGI0ZS1hMTk1LWE5N2MwZGMwYTc0OS8xL19yOHdJQjhTb0VE
VGh0SzA3dFJJUmlQazBScy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJftHDANBgkqhkiG9w0BAQsFAAOC
AQEA4tRylebVZsnQz840zdn6UHo7JNUfzM4NaIsANGuyKAxg2DoJXfAoZ6TVw0Bv
rZ9RjBqyegk0xTWvOwz5RkGrKtxMSnJRBNe8Is5w5k2Ua3bQApLJg1Mp1c6++kMq
qYWO6XoJXyU6TgRZsDGGwMv+8RXwJGBIpdKXAn//sVfdnn1O/Y5u8G4Z+/lf+QEJ
lmrZZykw2JybwHB/6T7Wg8Xj4BuIkkkznX/hIPBSIScKmiY3wtgPg/4Nsvb6zLBE
4yM0t58fPFEkoryFFSd54oqiVa/j7AcdzwjgSlVivTaDp82lRdicLJHmgNAjHjGy
/0mVBb6aGC7cxvdVyKHCHVKR7A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org