Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/F29uVALqR2wJD2K_7frMWCUP85I.roa
File: F29uVALqR2wJD2K_7frMWCUP85I.roa (raw, json)
Hash identifier: /pzAFqdf4pA0QA035iG2bDbf/xN2iQyNdIcQlNaCTD0=
Subject key identifier: 17:6F:6E:54:02:EA:47:6C:09:0F:62:BF:ED:FA:CC:58:25:0F:F3:92
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 18C953DB
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/F29uVALqR2wJD2K_7frMWCUP85I.roa
Signing time: Sat 01 Jan 2022 02:59:08 +0000
ROA not before: Sat 01 Jan 2022 02:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8068
IP address blocks: 94.245.84.0/24 maxlen: 24
192.100.103.0/24 maxlen: 24
192.100.102.0/24 maxlen: 24
2a01:111:202d::/48 maxlen: 48
2a01:111:202e::/48 maxlen: 48
2a01:111:2003::/48 maxlen: 48
2a01:111:f003::/48 maxlen: 48
2a01:111:202c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 415847387 (0x18c953db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: Jan 1 02:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=176f6e5402ea476c090f62bfedfacc58250ff392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bd:e0:ba:67:21:79:76:b2:eb:55:e6:ac:8f:
25:75:e8:d6:79:de:30:6b:05:bb:78:e4:06:24:0c:
3a:f1:4b:7b:a3:3e:23:6f:5e:ed:a6:26:38:31:17:
bc:68:c5:30:c8:34:d0:10:e1:7a:c7:b1:fd:b8:ee:
23:d7:17:ec:c5:61:fb:a8:10:c3:c2:46:cc:4a:88:
71:17:9f:74:45:d5:8f:50:4c:65:18:e6:83:86:f8:
ae:e7:08:bd:47:36:83:19:09:70:ad:80:9d:aa:d9:
b8:d0:2a:67:bb:d1:34:f2:6c:9e:9b:c9:0d:2d:9f:
9a:9f:f0:da:ba:88:9e:bd:80:ed:36:99:ce:05:3a:
60:b6:99:b3:eb:b8:b1:0f:b1:a8:04:3c:5d:67:50:
a3:96:0b:33:05:e9:48:c0:65:1f:cf:fb:9d:fd:7d:
ec:20:3f:c4:5b:e5:57:82:ca:d8:5f:13:12:f7:4d:
1b:0c:08:cb:66:2e:b5:dd:8f:ef:62:43:0b:9a:0b:
57:ae:58:e3:3b:86:b8:30:3d:2b:b3:b3:2d:e0:42:
e1:e5:41:ff:2a:71:47:4c:5a:f8:ea:a7:fc:50:ec:
f3:d5:7a:5c:69:66:b6:b8:59:63:c3:59:0b:e5:e8:
13:15:47:4d:28:f7:18:2d:69:9d:0b:26:3b:5c:80:
87:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:6F:6E:54:02:EA:47:6C:09:0F:62:BF:ED:FA:CC:58:25:0F:F3:92
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/F29uVALqR2wJD2K_7frMWCUP85I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.245.84.0/24
192.100.102.0/23
IPv6:
2a01:111:2003::/48
2a01:111:202c::-2a01:111:202e:ffff:ffff:ffff:ffff:ffff
2a01:111:f003::/48
Signature Algorithm: sha256WithRSAEncryption
bc:5b:9f:94:9d:83:44:7c:57:43:62:ec:b4:c0:70:d8:50:0c:
37:50:f5:39:0d:d0:b3:01:f1:0e:8b:c1:23:41:13:8c:67:33:
09:62:4d:04:26:e8:46:ca:f4:dd:1c:c3:44:10:28:68:35:0e:
85:3f:8b:f3:50:68:ef:6d:78:2f:67:5e:70:0a:5b:d3:12:10:
f8:0a:49:2a:18:bf:1b:7e:d9:ca:66:ae:29:d2:03:42:59:f9:
b7:ef:69:c8:4e:81:9b:c4:63:51:e6:da:8c:20:42:ea:a2:c8:
69:c4:00:d7:87:21:70:ec:7c:71:97:31:cf:a0:f3:b5:64:29:
39:69:bb:87:b9:5e:58:f1:fa:69:92:bf:4b:4a:7c:18:4c:df:
20:12:d4:da:61:60:37:19:1e:ff:33:c7:94:97:98:a6:8a:45:
4f:02:aa:ae:2e:26:85:b3:eb:1a:e9:0e:77:7a:4d:1e:b6:8f:
d0:66:a5:7e:61:a3:ee:61:8d:02:7a:d4:fa:5b:f4:3b:09:fa:
d4:06:a9:c0:b8:ec:bd:00:b1:fd:c4:54:a0:ab:62:5b:ec:4c:
0e:be:57:2e:2d:1f:9d:9e:41:ea:30:d1:d5:6d:0d:2d:b7:a8:
cf:c3:7c:59:eb:57:4a:9d:b9:bb:a2:eb:5b:26:a2:11:fd:94:
db:6d:f1:ab
-----BEGIN CERTIFICATE-----
MIIFIzCCBAugAwIBAgIEGMlT2zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
Y2U2OGRhZjVmMDg5NDU2YzBlMWQwMjI0NTM5MzUzMWFjNWI4ZmNiMB4XDTIyMDEw
MTAyNTkwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTc2ZjZlNTQwMmVh
NDc2YzA5MGY2MmJmZWRmYWNjNTgyNTBmZjM5MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJy94LpnIXl2sutV5qyPJXXo1nneMGsFu3jkBiQMOvFLe6M+
I29e7aYmODEXvGjFMMg00BDhesex/bjuI9cX7MVh+6gQw8JGzEqIcRefdEXVj1BM
ZRjmg4b4rucIvUc2gxkJcK2AnarZuNAqZ7vRNPJsnpvJDS2fmp/w2rqInr2A7TaZ
zgU6YLaZs+u4sQ+xqAQ8XWdQo5YLMwXpSMBlH8/7nf197CA/xFvlV4LK2F8TEvdN
GwwIy2Yutd2P72JDC5oLV65Y4zuGuDA9K7OzLeBC4eVB/ypxR0xa+Oqn/FDs89V6
XGlmtrhZY8NZC+XoExVHTSj3GC1pnQsmO1yAh20CAwEAAaOCAj0wggI5MB0GA1Ud
DgQWBBQXb25UAupHbAkPYr/t+sxYJQ/zkjAfBgNVHSMEGDAWgBR85o2vXwiUVsDh
0CJFOTUxrFuPyzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZPYU5yMThJbEZiQTRkQWlSVGsxTWF4Ymo4cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWIvZWMwYjg5LTFlNjgtNDVhMC04YjkzLTEzYTA2YTI2OWFhOC8x
L0YyOXVWQUxxUjJ3SkQyS183ZnJNV0NVUDg1SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWIv
ZWMwYjg5LTFlNjgtNDVhMC04YjkzLTEzYTA2YTI2OWFhOC8xL2ZPYU5yMThJbEZi
QTRkQWlSVGsxTWF4Ymo4cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBT
BggrBgEFBQcBBwEB/wREMEIwEgQCAAEwDAMEAF71VAMEAcBkZjAsBAIAAjAmAwcA
KgEBESADMBIDBwIqAQERICwDBwAqAQERIC4DBwAqAQER8AMwDQYJKoZIhvcNAQEL
BQADggEBALxbn5Sdg0R8V0Ni7LTAcNhQDDdQ9TkN0LMB8Q6LwSNBE4xnMwliTQQm
6EbK9N0cw0QQKGg1DoU/i/NQaO9teC9nXnAKW9MSEPgKSSoYvxt+2cpmrinSA0JZ
+bfvachOgZvEY1Hm2owgQuqiyGnEANeHIXDsfHGXMc+g87VkKTlpu4e5Xljx+mmS
v0tKfBhM3yAS1NphYDcZHv8zx5SXmKaKRU8Cqq4uJoWz6xrpDnd6TR62j9BmpX5h
o+5hjQJ61Ppb9DsJ+tQGqcC47L0Asf3EVKCrYlvsTA6+Vy4tH52eQeow0dVtDS23
qM/DfFnrV0qdubui61smohH9lNtt8as=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:32 2024 by rpki-client on console-fra.rpki-client.org