Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/JgH7A_PhgsGAcwvSgKSp8A9gH2Q.roa
File: JgH7A_PhgsGAcwvSgKSp8A9gH2Q.roa (raw, json)
Hash identifier: pZCL6g+M/v3/4w9pmSU0EmpEGW7F5GvmFiXYsy7XGbs=
Subject key identifier: 26:01:FB:03:F3:E1:82:C1:80:73:0B:D2:80:A4:A9:F0:0F:60:1F:64
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0184FDA8AC9185648BC2D2BF367F66A38732
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/JgH7A_PhgsGAcwvSgKSp8A9gH2Q.roa
Signing time: Sat 10 Dec 2022 20:10:00 +0000
ROA not before: Sat 10 Dec 2022 20:10:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204197
IP address blocks: 46.23.100.0/22 maxlen: 22
37.128.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:fd:a8:ac:91:85:64:8b:c2:d2:bf:36:7f:66:a3:87:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Dec 10 20:10:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2601fb03f3e182c180730bd280a4a9f00f601f64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:da:1a:f6:f4:cc:9d:0d:33:fd:69:42:e0:c2:
bb:b3:6c:96:5e:a1:bd:a7:80:69:c7:f3:32:0e:ba:
ab:e7:64:7d:51:bd:90:f4:91:fc:1a:f3:02:05:42:
ee:42:12:73:76:84:18:3d:00:63:b1:04:8a:bc:a6:
44:ab:a3:21:a8:41:41:4b:13:29:2c:9d:3a:50:32:
e7:15:b7:dd:b6:0d:e8:7a:1b:94:30:8b:9c:a1:f3:
49:47:e1:54:39:27:6c:09:bc:21:ae:4d:b1:57:16:
d0:59:23:7a:22:1f:6b:0c:ee:32:95:43:5d:f0:5d:
ad:ad:f5:4d:06:04:8b:97:11:b5:ba:ab:bb:78:f4:
bc:af:9d:90:30:6b:46:26:f9:70:3a:c5:43:ab:6b:
3b:97:97:4e:12:3e:b9:77:38:15:91:aa:f0:12:13:
80:54:eb:dc:19:1e:a0:b6:9e:81:5d:1e:5a:ab:6a:
2c:62:38:57:33:8e:cf:b5:97:de:0a:bd:be:db:1f:
2a:cb:71:4a:e9:d1:b8:da:03:59:fe:de:78:92:6f:
04:c2:41:1f:14:fe:fa:eb:70:90:8f:cf:41:7f:bc:
86:dd:59:62:9f:97:72:dc:9d:d0:3d:2a:15:bb:26:
13:c9:6d:7d:64:fb:40:f9:2f:14:5a:fb:19:26:16:
58:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:01:FB:03:F3:E1:82:C1:80:73:0B:D2:80:A4:A9:F0:0F:60:1F:64
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/JgH7A_PhgsGAcwvSgKSp8A9gH2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.128.200.0/22
46.23.100.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:85:d0:68:6a:ee:7b:0b:69:5d:ae:67:41:c7:b7:f9:0d:b4:
92:50:7a:11:b2:54:bb:e6:72:f4:33:39:2f:96:d6:6a:63:8a:
54:d6:9d:2c:cf:b1:ad:86:a3:d3:06:db:da:d9:aa:73:40:2d:
24:a4:66:a5:71:05:4d:c0:08:16:10:78:23:50:66:03:26:f5:
03:4b:78:78:75:5d:f3:d3:e9:db:05:31:07:50:a1:ae:85:85:
e8:d0:b4:72:4a:b5:ad:e1:78:16:de:fd:4d:03:c8:b4:32:35:
ee:69:5c:7a:b0:c3:29:b8:cb:6d:93:7d:e0:5f:82:b2:f2:30:
3c:0d:16:dc:21:3e:b9:00:c6:b1:f1:5c:be:b5:2b:6a:c3:f6:
06:43:59:39:35:de:8e:7f:ab:4d:88:e5:8a:b7:71:9b:d5:61:
fb:c2:55:0d:16:a0:bc:c5:2a:ab:b0:6f:10:f9:78:08:c9:5d:
2d:d7:99:7a:4c:65:75:38:37:ce:c8:8e:25:37:fe:74:09:2f:
c4:86:13:b2:c6:e7:65:e0:cf:81:b5:53:1e:d3:9a:e1:31:0f:
45:63:70:27:ce:04:d8:45:2d:98:0e:fa:bb:05:10:27:55:36:
f5:d8:57:d9:a9:31:49:d5:69:b7:f1:c0:d1:c7:3a:2c:f0:51:
ec:dc:69:9c
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYT9qKyRhWSLwtK/Nn9mo4cyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMDZhNDJiYjI0NDZlNTFmMTkyZWEzNzViZGY3ZWVjNWE1
MWM3N2YwHhcNMjIxMjEwMjAxMDAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNjAxZmIwM2YzZTE4MmMxODA3MzBiZDI4MGE0YTlmMDBmNjAxZjY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtoa9vTMnQ0z/WlC4MK7s2yWXqG9
p4Bpx/MyDrqr52R9Ub2Q9JH8GvMCBULuQhJzdoQYPQBjsQSKvKZEq6MhqEFBSxMp
LJ06UDLnFbfdtg3oehuUMIucofNJR+FUOSdsCbwhrk2xVxbQWSN6Ih9rDO4ylUNd
8F2trfVNBgSLlxG1uqu7ePS8r52QMGtGJvlwOsVDq2s7l5dOEj65dzgVkarwEhOA
VOvcGR6gtp6BXR5aq2osYjhXM47PtZfeCr2+2x8qy3FK6dG42gNZ/t54km8EwkEf
FP7663CQj89Bf7yG3Vlin5dy3J3QPSoVuyYTyW19ZPtA+S8UWvsZJhZYHwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFCYB+wPz4YLBgHML0oCkqfAPYB9kMB8GA1UdIwQY
MBaAFH0GpCuyRG5R8ZLqN1vffuxaUcd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUt
MmNmODA2YjJkMGYyLzEvSmdIN0FfUGhnc0dBY3d2U2dLU3A4QTlnSDJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUtMmNmODA2YjJkMGYy
LzEvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCJYDIAwQC
LhdkMA0GCSqGSIb3DQEBCwUAA4IBAQClhdBoau57C2ldrmdBx7f5DbSSUHoRslS7
5nL0MzkvltZqY4pU1p0sz7GthqPTBtva2apzQC0kpGalcQVNwAgWEHgjUGYDJvUD
S3h4dV3z0+nbBTEHUKGuhYXo0LRySrWt4XgW3v1NA8i0MjXuaVx6sMMpuMttk33g
X4Ky8jA8DRbcIT65AMax8Vy+tStqw/YGQ1k5Nd6Of6tNiOWKt3Gb1WH7wlUNFqC8
xSqrsG8Q+XgIyV0t15l6TGV1ODfOyI4lN/50CS/EhhOyxudl4M+BtVMe05rhMQ9F
Y3AnzgTYRS2YDvq7BRAnVTb12FfZqTFJ1Wm38cDRxzos8FHs3Gmc
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:00 2023 by rpki-client on console-fra.rpki-client.org