Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/ehAEUPQMXb9XA8eg9Y_w2_uPrk8.roa
File: ehAEUPQMXb9XA8eg9Y_w2_uPrk8.roa (raw, json)
Hash identifier: Qt/mP/fkn2/yEG1GbTOto43jFSlh4p71Yf0Qv3x1swM=
Subject key identifier: 7A:10:04:50:F4:0C:5D:BF:57:03:C7:A0:F5:8F:F0:DB:FB:8F:AE:4F
Certificate issuer: /CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Certificate serial: 079F4564
Authority key identifier: 4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/ehAEUPQMXb9XA8eg9Y_w2_uPrk8.roa
Signing time: Sat 01 Jan 2022 09:03:06 +0000
ROA not before: Sat 01 Jan 2022 09:03:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13213
IP address blocks: 91.238.70.0/24 maxlen: 24
185.141.116.0/24 maxlen: 24
2a07:23c0::/48 maxlen: 48
2a07:23c0:8::/48 maxlen: 48
2a07:23c0:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127878500 (0x79f4564)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Validity
Not Before: Jan 1 09:03:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a100450f40c5dbf5703c7a0f58ff0dbfb8fae4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3d:71:65:8e:27:69:aa:56:fd:ec:35:41:e1:
1c:30:dd:93:3a:cf:3e:58:1c:ba:97:02:2c:86:a2:
18:a9:37:aa:bb:97:24:32:f6:d0:af:23:d2:d8:4a:
fa:6f:05:06:8f:98:74:fc:6d:85:eb:e8:31:7b:6c:
01:0d:0c:0f:39:00:50:06:b1:28:dd:87:4b:cf:1c:
fb:fa:fb:b6:5c:c9:4a:1d:c7:7e:1b:3e:11:a6:5b:
3a:7d:01:55:1d:c6:fe:17:55:d4:c7:7c:39:2e:c9:
51:0d:2b:a9:f5:d4:4a:ff:21:91:d1:69:29:ca:55:
d5:b3:9b:55:55:f9:1d:79:16:b2:fa:04:34:09:1f:
09:90:6d:56:d4:94:3b:68:ea:37:7e:cf:76:57:ae:
54:fd:fb:22:25:54:16:25:3d:34:c7:36:04:08:45:
64:de:b6:2d:c0:33:24:b1:f3:72:b8:fe:15:96:95:
69:ad:c5:b1:53:25:0d:14:19:5e:74:88:d5:50:d1:
8f:d6:b5:05:66:1c:b2:dd:3b:95:f1:19:f0:cb:a8:
19:09:ed:8e:92:50:dd:3b:57:a5:c1:c5:48:b7:79:
6a:7b:e9:77:97:ce:04:e3:f9:07:ca:b4:91:5c:5f:
61:20:2f:9b:c7:61:65:64:3a:7a:b1:3d:5f:2b:20:
b6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:10:04:50:F4:0C:5D:BF:57:03:C7:A0:F5:8F:F0:DB:FB:8F:AE:4F
X509v3 Authority Key Identifier:
keyid:4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/ehAEUPQMXb9XA8eg9Y_w2_uPrk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/T7K7e61Q8ZIYEKAo547dZfgfan0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.70.0/24
185.141.116.0/24
IPv6:
2a07:23c0::/48
2a07:23c0:8::/47
Signature Algorithm: sha256WithRSAEncryption
26:86:aa:03:56:3b:49:3a:21:ea:23:eb:10:05:78:60:b2:72:
5a:2c:8e:95:79:e0:63:cb:87:08:6f:3a:da:dd:6f:bc:43:ba:
d6:b9:dd:21:f0:36:03:32:88:3c:93:be:2d:e3:45:a7:32:1a:
a2:9b:6d:58:37:cf:d8:73:1a:91:7e:21:f1:a6:df:e8:e7:5c:
ae:40:9d:bc:d7:e0:8d:31:c9:87:1a:8e:de:a8:e9:29:79:8f:
f7:9a:1b:7f:97:24:28:c1:c2:24:08:ff:df:f2:2d:df:93:64:
b2:a4:57:4d:46:40:69:a3:45:74:ea:dd:0e:0a:6f:f6:d6:7f:
f9:1d:d8:c6:55:69:d6:89:4c:0d:d8:c3:f6:97:dc:d7:79:08:
92:9c:8d:a0:6a:8f:c1:fb:2e:e6:1f:ac:fc:54:01:20:af:12:
5a:15:7b:9f:fb:31:ee:5b:ba:16:b8:6a:e1:fd:00:e9:24:2a:
67:57:11:db:78:cd:89:5f:93:40:85:8d:d5:93:79:dc:43:6e:
d2:05:b3:ad:cd:03:a5:e0:c4:21:7e:e6:7a:58:3d:f8:cc:78:
f0:95:f5:22:22:1e:01:3d:b6:bb:3d:a7:c6:3c:d4:01:38:d4:
13:f4:7d:a4:0b:bc:2f:6a:0d:98:db:1a:6d:92:bb:2a:25:2e:
5c:09:d0:a3
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgIEB59FZDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZmIyYmI3YmFkNTBmMTkyMTgxMGEwMjhlNzhlZGQ2NWY4MWY2YTdkMB4XDTIyMDEw
MTA5MDMwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2ExMDA0NTBmNDBj
NWRiZjU3MDNjN2EwZjU4ZmYwZGJmYjhmYWU0ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALM9cWWOJ2mqVv3sNUHhHDDdkzrPPlgcupcCLIaiGKk3qruX
JDL20K8j0thK+m8FBo+YdPxthevoMXtsAQ0MDzkAUAaxKN2HS88c+/r7tlzJSh3H
fhs+EaZbOn0BVR3G/hdV1Md8OS7JUQ0rqfXUSv8hkdFpKcpV1bObVVX5HXkWsvoE
NAkfCZBtVtSUO2jqN37PdleuVP37IiVUFiU9NMc2BAhFZN62LcAzJLHzcrj+FZaV
aa3FsVMlDRQZXnSI1VDRj9a1BWYcst07lfEZ8MuoGQntjpJQ3TtXpcHFSLd5anvp
d5fOBOP5B8q0kVxfYSAvm8dhZWQ6erE9XysgtgsCAwEAAaOCAikwggIlMB0GA1Ud
DgQWBBR6EARQ9Axdv1cDx6D1j/Db+4+uTzAfBgNVHSMEGDAWgBRPsrt7rVDxkhgQ
oCjnjt1l+B9qfTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Q3SzdlNjFROFpJWUVLQW81NDdkWmZnZmFuMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmQvZmRhMzgyLTQyNTctNDFjMy04ZWM2LTI3ZmJjOTllYTNjNi8x
L2VoQUVVUFFNWGI5WEE4ZWc5WV93Ml91UHJrOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQv
ZmRhMzgyLTQyNTctNDFjMy04ZWM2LTI3ZmJjOTllYTNjNi8xL1Q3SzdlNjFROFpJ
WUVLQW81NDdkWmZnZmFuMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA/
BggrBgEFBQcBBwEB/wQwMC4wEgQCAAEwDAMEAFvuRgMEALmNdDAYBAIAAjASAwcA
KgcjwAAAAwcBKgcjwAAIMA0GCSqGSIb3DQEBCwUAA4IBAQAmhqoDVjtJOiHqI+sQ
BXhgsnJaLI6VeeBjy4cIbzra3W+8Q7rWud0h8DYDMog8k74t40WnMhqim21YN8/Y
cxqRfiHxpt/o51yuQJ281+CNMcmHGo7eqOkpeY/3mht/lyQowcIkCP/f8i3fk2Sy
pFdNRkBpo0V06t0OCm/21n/5HdjGVWnWiUwN2MP2l9zXeQiSnI2gao/B+y7mH6z8
VAEgrxJaFXuf+zHuW7oWuGrh/QDpJCpnVxHbeM2JX5NAhY3Vk3ncQ27SBbOtzQOl
4MQhfuZ6WD34zHjwlfUiIh4BPba7PafGPNQBONQT9H2kC7wvag2Y2xptkrsqJS5c
CdCj
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:31 2024 by rpki-client on console-ams.rpki-client.org