Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/tKa_7GzZQ8VFMbg5-X47ZcXGKG8.roa
File: tKa_7GzZQ8VFMbg5-X47ZcXGKG8.roa (raw, json)
Hash identifier: 20OkdqBO0P8mwFqpZRd3NuHnjwJ78N3AwzuZYXxGFHo=
Subject key identifier: B4:A6:BF:EC:6C:D9:43:C5:45:31:B8:39:F9:7E:3B:65:C5:C6:28:6F
Certificate issuer: /CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Certificate serial: 07A282FA
Authority key identifier: 4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/tKa_7GzZQ8VFMbg5-X47ZcXGKG8.roa
Signing time: Sat 01 Jan 2022 09:03:08 +0000
ROA not before: Sat 01 Jan 2022 09:03:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64249
IP address blocks: 91.238.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128090874 (0x7a282fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Validity
Not Before: Jan 1 09:03:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4a6bfec6cd943c54531b839f97e3b65c5c6286f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:9c:bb:d3:26:62:15:ff:16:88:b8:54:5d:61:
54:8a:0b:0e:bb:59:0c:1e:9d:71:11:ee:e3:d5:1a:
5a:9d:35:17:94:c8:e8:a4:66:88:bd:3f:84:d0:94:
2c:f6:29:5c:b8:1f:60:f8:1f:92:da:96:74:62:ab:
19:09:11:63:03:66:bf:56:f4:c6:24:0d:c9:19:5a:
7e:a5:48:5c:53:68:3a:c6:ae:55:ac:63:6b:10:62:
95:d2:04:8b:ad:ad:6b:4a:6d:08:c3:70:9f:8e:7f:
67:d1:7c:cb:c0:27:8e:b5:f5:ef:ce:c3:68:d3:02:
46:8e:a1:5d:08:7a:e7:66:9c:99:23:5d:1c:27:1b:
79:68:50:a4:ab:51:b3:54:0d:29:93:e8:35:69:3b:
54:e2:08:4f:92:f1:8d:01:9d:a3:27:4f:63:65:c5:
c1:fe:1e:5e:93:eb:e9:9b:87:15:20:01:7e:e2:7a:
2d:af:d2:2b:19:e6:7d:6e:2d:da:79:75:3c:23:60:
f4:55:11:7b:eb:b5:1e:03:db:38:ff:1b:ac:79:9f:
8a:e2:2d:43:66:83:b6:90:ed:ff:98:cb:85:5a:16:
16:32:95:03:e0:d7:b1:15:e7:3e:b2:87:85:af:d3:
c2:1f:69:07:17:84:51:8e:16:89:c1:44:9f:83:28:
28:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A6:BF:EC:6C:D9:43:C5:45:31:B8:39:F9:7E:3B:65:C5:C6:28:6F
X509v3 Authority Key Identifier:
keyid:4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/tKa_7GzZQ8VFMbg5-X47ZcXGKG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/T7K7e61Q8ZIYEKAo547dZfgfan0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.71.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:eb:2b:7d:2d:63:0f:6a:82:c0:04:41:25:6b:bd:e7:bd:93:
2d:2c:c7:be:da:e4:87:1c:e0:13:a4:e4:54:84:9f:f8:da:0c:
a0:3b:53:48:cd:47:da:85:3c:14:cf:c0:04:c1:d7:c5:bb:b1:
db:a0:c3:d2:08:6b:3a:97:8c:40:a0:f6:28:8b:b4:73:fd:3f:
e7:13:43:07:91:8a:32:79:e2:a5:6d:a1:9d:8a:7a:e6:96:57:
4d:c0:f8:03:c2:ed:4a:a0:d6:58:41:35:34:f7:0f:65:6f:46:
24:3e:ab:67:80:95:11:f8:da:1c:d5:26:c0:18:d1:37:99:e0:
bd:b6:4d:a4:b4:a0:15:10:33:c6:6e:fd:72:ce:91:e2:4d:37:
29:78:b3:56:80:64:3a:75:a7:db:54:ce:85:47:b3:03:0c:a2:
88:9c:5d:7e:0d:8d:01:ea:e1:75:5b:87:ec:9e:df:e5:ff:ab:
1f:a1:bf:05:50:69:b2:0b:3d:e5:41:51:0d:72:b7:b0:14:f0:
35:5a:5d:f6:2a:c7:66:a3:80:63:2d:73:2e:f9:1b:7e:3e:7b:
4a:d4:d7:e4:ad:8d:31:e9:fe:78:02:9a:b8:93:e6:7c:4b:49:
7d:f7:c3:42:07:c1:c5:71:e1:ec:cb:15:d0:4d:7e:64:77:aa:
33:8d:76:48
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB6KC+jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZmIyYmI3YmFkNTBmMTkyMTgxMGEwMjhlNzhlZGQ2NWY4MWY2YTdkMB4XDTIyMDEw
MTA5MDMwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjRhNmJmZWM2Y2Q5
NDNjNTQ1MzFiODM5Zjk3ZTNiNjVjNWM2Mjg2ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPOcu9MmYhX/Foi4VF1hVIoLDrtZDB6dcRHu49UaWp01F5TI
6KRmiL0/hNCULPYpXLgfYPgfktqWdGKrGQkRYwNmv1b0xiQNyRlafqVIXFNoOsau
VaxjaxBildIEi62ta0ptCMNwn45/Z9F8y8AnjrX1787DaNMCRo6hXQh652acmSNd
HCcbeWhQpKtRs1QNKZPoNWk7VOIIT5LxjQGdoydPY2XFwf4eXpPr6ZuHFSABfuJ6
La/SKxnmfW4t2nl1PCNg9FURe+u1HgPbOP8brHmfiuItQ2aDtpDt/5jLhVoWFjKV
A+DXsRXnPrKHha/Twh9pBxeEUY4WicFEn4MoKM0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS0pr/sbNlDxUUxuDn5fjtlxcYobzAfBgNVHSMEGDAWgBRPsrt7rVDxkhgQ
oCjnjt1l+B9qfTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Q3SzdlNjFROFpJWUVLQW81NDdkWmZnZmFuMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmQvZmRhMzgyLTQyNTctNDFjMy04ZWM2LTI3ZmJjOTllYTNjNi8x
L3RLYV83R3paUThWRk1iZzUtWDQ3WmNYR0tHOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmQv
ZmRhMzgyLTQyNTctNDFjMy04ZWM2LTI3ZmJjOTllYTNjNi8xL1Q3SzdlNjFROFpJ
WUVLQW81NDdkWmZnZmFuMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvuRzANBgkqhkiG9w0BAQsFAAOC
AQEACusrfS1jD2qCwARBJWu9572TLSzHvtrkhxzgE6TkVISf+NoMoDtTSM1H2oU8
FM/ABMHXxbux26DD0ghrOpeMQKD2KIu0c/0/5xNDB5GKMnnipW2hnYp65pZXTcD4
A8LtSqDWWEE1NPcPZW9GJD6rZ4CVEfjaHNUmwBjRN5ngvbZNpLSgFRAzxm79cs6R
4k03KXizVoBkOnWn21TOhUezAwyiiJxdfg2NAerhdVuH7J7f5f+rH6G/BVBpsgs9
5UFRDXK3sBTwNVpd9irHZqOAYy1zLvkbfj57StTX5K2NMen+eAKauJPmfEtJfffD
QgfBxXHh7MsV0E1+ZHeqM412SA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:59 2024 by rpki-client on console-fra.rpki-client.org