Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/_B2G8kp_9pOUVnJ3j5Jae2Uk8v8.roa
File: _B2G8kp_9pOUVnJ3j5Jae2Uk8v8.roa (raw, json)
Hash identifier: jnh1CVHgNT2Cnx5JEBK5nKd+UwP3+Du3UekaaUFnbm0=
Subject key identifier: FC:1D:86:F2:4A:7F:F6:93:94:56:72:77:8F:92:5A:7B:65:24:F2:FF
Certificate issuer: /CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3
Certificate serial: 0DB7010C
Authority key identifier: 30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/_B2G8kp_9pOUVnJ3j5Jae2Uk8v8.roa
Signing time: Wed 09 Mar 2022 15:25:15 +0000
ROA not before: Wed 09 Mar 2022 15:25:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197732
IP address blocks: 217.119.180.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 230097164 (0xdb7010c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3
Validity
Not Before: Mar 9 15:25:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc1d86f24a7ff693945672778f925a7b6524f2ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:02:58:27:4d:e8:cf:4f:b3:d0:a6:72:c3:75:
a0:b0:fc:13:05:9b:73:56:b4:de:67:ac:eb:d3:b5:
eb:b6:f3:9c:b2:04:58:ea:ba:e1:ff:07:d7:05:37:
d1:e1:9b:86:ab:3b:0f:5c:47:ee:27:db:92:0d:b1:
e2:4c:c3:75:b3:c0:bb:e5:c1:86:3e:8c:68:85:5a:
1a:35:d9:6e:7a:49:d4:b9:0e:92:26:01:05:6f:0a:
cd:49:29:89:13:cd:b9:9d:ca:68:8d:80:06:a4:ef:
1c:c9:84:3f:38:e7:2e:a7:af:a4:27:bd:07:3f:2f:
ce:9a:e3:ff:b7:5f:bb:de:74:92:ff:bd:17:db:4c:
0c:02:91:4c:be:dd:90:38:2b:06:a8:e1:38:bd:29:
3f:57:b5:73:0b:df:69:49:bf:74:9f:84:8c:8a:9d:
00:7d:80:58:dc:75:83:4e:bb:89:1c:fe:c4:b1:cc:
95:0f:d0:34:82:32:ad:09:38:2e:61:a2:2f:36:ec:
05:18:19:d0:b5:31:dd:c0:2a:a5:d8:5a:0c:ff:39:
a3:5a:11:c0:f8:09:cd:ce:7c:86:6a:f3:c2:45:ca:
81:32:f7:e8:08:00:1e:ac:16:40:0c:90:0e:45:60:
31:0f:6e:c6:d0:0e:f4:93:ec:4c:85:28:1f:72:59:
30:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:1D:86:F2:4A:7F:F6:93:94:56:72:77:8F:92:5A:7B:65:24:F2:FF
X509v3 Authority Key Identifier:
keyid:30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/_B2G8kp_9pOUVnJ3j5Jae2Uk8v8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/MH2IfALgfJ5HTR-OIQScqmzj-9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.119.180.0/23
Signature Algorithm: sha256WithRSAEncryption
12:35:79:40:ac:c7:28:3e:1b:a6:ad:11:9d:30:af:d8:21:cf:
c2:3d:0d:88:43:cf:9c:8c:cb:bc:db:b8:84:9a:f5:9e:78:97:
0e:90:3d:e1:1d:f3:cb:6c:f0:3c:76:a0:5a:1e:64:c1:ba:3e:
f4:29:6b:5d:c2:e6:ba:af:46:4e:7e:e2:13:67:6b:ce:48:89:
e1:36:94:d6:3f:cb:bd:b3:4e:76:21:37:98:86:b5:83:be:7f:
23:92:a1:57:8b:ac:e6:84:38:e9:f7:bf:ac:cd:a6:62:3e:ab:
0a:69:52:22:08:f4:4d:6c:a8:60:92:20:f6:2d:0e:18:71:13:
ac:69:dc:1b:b6:f1:bb:be:61:ac:05:83:9a:3e:9c:6b:32:a2:
da:19:69:fb:c6:96:fb:25:5b:4b:f1:b5:27:16:e7:a0:64:ae:
2a:24:3f:fd:3f:1f:06:8e:d2:0f:88:d5:49:33:86:a2:e8:b9:
18:e7:3b:3f:14:08:dc:be:12:12:25:00:fd:0c:a6:0b:69:38:
54:e6:9e:18:96:8b:d4:ac:fd:70:cf:19:75:a8:ff:e0:b8:b2:
17:a0:e3:89:32:5a:ef:c0:68:ad:c3:03:fd:5c:b5:4b:b0:99:
3e:ec:96:c5:f5:05:3d:ad:56:90:50:24:bc:8e:4b:12:af:bb:
95:9c:d2:6c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEDbcBDDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MDdkODg3YzAyZTA3YzllNDc0ZDFmOGUyMTA0OWNhYTZjZTNmYmQzMB4XDTIyMDMw
OTE1MjUxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmMxZDg2ZjI0YTdm
ZjY5Mzk0NTY3Mjc3OGY5MjVhN2I2NTI0ZjJmZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALcCWCdN6M9Ps9CmcsN1oLD8EwWbc1a03mes69O167bznLIE
WOq64f8H1wU30eGbhqs7D1xH7ifbkg2x4kzDdbPAu+XBhj6MaIVaGjXZbnpJ1LkO
kiYBBW8KzUkpiRPNuZ3KaI2ABqTvHMmEPzjnLqevpCe9Bz8vzprj/7dfu950kv+9
F9tMDAKRTL7dkDgrBqjhOL0pP1e1cwvfaUm/dJ+EjIqdAH2AWNx1g067iRz+xLHM
lQ/QNIIyrQk4LmGiLzbsBRgZ0LUx3cAqpdhaDP85o1oRwPgJzc58hmrzwkXKgTL3
6AgAHqwWQAyQDkVgMQ9uxtAO9JPsTIUoH3JZMBMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT8HYbySn/2k5RWcnePklp7ZSTy/zAfBgNVHSMEGDAWgBQwfYh8AuB8nkdN
H44hBJyqbOP70zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01IMklmQUxnZko1SFRSLU9JUVNjcW16ai05TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWMvYjIwZDgzLTYxMmMtNGI2Mi05N2EzLTFhNWU1ZjE5MWJmYS8x
L19CMkc4a3BfOXBPVVZuSjNqNUphZTJVazh2OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMv
YjIwZDgzLTYxMmMtNGI2Mi05N2EzLTFhNWU1ZjE5MWJmYS8xL01IMklmQUxnZko1
SFRSLU9JUVNjcW16ai05TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAdl3tDANBgkqhkiG9w0BAQsFAAOC
AQEAEjV5QKzHKD4bpq0RnTCv2CHPwj0NiEPPnIzLvNu4hJr1nniXDpA94R3zy2zw
PHagWh5kwbo+9ClrXcLmuq9GTn7iE2drzkiJ4TaU1j/LvbNOdiE3mIa1g75/I5Kh
V4us5oQ46fe/rM2mYj6rCmlSIgj0TWyoYJIg9i0OGHETrGncG7bxu75hrAWDmj6c
azKi2hlp+8aW+yVbS/G1JxbnoGSuKiQ//T8fBo7SD4jVSTOGoui5GOc7PxQI3L4S
EiUA/QymC2k4VOaeGJaL1Kz9cM8Zdaj/4LiyF6DjiTJa78BorcMD/Vy1S7CZPuyW
xfUFPa1WkFAkvI5LEq+7lZzSbA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:46 2023 by rpki-client on console.sobornost.net