Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5268fc-cfee-4aa8-97bf-cbe020665efe/1/fduuWH1ZqGZORJ5dJvLam2f0Nno.roa
File: fduuWH1ZqGZORJ5dJvLam2f0Nno.roa (raw, json)
Hash identifier: 84iL05Uh/xfIUch+0Lop99M4RjC7xkCtnVghb/n9lZs=
Subject key identifier: 7D:DB:AE:58:7D:59:A8:66:4E:44:9E:5D:26:F2:DA:9B:67:F4:36:7A
Certificate issuer: /CN=7ffb0115c4acddd1b4adc4073780726acfc01af9
Certificate serial: 0183AD86254615D628175DBB0DA6514A3A20
Authority key identifier: 7F:FB:01:15:C4:AC:DD:D1:B4:AD:C4:07:37:80:72:6A:CF:C0:1A:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f_sBFcSs3dG0rcQHN4Byas_AGvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5268fc-cfee-4aa8-97bf-cbe020665efe/1/fduuWH1ZqGZORJ5dJvLam2f0Nno.roa
Signing time: Thu 06 Oct 2022 13:39:53 +0000
ROA not before: Thu 06 Oct 2022 13:39:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31129
IP address blocks: 193.23.51.0/24 maxlen: 24
91.211.253.0/24 maxlen: 24
91.211.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ad:86:25:46:15:d6:28:17:5d:bb:0d:a6:51:4a:3a:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ffb0115c4acddd1b4adc4073780726acfc01af9
Validity
Not Before: Oct 6 13:39:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ddbae587d59a8664e449e5d26f2da9b67f4367a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:05:38:4d:6c:01:1d:8c:d5:7f:1e:28:b8:98:
da:c7:98:4e:0e:26:43:0d:6f:7a:df:26:f7:69:5b:
6a:41:14:38:d0:41:b1:05:af:4e:63:46:41:b4:3e:
50:8a:07:30:89:13:b0:3a:3c:2b:38:a3:b5:1c:35:
d8:3e:f4:3c:a0:82:9b:83:0d:e2:77:50:05:bf:5d:
0d:6e:bf:ff:77:88:11:34:b9:ba:91:53:8a:c1:66:
74:ca:7d:b6:f0:78:e6:55:6d:84:c8:b5:dc:34:ac:
42:98:37:c2:af:2d:8d:f6:04:66:fe:c1:f7:4f:26:
18:d3:3e:76:5b:3b:9c:ca:e3:52:34:1e:c4:3b:38:
16:b8:95:ea:48:20:70:31:57:ca:92:c5:45:ed:59:
84:92:60:ed:30:bf:6f:4c:3b:48:dd:fa:97:9e:91:
ff:fe:81:24:89:76:50:5f:2e:37:a7:51:cd:d2:fc:
c8:cc:1b:9f:da:39:8b:d2:05:da:2d:09:9f:0a:b9:
6d:28:38:f6:c1:7a:2d:07:89:f9:55:bd:2d:3f:5f:
2b:20:f7:79:13:e4:d0:40:dc:c5:28:3b:47:da:6c:
07:f0:0b:2d:63:77:eb:72:e9:ed:c5:3f:e3:c3:90:
6c:6f:cf:2f:e1:f8:ac:95:2d:42:a7:42:96:d0:01:
44:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:DB:AE:58:7D:59:A8:66:4E:44:9E:5D:26:F2:DA:9B:67:F4:36:7A
X509v3 Authority Key Identifier:
keyid:7F:FB:01:15:C4:AC:DD:D1:B4:AD:C4:07:37:80:72:6A:CF:C0:1A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f_sBFcSs3dG0rcQHN4Byas_AGvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5268fc-cfee-4aa8-97bf-cbe020665efe/1/fduuWH1ZqGZORJ5dJvLam2f0Nno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5268fc-cfee-4aa8-97bf-cbe020665efe/1/f_sBFcSs3dG0rcQHN4Byas_AGvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.252.0/22
193.23.51.0/24
Signature Algorithm: sha256WithRSAEncryption
67:76:d3:6e:ab:26:d8:06:38:a2:95:20:9d:e4:3d:20:42:4a:
4e:3c:cd:44:71:da:8d:43:cb:65:a4:36:c1:7a:55:82:3e:64:
01:13:b8:c0:13:61:0d:38:e9:c6:3d:e5:ea:ab:da:14:6f:fd:
a1:7a:19:ae:d1:f7:0d:3f:6c:fa:86:c2:9b:3a:e6:5c:05:a5:
b6:a1:85:31:59:97:36:82:60:a7:7d:7a:3a:91:4f:6b:a8:07:
12:ca:7e:19:d4:2d:e7:ba:23:7e:80:9f:96:26:84:a9:bd:af:
93:ad:a8:24:4b:57:26:e7:66:24:01:3b:7b:9a:c0:7b:65:1c:
83:7f:06:a5:9a:bb:59:68:09:5c:ef:b7:b6:de:3a:83:c0:ce:
9b:fd:4e:59:59:d5:5e:07:a1:74:11:f5:aa:5b:2c:27:e5:e8:
39:19:c9:ce:72:39:a8:5c:8c:1e:d0:7e:c6:e4:36:aa:35:01:
08:9a:39:2e:7c:7a:a8:2e:72:30:51:a4:cd:5a:4d:88:32:91:
b9:e3:e4:52:7a:16:0d:5f:1b:c4:c0:46:ed:59:6d:0d:7b:2b:
30:11:c0:9d:b3:c1:ab:36:ab:d4:9d:19:ea:bf:1a:e9:99:7a:
d3:9d:7d:3c:1d:96:46:3f:8d:27:37:f9:16:86:35:11:50:8c:
b9:25:40:53
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYOthiVGFdYoF127DaZRSjogMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmZmIwMTE1YzRhY2RkZDFiNGFkYzQwNzM3ODA3MjZhY2Zj
MDFhZjkwHhcNMjIxMDA2MTMzOTUzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZGRiYWU1ODdkNTlhODY2NGU0NDllNWQyNmYyZGE5YjY3ZjQzNjdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1gU4TWwBHYzVfx4ouJjax5hODiZD
DW963yb3aVtqQRQ40EGxBa9OY0ZBtD5QigcwiROwOjwrOKO1HDXYPvQ8oIKbgw3i
d1AFv10Nbr//d4gRNLm6kVOKwWZ0yn228HjmVW2EyLXcNKxCmDfCry2N9gRm/sH3
TyYY0z52WzucyuNSNB7EOzgWuJXqSCBwMVfKksVF7VmEkmDtML9vTDtI3fqXnpH/
/oEkiXZQXy43p1HN0vzIzBuf2jmL0gXaLQmfCrltKDj2wXotB4n5Vb0tP18rIPd5
E+TQQNzFKDtH2mwH8AstY3frcuntxT/jw5Bsb88v4fislS1Cp0KW0AFEmQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFH3brlh9WahmTkSeXSby2ptn9DZ6MB8GA1UdIwQY
MBaAFH/7ARXErN3RtK3EBzeAcmrPwBr5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZl9zQkZjU3MzZEcwcmNRSE40Qnlhc19BR3ZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81MjY4ZmMtY2ZlZS00YWE4LTk3YmYt
Y2JlMDIwNjY1ZWZlLzEvZmR1dVdIMVpxR1pPUko1ZEp2TGFtMmYwTm5vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS81MjY4ZmMtY2ZlZS00YWE4LTk3YmYtY2JlMDIwNjY1ZWZl
LzEvZl9zQkZjU3MzZEcwcmNRSE40Qnlhc19BR3ZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCW9P8AwQA
wRczMA0GCSqGSIb3DQEBCwUAA4IBAQBndtNuqybYBjiilSCd5D0gQkpOPM1EcdqN
Q8tlpDbBelWCPmQBE7jAE2ENOOnGPeXqq9oUb/2hehmu0fcNP2z6hsKbOuZcBaW2
oYUxWZc2gmCnfXo6kU9rqAcSyn4Z1C3nuiN+gJ+WJoSpva+TragkS1cm52YkATt7
msB7ZRyDfwalmrtZaAlc77e23jqDwM6b/U5ZWdVeB6F0EfWqWywn5eg5GcnOcjmo
XIwe0H7G5DaqNQEImjkufHqoLnIwUaTNWk2IMpG54+RSehYNXxvEwEbtWW0Neysw
EcCds8GrNqvUnRnqvxrpmXrTnX08HZZGP40nN/kWhjURUIy5JUBT
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:34 2023 by rpki-client on console.sobornost.net