Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/FF2Vxkw96f4DVXlOLJRWVknPye0.roa
File: FF2Vxkw96f4DVXlOLJRWVknPye0.roa (raw, json)
Hash identifier: uXFYy3B2jLQy9oztcipPoTUvvdWNjlh7HUZ22YK2k/s=
Subject key identifier: 14:5D:95:C6:4C:3D:E9:FE:03:55:79:4E:2C:94:56:56:49:CF:C9:ED
Certificate issuer: /CN=79bb370b0c9a06fd82cb7100d903859b09f50333
Certificate serial: 039EC084
Authority key identifier: 79:BB:37:0B:0C:9A:06:FD:82:CB:71:00:D9:03:85:9B:09:F5:03:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ebs3CwyaBv2Cy3EA2QOFmwn1AzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/FF2Vxkw96f4DVXlOLJRWVknPye0.roa
Signing time: Sat 01 Jan 2022 13:02:12 +0000
ROA not before: Sat 01 Jan 2022 13:02:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51186
IP address blocks: 194.28.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60735620 (0x39ec084)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79bb370b0c9a06fd82cb7100d903859b09f50333
Validity
Not Before: Jan 1 13:02:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=145d95c64c3de9fe0355794e2c94565649cfc9ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c2:20:5e:27:7e:3b:49:e3:75:09:f2:d3:ff:
f6:42:70:7e:b7:d9:89:39:64:38:9a:d4:bf:4f:3f:
ac:21:4e:67:ce:fa:69:74:e0:43:a8:03:29:03:ff:
dd:44:00:ee:bd:48:34:0d:4d:58:78:11:cd:61:8a:
c6:bf:48:7a:c4:80:87:85:e7:e2:96:8e:7a:fb:f1:
22:ad:e0:e7:ed:27:94:09:ce:89:50:6d:09:72:45:
e3:e1:51:eb:41:69:a6:72:41:ce:11:0c:fa:d1:fb:
67:fd:93:75:08:4a:0c:b8:54:19:98:ab:35:b5:6b:
04:c1:84:9e:9d:d9:9f:b7:65:ea:6a:78:a4:48:5a:
c1:f2:eb:1d:d4:bf:21:ce:e6:be:5d:62:1e:85:74:
bb:e6:03:b2:38:bc:cf:7d:d4:d7:7c:d8:31:02:4f:
96:82:bf:9e:cd:17:ad:57:94:e8:90:29:19:0a:cf:
c8:03:1b:b3:a0:d5:0a:9f:10:78:bc:7a:6b:07:8e:
71:52:6b:a1:9a:ec:fd:70:03:17:21:d5:eb:7b:47:
fe:43:3f:dc:12:7d:36:ee:44:13:fe:1b:ed:df:7f:
3c:2b:96:ab:c3:24:5e:cb:c4:c2:98:a6:35:fd:52:
24:53:6b:b9:8f:5d:d0:a3:f7:9d:bc:5f:ca:14:d8:
b3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:5D:95:C6:4C:3D:E9:FE:03:55:79:4E:2C:94:56:56:49:CF:C9:ED
X509v3 Authority Key Identifier:
keyid:79:BB:37:0B:0C:9A:06:FD:82:CB:71:00:D9:03:85:9B:09:F5:03:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ebs3CwyaBv2Cy3EA2QOFmwn1AzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/FF2Vxkw96f4DVXlOLJRWVknPye0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/ebs3CwyaBv2Cy3EA2QOFmwn1AzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.28.236.0/22
Signature Algorithm: sha256WithRSAEncryption
90:7d:85:43:1c:39:3c:a0:9c:d5:e0:0d:e0:dd:28:52:06:4e:
af:a5:c4:3f:0f:23:e6:80:e1:0a:c3:5b:63:a0:3f:96:2f:6e:
e9:65:b5:55:1e:a7:c7:0c:21:88:f7:bd:a2:9f:08:77:26:e9:
16:3e:aa:11:f3:7e:64:be:d1:7f:a4:67:5c:5b:ff:a8:b9:95:
a5:a5:92:b6:f1:2e:60:31:26:3e:14:2f:6e:be:0b:c8:97:e7:
b4:3b:2f:7d:24:d7:af:fc:a8:a7:41:f9:47:3c:ee:45:0b:86:
23:cc:7e:6f:4a:a7:5c:ea:b1:5d:49:79:f9:1e:e6:68:8f:ef:
69:75:38:ad:e2:fd:88:9c:9e:2d:66:52:97:9f:1d:79:a7:a2:
22:98:6f:3a:05:03:2a:f4:71:02:a5:9f:3b:69:ed:99:8d:52:
bd:85:86:96:83:9d:66:a0:72:01:83:2c:10:58:62:4f:83:05:
c5:ef:a5:e9:ff:e0:b9:76:26:16:c8:c0:9e:f8:4b:be:e2:1c:
83:d5:70:12:f2:d7:cd:93:51:e2:77:fe:15:ee:69:32:28:f6:
18:02:48:e8:bf:21:9b:c9:85:bf:0f:94:f4:b7:b9:b0:e9:69:
36:30:70:6b:e5:db:ba:0a:4b:6d:e2:f4:9c:22:e0:13:d2:8d:
be:79:af:86
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA57AhDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
OWJiMzcwYjBjOWEwNmZkODJjYjcxMDBkOTAzODU5YjA5ZjUwMzMzMB4XDTIyMDEw
MTEzMDIxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTQ1ZDk1YzY0YzNk
ZTlmZTAzNTU3OTRlMmM5NDU2NTY0OWNmYzllZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK3CIF4nfjtJ43UJ8tP/9kJwfrfZiTlkOJrUv08/rCFOZ876
aXTgQ6gDKQP/3UQA7r1INA1NWHgRzWGKxr9IesSAh4Xn4paOevvxIq3g5+0nlAnO
iVBtCXJF4+FR60FppnJBzhEM+tH7Z/2TdQhKDLhUGZirNbVrBMGEnp3Zn7dl6mp4
pEhawfLrHdS/Ic7mvl1iHoV0u+YDsji8z33U13zYMQJPloK/ns0XrVeU6JApGQrP
yAMbs6DVCp8QeLx6aweOcVJroZrs/XADFyHV63tH/kM/3BJ9Nu5EE/4b7d9/PCuW
q8MkXsvEwpimNf1SJFNruY9d0KP3nbxfyhTYs7MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQUXZXGTD3p/gNVeU4slFZWSc/J7TAfBgNVHSMEGDAWgBR5uzcLDJoG/YLL
cQDZA4WbCfUDMzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ViczNDd3lhQnYyQ3kzRUEyUU9GbXduMUF6TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvN2VmMmVlLWM0MGQtNGIyMi1hMThmLTUzZjI1ZDQzNmUyYy8x
L0ZGMlZ4a3c5NmY0RFZYbE9MSlJXVmtuUHllMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
N2VmMmVlLWM0MGQtNGIyMi1hMThmLTUzZjI1ZDQzNmUyYy8xL2ViczNDd3lhQnYy
Q3kzRUEyUU9GbXduMUF6TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsIc7DANBgkqhkiG9w0BAQsFAAOC
AQEAkH2FQxw5PKCc1eAN4N0oUgZOr6XEPw8j5oDhCsNbY6A/li9u6WW1VR6nxwwh
iPe9op8IdybpFj6qEfN+ZL7Rf6RnXFv/qLmVpaWStvEuYDEmPhQvbr4LyJfntDsv
fSTXr/yop0H5RzzuRQuGI8x+b0qnXOqxXUl5+R7maI/vaXU4reL9iJyeLWZSl58d
eaeiIphvOgUDKvRxAqWfO2ntmY1SvYWGloOdZqByAYMsEFhiT4MFxe+l6f/guXYm
FsjAnvhLvuIcg9VwEvLXzZNR4nf+Fe5pMij2GAJI6L8hm8mFvw+U9Le5sOlpNjBw
a+XbugpLbeL0nCLgE9KNvnmvhg==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:12 2023 by rpki-client on console.sobornost.net