Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/6ad54c-7564-489f-8f84-592c8bceb0d5/1/FG4RS0YtCwlji6_L4qXSBFXqxpk.roa
File: FG4RS0YtCwlji6_L4qXSBFXqxpk.roa (raw, json)
Hash identifier: EBkYzbuE7CzxthDEaH6A9RDomt0HkKCBcCW5nMdPXKI=
Subject key identifier: 14:6E:11:4B:46:2D:0B:09:63:8B:AF:CB:E2:A5:D2:04:55:EA:C6:99
Certificate issuer: /CN=f5b75ad5609cef112579bd01938c6c73267fff07
Certificate serial: 018655
Authority key identifier: F5:B7:5A:D5:60:9C:EF:11:25:79:BD:01:93:8C:6C:73:26:7F:FF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9bda1WCc7xEleb0Bk4xscyZ__wc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/6ad54c-7564-489f-8f84-592c8bceb0d5/1/FG4RS0YtCwlji6_L4qXSBFXqxpk.roa
Signing time: Wed 26 Jan 2022 18:27:34 +0000
ROA not before: Wed 26 Jan 2022 18:27:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 185.201.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99925 (0x18655)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5b75ad5609cef112579bd01938c6c73267fff07
Validity
Not Before: Jan 26 18:27:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=146e114b462d0b09638bafcbe2a5d20455eac699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:40:b0:0f:aa:e3:e3:70:37:56:20:c0:ac:fb:
43:af:4c:9a:93:46:2a:57:c7:65:dc:c5:d8:8f:29:
ef:75:73:0e:e0:7c:d2:0b:38:2d:66:ca:f8:c8:a6:
b0:7b:de:17:27:02:a4:6f:9b:49:af:c8:a8:3b:1f:
80:2e:16:3f:b9:02:41:a9:ae:25:08:38:b2:d8:a1:
e0:24:eb:d2:63:7e:66:7e:4a:6b:6b:29:27:59:e6:
1e:82:53:e4:80:dc:22:8a:9f:0d:ad:5d:c5:d5:34:
41:f5:43:b6:43:0d:55:2b:49:d2:30:bc:35:b3:ff:
ce:95:37:22:1e:19:10:ff:2c:00:12:20:a8:16:b3:
b3:18:87:7a:51:08:05:23:0e:e9:97:57:05:fa:b3:
8b:a7:fb:be:5c:0a:b6:e5:57:20:1c:23:a8:ec:ec:
8f:b7:89:20:1f:d6:59:6a:36:fc:17:99:9a:74:1f:
d3:b1:08:8a:89:c4:c7:e1:6a:69:81:28:8f:a6:53:
60:09:10:21:5a:54:9e:23:6f:ec:5f:85:e8:71:85:
44:18:a5:2f:17:16:05:a7:dd:5c:dc:3d:64:3b:f8:
3b:ce:35:b0:0f:ca:a7:4c:84:19:86:a4:aa:25:60:
d8:ae:b9:fc:4a:f2:e8:44:87:53:45:7d:c1:86:e5:
3b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:6E:11:4B:46:2D:0B:09:63:8B:AF:CB:E2:A5:D2:04:55:EA:C6:99
X509v3 Authority Key Identifier:
keyid:F5:B7:5A:D5:60:9C:EF:11:25:79:BD:01:93:8C:6C:73:26:7F:FF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9bda1WCc7xEleb0Bk4xscyZ__wc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/6ad54c-7564-489f-8f84-592c8bceb0d5/1/FG4RS0YtCwlji6_L4qXSBFXqxpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/6ad54c-7564-489f-8f84-592c8bceb0d5/1/9bda1WCc7xEleb0Bk4xscyZ__wc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.28.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:69:87:4d:99:85:4d:72:53:d8:f4:e4:39:88:9f:66:96:af:
29:e4:2f:7c:97:60:e0:5c:88:0c:cc:00:f8:5c:99:d1:f1:93:
f8:24:7c:06:9b:99:0f:04:58:34:8f:ae:67:6c:5b:5a:bb:e1:
e2:bd:1e:9d:e8:2b:34:df:b0:31:33:6f:f7:ae:d3:07:37:40:
d2:df:00:df:fe:89:60:ec:f3:9e:65:fd:0b:2b:8f:50:26:7b:
eb:f2:6e:fe:c6:93:43:73:99:0f:50:da:9f:e8:6f:85:61:5d:
96:53:6e:d6:d9:84:be:cb:04:26:e6:4b:5d:7d:32:a5:c4:2d:
19:0b:ef:43:42:98:eb:a3:8b:49:94:f3:e8:3b:89:a2:11:ba:
33:b6:49:71:34:98:f5:65:65:7f:62:bb:78:67:af:fb:94:08:
34:2d:30:c1:07:43:da:4d:c5:3b:ed:24:f0:e1:80:69:75:19:
3d:0a:18:b3:87:58:1e:7c:cd:a1:90:a6:c7:13:d4:41:7a:0a:
fd:97:03:39:f3:42:3c:5e:63:cb:75:31:0d:ec:74:09:4e:d5:
44:0c:6e:6a:fd:44:24:1c:ff:b5:ad:62:3b:ad:0e:bb:14:19:
52:52:68:03:fb:e4:34:2e:0d:08:01:e5:e3:8f:87:98:16:ce:
cb:02:b3:be
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAYZVMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGY1
Yjc1YWQ1NjA5Y2VmMTEyNTc5YmQwMTkzOGM2YzczMjY3ZmZmMDcwHhcNMjIwMTI2
MTgyNzM0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygxNDZlMTE0YjQ2MmQw
YjA5NjM4YmFmY2JlMmE1ZDIwNDU1ZWFjNjk5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAm0CwD6rj43A3ViDArPtDr0yak0YqV8dl3MXYjynvdXMO4HzS
CzgtZsr4yKawe94XJwKkb5tJr8ioOx+ALhY/uQJBqa4lCDiy2KHgJOvSY35mfkpr
ayknWeYeglPkgNwiip8NrV3F1TRB9UO2Qw1VK0nSMLw1s//OlTciHhkQ/ywAEiCo
FrOzGId6UQgFIw7pl1cF+rOLp/u+XAq25VcgHCOo7OyPt4kgH9ZZajb8F5madB/T
sQiKicTH4WppgSiPplNgCRAhWlSeI2/sX4XocYVEGKUvFxYFp91c3D1kO/g7zjWw
D8qnTIQZhqSqJWDYrrn8SvLoRIdTRX3BhuU7rQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFBRuEUtGLQsJY4uvy+Kl0gRV6saZMB8GA1UdIwQYMBaAFPW3WtVgnO8RJXm9
AZOMbHMmf/8HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
OWJkYTFXQ2M3eEVsZWIwQms0eHNjeVpfX3djLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9kNC82YWQ1NGMtNzU2NC00ODlmLThmODQtNTkyYzhiY2ViMGQ1LzEv
Rkc0UlMwWXRDd2xqaTZfTDRxWFNCRlhxeHBrLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC82
YWQ1NGMtNzU2NC00ODlmLThmODQtNTkyYzhiY2ViMGQ1LzEvOWJkYTFXQ2M3eEVs
ZWIwQms0eHNjeVpfX3djLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuckcMA0GCSqGSIb3DQEBCwUAA4IB
AQC3aYdNmYVNclPY9OQ5iJ9mlq8p5C98l2DgXIgMzAD4XJnR8ZP4JHwGm5kPBFg0
j65nbFtau+HivR6d6Cs037AxM2/3rtMHN0DS3wDf/olg7POeZf0LK49QJnvr8m7+
xpNDc5kPUNqf6G+FYV2WU27W2YS+ywQm5ktdfTKlxC0ZC+9DQpjro4tJlPPoO4mi
EboztklxNJj1ZWV/Yrt4Z6/7lAg0LTDBB0PaTcU77STw4YBpdRk9Chizh1gefM2h
kKbHE9RBegr9lwM580I8XmPLdTEN7HQJTtVEDG5q/UQkHP+1rWI7rQ67FBlSUmgD
++Q0Lg0IAeXjj4eYFs7LArO+
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:26 2023 by rpki-client on console.sobornost.net