Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/fwU1WNEzpkUjBoYV5RQASn6zRu0.roa
File: fwU1WNEzpkUjBoYV5RQASn6zRu0.roa (raw, json)
Hash identifier: 5TSkOqRbGVJlZvL57ayO5nBusya4Xqah2TtBrg37v1Q=
Subject key identifier: 7F:05:35:58:D1:33:A6:45:23:06:86:15:E5:14:00:4A:7E:B3:46:ED
Certificate issuer: /CN=093509e7ec68fe2d943407d5dd126a0f596f2ab5
Certificate serial: 036AAE3E
Authority key identifier: 09:35:09:E7:EC:68:FE:2D:94:34:07:D5:DD:12:6A:0F:59:6F:2A:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/fwU1WNEzpkUjBoYV5RQASn6zRu0.roa
Signing time: Thu 19 May 2022 14:02:29 +0000
ROA not before: Thu 19 May 2022 14:02:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47959
IP address blocks: 176.57.64.0/24 maxlen: 24
176.57.64.0/22 maxlen: 22
176.57.66.0/24 maxlen: 24
176.57.65.0/24 maxlen: 24
176.57.67.0/24 maxlen: 24
2a00:1b80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57323070 (0x36aae3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093509e7ec68fe2d943407d5dd126a0f596f2ab5
Validity
Not Before: May 19 14:02:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f053558d133a64523068615e514004a7eb346ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2c:41:59:1c:49:ba:8b:79:49:96:7f:c5:5c:
1e:e7:5f:16:47:f0:cf:16:cc:d2:d1:df:51:df:91:
cc:38:0e:7b:2e:ff:84:85:52:80:19:93:54:37:75:
d8:62:e8:eb:2a:fa:71:d5:7f:d3:83:b0:ac:8b:fc:
2c:ae:60:46:c9:58:f5:80:6f:5f:cf:8f:0f:21:a6:
32:59:46:f8:8a:a2:72:50:48:8e:98:be:4a:d4:64:
79:17:52:4a:6d:75:7f:f3:be:7f:94:c5:35:be:21:
c0:b6:5c:35:8e:3f:d2:2d:47:dd:01:f9:77:ca:dc:
cc:0e:8a:34:eb:cf:66:f5:f7:33:f1:81:78:de:92:
ef:9c:3d:e6:2f:8d:7b:0e:0a:f9:75:de:3e:10:8f:
ab:a8:9c:f8:77:8a:90:9e:c6:41:af:58:bd:db:7c:
75:d6:db:26:df:98:32:84:25:a3:71:15:80:f8:33:
97:e3:f0:06:30:5a:41:99:1e:3a:99:4f:36:b8:1f:
0a:44:d8:da:67:24:8f:e9:a3:d4:e0:4f:12:95:8e:
09:cb:1c:de:5f:bd:ec:34:ad:40:fc:9d:5f:0f:e0:
8a:28:17:83:45:f6:6b:7c:38:a7:62:0b:88:18:02:
9b:12:8d:71:da:bc:c8:a1:36:ba:0f:05:62:4b:35:
e3:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:05:35:58:D1:33:A6:45:23:06:86:15:E5:14:00:4A:7E:B3:46:ED
X509v3 Authority Key Identifier:
keyid:09:35:09:E7:EC:68:FE:2D:94:34:07:D5:DD:12:6A:0F:59:6F:2A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/fwU1WNEzpkUjBoYV5RQASn6zRu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.57.64.0/22
IPv6:
2a00:1b80::/29
Signature Algorithm: sha256WithRSAEncryption
2b:01:6b:61:4b:16:89:42:4c:3a:f9:e1:57:5a:bf:73:b3:db:
46:42:e7:c0:ab:49:68:85:26:65:62:31:93:a3:78:20:c6:5f:
06:79:8c:89:e3:7b:26:64:18:5b:4a:d1:a4:dd:33:90:3f:7f:
99:a5:94:4f:6c:cf:43:0f:bf:a6:b5:76:5e:3d:fd:e7:76:8d:
ee:19:96:4c:2f:27:ef:72:d7:d1:c9:3d:13:b9:21:d1:68:d7:
77:21:4e:32:2f:4c:1a:a5:49:7e:2a:66:44:7d:ae:4a:6d:85:
06:58:40:6b:54:aa:88:91:5f:c7:55:67:b5:e7:b7:aa:6b:4c:
70:07:e4:e4:f9:cc:21:3e:f5:8f:47:46:9d:ff:36:1f:c5:c1:
e8:39:4f:77:8d:b8:2a:3b:1f:93:59:a4:01:0b:ad:e7:06:5f:
49:2c:c7:06:8a:85:e4:12:44:87:d8:ac:3e:2d:be:fb:2b:46:
99:af:4b:ea:58:a6:cb:10:8a:80:18:79:65:6f:74:10:a7:69:
67:2c:72:83:b9:28:2f:86:b8:a7:03:48:a6:47:92:f8:23:26:
47:d7:80:a3:53:53:36:0e:51:ff:9c:da:7b:f2:5f:ee:8f:4e:
e3:19:2f:f9:eb:a0:71:87:47:4c:e1:0a:d4:1b:68:72:ab:05:
76:44:80:d0
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEA2quPjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
OTM1MDllN2VjNjhmZTJkOTQzNDA3ZDVkZDEyNmEwZjU5NmYyYWI1MB4XDTIyMDUx
OTE0MDIyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2YwNTM1NThkMTMz
YTY0NTIzMDY4NjE1ZTUxNDAwNGE3ZWIzNDZlZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ4sQVkcSbqLeUmWf8VcHudfFkfwzxbM0tHfUd+RzDgOey7/
hIVSgBmTVDd12GLo6yr6cdV/04OwrIv8LK5gRslY9YBvX8+PDyGmMllG+IqiclBI
jpi+StRkeRdSSm11f/O+f5TFNb4hwLZcNY4/0i1H3QH5d8rczA6KNOvPZvX3M/GB
eN6S75w95i+New4K+XXePhCPq6ic+HeKkJ7GQa9Yvdt8ddbbJt+YMoQlo3EVgPgz
l+PwBjBaQZkeOplPNrgfCkTY2mckj+mj1OBPEpWOCcsc3l+97DStQPydXw/giigX
g0X2a3w4p2ILiBgCmxKNcdq8yKE2ug8FYks148ECAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBR/BTVY0TOmRSMGhhXlFABKfrNG7TAfBgNVHSMEGDAWgBQJNQnn7Gj+LZQ0
B9XdEmoPWW8qtTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0NUVUo1LXhvX2kyVU5BZlYzUkpxRDFsdktyVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGEvZGZiOTRjLWZkZjQtNDk3Mi05YWQ4LTdkNjk3MzM3MTM3Yi8x
L2Z3VTFXTkV6cGtVakJvWVY1UlFBU242elJ1MC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGEv
ZGZiOTRjLWZkZjQtNDk3Mi05YWQ4LTdkNjk3MzM3MTM3Yi8xL0NUVUo1LXhvX2ky
VU5BZlYzUkpxRDFsdktyVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArA5QDANBAIAAjAHAwUDKgAbgDAN
BgkqhkiG9w0BAQsFAAOCAQEAKwFrYUsWiUJMOvnhV1q/c7PbRkLnwKtJaIUmZWIx
k6N4IMZfBnmMieN7JmQYW0rRpN0zkD9/maWUT2zPQw+/prV2Xj3953aN7hmWTC8n
73LX0ck9E7kh0WjXdyFOMi9MGqVJfipmRH2uSm2FBlhAa1SqiJFfx1Vntee3qmtM
cAfk5PnMIT71j0dGnf82H8XB6DlPd424Kjsfk1mkAQut5wZfSSzHBoqF5BJEh9is
Pi2++ytGma9L6limyxCKgBh5ZW90EKdpZyxyg7koL4a4pwNIpkeS+CMmR9eAo1NT
Ng5R/5zae/Jf7o9O4xkv+eugcYdHTOEK1BtocqsFdkSA0A==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:23 2023 by rpki-client on console.sobornost.net