Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/18e882-97d7-41dd-9efb-7d4fa4cdc7a2/1/f-Rz8b5L2FdqjTv7xJ9REaZ6_4M.roa
File: f-Rz8b5L2FdqjTv7xJ9REaZ6_4M.roa (raw, json)
Hash identifier: qYDZZvIV0FWVP9hLo9J9NN4xiDJgCfvy6YBZ8ynNlP4=
Subject key identifier: 7F:E4:73:F1:BE:4B:D8:57:6A:8D:3B:FB:C4:9F:51:11:A6:7A:FF:83
Certificate issuer: /CN=785ef4bd2976bf292ab73304907f510cd00cc8a2
Certificate serial: E4F9
Authority key identifier: 78:5E:F4:BD:29:76:BF:29:2A:B7:33:04:90:7F:51:0C:D0:0C:C8:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eF70vSl2vykqtzMEkH9RDNAMyKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/18e882-97d7-41dd-9efb-7d4fa4cdc7a2/1/f-Rz8b5L2FdqjTv7xJ9REaZ6_4M.roa
Signing time: Tue 26 Apr 2022 15:11:33 +0000
ROA not before: Tue 26 Apr 2022 15:11:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29500
IP address blocks: 193.135.102.0/23 maxlen: 23
193.134.164.0/24 maxlen: 24
193.134.165.0/24 maxlen: 24
193.26.4.0/24 maxlen: 24
193.134.160.0/20 maxlen: 20
193.134.170.0/24 maxlen: 24
193.31.252.0/23 maxlen: 23
193.246.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58617 (0xe4f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=785ef4bd2976bf292ab73304907f510cd00cc8a2
Validity
Not Before: Apr 26 15:11:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7fe473f1be4bd8576a8d3bfbc49f5111a67aff83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ef:0f:82:44:b1:bc:bf:52:28:24:bc:c5:c4:
60:36:a3:4b:e6:d0:d7:9a:80:78:5c:4a:c8:bb:40:
cd:99:99:2c:8e:22:53:d1:f6:a5:16:0a:b7:f7:49:
5f:0a:0f:59:92:b6:19:35:a7:b6:4f:bf:4e:46:7e:
1c:8c:52:a3:3f:40:57:c5:61:46:db:e4:1e:7e:41:
24:d5:23:cc:f6:c6:a0:01:85:e9:a0:a5:d2:87:9b:
ef:66:5a:16:df:f7:f7:5d:87:0d:be:a5:80:e9:12:
2b:ef:15:ae:69:41:e9:30:80:ee:2f:cc:b2:32:8f:
e1:9f:1d:db:df:74:1d:fb:86:da:27:42:ba:7f:67:
0b:91:37:2d:40:ff:31:cd:d5:0e:e5:8f:62:83:09:
7f:f9:6c:f2:5b:b8:b6:25:c1:89:fe:0e:d5:9a:f2:
c4:06:a7:5e:7f:81:c5:7d:45:47:2a:dd:27:b6:09:
d2:f5:65:00:b5:2d:1f:4f:09:2c:28:42:79:65:79:
00:0b:4e:09:b3:5b:95:28:04:bf:5f:4b:8d:c6:3c:
ce:13:f6:eb:e2:98:09:12:0e:5e:c2:8b:6f:b7:2d:
d9:ea:9a:3a:c4:77:fa:90:5c:14:7c:e7:d2:15:08:
de:ae:2b:a2:3c:0e:dd:a6:1e:3c:a2:5c:59:ca:14:
bb:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:E4:73:F1:BE:4B:D8:57:6A:8D:3B:FB:C4:9F:51:11:A6:7A:FF:83
X509v3 Authority Key Identifier:
keyid:78:5E:F4:BD:29:76:BF:29:2A:B7:33:04:90:7F:51:0C:D0:0C:C8:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eF70vSl2vykqtzMEkH9RDNAMyKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/18e882-97d7-41dd-9efb-7d4fa4cdc7a2/1/f-Rz8b5L2FdqjTv7xJ9REaZ6_4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/18e882-97d7-41dd-9efb-7d4fa4cdc7a2/1/eF70vSl2vykqtzMEkH9RDNAMyKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.4.0/24
193.31.252.0/23
193.134.160.0/20
193.135.102.0/23
193.246.224.0/20
Signature Algorithm: sha256WithRSAEncryption
83:c0:03:06:ef:8b:70:95:9e:dd:5b:6f:44:c4:70:94:18:1d:
93:ff:ea:88:cd:73:1d:96:b7:59:79:21:47:5f:57:b3:f6:2b:
4e:cc:1c:e3:4a:7e:4b:48:08:c8:0d:fc:f5:b4:08:25:75:17:
0f:30:6a:5f:3b:2e:32:8b:86:96:62:44:b2:24:a6:ac:46:dc:
03:ff:2a:3d:a3:06:c2:af:e0:fd:6d:e6:c2:2e:d9:14:4b:91:
76:f1:a8:2e:3d:da:a3:1f:0e:e8:5a:0a:c0:bf:0e:43:22:ae:
98:9e:10:c8:b9:84:19:74:ea:71:e3:57:84:0b:f6:d4:c9:f1:
3e:81:b0:12:31:73:03:c5:5a:1d:38:c7:17:9e:9f:9e:e1:05:
9f:8e:82:da:97:f4:b5:c7:0d:2e:56:31:01:05:d4:ec:f7:e1:
0c:a2:d3:b1:a1:a0:21:54:92:29:b7:0e:d0:63:05:8b:24:a5:
65:3b:89:fd:35:0d:51:5d:92:38:13:39:cb:8b:9f:0d:4a:d2:
13:96:91:df:aa:99:41:0c:4f:11:cf:dd:52:1b:0e:b1:e9:a8:
12:41:40:c8:53:ee:42:de:c1:a9:b7:35:d7:e3:64:3d:83:09:
f5:cc:cc:f7:1e:cc:84:f7:55:e0:f0:23:d3:a2:3b:e4:2c:da:
a1:c6:34:f7
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgIDAOT5MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDc4
NWVmNGJkMjk3NmJmMjkyYWI3MzMwNDkwN2Y1MTBjZDAwY2M4YTIwHhcNMjIwNDI2
MTUxMTMzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg3ZmU0NzNmMWJlNGJk
ODU3NmE4ZDNiZmJjNDlmNTExMWE2N2FmZjgzMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAv+8PgkSxvL9SKCS8xcRgNqNL5tDXmoB4XErIu0DNmZksjiJT
0falFgq390lfCg9ZkrYZNae2T79ORn4cjFKjP0BXxWFG2+QefkEk1SPM9sagAYXp
oKXSh5vvZloW3/f3XYcNvqWA6RIr7xWuaUHpMIDuL8yyMo/hnx3b33Qd+4baJ0K6
f2cLkTctQP8xzdUO5Y9igwl/+WzyW7i2JcGJ/g7VmvLEBqdef4HFfUVHKt0ntgnS
9WUAtS0fTwksKEJ5ZXkAC04Js1uVKAS/X0uNxjzOE/br4pgJEg5ewotvty3Z6po6
xHf6kFwUfOfSFQjeriuiPA7dph48olxZyhS7QQIDAQABo4ICITCCAh0wHQYDVR0O
BBYEFH/kc/G+S9hXao07+8SfURGmev+DMB8GA1UdIwQYMBaAFHhe9L0pdr8pKrcz
BJB/UQzQDMiiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
ZUY3MHZTbDJ2eWtxdHpNRWtIOVJETkFNeUtJLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9lNC8xOGU4ODItOTdkNy00MWRkLTllZmItN2Q0ZmE0Y2RjN2EyLzEv
Zi1SejhiNUwyRmRxalR2N3hKOVJFYVo2XzRNLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8x
OGU4ODItOTdkNy00MWRkLTllZmItN2Q0ZmE0Y2RjN2EyLzEvZUY3MHZTbDJ2eWtx
dHpNRWtIOVJETkFNeUtJLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDcG
CCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAwRoEAwQBwR/8AwQEwYagAwQBwYdm
AwQEwfbgMA0GCSqGSIb3DQEBCwUAA4IBAQCDwAMG74twlZ7dW29ExHCUGB2T/+qI
zXMdlrdZeSFHX1ez9itOzBzjSn5LSAjIDfz1tAgldRcPMGpfOy4yi4aWYkSyJKas
RtwD/yo9owbCr+D9bebCLtkUS5F28aguPdqjHw7oWgrAvw5DIq6YnhDIuYQZdOpx
41eEC/bUyfE+gbASMXMDxVodOMcXnp+e4QWfjoLal/S1xw0uVjEBBdTs9+EMotOx
oaAhVJIptw7QYwWLJKVlO4n9NQ1RXZI4EznLi58NStITlpHfqplBDE8Rz91SGw6x
6agSQUDIU+5C3sGptzXX42Q9gwn1zMz3HsyE91Xg8CPTojvkLNqhxjT3
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:45 2023 by rpki-client on console.sobornost.net