Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/r5DA39x52rICt6LqviIWBq0pWNc.roa
File: r5DA39x52rICt6LqviIWBq0pWNc.roa (raw, json)
Hash identifier: BxEI73B8XgA8spKqpLgMyeGxRSJMVbsEfjUmjxHM9ik=
Subject key identifier: AF:90:C0:DF:DC:79:DA:B2:02:B7:A2:EA:BE:22:16:06:AD:29:58:D7
Certificate issuer: /CN=74864f5023ec6263ef9f16f90187f5f28061d115
Certificate serial: 01821A5C750AF6C303BF63D6D4EE90AD1902
Authority key identifier: 74:86:4F:50:23:EC:62:63:EF:9F:16:F9:01:87:F5:F2:80:61:D1:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dIZPUCPsYmPvnxb5AYf18oBh0RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/r5DA39x52rICt6LqviIWBq0pWNc.roa
Signing time: Wed 20 Jul 2022 06:47:23 +0000
ROA not before: Wed 20 Jul 2022 06:47:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198470
IP address blocks: 91.235.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:5c:75:0a:f6:c3:03:bf:63:d6:d4:ee:90:ad:19:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74864f5023ec6263ef9f16f90187f5f28061d115
Validity
Not Before: Jul 20 06:47:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af90c0dfdc79dab202b7a2eabe221606ad2958d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:56:e9:08:4f:b7:55:b1:04:39:14:bd:24:95:
5b:85:82:25:ab:fc:fb:f7:74:0b:63:8f:33:69:76:
f2:ee:ac:06:0c:19:83:62:0c:88:75:d1:29:f3:11:
33:35:71:10:4e:be:de:3e:e1:0a:75:ef:de:e4:c8:
07:5c:2f:12:92:c8:e7:5c:6d:a9:bc:9d:b6:49:b0:
6e:0d:bf:ac:34:7d:34:6f:e8:1f:e1:a8:a4:eb:0b:
71:36:f3:b9:4f:af:5a:5e:30:0b:62:ac:12:29:1b:
a1:6b:0a:a3:93:f5:3a:e0:a5:e5:68:c3:91:19:95:
cb:35:21:e4:79:1c:dc:09:4b:11:59:cb:36:aa:02:
79:55:30:77:a4:70:8f:13:5e:77:87:04:dc:f8:cc:
5f:cb:9b:c6:df:6a:2d:91:07:76:04:62:e0:6d:75:
17:3a:6c:3f:c7:2a:fb:49:97:a7:46:ec:26:f4:de:
fc:a9:79:66:4b:c2:c6:f4:bc:a2:4b:32:72:57:e1:
20:b9:4d:df:03:02:b1:75:b9:02:a8:a7:b8:ff:83:
06:8d:90:4d:f4:d3:09:e7:c2:ff:b8:54:84:b4:3a:
67:d0:af:79:cb:af:d6:ec:1b:b1:63:b3:96:9d:ec:
e7:b9:98:7b:2f:3e:28:a4:d6:a9:56:60:6e:62:a9:
db:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:90:C0:DF:DC:79:DA:B2:02:B7:A2:EA:BE:22:16:06:AD:29:58:D7
X509v3 Authority Key Identifier:
keyid:74:86:4F:50:23:EC:62:63:EF:9F:16:F9:01:87:F5:F2:80:61:D1:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dIZPUCPsYmPvnxb5AYf18oBh0RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/r5DA39x52rICt6LqviIWBq0pWNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.82.0/24
Signature Algorithm: sha256WithRSAEncryption
14:ce:89:5c:d6:4e:eb:04:ba:55:78:45:d7:cb:a9:cf:51:69:
ae:c1:12:6a:5f:41:46:b2:53:31:dd:2c:6e:b4:2f:52:3e:78:
f5:23:d6:59:76:7a:51:22:f5:b9:21:7f:40:7f:18:2b:53:47:
6d:47:39:f8:e8:01:02:95:10:a7:16:56:8c:35:4a:b6:41:a3:
dc:87:6d:84:40:a8:9e:88:81:3e:23:13:db:37:54:7f:53:02:
56:42:54:14:ec:b7:32:ca:cf:fa:c5:48:70:d2:f8:ee:ba:39:
76:27:09:cf:af:f6:3e:ed:55:58:1b:0a:f3:01:84:cd:13:d0:
04:72:82:69:a9:a6:5f:d4:5a:27:01:97:ab:92:f6:4e:eb:61:
34:27:d1:29:92:cb:e9:52:a8:16:18:0c:37:e7:9a:73:f3:3f:
1f:3e:9a:d4:f6:8e:53:d1:58:80:07:ae:82:cd:22:fa:1e:0f:
eb:db:fa:e5:a6:6e:48:78:88:74:4d:50:43:92:f8:89:1e:50:
ef:81:23:a3:4b:f3:93:eb:be:0b:12:32:19:19:f1:6c:de:22:
23:f5:72:05:35:20:61:b3:e2:4e:88:8a:9b:39:fc:f1:91:bd:
d6:6c:90:f6:5d:47:84:7a:e1:9a:81:ec:aa:76:7a:77:4e:c5:
74:5f:90:a4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIaXHUK9sMDv2PW1O6QrRkCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0ODY0ZjUwMjNlYzYyNjNlZjlmMTZmOTAxODdmNWYyODA2
MWQxMTUwHhcNMjIwNzIwMDY0NzIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZjkwYzBkZmRjNzlkYWIyMDJiN2EyZWFiZTIyMTYwNmFkMjk1OGQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFbpCE+3VbEEORS9JJVbhYIlq/z7
93QLY48zaXby7qwGDBmDYgyIddEp8xEzNXEQTr7ePuEKde/e5MgHXC8SksjnXG2p
vJ22SbBuDb+sNH00b+gf4aik6wtxNvO5T69aXjALYqwSKRuhawqjk/U64KXlaMOR
GZXLNSHkeRzcCUsRWcs2qgJ5VTB3pHCPE153hwTc+Mxfy5vG32otkQd2BGLgbXUX
Omw/xyr7SZenRuwm9N78qXlmS8LG9LyiSzJyV+EguU3fAwKxdbkCqKe4/4MGjZBN
9NMJ58L/uFSEtDpn0K95y6/W7BuxY7OWneznuZh7Lz4opNapVmBuYqnbxwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK+QwN/cedqyArei6r4iFgatKVjXMB8GA1UdIwQY
MBaAFHSGT1Aj7GJj758W+QGH9fKAYdEVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZElaUFVDUHNZbVB2bnhiNUFZZjE4b0JoMFJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8wY2E0ZGYtMmUwNi00NDA2LTk2ODgt
NzhmMDI4MDVjNzA5LzEvcjVEQTM5eDUycklDdDZMcXZpSVdCcTBwV05jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS8wY2E0ZGYtMmUwNi00NDA2LTk2ODgtNzhmMDI4MDVjNzA5
LzEvZElaUFVDUHNZbVB2bnhiNUFZZjE4b0JoMFJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+tSMA0G
CSqGSIb3DQEBCwUAA4IBAQAUzolc1k7rBLpVeEXXy6nPUWmuwRJqX0FGslMx3Sxu
tC9SPnj1I9ZZdnpRIvW5IX9AfxgrU0dtRzn46AEClRCnFlaMNUq2QaPch22EQKie
iIE+IxPbN1R/UwJWQlQU7Lcyys/6xUhw0vjuujl2JwnPr/Y+7VVYGwrzAYTNE9AE
coJpqaZf1FonAZerkvZO62E0J9EpksvpUqgWGAw355pz8z8fPprU9o5T0ViAB66C
zSL6Hg/r2/rlpm5IeIh0TVBDkviJHlDvgSOjS/OT674LEjIZGfFs3iIj9XIFNSBh
s+JOiIqbOfzxkb3WbJD2XUeEeuGageyqdnp3TsV0X5Ck
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:33 2024 by rpki-client on console-fra.rpki-client.org