Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/6581f4-1483-4571-b7d1-6dea603ccc7b/1/Sx3-Q7Nj2tJ6dE_yXrbPEHPp2So.roa
File: Sx3-Q7Nj2tJ6dE_yXrbPEHPp2So.roa (raw, json)
Hash identifier: jrwSj9ZW0Vg5+4EsupZRf1uqRlTi4VhCa7jYn2dm9QQ=
Subject key identifier: 4B:1D:FE:43:B3:63:DA:D2:7A:74:4F:F2:5E:B6:CF:10:73:E9:D9:2A
Certificate issuer: /CN=166fed8bb6449b1cec6b665e930718b858a2b694
Certificate serial: 026705
Authority key identifier: 16:6F:ED:8B:B6:44:9B:1C:EC:6B:66:5E:93:07:18:B8:58:A2:B6:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fm_ti7ZEmxzsa2ZekwcYuFiitpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/6581f4-1483-4571-b7d1-6dea603ccc7b/1/Sx3-Q7Nj2tJ6dE_yXrbPEHPp2So.roa
Signing time: Thu 23 Jun 2022 10:40:24 +0000
ROA not before: Thu 23 Jun 2022 10:40:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198915
IP address blocks: 91.240.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157445 (0x26705)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=166fed8bb6449b1cec6b665e930718b858a2b694
Validity
Not Before: Jun 23 10:40:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b1dfe43b363dad27a744ff25eb6cf1073e9d92a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4f:fd:69:ec:4b:68:fa:04:ff:1a:ee:ce:43:
e4:9c:b3:09:75:44:76:2b:8c:ca:0b:c4:7a:3a:d7:
aa:8a:2f:6c:ec:4d:fd:b5:c9:0e:23:74:d1:12:4e:
25:aa:d2:ed:ef:b6:e9:4d:71:a8:19:7c:a9:d0:e8:
23:0b:77:0a:f5:6b:f0:d3:9d:69:9a:f9:1c:ec:12:
5a:83:d9:9c:35:70:fb:06:e6:df:21:93:96:99:19:
a1:9d:07:a0:a6:a8:60:2f:54:59:78:5e:fc:50:07:
2f:81:73:ed:7f:a1:84:c1:9d:ef:fe:e3:cb:76:ba:
4d:88:c7:bf:d4:c6:b3:4c:b1:21:46:aa:ac:8e:ea:
7f:e3:88:18:79:38:cf:c2:32:01:b3:76:e7:35:c3:
ba:29:65:d5:94:ef:8f:18:44:65:fb:ae:30:31:42:
fe:bb:1c:14:f0:8d:cc:14:c8:7d:13:48:a2:ee:bb:
bd:16:c2:ac:92:91:b5:bd:1c:21:50:d4:4d:83:55:
5a:b4:5a:fc:5a:30:ff:90:f3:7a:97:ed:0f:a1:93:
ab:6d:3b:98:08:04:5a:06:c0:f8:83:a1:b8:05:07:
58:ae:5f:0a:43:f5:f6:58:5c:78:8a:e3:1a:04:52:
d9:3f:4a:81:16:7c:12:47:ae:5f:ea:90:42:62:ed:
62:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:1D:FE:43:B3:63:DA:D2:7A:74:4F:F2:5E:B6:CF:10:73:E9:D9:2A
X509v3 Authority Key Identifier:
keyid:16:6F:ED:8B:B6:44:9B:1C:EC:6B:66:5E:93:07:18:B8:58:A2:B6:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fm_ti7ZEmxzsa2ZekwcYuFiitpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6581f4-1483-4571-b7d1-6dea603ccc7b/1/Sx3-Q7Nj2tJ6dE_yXrbPEHPp2So.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6581f4-1483-4571-b7d1-6dea603ccc7b/1/Fm_ti7ZEmxzsa2ZekwcYuFiitpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.70.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:e4:ed:4b:10:f5:d9:27:57:ad:ab:6a:27:3f:05:81:7b:4e:
cf:8c:4e:da:0c:20:82:96:9f:1c:46:fa:53:ca:e8:35:24:59:
b9:f1:a0:5d:10:d3:25:69:cb:94:54:58:8f:19:e7:b7:84:46:
94:b3:12:20:af:75:c5:20:18:63:51:98:d1:d8:d1:2c:81:5c:
b9:7b:a5:4c:e5:a7:65:fb:a0:45:37:60:c8:75:ee:60:3e:7e:
0b:68:51:f4:bc:d1:88:e9:3f:cb:e1:9f:30:d7:bd:8c:3f:4d:
d9:51:65:57:46:d2:dd:41:3f:5e:ce:1d:3e:2f:ff:61:d2:c9:
b0:27:b3:91:51:cc:ff:4d:8c:2a:6a:d6:fc:8e:a4:08:d9:87:
5d:09:2d:e4:ff:3e:5e:7a:c7:b5:93:14:b0:c4:6f:06:c3:60:
d4:94:94:f2:e5:1c:e8:2a:33:c9:16:ef:0f:2f:62:bf:44:8f:
f4:1d:49:1e:b3:18:09:f7:7b:39:22:33:98:97:6e:3b:31:12:
91:76:5e:8e:ca:74:2d:92:86:fc:5f:72:f7:44:f1:4e:b2:cc:
1e:6c:dc:75:d0:12:88:91:3f:9d:f2:ac:cc:02:6a:26:9d:1d:
43:d2:dc:a2:02:cd:4e:48:0e:37:8a:c2:cc:23:2e:ba:a4:9d:
fd:06:45:0f
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAmcFMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDE2
NmZlZDhiYjY0NDliMWNlYzZiNjY1ZTkzMDcxOGI4NThhMmI2OTQwHhcNMjIwNjIz
MTA0MDI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0YjFkZmU0M2IzNjNk
YWQyN2E3NDRmZjI1ZWI2Y2YxMDczZTlkOTJhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtU/9aexLaPoE/xruzkPknLMJdUR2K4zKC8R6Oteqii9s7E39
tckOI3TREk4lqtLt77bpTXGoGXyp0OgjC3cK9Wvw051pmvkc7BJag9mcNXD7Bubf
IZOWmRmhnQegpqhgL1RZeF78UAcvgXPtf6GEwZ3v/uPLdrpNiMe/1MazTLEhRqqs
jup/44gYeTjPwjIBs3bnNcO6KWXVlO+PGERl+64wMUL+uxwU8I3MFMh9E0ii7ru9
FsKskpG1vRwhUNRNg1VatFr8WjD/kPN6l+0PoZOrbTuYCARaBsD4g6G4BQdYrl8K
Q/X2WFx4iuMaBFLZP0qBFnwSR65f6pBCYu1ibQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFEsd/kOzY9rSenRP8l62zxBz6dkqMB8GA1UdIwQYMBaAFBZv7Yu2RJsc7Gtm
XpMHGLhYoraUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Rm1fdGk3WkVteHpzYTJaZWt3Y1l1RmlpdHBRLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8wMi82NTgxZjQtMTQ4My00NTcxLWI3ZDEtNmRlYTYwM2NjYzdiLzEv
U3gzLVE3TmoydEo2ZEVfeVhyYlBFSFBwMlNvLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi82
NTgxZjQtMTQ4My00NTcxLWI3ZDEtNmRlYTYwM2NjYzdiLzEvRm1fdGk3WkVteHpz
YTJaZWt3Y1l1RmlpdHBRLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/BGMA0GCSqGSIb3DQEBCwUAA4IB
AQAe5O1LEPXZJ1etq2onPwWBe07PjE7aDCCClp8cRvpTyug1JFm58aBdENMlacuU
VFiPGee3hEaUsxIgr3XFIBhjUZjR2NEsgVy5e6VM5adl+6BFN2DIde5gPn4LaFH0
vNGI6T/L4Z8w172MP03ZUWVXRtLdQT9ezh0+L/9h0smwJ7ORUcz/TYwqatb8jqQI
2YddCS3k/z5eese1kxSwxG8Gw2DUlJTy5RzoKjPJFu8PL2K/RI/0HUkesxgJ93s5
IjOYl247MRKRdl6OynQtkob8X3L3RPFOsswebNx10BKIkT+d8qzMAmomnR1D0tyi
As1OSA43isLMIy66pJ39BkUP
-----END CERTIFICATE-----
Generated at Tue Apr 22 02:19:43 2025 by rpki-client