Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/RmZvu3_Crgw09FVqejgk5LIzZik.roa
File: RmZvu3_Crgw09FVqejgk5LIzZik.roa (raw, json)
Hash identifier: pxJphAmCOMT45ukFPmbl3qiJSnjk9A2zwGXYQDNQDlM=
Subject key identifier: 46:66:6F:BB:7F:C2:AE:0C:34:F4:55:6A:7A:38:24:E4:B2:33:66:29
Certificate issuer: /CN=a2bcd88ac3e02cffad3c00de46b5da336bd64702
Certificate serial: 03A73CB3
Authority key identifier: A2:BC:D8:8A:C3:E0:2C:FF:AD:3C:00:DE:46:B5:DA:33:6B:D6:47:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/RmZvu3_Crgw09FVqejgk5LIzZik.roa
Signing time: Sat 01 Jan 2022 15:56:18 +0000
ROA not before: Sat 01 Jan 2022 15:56:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25143
IP address blocks: 91.239.49.0/24 maxlen: 24
91.239.48.0/24 maxlen: 24
91.239.51.0/24 maxlen: 24
91.239.50.0/24 maxlen: 24
193.19.228.0/24 maxlen: 24
193.19.231.0/24 maxlen: 24
193.19.230.0/24 maxlen: 24
193.19.229.0/24 maxlen: 24
193.238.20.0/24 maxlen: 24
193.238.23.0/24 maxlen: 24
193.238.22.0/24 maxlen: 24
193.238.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61291699 (0x3a73cb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2bcd88ac3e02cffad3c00de46b5da336bd64702
Validity
Not Before: Jan 1 15:56:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46666fbb7fc2ae0c34f4556a7a3824e4b2336629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cc:d7:d2:36:df:69:ee:87:f6:4f:1a:5f:eb:
04:14:8d:56:ad:14:2c:c9:75:69:3a:28:5b:9c:63:
8f:80:8c:20:5a:18:24:6b:56:45:a1:b5:1f:71:f6:
7f:64:94:eb:af:48:95:9a:83:79:81:2d:1a:08:f4:
dc:e3:88:05:49:9e:1e:b8:74:43:78:1c:f1:9b:f7:
18:19:85:e0:b6:de:97:bc:fc:6f:48:bb:66:a2:7f:
c7:b4:3f:64:12:a2:44:4e:7e:cf:4f:2a:50:49:94:
56:b6:6e:09:19:64:93:bd:f8:b1:98:aa:62:1f:9b:
8b:67:be:3c:11:aa:a5:2a:b6:72:b8:df:6f:d6:12:
b5:87:df:5e:27:a3:86:b6:16:41:ea:e1:68:d7:55:
ef:66:64:9a:4c:02:8a:eb:dc:bf:5b:d5:ad:44:78:
45:22:e1:94:d6:cc:fa:9b:4e:5c:51:89:a7:d3:9d:
2f:d0:53:12:bc:05:03:76:f8:9b:b0:5a:8a:dc:58:
c9:d5:72:e0:e6:e4:b9:0e:83:c5:36:fe:2b:d3:f7:
2f:09:6a:c6:2f:a2:fa:dc:a1:8a:3b:75:91:ab:b2:
f0:04:2f:0b:20:80:6a:cd:00:8b:97:12:84:d0:f6:
b0:b8:83:e7:a9:21:ba:66:c0:bf:a7:9e:1c:96:fe:
cc:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:66:6F:BB:7F:C2:AE:0C:34:F4:55:6A:7A:38:24:E4:B2:33:66:29
X509v3 Authority Key Identifier:
keyid:A2:BC:D8:8A:C3:E0:2C:FF:AD:3C:00:DE:46:B5:DA:33:6B:D6:47:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/RmZvu3_Crgw09FVqejgk5LIzZik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.48.0/22
193.19.228.0/22
193.238.20.0/22
Signature Algorithm: sha256WithRSAEncryption
23:f9:b6:f8:80:79:ea:a3:e1:5f:da:ba:47:be:06:af:b0:03:
41:e7:15:a1:4c:9f:6e:0a:63:16:03:25:9d:9d:f1:d1:51:a4:
a5:b7:e8:20:0b:2a:a8:25:6f:05:4e:b1:ba:ed:bb:11:ba:2a:
61:01:c6:e4:46:27:11:0f:d9:8f:3f:fa:0b:e5:1a:b2:23:34:
26:a4:ef:03:aa:4f:59:c4:24:6a:1c:52:8a:71:5e:0d:54:ab:
55:01:8d:b3:47:49:7b:db:91:00:ff:52:f1:5a:8a:d0:82:be:
11:13:7c:82:8c:b0:01:cf:8d:ec:0d:54:b3:08:24:9b:34:13:
81:93:7c:a6:b9:07:9f:35:21:fd:4c:95:44:ff:2d:06:1b:e9:
c9:2b:09:33:37:aa:4f:67:57:91:08:39:2f:95:a2:e1:0f:0a:
13:73:d6:95:bb:99:f5:5c:c1:59:8f:6f:bc:53:69:3a:5d:13:
6d:ac:2c:f2:2c:01:8e:57:2b:70:6c:95:ec:ef:60:fe:60:f8:
f5:2f:e8:b0:e3:80:4b:e5:97:de:97:a1:09:d8:26:d7:33:dd:
36:d7:b6:30:cf:93:a2:65:fc:2d:1d:53:62:9e:90:27:a8:e6:
af:57:20:07:ce:01:fb:ac:07:c8:61:ce:4d:9a:52:15:50:cf:
c0:5a:19:d0
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEA6c8szANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MmJjZDg4YWMzZTAyY2ZmYWQzYzAwZGU0NmI1ZGEzMzZiZDY0NzAyMB4XDTIyMDEw
MTE1NTYxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDY2NjZmYmI3ZmMy
YWUwYzM0ZjQ1NTZhN2EzODI0ZTRiMjMzNjYyOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMDM19I232nuh/ZPGl/rBBSNVq0ULMl1aTooW5xjj4CMIFoY
JGtWRaG1H3H2f2SU669IlZqDeYEtGgj03OOIBUmeHrh0Q3gc8Zv3GBmF4Lbel7z8
b0i7ZqJ/x7Q/ZBKiRE5+z08qUEmUVrZuCRlkk734sZiqYh+bi2e+PBGqpSq2crjf
b9YStYffXiejhrYWQerhaNdV72ZkmkwCiuvcv1vVrUR4RSLhlNbM+ptOXFGJp9Od
L9BTErwFA3b4m7BaitxYydVy4ObkuQ6DxTb+K9P3Lwlqxi+i+tyhijt1kauy8AQv
CyCAas0Ai5cShND2sLiD56khumbAv6eeHJb+zG0CAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBRGZm+7f8KuDDT0VWp6OCTksjNmKTAfBgNVHSMEGDAWgBSivNiKw+As/608
AN5Gtdoza9ZHAjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L29yellpc1BnTFAtdFBBRGVSclhhTTJ2V1J3SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDYvY2Y0ZGI1LWZiMjktNGIyYS1hMjE1LWFhYjg2Mjg2MWEwOS8x
L1JtWnZ1M19Dcmd3MDlGVnFlamdrNUxJelppay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDYv
Y2Y0ZGI1LWZiMjktNGIyYS1hMjE1LWFhYjg2Mjg2MWEwOS8xL29yellpc1BnTFAt
dFBBRGVSclhhTTJ2V1J3SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAlvvMAMEAsET5AMEAsHuFDANBgkq
hkiG9w0BAQsFAAOCAQEAI/m2+IB56qPhX9q6R74Gr7ADQecVoUyfbgpjFgMlnZ3x
0VGkpbfoIAsqqCVvBU6xuu27EboqYQHG5EYnEQ/Zjz/6C+UasiM0JqTvA6pPWcQk
ahxSinFeDVSrVQGNs0dJe9uRAP9S8VqK0IK+ERN8goywAc+N7A1UswgkmzQTgZN8
prkHnzUh/UyVRP8tBhvpySsJMzeqT2dXkQg5L5Wi4Q8KE3PWlbuZ9VzBWY9vvFNp
Ol0Tbaws8iwBjlcrcGyV7O9g/mD49S/osOOAS+WX3pehCdgm1zPdNte2MM+TomX8
LR1TYp6QJ6jmr1cgB84B+6wHyGHOTZpSFVDPwFoZ0A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:23 2024 by rpki-client on console-ams.rpki-client.org