Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/b-Yrtz49Pr-V34kcipK6porUmr0.roa
File: b-Yrtz49Pr-V34kcipK6porUmr0.roa (raw, json)
Hash identifier: 5L6vRpYKS5PAqmpyTEO8kdZxSc1sBfSyW/B/nPirDiU=
Subject key identifier: 6F:E6:2B:B7:3E:3D:3E:BF:95:DF:89:1C:8A:92:BA:A6:8A:D4:9A:BD
Certificate issuer: /CN=84a69fc568894cb3985edef22216bd99974de251
Certificate serial: 036FE906
Authority key identifier: 84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/b-Yrtz49Pr-V34kcipK6porUmr0.roa
Signing time: Sat 01 Jan 2022 13:55:28 +0000
ROA not before: Sat 01 Jan 2022 13:55:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56339
IP address blocks: 91.243.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57665798 (0x36fe906)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a69fc568894cb3985edef22216bd99974de251
Validity
Not Before: Jan 1 13:55:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fe62bb73e3d3ebf95df891c8a92baa68ad49abd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:7f:f3:b5:0a:06:c0:64:4b:12:02:6b:99:94:
87:5c:55:63:8c:a5:51:e2:ba:da:26:4d:2c:23:26:
8e:3c:a1:6c:f0:13:36:2b:fa:45:3d:c3:db:04:8d:
9a:bf:36:87:02:bc:91:de:88:1a:12:06:c1:cc:2e:
f1:86:e5:1e:e0:87:b3:a7:f5:ae:47:ad:4f:c5:9c:
0b:7d:f5:1c:b5:78:e3:f2:57:c0:5c:2f:66:17:55:
c1:62:f1:c6:a2:f6:fd:83:d6:a3:ba:87:a2:16:c4:
80:13:24:a5:7a:b0:a5:5a:94:a2:99:e7:3f:4a:49:
3e:a6:29:26:e5:95:5f:8b:77:42:7a:96:79:05:2b:
a8:4a:57:4e:bf:cf:32:12:55:07:e5:d9:6d:63:c3:
0f:52:fa:aa:04:3e:dc:77:79:04:75:98:0d:90:db:
fa:02:f2:c1:a8:f0:b3:f0:ad:da:ce:4e:e6:f8:50:
fa:b4:ea:14:3c:1b:ea:5f:ca:f6:75:79:e5:85:c1:
77:f4:16:45:f8:48:2c:6e:6b:07:f2:8c:af:61:2a:
bf:bb:63:a6:40:20:70:32:c1:be:66:ea:53:81:db:
3f:94:24:d6:9a:d1:32:96:94:cb:47:a7:c0:b0:67:
f4:33:e5:72:81:71:81:ca:7d:7e:43:a1:e8:cb:dc:
16:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E6:2B:B7:3E:3D:3E:BF:95:DF:89:1C:8A:92:BA:A6:8A:D4:9A:BD
X509v3 Authority Key Identifier:
keyid:84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/b-Yrtz49Pr-V34kcipK6porUmr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.117.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:fb:49:de:f2:8f:ff:29:73:be:2e:ce:4a:05:ec:46:74:8e:
1e:14:f2:74:27:b2:bc:78:cc:c8:7c:ca:9e:11:ae:b0:f4:a6:
e8:9f:91:09:0e:47:58:96:a1:f8:a4:3b:98:d8:2a:e1:20:47:
31:7f:29:ee:ef:9a:f5:01:82:9a:47:be:20:3a:59:b8:be:0c:
4a:73:6e:f0:f2:48:63:1f:8b:2a:a3:e3:4f:bc:1b:46:13:6d:
31:e8:6e:29:5c:8e:a6:95:cb:3e:da:a2:c4:c4:d7:39:17:83:
88:96:5b:58:05:e9:8f:8c:2d:e8:03:4b:2e:97:60:1f:d3:5a:
c3:03:f0:38:55:1d:30:ed:21:f4:6b:3a:60:e0:97:c8:42:1a:
5e:8d:53:91:33:b6:a6:af:eb:98:0d:39:8e:6c:28:f7:f8:69:
55:16:0e:f2:bd:56:52:0b:1f:3f:c5:50:e3:61:8e:27:20:52:
87:75:7b:d9:b0:f7:a5:25:fd:bf:d9:b3:20:d7:97:80:65:b3:
89:a3:a3:39:df:72:bd:dd:d8:1d:6a:1b:82:0d:1e:c9:7a:99:
c9:69:21:98:42:f9:62:48:79:69:f5:61:74:ba:d6:84:93:fa:
5a:5a:fe:97:da:e0:af:5b:3f:ea:0e:c7:73:16:7f:e6:a1:56:
83:74:13:6a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA2/pBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NGE2OWZjNTY4ODk0Y2IzOTg1ZWRlZjIyMjE2YmQ5OTk3NGRlMjUxMB4XDTIyMDEw
MTEzNTUyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmZlNjJiYjczZTNk
M2ViZjk1ZGY4OTFjOGE5MmJhYTY4YWQ0OWFiZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAON/87UKBsBkSxICa5mUh1xVY4ylUeK62iZNLCMmjjyhbPAT
Niv6RT3D2wSNmr82hwK8kd6IGhIGwcwu8YblHuCHs6f1rketT8WcC331HLV44/JX
wFwvZhdVwWLxxqL2/YPWo7qHohbEgBMkpXqwpVqUopnnP0pJPqYpJuWVX4t3QnqW
eQUrqEpXTr/PMhJVB+XZbWPDD1L6qgQ+3Hd5BHWYDZDb+gLywajws/Ct2s5O5vhQ
+rTqFDwb6l/K9nV55YXBd/QWRfhILG5rB/KMr2Eqv7tjpkAgcDLBvmbqU4HbP5Qk
1prRMpaUy0enwLBn9DPlcoFxgcp9fkOh6MvcFokCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRv5iu3Pj0+v5XfiRyKkrqmitSavTAfBgNVHSMEGDAWgBSEpp/FaIlMs5he
3vIiFr2Zl03iUTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hLYWZ4V2lKVExPWVh0N3lJaGE5bVpkTjRsRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGMvYzYwYTFlLTkwODAtNGIwOC05NWRhLTQzN2ZlNTBiYjRmNy8x
L2ItWXJ0ejQ5UHItVjM0a2NpcEs2cG9yVW1yMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGMv
YzYwYTFlLTkwODAtNGIwOC05NWRhLTQzN2ZlNTBiYjRmNy8xL2hLYWZ4V2lKVExP
WVh0N3lJaGE5bVpkTjRsRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvzdTANBgkqhkiG9w0BAQsFAAOC
AQEAa/tJ3vKP/ylzvi7OSgXsRnSOHhTydCeyvHjMyHzKnhGusPSm6J+RCQ5HWJah
+KQ7mNgq4SBHMX8p7u+a9QGCmke+IDpZuL4MSnNu8PJIYx+LKqPjT7wbRhNtMehu
KVyOppXLPtqixMTXOReDiJZbWAXpj4wt6ANLLpdgH9NawwPwOFUdMO0h9Gs6YOCX
yEIaXo1TkTO2pq/rmA05jmwo9/hpVRYO8r1WUgsfP8VQ42GOJyBSh3V72bD3pSX9
v9mzINeXgGWziaOjOd9yvd3YHWobgg0eyXqZyWkhmEL5Ykh5afVhdLrWhJP6Wlr+
l9rgr1s/6g7HcxZ/5qFWg3QTag==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:34 2024 by rpki-client on console-ams.rpki-client.org