Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/2S27HubxQNMFJJxLA0k2klr4t_4.roa
File: 2S27HubxQNMFJJxLA0k2klr4t_4.roa (raw, json)
Hash identifier: O0q+SFiyN4LoqymmAnNbsmUOuMA69i9LPvlKTDRtmSQ=
Subject key identifier: D9:2D:BB:1E:E6:F1:40:D3:05:24:9C:4B:03:49:36:92:5A:F8:B7:FE
Certificate issuer: /CN=fce2fd8df1a266ce13457fbe0f938b9abe3aa761
Certificate serial: 01834B131C03FFA179A162C3F78F6545A651
Authority key identifier: FC:E2:FD:8D:F1:A2:66:CE:13:45:7F:BE:0F:93:8B:9A:BE:3A:A7:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_OL9jfGiZs4TRX--D5OLmr46p2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/2S27HubxQNMFJJxLA0k2klr4t_4.roa
Signing time: Sat 17 Sep 2022 10:51:27 +0000
ROA not before: Sat 17 Sep 2022 10:51:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52114
IP address blocks: 91.223.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:4b:13:1c:03:ff:a1:79:a1:62:c3:f7:8f:65:45:a6:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce2fd8df1a266ce13457fbe0f938b9abe3aa761
Validity
Not Before: Sep 17 10:51:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d92dbb1ee6f140d305249c4b034936925af8b7fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:28:80:00:53:fa:b4:d2:cc:96:f7:f4:0c:8c:
89:1f:f3:f1:78:62:fc:d6:ce:c1:e4:5d:50:10:7d:
6d:cd:aa:aa:5c:1e:24:98:54:06:69:0d:d9:de:27:
1b:fe:43:15:f9:86:99:f2:a8:94:d3:6d:b9:36:ca:
a6:09:b7:98:3c:0b:53:de:39:83:1c:ec:49:a6:cd:
52:83:c5:b1:83:96:ae:82:e9:fc:22:c9:f5:29:94:
a8:31:75:11:ab:74:ca:e1:0f:fd:2b:ba:97:db:ec:
02:70:e7:bb:4d:a1:63:e7:c7:a6:f5:c7:65:f1:43:
70:95:eb:c5:6e:9a:50:47:0a:0e:58:12:56:92:c1:
91:43:3b:73:a9:02:55:26:b5:b0:ad:f6:87:22:a9:
8f:eb:e7:0a:80:78:34:22:d6:a2:2b:6d:15:a1:7c:
a1:1f:75:71:fc:03:46:ff:19:16:70:31:93:7a:73:
dd:f1:19:92:aa:2c:53:4d:e3:05:22:6b:8b:3f:27:
aa:36:6d:a7:5c:47:3a:1b:f7:fb:33:6d:c8:6e:ca:
99:33:4d:20:22:89:74:bb:15:bc:9d:1a:b9:86:ff:
93:97:3c:9b:a9:43:4f:12:e0:4b:5a:df:5c:76:48:
5a:ca:35:93:6b:39:8c:8e:b1:1d:0d:32:ce:e8:2c:
d7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:2D:BB:1E:E6:F1:40:D3:05:24:9C:4B:03:49:36:92:5A:F8:B7:FE
X509v3 Authority Key Identifier:
keyid:FC:E2:FD:8D:F1:A2:66:CE:13:45:7F:BE:0F:93:8B:9A:BE:3A:A7:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_OL9jfGiZs4TRX--D5OLmr46p2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/2S27HubxQNMFJJxLA0k2klr4t_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/_OL9jfGiZs4TRX--D5OLmr46p2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.94.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:ea:d6:20:46:a0:49:87:af:6c:f2:43:0b:66:2a:9b:f7:f7:
58:59:15:ce:fc:3b:08:57:b3:18:c5:01:76:b8:9a:3e:6a:76:
50:22:4b:78:37:cc:f4:49:02:c0:8f:6e:6d:d5:ab:0c:2a:51:
98:a5:ef:e5:90:34:b3:22:4c:f6:50:49:49:d4:f4:32:a3:45:
ea:33:de:46:dc:be:bb:ac:0f:d0:3b:ed:7d:e9:6c:4c:e5:91:
98:25:0e:28:14:96:f1:c0:0e:4e:1b:01:9e:6f:cf:92:90:77:
96:2f:81:57:85:d4:26:69:bc:d8:76:53:b7:63:32:c2:3f:2a:
a7:eb:1b:8e:dc:6f:1d:ba:3c:54:41:74:80:4a:31:ec:93:7c:
48:fd:81:0d:3c:c6:95:70:97:78:a1:55:04:3e:a9:a7:d6:c8:
e2:8d:74:2c:4d:0a:81:aa:ee:60:c3:17:af:43:a5:91:95:a1:
80:7a:45:48:84:7a:7e:21:52:56:b1:9b:f0:fb:21:a3:4e:a4:
f3:79:b8:45:c1:4a:f5:02:13:16:0c:2b:fb:a3:bd:22:d9:db:
14:2d:f7:f5:34:fc:3b:c1:ad:1e:04:69:b7:ba:fa:43:74:f9:
1d:6a:f9:54:ac:66:ee:a2:b8:79:7e:10:9c:e2:63:0c:82:5b:
ca:9d:fd:c5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNLExwD/6F5oWLD949lRaZRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjZTJmZDhkZjFhMjY2Y2UxMzQ1N2ZiZTBmOTM4YjlhYmUz
YWE3NjEwHhcNMjIwOTE3MTA1MTI3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOTJkYmIxZWU2ZjE0MGQzMDUyNDljNGIwMzQ5MzY5MjVhZjhiN2ZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyyiAAFP6tNLMlvf0DIyJH/PxeGL8
1s7B5F1QEH1tzaqqXB4kmFQGaQ3Z3icb/kMV+YaZ8qiU0225NsqmCbeYPAtT3jmD
HOxJps1Sg8Wxg5augun8Isn1KZSoMXURq3TK4Q/9K7qX2+wCcOe7TaFj58em9cdl
8UNwlevFbppQRwoOWBJWksGRQztzqQJVJrWwrfaHIqmP6+cKgHg0ItaiK20VoXyh
H3Vx/ANG/xkWcDGTenPd8RmSqixTTeMFImuLPyeqNm2nXEc6G/f7M23IbsqZM00g
Iol0uxW8nRq5hv+TlzybqUNPEuBLWt9cdkhayjWTazmMjrEdDTLO6CzXCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNktux7m8UDTBSScSwNJNpJa+Lf+MB8GA1UdIwQY
MBaAFPzi/Y3xombOE0V/vg+Ti5q+OqdhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX09MOWpmR2laczRUUlgtLUQ1T0xtcjQ2cDJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi85MTY0MWItZmM2Ni00ZTZkLWI5ZGMt
N2VmNTRhZmM0MzcyLzEvMlMyN0h1YnhRTk1GSkp4TEEwazJrbHI0dF80LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi85MTY0MWItZmM2Ni00ZTZkLWI5ZGMtN2VmNTRhZmM0Mzcy
LzEvX09MOWpmR2laczRUUlgtLUQ1T0xtcjQ2cDJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW99eMA0G
CSqGSIb3DQEBCwUAA4IBAQBM6tYgRqBJh69s8kMLZiqb9/dYWRXO/DsIV7MYxQF2
uJo+anZQIkt4N8z0SQLAj25t1asMKlGYpe/lkDSzIkz2UElJ1PQyo0XqM95G3L67
rA/QO+196WxM5ZGYJQ4oFJbxwA5OGwGeb8+SkHeWL4FXhdQmabzYdlO3YzLCPyqn
6xuO3G8dujxUQXSASjHsk3xI/YENPMaVcJd4oVUEPqmn1sjijXQsTQqBqu5gwxev
Q6WRlaGAekVIhHp+IVJWsZvw+yGjTqTzebhFwUr1AhMWDCv7o70i2dsULff1NPw7
wa0eBGm3uvpDdPkdavlUrGbuorh5fhCc4mMMglvKnf3F
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:03 2024 by rpki-client on console-fra.rpki-client.org