Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/dec31c-dcd4-4da7-9dda-c4a07d61689d/1/F9rpXAtUCqxXpxQESVwvgVkpInI.roa
File: F9rpXAtUCqxXpxQESVwvgVkpInI.roa (raw, json)
Hash identifier: esWnRHon2t6qPqq+vbeAZPHq+E2BfdCTSXYWVWJ/hrg=
Subject key identifier: 17:DA:E9:5C:0B:54:0A:AC:57:A7:14:04:49:5C:2F:81:59:29:22:72
Certificate issuer: /CN=abe0a8a462d0de1f4d3012c3e39e5cda603e8f91
Certificate serial: 0305EC08
Authority key identifier: AB:E0:A8:A4:62:D0:DE:1F:4D:30:12:C3:E3:9E:5C:DA:60:3E:8F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q-CopGLQ3h9NMBLD455c2mA-j5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/dec31c-dcd4-4da7-9dda-c4a07d61689d/1/F9rpXAtUCqxXpxQESVwvgVkpInI.roa
Signing time: Sat 01 Jan 2022 02:59:39 +0000
ROA not before: Sat 01 Jan 2022 02:59:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58125
IP address blocks: 91.239.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50719752 (0x305ec08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abe0a8a462d0de1f4d3012c3e39e5cda603e8f91
Validity
Not Before: Jan 1 02:59:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17dae95c0b540aac57a71404495c2f8159292272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:62:71:c9:ea:1b:57:31:ae:3d:d1:78:db:42:
09:e8:e5:6e:c7:dc:8a:3c:9d:6a:57:5c:4d:4b:8f:
0c:fa:5f:6b:32:6e:20:17:7d:5f:1b:a8:43:39:40:
6b:9d:76:61:3f:b9:7e:e9:cc:3f:c3:97:5e:13:73:
17:d1:f2:61:1d:d3:d5:41:bb:b8:95:5f:58:21:f1:
5b:a0:b0:92:cb:fc:4c:cd:55:78:1f:9c:7a:79:b4:
2d:30:5e:8a:57:f9:ab:09:b7:d2:2f:03:14:d7:0e:
e6:2e:6c:f2:9d:b3:03:93:53:bf:7c:b5:93:3a:27:
20:0a:df:15:f4:e1:a8:c2:25:cb:3e:fb:ab:88:ab:
91:61:f4:e0:23:d4:16:37:b5:23:44:0f:d0:cc:3b:
d3:ca:08:fe:f6:d1:c4:e3:4b:1d:f9:ed:b7:e1:ce:
27:53:5d:ed:7d:4d:ba:f4:f9:e9:62:6a:12:50:06:
83:06:55:3a:09:6d:57:a3:94:51:41:a3:55:4e:4b:
f4:bd:30:81:75:8d:61:5e:49:fe:21:e3:6e:e4:a1:
54:f3:e5:99:80:39:21:2c:83:8d:f7:3f:97:74:8d:
41:54:a2:d8:f5:3b:7a:68:81:11:6a:17:18:8c:35:
a0:bb:db:66:c2:7a:7c:a6:44:97:a8:ba:38:3b:99:
97:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:DA:E9:5C:0B:54:0A:AC:57:A7:14:04:49:5C:2F:81:59:29:22:72
X509v3 Authority Key Identifier:
keyid:AB:E0:A8:A4:62:D0:DE:1F:4D:30:12:C3:E3:9E:5C:DA:60:3E:8F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q-CopGLQ3h9NMBLD455c2mA-j5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/dec31c-dcd4-4da7-9dda-c4a07d61689d/1/F9rpXAtUCqxXpxQESVwvgVkpInI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/dec31c-dcd4-4da7-9dda-c4a07d61689d/1/q-CopGLQ3h9NMBLD455c2mA-j5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.14.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:e2:f1:a4:16:7c:d4:d6:91:a4:fa:d0:fd:0d:26:1b:49:d3:
79:df:c4:3f:73:f5:f7:86:26:66:13:9a:bb:76:14:73:1e:80:
5b:4a:88:d2:99:99:0d:fe:42:86:a8:15:e5:f5:b9:4e:bd:0e:
6f:73:3f:bc:95:47:92:43:6f:45:60:e6:66:87:a7:6b:02:f2:
e3:c9:19:a9:83:d6:a3:c2:45:d9:f8:ca:73:7e:b3:43:4a:37:
32:66:98:8c:87:9f:7c:77:a7:f4:b4:f7:43:da:13:f1:ca:e7:
4f:db:3c:8e:fd:82:d0:31:07:3c:1b:3e:73:ae:15:50:65:62:
d3:42:bd:5e:a6:f9:89:54:7e:56:6b:46:ed:3a:9f:d4:9a:32:
59:b7:a1:d3:d7:a1:4b:20:20:db:ad:41:4d:f9:56:5f:0a:a6:
e1:0c:09:ee:73:ac:03:27:c2:8e:76:41:c6:35:52:bb:1c:70:
21:1a:c5:e5:f5:b9:99:e1:17:4b:53:f0:f2:ae:58:d6:20:a2:
05:57:bc:35:85:56:35:5d:0e:b9:5e:26:e2:ea:c2:b8:75:af:
ad:c3:e3:9f:21:7d:db:de:b3:b8:09:0e:c8:19:89:d4:78:1d:
27:b7:db:ab:62:f9:73:15:7a:60:5e:5f:57:ac:84:04:9c:9e:
0c:f7:32:8e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAwXsCDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YmUwYThhNDYyZDBkZTFmNGQzMDEyYzNlMzllNWNkYTYwM2U4ZjkxMB4XDTIyMDEw
MTAyNTkzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTdkYWU5NWMwYjU0
MGFhYzU3YTcxNDA0NDk1YzJmODE1OTI5MjI3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK9iccnqG1cxrj3ReNtCCejlbsfcijydaldcTUuPDPpfazJu
IBd9XxuoQzlAa512YT+5funMP8OXXhNzF9HyYR3T1UG7uJVfWCHxW6Cwksv8TM1V
eB+cenm0LTBeilf5qwm30i8DFNcO5i5s8p2zA5NTv3y1kzonIArfFfThqMIlyz77
q4irkWH04CPUFje1I0QP0Mw708oI/vbRxONLHfntt+HOJ1Nd7X1NuvT56WJqElAG
gwZVOgltV6OUUUGjVU5L9L0wgXWNYV5J/iHjbuShVPPlmYA5ISyDjfc/l3SNQVSi
2PU7emiBEWoXGIw1oLvbZsJ6fKZEl6i6ODuZlwECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQX2ulcC1QKrFenFARJXC+BWSkicjAfBgNVHSMEGDAWgBSr4KikYtDeH00w
EsPjnlzaYD6PkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3EtQ29wR0xRM2g5Tk1CTEQ0NTVjMm1BLWo1RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTIvZGVjMzFjLWRjZDQtNGRhNy05ZGRhLWM0YTA3ZDYxNjg5ZC8x
L0Y5cnBYQXRVQ3F4WHB4UUVTVnd2Z1ZrcEluSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTIv
ZGVjMzFjLWRjZDQtNGRhNy05ZGRhLWM0YTA3ZDYxNjg5ZC8xL3EtQ29wR0xRM2g5
Tk1CTEQ0NTVjMm1BLWo1RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvvDjANBgkqhkiG9w0BAQsFAAOC
AQEAfeLxpBZ81NaRpPrQ/Q0mG0nTed/EP3P194YmZhOau3YUcx6AW0qI0pmZDf5C
hqgV5fW5Tr0Ob3M/vJVHkkNvRWDmZoenawLy48kZqYPWo8JF2fjKc36zQ0o3MmaY
jIeffHen9LT3Q9oT8crnT9s8jv2C0DEHPBs+c64VUGVi00K9Xqb5iVR+VmtG7Tqf
1JoyWbeh09ehSyAg261BTflWXwqm4QwJ7nOsAyfCjnZBxjVSuxxwIRrF5fW5meEX
S1Pw8q5Y1iCiBVe8NYVWNV0OuV4m4urCuHWvrcPjnyF9296zuAkOyBmJ1HgdJ7fb
q2L5cxV6YF5fV6yEBJyeDPcyjg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:19 2024 by rpki-client on console-ams.rpki-client.org