Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/939e00-3bd9-435b-8f8b-bcddc44b03ab/1/pS5Y-gcz0bcFIYu4cr-xjvGRjS4.roa
File: pS5Y-gcz0bcFIYu4cr-xjvGRjS4.roa (raw, json)
Hash identifier: ctt5jV+kA9eGHNaddoxgpo9/UGqwb5/a4VxrNMcjNQg=
Subject key identifier: A5:2E:58:FA:07:33:D1:B7:05:21:8B:B8:72:BF:B1:8E:F1:91:8D:2E
Certificate issuer: /CN=9957a15aa9893f1c915b4497ebf92a8a33d5e439
Certificate serial: 0184C38DCC7C61A796AA3F3465FFFAF5BA53
Authority key identifier: 99:57:A1:5A:A9:89:3F:1C:91:5B:44:97:EB:F9:2A:8A:33:D5:E4:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mVehWqmJPxyRW0SX6_kqijPV5Dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/939e00-3bd9-435b-8f8b-bcddc44b03ab/1/pS5Y-gcz0bcFIYu4cr-xjvGRjS4.roa
Signing time: Tue 29 Nov 2022 13:22:40 +0000
ROA not before: Tue 29 Nov 2022 13:22:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43713
IP address blocks: 91.198.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c3:8d:cc:7c:61:a7:96:aa:3f:34:65:ff:fa:f5:ba:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9957a15aa9893f1c915b4497ebf92a8a33d5e439
Validity
Not Before: Nov 29 13:22:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a52e58fa0733d1b705218bb872bfb18ef1918d2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f9:27:0c:99:b3:ee:a1:c3:f4:70:ce:f9:62:
ea:fe:27:37:b1:c3:03:59:6d:90:af:5f:ff:2c:fe:
41:bb:a4:34:25:07:91:7d:1a:3f:e5:6f:99:bd:68:
64:53:db:ca:1b:ca:60:f0:a0:4e:48:2b:c8:24:1b:
19:4c:e9:a3:50:f3:d2:fb:f0:d7:bc:dc:81:c5:37:
c9:e7:2b:fb:61:0d:37:ee:a0:ed:b4:ce:3d:41:a0:
d6:08:a7:15:0a:c2:7a:a0:c7:d8:6c:11:df:5e:64:
83:50:97:0e:e7:6d:22:b5:b0:f0:cf:8e:87:cb:5a:
d1:cb:24:d7:5c:f6:7c:65:09:3f:64:35:65:31:dc:
eb:85:5a:69:fc:53:35:0b:89:56:41:f3:76:2b:0f:
cb:ad:e2:a0:ee:2a:49:47:ba:7b:fd:1f:96:bc:91:
ba:a3:20:b7:fd:6a:73:5d:6d:92:b2:d5:08:c9:0c:
ae:84:d3:26:24:34:42:aa:00:76:c4:73:76:5a:41:
55:4f:f4:fd:5c:a2:1b:5e:66:f9:b9:8a:c5:c8:19:
fa:2c:33:5b:c1:95:e9:15:78:6a:e7:47:bc:f8:0c:
2c:ce:d1:a9:30:aa:02:70:2b:a7:6b:a3:c8:81:67:
4a:95:6e:d3:ad:40:0a:e2:dc:56:cd:05:bd:f9:77:
91:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:2E:58:FA:07:33:D1:B7:05:21:8B:B8:72:BF:B1:8E:F1:91:8D:2E
X509v3 Authority Key Identifier:
keyid:99:57:A1:5A:A9:89:3F:1C:91:5B:44:97:EB:F9:2A:8A:33:D5:E4:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mVehWqmJPxyRW0SX6_kqijPV5Dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/939e00-3bd9-435b-8f8b-bcddc44b03ab/1/pS5Y-gcz0bcFIYu4cr-xjvGRjS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/939e00-3bd9-435b-8f8b-bcddc44b03ab/1/mVehWqmJPxyRW0SX6_kqijPV5Dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.119.0/24
Signature Algorithm: sha256WithRSAEncryption
19:99:0d:a9:6c:78:06:c3:9f:50:b0:8a:67:a7:8a:43:a5:54:
fa:bf:bc:5f:e7:90:fd:da:5f:50:71:22:f1:10:b7:d0:6c:68:
bb:84:e8:f2:e4:ca:95:6c:d7:78:84:dd:dc:43:83:00:4f:1a:
84:70:2a:28:e2:01:98:74:44:9e:d5:ed:45:93:61:49:32:92:
94:da:7c:30:1c:6b:11:3f:5c:04:f8:fe:c8:ba:5a:5b:f3:f9:
63:f0:2e:75:9e:95:0b:b9:b6:87:b0:45:cb:55:9b:01:89:83:
7a:24:fc:f8:7e:75:b2:c8:ef:6f:45:3f:ed:d6:57:e2:f5:5f:
63:cc:db:6c:31:82:8a:4a:6c:5d:9f:03:77:00:40:fa:1a:73:
33:91:d7:77:cd:f7:c4:ab:27:24:97:fb:4e:48:d8:c3:a0:60:
86:dd:61:61:30:e2:eb:7b:d2:a4:c1:2d:68:2d:98:90:3e:8a:
64:7e:d0:e4:a9:80:0c:71:58:d8:91:ea:18:e8:92:19:5b:48:
b5:9e:00:1a:11:98:56:ed:19:00:99:ab:4e:e2:ce:46:b1:c3:
3f:ce:07:eb:26:96:73:72:a7:71:a7:38:4f:44:e0:5e:ca:25:
e6:55:6b:ef:b0:eb:aa:7c:b5:28:24:06:69:e7:e1:39:b6:c1:
a2:86:ec:bc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTDjcx8YaeWqj80Zf/69bpTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5NTdhMTVhYTk4OTNmMWM5MTViNDQ5N2ViZjkyYThhMzNk
NWU0MzkwHhcNMjIxMTI5MTMyMjQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNTJlNThmYTA3MzNkMWI3MDUyMThiYjg3MmJmYjE4ZWYxOTE4ZDJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPknDJmz7qHD9HDO+WLq/ic3scMD
WW2Qr1//LP5Bu6Q0JQeRfRo/5W+ZvWhkU9vKG8pg8KBOSCvIJBsZTOmjUPPS+/DX
vNyBxTfJ5yv7YQ037qDttM49QaDWCKcVCsJ6oMfYbBHfXmSDUJcO520itbDwz46H
y1rRyyTXXPZ8ZQk/ZDVlMdzrhVpp/FM1C4lWQfN2Kw/LreKg7ipJR7p7/R+WvJG6
oyC3/WpzXW2SstUIyQyuhNMmJDRCqgB2xHN2WkFVT/T9XKIbXmb5uYrFyBn6LDNb
wZXpFXhq50e8+AwsztGpMKoCcCuna6PIgWdKlW7TrUAK4txWzQW9+XeRVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKUuWPoHM9G3BSGLuHK/sY7xkY0uMB8GA1UdIwQY
MBaAFJlXoVqpiT8ckVtEl+v5Kooz1eQ5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVZlaFdxbUpQeHlSVzBTWDZfa3FpalBWNURrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi85MzllMDAtM2JkOS00MzViLThmOGIt
YmNkZGM0NGIwM2FiLzEvcFM1WS1nY3owYmNGSVl1NGNyLXhqdkdSalM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi85MzllMDAtM2JkOS00MzViLThmOGItYmNkZGM0NGIwM2Fi
LzEvbVZlaFdxbUpQeHlSVzBTWDZfa3FpalBWNURrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8Z3MA0G
CSqGSIb3DQEBCwUAA4IBAQAZmQ2pbHgGw59QsIpnp4pDpVT6v7xf55D92l9QcSLx
ELfQbGi7hOjy5MqVbNd4hN3cQ4MATxqEcCoo4gGYdESe1e1Fk2FJMpKU2nwwHGsR
P1wE+P7Iulpb8/lj8C51npULubaHsEXLVZsBiYN6JPz4fnWyyO9vRT/t1lfi9V9j
zNtsMYKKSmxdnwN3AED6GnMzkdd3zffEqyckl/tOSNjDoGCG3WFhMOLre9KkwS1o
LZiQPopkftDkqYAMcVjYkeoY6JIZW0i1ngAaEZhW7RkAmatO4s5GscM/zgfrJpZz
cqdxpzhPROBeyiXmVWvvsOuqfLUoJAZp5+E5tsGihuy8
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:57 2024 by rpki-client on console-ams.rpki-client.org