Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e346e4-5831-40cf-a4dc-42fb3677df77/1/CtfiojZnqA-EAyxDFdjgPbfPgy8.roa
File: CtfiojZnqA-EAyxDFdjgPbfPgy8.roa (raw, json)
Hash identifier: 8Yu0e4nTDkQa4BFAFoJQi3+3JNUR2GzDkwjGYlGlzqM=
Subject key identifier: 0A:D7:E2:A2:36:67:A8:0F:84:03:2C:43:15:D8:E0:3D:B7:CF:83:2F
Certificate issuer: /CN=391e994a95012d92fb51a28c8a650ed9f97737b8
Certificate serial: 01CCE5
Authority key identifier: 39:1E:99:4A:95:01:2D:92:FB:51:A2:8C:8A:65:0E:D9:F9:77:37:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OR6ZSpUBLZL7UaKMimUO2fl3N7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e346e4-5831-40cf-a4dc-42fb3677df77/1/CtfiojZnqA-EAyxDFdjgPbfPgy8.roa
Signing time: Thu 02 Jun 2022 14:49:20 +0000
ROA not before: Thu 02 Jun 2022 14:49:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56792
IP address blocks: 91.227.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117989 (0x1cce5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=391e994a95012d92fb51a28c8a650ed9f97737b8
Validity
Not Before: Jun 2 14:49:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ad7e2a23667a80f84032c4315d8e03db7cf832f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:cf:a6:0b:8e:45:0a:7c:fe:e2:1e:80:ae:c7:
34:b4:9c:57:9f:ed:17:12:29:7b:7a:ff:76:0d:2b:
36:96:89:cb:40:2b:89:bd:3d:0c:df:ac:78:17:29:
df:46:68:79:aa:49:7e:8b:9d:10:d6:ee:68:aa:26:
b2:ae:a5:ff:01:0f:38:e4:d7:60:c2:e8:7e:59:cb:
d9:d9:f9:1e:7f:4b:13:5e:00:28:9e:db:54:08:b3:
58:8b:e4:6f:fd:25:b5:cf:ba:b5:b6:c4:cc:10:c5:
42:3a:01:0e:17:f5:a3:ba:87:aa:5c:4b:6c:84:45:
39:5a:eb:92:6a:d4:fd:9d:01:17:5c:0f:34:74:cd:
1a:d7:bf:bd:99:3a:17:aa:96:b6:e5:07:cb:9a:61:
05:c4:6b:9a:f9:ca:aa:7a:64:13:58:81:79:e5:2a:
bf:a5:44:d1:5c:06:b6:52:d8:ea:4a:42:cc:be:85:
ff:68:47:8a:74:0f:4d:96:1b:bb:79:a9:cb:38:a7:
b6:bf:5f:ef:15:11:f6:ce:6e:97:e6:34:3d:73:84:
8e:3b:1b:a4:20:c1:3a:a0:24:df:86:9a:d6:32:35:
9d:f1:d4:a8:e5:cc:3c:b1:e1:a8:cc:33:2b:e2:56:
0a:06:d6:f7:89:dd:ae:e2:35:7a:c8:2d:d3:8c:e4:
ed:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:D7:E2:A2:36:67:A8:0F:84:03:2C:43:15:D8:E0:3D:B7:CF:83:2F
X509v3 Authority Key Identifier:
keyid:39:1E:99:4A:95:01:2D:92:FB:51:A2:8C:8A:65:0E:D9:F9:77:37:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OR6ZSpUBLZL7UaKMimUO2fl3N7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e346e4-5831-40cf-a4dc-42fb3677df77/1/CtfiojZnqA-EAyxDFdjgPbfPgy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e346e4-5831-40cf-a4dc-42fb3677df77/1/OR6ZSpUBLZL7UaKMimUO2fl3N7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.185.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:40:ce:29:ef:46:a9:f4:33:61:05:85:ef:e9:ec:af:cb:1d:
7b:8e:29:fe:46:de:b8:8d:ba:a6:53:9c:a1:02:25:d2:56:4c:
d7:ea:e8:ba:eb:d4:11:2b:37:09:52:b4:f8:81:1a:94:ff:70:
8d:18:64:f6:a1:c2:ab:12:92:c2:cb:54:4d:9d:fa:97:25:45:
b6:6a:f8:ec:c5:19:25:86:3e:df:e2:a9:77:a4:d6:58:7e:ae:
eb:75:d7:11:07:4d:32:09:4e:65:b6:18:92:d2:7b:d3:b8:5d:
3b:8e:13:85:68:8c:74:23:ef:b7:e4:4c:b3:bb:2b:3c:7f:08:
15:38:55:67:40:e6:31:1d:33:18:d7:06:20:f1:19:98:63:56:
68:49:6d:57:16:99:fc:74:d7:b4:dd:02:21:56:d3:75:29:ea:
fc:2f:90:b7:42:b5:ba:78:bc:5f:97:b8:99:e9:b4:6b:68:17:
fb:57:4b:d7:13:ee:ae:0b:37:2f:53:b2:ac:ba:ab:d0:75:e4:
12:4b:94:bb:54:20:61:2d:97:64:d0:b5:d1:6a:85:21:8b:6f:
06:21:8c:be:a1:32:cc:c6:c9:47:c9:6e:35:78:92:5f:09:ce:
ce:a6:f1:7f:15:69:2a:f5:f7:86:9d:0e:6c:dc:b5:68:45:43:
c4:de:38:c4
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAczlMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDM5
MWU5OTRhOTUwMTJkOTJmYjUxYTI4YzhhNjUwZWQ5Zjk3NzM3YjgwHhcNMjIwNjAy
MTQ0OTIwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwYWQ3ZTJhMjM2Njdh
ODBmODQwMzJjNDMxNWQ4ZTAzZGI3Y2Y4MzJmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA8c+mC45FCnz+4h6Arsc0tJxXn+0XEil7ev92DSs2lonLQCuJ
vT0M36x4FynfRmh5qkl+i50Q1u5oqiayrqX/AQ845Ndgwuh+WcvZ2fkef0sTXgAo
nttUCLNYi+Rv/SW1z7q1tsTMEMVCOgEOF/WjuoeqXEtshEU5WuuSatT9nQEXXA80
dM0a17+9mToXqpa25QfLmmEFxGua+cqqemQTWIF55Sq/pUTRXAa2UtjqSkLMvoX/
aEeKdA9Nlhu7eanLOKe2v1/vFRH2zm6X5jQ9c4SOOxukIME6oCTfhprWMjWd8dSo
5cw8seGozDMr4lYKBtb3id2u4jV6yC3TjOTthQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFArX4qI2Z6gPhAMsQxXY4D23z4MvMB8GA1UdIwQYMBaAFDkemUqVAS2S+1Gi
jIplDtn5dze4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
T1I2WlNwVUJMWkw3VWFLTWltVU8yZmwzTjdnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC80OS9lMzQ2ZTQtNTgzMS00MGNmLWE0ZGMtNDJmYjM2NzdkZjc3LzEv
Q3RmaW9qWm5xQS1FQXl4REZkamdQYmZQZ3k4LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9l
MzQ2ZTQtNTgzMS00MGNmLWE0ZGMtNDJmYjM2NzdkZjc3LzEvT1I2WlNwVUJMWkw3
VWFLTWltVU8yZmwzTjdnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+O5MA0GCSqGSIb3DQEBCwUAA4IB
AQBrQM4p70ap9DNhBYXv6eyvyx17jin+Rt64jbqmU5yhAiXSVkzX6ui669QRKzcJ
UrT4gRqU/3CNGGT2ocKrEpLCy1RNnfqXJUW2avjsxRklhj7f4ql3pNZYfq7rddcR
B00yCU5lthiS0nvTuF07jhOFaIx0I++35Eyzuys8fwgVOFVnQOYxHTMY1wYg8RmY
Y1ZoSW1XFpn8dNe03QIhVtN1Ker8L5C3QrW6eLxfl7iZ6bRraBf7V0vXE+6uCzcv
U7KsuqvQdeQSS5S7VCBhLZdk0LXRaoUhi28GIYy+oTLMxslHyW41eJJfCc7OpvF/
FWkq9feGnQ5s3LVoRUPE3jjE
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:03 2024 by rpki-client on console-fra.rpki-client.org