Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/5a8e04-dd07-435a-b1bf-adedcaa3d26e/1/1-T8fKrbYwVXOD6xHeIub5RNBkxs.roa
File: 1-T8fKrbYwVXOD6xHeIub5RNBkxs.roa (raw, json)
Hash identifier: 2y6ZVhlOhm2r3cbToQtBUg69yeDdvyGPTVHGnS56X8Y=
Subject key identifier: F9:3F:1F:2A:B6:D8:C1:55:CE:0F:AC:47:78:8B:9B:E5:13:41:93:1B
Certificate issuer: /CN=9a7edeac0c6c20ea49d492990e4858541d190ff1
Certificate serial: 01840986739FF69FAC706ACB7E8FD36ABCEC
Authority key identifier: 9A:7E:DE:AC:0C:6C:20:EA:49:D4:92:99:0E:48:58:54:1D:19:0F:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mn7erAxsIOpJ1JKZDkhYVB0ZD_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/5a8e04-dd07-435a-b1bf-adedcaa3d26e/1/1-T8fKrbYwVXOD6xHeIub5RNBkxs.roa
Signing time: Mon 24 Oct 2022 10:25:17 +0000
ROA not before: Mon 24 Oct 2022 10:25:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56623
IP address blocks: 91.231.55.0/24 maxlen: 24
91.231.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:09:86:73:9f:f6:9f:ac:70:6a:cb:7e:8f:d3:6a:bc:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a7edeac0c6c20ea49d492990e4858541d190ff1
Validity
Not Before: Oct 24 10:25:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f93f1f2ab6d8c155ce0fac47788b9be51341931b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:44:bf:b5:9d:a8:fe:7e:44:f8:33:9d:80:a5:
f0:bf:dc:e5:b5:b1:f0:3b:e6:e8:3b:73:8c:18:f9:
d7:05:e0:a7:48:07:ba:f4:7e:54:68:89:b0:b6:53:
78:e3:b5:68:d3:0b:70:9c:1c:71:bd:e8:07:64:2f:
1b:95:11:84:af:87:58:bb:47:9b:79:7d:10:b2:cd:
9a:51:7b:cc:dc:da:5e:dc:77:25:1c:bb:dd:f3:10:
92:ea:7a:5c:9d:85:c4:45:53:e2:9c:d0:6c:51:74:
8b:53:af:b8:f7:a4:eb:a2:2c:e4:57:c0:18:cd:2e:
4e:c7:9d:3c:7a:29:7e:20:92:da:5a:07:0b:5e:86:
c6:21:b2:6a:d3:99:ca:43:ce:9d:a3:da:2a:30:98:
eb:49:dc:cb:4f:8d:92:f3:d1:53:37:f3:84:99:ff:
86:62:f5:41:fe:0a:87:cf:f8:62:87:12:26:11:94:
ae:65:6b:2b:c9:44:4d:12:57:76:7a:b3:46:19:4c:
10:22:ab:57:2e:69:1f:10:cf:55:5d:47:55:eb:8a:
68:87:9a:3e:17:54:ac:c6:eb:39:b0:42:ef:61:2d:
67:67:7d:09:e4:e0:db:2d:d3:a2:74:5d:21:6d:aa:
7e:97:d6:b5:b3:ce:a2:f7:c4:eb:48:05:4e:8a:9d:
ee:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:3F:1F:2A:B6:D8:C1:55:CE:0F:AC:47:78:8B:9B:E5:13:41:93:1B
X509v3 Authority Key Identifier:
keyid:9A:7E:DE:AC:0C:6C:20:EA:49:D4:92:99:0E:48:58:54:1D:19:0F:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mn7erAxsIOpJ1JKZDkhYVB0ZD_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5a8e04-dd07-435a-b1bf-adedcaa3d26e/1/1-T8fKrbYwVXOD6xHeIub5RNBkxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5a8e04-dd07-435a-b1bf-adedcaa3d26e/1/mn7erAxsIOpJ1JKZDkhYVB0ZD_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.54.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:d5:62:22:7d:d2:b5:17:f4:98:ee:10:35:ca:a6:a5:ff:f1:
c9:91:95:71:82:9a:f3:41:b6:84:03:e4:be:d8:59:2d:a1:c8:
07:46:93:c8:c8:56:db:54:9b:d1:f2:f7:8f:6a:32:a3:1a:b7:
5f:2c:10:e1:2e:02:9f:fe:39:68:4a:89:65:96:15:44:d9:04:
79:cb:26:a4:41:fd:b3:c1:4b:4e:ab:d9:b6:ac:a6:01:bf:2a:
77:12:cb:fd:cf:59:6e:d2:2e:7a:e7:b5:97:41:df:f1:a4:10:
dd:36:c7:7e:be:c6:06:88:15:93:2f:23:90:ec:ad:8a:62:b4:
92:dd:8c:4c:3c:d2:78:23:3f:12:ef:0e:20:0b:cb:21:10:30:
bc:50:87:66:dd:0d:66:c2:45:3e:e4:87:4d:04:5d:4c:19:ed:
22:00:61:0e:59:3b:67:3b:49:d7:cc:da:c2:90:4c:c2:f8:fe:
ed:0d:18:37:9c:86:78:76:df:28:82:3f:4d:51:dd:9c:21:b9:
79:ba:e8:98:f6:9d:f5:a4:f5:cd:11:5b:5b:65:50:bd:86:41:
38:18:8e:41:72:64:68:50:79:fe:fe:0f:5f:d7:c1:8d:d9:ef:
9a:95:c6:51:71:7a:38:df:8e:ee:43:d5:96:2f:f6:0a:b5:0c:
d2:a8:e8:bd
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYQJhnOf9p+scGrLfo/TarzsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhN2VkZWFjMGM2YzIwZWE0OWQ0OTI5OTBlNDg1ODU0MWQx
OTBmZjEwHhcNMjIxMDI0MTAyNTE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOTNmMWYyYWI2ZDhjMTU1Y2UwZmFjNDc3ODhiOWJlNTEzNDE5MzFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArES/tZ2o/n5E+DOdgKXwv9zltbHw
O+boO3OMGPnXBeCnSAe69H5UaImwtlN447Vo0wtwnBxxvegHZC8blRGEr4dYu0eb
eX0Qss2aUXvM3Npe3HclHLvd8xCS6npcnYXERVPinNBsUXSLU6+496TroizkV8AY
zS5Ox508eil+IJLaWgcLXobGIbJq05nKQ86do9oqMJjrSdzLT42S89FTN/OEmf+G
YvVB/gqHz/hihxImEZSuZWsryURNEld2erNGGUwQIqtXLmkfEM9VXUdV64poh5o+
F1Ssxus5sELvYS1nZ30J5ODbLdOidF0hbap+l9a1s86i98TrSAVOip3unQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPk/Hyq22MFVzg+sR3iLm+UTQZMbMB8GA1UdIwQY
MBaAFJp+3qwMbCDqSdSSmQ5IWFQdGQ/xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbW43ZXJBeHNJT3BKMUpLWkRraFlWQjBaRF9FLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My81YThlMDQtZGQwNy00MzVhLWIxYmYt
YWRlZGNhYTNkMjZlLzEvMS1UOGZLcmJZd1ZYT0Q2eEhlSXViNVJOQmt4cy5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNTMvNWE4ZTA0LWRkMDctNDM1YS1iMWJmLWFkZWRjYWEzZDI2
ZS8xL21uN2VyQXhzSU9wSjFKS1pEa2hZVkIwWkRfRS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVvnNjAN
BgkqhkiG9w0BAQsFAAOCAQEAStViIn3StRf0mO4QNcqmpf/xyZGVcYKa80G2hAPk
vthZLaHIB0aTyMhW21Sb0fL3j2oyoxq3XywQ4S4Cn/45aEqJZZYVRNkEecsmpEH9
s8FLTqvZtqymAb8qdxLL/c9ZbtIueue1l0Hf8aQQ3TbHfr7GBogVky8jkOytimK0
kt2MTDzSeCM/Eu8OIAvLIRAwvFCHZt0NZsJFPuSHTQRdTBntIgBhDlk7ZztJ18za
wpBMwvj+7Q0YN5yGeHbfKII/TVHdnCG5ebromPad9aT1zRFbW2VQvYZBOBiOQXJk
aFB5/v4PX9fBjdnvmpXGUXF6ON+O7kPVli/2CrUM0qjovQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:55 2024 by rpki-client on console-ams.rpki-client.org