Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/YeEvCa-Z0sxGYe9_lckd6nlNgAI.roa
File: YeEvCa-Z0sxGYe9_lckd6nlNgAI.roa (raw, json)
Hash identifier: FWu171ji1qJ1mwUnPJR5d+iv5vEoXYCb32NumPz4mwE=
Subject key identifier: 61:E1:2F:09:AF:99:D2:CC:46:61:EF:7F:95:C9:1D:EA:79:4D:80:02
Certificate issuer: /CN=05e1d07de6f128f469c4c3b3028adf8d4d37e2d9
Certificate serial: 09F5B170
Authority key identifier: 05:E1:D0:7D:E6:F1:28:F4:69:C4:C3:B3:02:8A:DF:8D:4D:37:E2:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BeHQfebxKPRpxMOzAorfjU034tk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/YeEvCa-Z0sxGYe9_lckd6nlNgAI.roa
Signing time: Sat 01 Jan 2022 12:05:14 +0000
ROA not before: Sat 01 Jan 2022 12:05:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48384
IP address blocks: 91.227.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167096688 (0x9f5b170)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05e1d07de6f128f469c4c3b3028adf8d4d37e2d9
Validity
Not Before: Jan 1 12:05:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61e12f09af99d2cc4661ef7f95c91dea794d8002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:7e:d2:1b:5f:b1:21:bb:2a:63:d2:51:99:5a:
0e:36:8e:6d:3f:1a:67:99:90:c7:bc:ff:1d:63:13:
4a:c1:f0:cf:1f:e4:b6:ba:7b:3c:2d:07:2d:8f:95:
8e:d2:91:b3:8d:11:37:65:44:a3:f0:24:d0:30:24:
05:c0:ff:b9:c7:80:34:c3:c2:6e:de:86:18:73:a1:
1a:fc:dd:e3:f7:04:68:97:b7:ec:90:d0:65:e5:e7:
1f:e1:c9:c0:1d:6f:12:2a:a7:4a:47:b9:e8:0e:dd:
d8:20:27:cf:c7:d3:52:22:5d:21:da:d5:01:7d:dd:
0d:5b:ee:5c:bd:3f:9d:e2:d0:d9:ed:c9:c9:cb:c2:
43:03:cf:37:06:38:12:93:8e:0e:2e:33:76:73:bf:
4c:f8:1e:ab:52:bc:97:38:52:2a:5b:b1:72:fb:57:
b6:03:1a:e7:a9:be:a8:27:20:6d:5f:63:44:ba:e8:
bc:67:79:cf:cf:f6:ae:4d:da:c5:d1:2e:dd:8f:6a:
08:ac:fa:31:80:1c:34:75:7f:51:a1:c8:c1:46:92:
c6:b3:36:c4:56:1f:d9:ea:b4:4b:d0:0f:f5:d7:ae:
72:b3:91:99:08:c5:11:17:7d:f6:e0:95:a9:02:7c:
5d:93:59:ff:6c:4c:80:2c:ee:df:e7:0c:92:0c:b6:
37:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E1:2F:09:AF:99:D2:CC:46:61:EF:7F:95:C9:1D:EA:79:4D:80:02
X509v3 Authority Key Identifier:
keyid:05:E1:D0:7D:E6:F1:28:F4:69:C4:C3:B3:02:8A:DF:8D:4D:37:E2:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BeHQfebxKPRpxMOzAorfjU034tk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/YeEvCa-Z0sxGYe9_lckd6nlNgAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.55.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:40:ca:18:d3:70:dd:fb:fb:40:a5:96:4a:ba:a5:c0:f2:8b:
9c:14:7d:c5:f4:0a:7e:07:4a:88:45:2d:7c:78:2d:1a:ac:38:
1c:7f:cd:fb:ea:27:16:58:01:f3:a7:e0:76:97:43:85:61:d1:
ea:19:e9:99:d8:7f:32:36:72:9e:52:62:98:f1:36:01:90:ed:
33:ba:68:64:df:77:5f:b9:70:f1:63:62:7d:98:b6:ea:4f:c9:
98:d8:fe:ec:4c:7f:0f:0a:57:01:41:ee:a8:82:e1:22:9a:91:
c9:76:10:4f:8c:3f:e2:dc:bc:11:68:97:84:af:96:8f:c0:6e:
27:a1:84:98:69:28:09:e6:98:6b:4e:d9:30:12:a4:39:aa:44:
d4:39:83:fe:54:de:9a:8b:77:52:d9:97:e1:a6:de:c9:41:fe:
92:49:4a:6a:c6:36:63:cb:99:db:5b:86:f1:f8:d1:c7:95:b8:
74:5b:50:f6:b3:2a:46:9f:ce:ea:5c:c3:74:5a:0c:fa:0f:48:
33:f7:fc:4c:4b:36:7a:86:0d:9a:28:66:5e:d8:95:77:4b:cd:
5c:80:1a:5e:10:de:10:ba:ae:d1:1d:78:8b:72:26:45:3d:64:
df:f5:fb:c4:4d:cf:73:b2:db:19:f5:02:95:c0:91:f1:d4:e6:
ef:4c:ac:3e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECfWxcDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NWUxZDA3ZGU2ZjEyOGY0NjljNGMzYjMwMjhhZGY4ZDRkMzdlMmQ5MB4XDTIyMDEw
MTEyMDUxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjFlMTJmMDlhZjk5
ZDJjYzQ2NjFlZjdmOTVjOTFkZWE3OTRkODAwMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOV+0htfsSG7KmPSUZlaDjaObT8aZ5mQx7z/HWMTSsHwzx/k
trp7PC0HLY+VjtKRs40RN2VEo/Ak0DAkBcD/uceANMPCbt6GGHOhGvzd4/cEaJe3
7JDQZeXnH+HJwB1vEiqnSke56A7d2CAnz8fTUiJdIdrVAX3dDVvuXL0/neLQ2e3J
ycvCQwPPNwY4EpOODi4zdnO/TPgeq1K8lzhSKluxcvtXtgMa56m+qCcgbV9jRLro
vGd5z8/2rk3axdEu3Y9qCKz6MYAcNHV/UaHIwUaSxrM2xFYf2eq0S9AP9deucrOR
mQjFERd99uCVqQJ8XZNZ/2xMgCzu3+cMkgy2NzsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRh4S8Jr5nSzEZh73+VyR3qeU2AAjAfBgNVHSMEGDAWgBQF4dB95vEo9GnE
w7MCit+NTTfi2TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JlSFFmZWJ4S1BScHhNT3pBb3JmalUwMzR0ay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWIvOWNlOGY1LWZlZDItNDdlYS04M2IzLThkMTNmN2IzZjE0Mi8x
L1llRXZDYS1aMHN4R1llOV9sY2tkNm5sTmdBSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWIv
OWNlOGY1LWZlZDItNDdlYS04M2IzLThkMTNmN2IzZjE0Mi8xL0JlSFFmZWJ4S1BS
cHhNT3pBb3JmalUwMzR0ay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvjNzANBgkqhkiG9w0BAQsFAAOC
AQEAbUDKGNNw3fv7QKWWSrqlwPKLnBR9xfQKfgdKiEUtfHgtGqw4HH/N++onFlgB
86fgdpdDhWHR6hnpmdh/MjZynlJimPE2AZDtM7poZN93X7lw8WNifZi26k/JmNj+
7Ex/DwpXAUHuqILhIpqRyXYQT4w/4ty8EWiXhK+Wj8BuJ6GEmGkoCeaYa07ZMBKk
OapE1DmD/lTemot3UtmX4abeyUH+kklKasY2Y8uZ21uG8fjRx5W4dFtQ9rMqRp/O
6lzDdFoM+g9IM/f8TEs2eoYNmihmXtiVd0vNXIAaXhDeELqu0R14i3ImRT1k3/X7
xE3Pc7LbGfUClcCR8dTm70ysPg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:54 2024 by rpki-client on console-ams.rpki-client.org