Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/2JviJZ7oaUt6t57ykXtmOtTB4Q8.roa
File: 2JviJZ7oaUt6t57ykXtmOtTB4Q8.roa (raw, json)
Hash identifier: QthXzN+Z9VM5gDClPED4tlMG4PJeNNsjgjKk/moG+NM=
Subject key identifier: D8:9B:E2:25:9E:E8:69:4B:7A:B7:9E:F2:91:7B:66:3A:D4:C1:E1:0F
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 449194F1
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/2JviJZ7oaUt6t57ykXtmOtTB4Q8.roa
Signing time: Sat 01 Jan 2022 03:58:40 +0000
ROA not before: Sat 01 Jan 2022 03:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197384
IP address blocks: 90.80.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1150391537 (0x449194f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d89be2259ee8694b7ab79ef2917b663ad4c1e10f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:42:70:5f:e5:a9:40:70:9a:25:f3:a3:17:37:
96:fc:7e:e1:37:9b:6f:74:14:57:92:d3:1e:69:d9:
f2:d9:0a:e9:3d:f1:a4:10:26:ba:de:93:3e:36:57:
9d:10:92:f8:73:d8:b9:65:20:bf:eb:7f:05:aa:2a:
bf:72:55:62:9d:40:b5:6f:4b:6c:a9:02:39:be:44:
33:00:21:f5:bd:03:84:dc:b7:67:33:cb:9e:ba:28:
93:8a:ec:aa:2d:83:7f:93:53:9d:c6:f0:c1:41:b2:
5e:dd:93:6f:fc:93:fd:63:a3:07:02:3b:c2:b4:bb:
53:4a:29:ae:87:78:9f:73:8b:e9:96:05:bb:0c:88:
61:b6:3a:c8:d5:d7:30:3c:3e:b5:9b:1f:9e:d2:fb:
1e:56:83:30:f7:a2:b0:13:ba:58:09:7d:41:72:ed:
b5:b4:62:9b:97:98:8d:b6:03:00:96:b7:04:b7:88:
d0:24:6b:8e:a2:6f:f9:69:4a:ba:e7:2d:62:c1:7d:
4f:e5:1e:7a:44:83:62:ac:ec:b8:c5:68:bb:37:26:
b8:31:da:b4:78:16:08:cc:5e:2a:5e:55:87:94:f6:
90:f9:e0:07:46:87:25:a5:15:cd:81:95:da:f7:10:
0e:32:9f:eb:d8:97:20:d5:d0:ce:dc:1f:0d:ea:40:
c6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:9B:E2:25:9E:E8:69:4B:7A:B7:9E:F2:91:7B:66:3A:D4:C1:E1:0F
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/2JviJZ7oaUt6t57ykXtmOtTB4Q8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.80.109.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:b0:4a:39:d8:48:f6:dd:2e:d7:75:1b:9f:30:2d:95:e9:fa:
1d:e8:f6:71:da:09:59:16:d8:6d:de:c6:fc:e2:81:76:c1:ac:
41:a4:8e:07:35:d3:fd:d6:cf:23:5a:2e:54:16:31:56:ed:26:
e0:0d:3f:57:ba:ef:d0:57:35:56:2a:e4:b0:e2:af:b2:28:4f:
30:93:ca:38:86:ea:77:0b:5f:76:6e:a7:d3:af:28:29:ba:5c:
a1:20:e7:92:b2:61:8a:4c:d1:cf:e5:48:6e:ed:90:96:46:64:
d9:ed:ed:4a:37:bc:57:a1:0c:ff:ae:26:85:81:24:53:af:e9:
45:5a:91:00:a7:54:ef:ac:8d:0f:ff:79:79:64:40:67:ef:2b:
bd:9e:69:10:92:c7:f7:a9:48:f5:73:96:23:31:50:f4:97:e5:
62:e9:b3:a5:97:f5:2b:38:a2:98:f7:d8:0f:e2:48:83:99:2d:
78:5e:d7:7b:52:7d:6b:61:bb:9f:ee:64:6f:74:99:bb:0c:0e:
0e:42:c8:e3:e5:36:15:c3:b5:03:e0:81:3b:ef:51:3f:09:6a:
4b:90:75:e9:ea:53:d8:58:a4:90:ec:42:62:fc:9e:ef:53:f3:
03:0d:65:62:b3:c4:4b:97:8e:3b:25:ca:bf:d9:ec:2c:07:dd:
64:ac:c1:50
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIERJGU8TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YWYwOWJhMzNiNWFlNTgxYjBkMjkzMjMyNDkzMTRmNzZhYTEwNTExMB4XDTIyMDEw
MTAzNTg0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDg5YmUyMjU5ZWU4
Njk0YjdhYjc5ZWYyOTE3YjY2M2FkNGMxZTEwZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKBCcF/lqUBwmiXzoxc3lvx+4Tebb3QUV5LTHmnZ8tkK6T3x
pBAmut6TPjZXnRCS+HPYuWUgv+t/Baoqv3JVYp1AtW9LbKkCOb5EMwAh9b0DhNy3
ZzPLnrook4rsqi2Df5NTncbwwUGyXt2Tb/yT/WOjBwI7wrS7U0oprod4n3OL6ZYF
uwyIYbY6yNXXMDw+tZsfntL7HlaDMPeisBO6WAl9QXLttbRim5eYjbYDAJa3BLeI
0CRrjqJv+WlKuuctYsF9T+UeekSDYqzsuMVouzcmuDHatHgWCMxeKl5Vh5T2kPng
B0aHJaUVzYGV2vcQDjKf69iXINXQztwfDepAxicCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTYm+IlnuhpS3q3nvKRe2Y61MHhDzAfBgNVHSMEGDAWgBQ68JujO1rlgbDS
kyMkkxT3aqEFETAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L092Q2JvenRhNVlHdzBwTWpKSk1VOTJxaEJSRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmIvMzNkNWQxLWM0NTAtNDEzYi1hZmU0LTQ1OTM1ZjUwNmExMi8x
LzJKdmlKWjdvYVV0NnQ1N3lrWHRtT3RUQjRROC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIv
MzNkNWQxLWM0NTAtNDEzYi1hZmU0LTQ1OTM1ZjUwNmExMi8xL092Q2JvenRhNVlH
dzBwTWpKSk1VOTJxaEJSRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFpQbTANBgkqhkiG9w0BAQsFAAOC
AQEATrBKOdhI9t0u13UbnzAtlen6Hej2cdoJWRbYbd7G/OKBdsGsQaSOBzXT/dbP
I1ouVBYxVu0m4A0/V7rv0Fc1VirksOKvsihPMJPKOIbqdwtfdm6n068oKbpcoSDn
krJhikzRz+VIbu2QlkZk2e3tSje8V6EM/64mhYEkU6/pRVqRAKdU76yND/95eWRA
Z+8rvZ5pEJLH96lI9XOWIzFQ9JflYumzpZf1KziimPfYD+JIg5kteF7Xe1J9a2G7
n+5kb3SZuwwODkLI4+U2FcO1A+CBO+9RPwlqS5B16epT2FikkOxCYvye71PzAw1l
YrPES5eOOyXKv9nsLAfdZKzBUA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org