Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/8a6ae1-7148-4e57-aaa9-3b81aa26f7c6/1/SSWjEE4GFElN7ar4hJ9gJ53Nw1I.roa
File: SSWjEE4GFElN7ar4hJ9gJ53Nw1I.roa (raw, json)
Hash identifier: WYdd/o21yGdcLEi/hkLrzMrZmUdPB2jvNC0M7i2InGA=
Subject key identifier: 49:25:A3:10:4E:06:14:49:4D:ED:AA:F8:84:9F:60:27:9D:CD:C3:52
Certificate issuer: /CN=bd45aecb062d9b446e05421bc1faaf58bb0769ec
Certificate serial: 8440
Authority key identifier: BD:45:AE:CB:06:2D:9B:44:6E:05:42:1B:C1:FA:AF:58:BB:07:69:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vUWuywYtm0RuBUIbwfqvWLsHaew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/8a6ae1-7148-4e57-aaa9-3b81aa26f7c6/1/SSWjEE4GFElN7ar4hJ9gJ53Nw1I.roa
Signing time: Fri 01 Apr 2022 10:07:30 +0000
ROA not before: Fri 01 Apr 2022 10:07:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24641
IP address blocks: 91.224.48.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33856 (0x8440)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd45aecb062d9b446e05421bc1faaf58bb0769ec
Validity
Not Before: Apr 1 10:07:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4925a3104e0614494dedaaf8849f60279dcdc352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:11:8a:30:f8:46:bb:ad:44:12:ce:44:15:0c:
f7:74:0f:46:ea:2c:47:81:95:c5:d2:ef:13:2f:56:
8e:65:40:36:4f:02:7a:7c:5b:38:8f:e5:85:54:05:
98:45:0a:ce:c1:59:c1:9a:9d:74:ab:d3:ea:0d:c3:
32:59:da:5b:5d:60:97:06:cf:38:57:6c:91:81:6f:
d3:a9:22:46:77:d9:0e:cc:8c:e1:3c:e3:45:91:52:
d5:89:6b:b2:bd:0f:fb:e0:0b:34:fa:25:75:6e:bc:
5d:05:36:85:fc:0c:2b:a5:6d:b5:06:00:03:26:ca:
c2:aa:ac:d6:a7:fb:ce:cc:5c:07:f6:34:83:21:dc:
f6:92:bd:3d:b3:57:77:24:3e:c6:17:1a:b5:3b:02:
51:bf:1e:ff:97:c5:6e:d0:72:ae:9d:b2:63:ea:8a:
80:fe:21:c0:9c:21:f8:57:12:ed:f8:f4:c0:92:a0:
f9:1f:19:dc:8b:43:22:0b:ee:57:c7:3c:d4:c5:aa:
b3:59:83:b7:ed:9a:07:18:e9:a9:ef:ce:6c:14:7f:
e2:f9:b6:47:6a:4f:1a:af:65:37:c8:f4:65:83:70:
fe:3e:60:4c:bd:c3:56:2f:d5:7d:e8:c0:3f:ca:42:
d6:11:d1:30:de:5b:e0:18:57:11:62:3c:8b:a0:01:
7f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:25:A3:10:4E:06:14:49:4D:ED:AA:F8:84:9F:60:27:9D:CD:C3:52
X509v3 Authority Key Identifier:
keyid:BD:45:AE:CB:06:2D:9B:44:6E:05:42:1B:C1:FA:AF:58:BB:07:69:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vUWuywYtm0RuBUIbwfqvWLsHaew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/8a6ae1-7148-4e57-aaa9-3b81aa26f7c6/1/SSWjEE4GFElN7ar4hJ9gJ53Nw1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/8a6ae1-7148-4e57-aaa9-3b81aa26f7c6/1/vUWuywYtm0RuBUIbwfqvWLsHaew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.48.0/23
Signature Algorithm: sha256WithRSAEncryption
df:a2:f9:af:53:af:28:52:01:e8:6b:e3:0d:92:e4:62:df:21:
e9:b5:f3:3f:25:f3:d7:3b:ec:44:ea:a5:4e:63:96:ae:e5:0c:
f0:54:28:b3:17:de:09:67:47:0e:81:9a:8a:59:11:41:4b:74:
97:18:ca:28:e2:20:a5:de:bf:07:2f:90:d3:44:fa:77:a0:aa:
f3:a4:72:ec:99:d9:4e:47:92:9c:6f:01:a6:4d:fb:aa:95:f9:
04:5b:95:4f:2a:c2:d7:c8:cf:6c:a0:d9:df:a5:09:26:32:8d:
5f:fd:33:da:97:35:3b:ce:d7:65:18:e3:95:ed:5d:d0:66:96:
d2:8a:31:7e:db:43:0a:8f:3f:86:e5:91:6a:9b:a8:ef:fe:02:
ae:91:08:69:30:10:b5:76:a3:76:6c:d5:67:0b:81:b1:fe:6a:
46:37:85:9d:34:39:22:a1:29:62:06:5c:f1:81:ca:de:d8:c1:
dd:a9:62:43:f5:3d:bf:13:e1:c2:a1:4b:45:ea:85:09:c9:78:
c2:af:42:95:3f:af:20:ff:10:59:14:1d:6a:3d:a8:16:cd:29:
2e:b2:5a:f8:f7:84:4d:93:86:90:c2:2f:ce:a2:13:6c:64:8d:
14:ab:3b:89:14:40:9a:84:bb:ce:10:ba:0f:f8:64:db:2b:cf:
78:1c:f6:0c
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAIRAMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGJk
NDVhZWNiMDYyZDliNDQ2ZTA1NDIxYmMxZmFhZjU4YmIwNzY5ZWMwHhcNMjIwNDAx
MTAwNzMwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0OTI1YTMxMDRlMDYx
NDQ5NGRlZGFhZjg4NDlmNjAyNzlkY2RjMzUyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAthGKMPhGu61EEs5EFQz3dA9G6ixHgZXF0u8TL1aOZUA2TwJ6
fFs4j+WFVAWYRQrOwVnBmp10q9PqDcMyWdpbXWCXBs84V2yRgW/TqSJGd9kOzIzh
PONFkVLViWuyvQ/74As0+iV1brxdBTaF/AwrpW21BgADJsrCqqzWp/vOzFwH9jSD
Idz2kr09s1d3JD7GFxq1OwJRvx7/l8Vu0HKunbJj6oqA/iHAnCH4VxLt+PTAkqD5
Hxnci0MiC+5XxzzUxaqzWYO37ZoHGOmp785sFH/i+bZHak8ar2U3yPRlg3D+PmBM
vcNWL9V96MA/ykLWEdEw3lvgGFcRYjyLoAF/8wIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFEkloxBOBhRJTe2q+ISfYCedzcNSMB8GA1UdIwQYMBaAFL1FrssGLZtEbgVC
G8H6r1i7B2nsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
dlVXdXl3WXRtMFJ1QlVJYndmcXZXTHNIYWV3LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84ZS84YTZhZTEtNzE0OC00ZTU3LWFhYTktM2I4MWFhMjZmN2M2LzEv
U1NXakVFNEdGRWxON2FyNGhKOWdKNTNOdzFJLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS84
YTZhZTEtNzE0OC00ZTU3LWFhYTktM2I4MWFhMjZmN2M2LzEvdlVXdXl3WXRtMFJ1
QlVJYndmcXZXTHNIYWV3LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW+AwMA0GCSqGSIb3DQEBCwUAA4IB
AQDfovmvU68oUgHoa+MNkuRi3yHptfM/JfPXO+xE6qVOY5au5QzwVCizF94JZ0cO
gZqKWRFBS3SXGMoo4iCl3r8HL5DTRPp3oKrzpHLsmdlOR5KcbwGmTfuqlfkEW5VP
KsLXyM9soNnfpQkmMo1f/TPalzU7ztdlGOOV7V3QZpbSijF+20MKjz+G5ZFqm6jv
/gKukQhpMBC1dqN2bNVnC4Gx/mpGN4WdNDkioSliBlzxgcre2MHdqWJD9T2/E+HC
oUtF6oUJyXjCr0KVP68g/xBZFB1qPagWzSkuslr494RNk4aQwi/OohNsZI0UqzuJ
FECahLvOELoP+GTbK894HPYM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:55 2024 by rpki-client on console-fra.rpki-client.org