Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/1-wC0C8F0gilBK3nrGgvy2tgAPVM.roa
File: 1-wC0C8F0gilBK3nrGgvy2tgAPVM.roa (raw, json)
Hash identifier: b6gpm7v7kevLEpi1axE/lH01KAskTJ9wK55MgadkdW8=
Subject key identifier: FB:00:B4:0B:C1:74:82:29:41:2B:79:EB:1A:0B:F2:DA:D8:00:3D:53
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 01684D20
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/1-wC0C8F0gilBK3nrGgvy2tgAPVM.roa
Signing time: Fri 24 Jun 2022 08:09:47 +0000
ROA not before: Fri 24 Jun 2022 08:09:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 91.232.99.0/24 maxlen: 24
91.231.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23612704 (0x1684d20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Jun 24 08:09:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb00b40bc1748229412b79eb1a0bf2dad8003d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:9d:e4:c2:5c:e5:b6:7f:8e:b0:4b:53:30:f0:
8d:3f:31:4d:46:40:34:9b:52:b1:b8:c4:f3:e9:19:
7c:f2:0d:d8:1a:17:8b:71:82:ca:f4:10:c1:4d:10:
d7:b6:7e:d2:53:9a:83:40:77:9a:5c:88:ca:bd:b8:
98:33:6c:d8:d7:44:15:36:b7:86:cc:46:7a:de:0e:
28:61:d3:16:01:cf:f2:73:5d:b6:e6:03:28:ba:05:
36:c8:3c:67:e4:83:61:81:3b:f8:fa:4b:2e:c1:1e:
cd:98:3f:bb:d1:20:0b:1f:bd:d4:3a:df:1e:7d:9d:
b8:ce:30:b4:da:af:4b:71:72:7e:82:99:f8:93:3a:
84:66:18:c8:c1:af:bf:2a:d8:ea:cd:e6:85:5b:ae:
8f:91:31:dd:ad:62:87:09:8d:c7:19:22:46:6e:33:
36:43:af:62:51:b5:81:2f:df:33:dc:55:ad:5d:99:
32:c0:3a:d4:ff:0f:5a:8e:13:1b:59:69:aa:c7:6b:
44:eb:9c:28:f8:6d:cd:36:ed:a1:b7:26:ed:52:ca:
0e:c9:ae:96:6b:dc:67:26:40:5f:0b:46:85:52:56:
0f:76:cd:d5:0e:34:d7:c0:e0:e9:bf:b4:84:2d:91:
50:b1:6e:96:08:72:a9:e2:6d:86:11:f1:09:03:d5:
81:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:00:B4:0B:C1:74:82:29:41:2B:79:EB:1A:0B:F2:DA:D8:00:3D:53
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/1-wC0C8F0gilBK3nrGgvy2tgAPVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.156.0/24
91.232.99.0/24
Signature Algorithm: sha256WithRSAEncryption
65:53:29:8b:3a:44:4f:99:4f:8d:bf:d7:47:68:96:03:fb:85:
6b:65:b6:83:80:7c:f5:4d:98:3c:fe:1b:d1:b4:2c:7e:95:9c:
16:0e:fa:23:3f:99:9b:bd:f3:8d:dc:f7:c7:ca:cd:9a:77:08:
bd:a0:ef:fd:8f:ad:86:c2:f2:69:4e:55:2c:78:6f:32:a0:cd:
11:05:0a:fa:5c:17:60:60:16:93:3c:19:22:5f:f7:83:66:74:
02:a3:64:13:0e:f3:de:55:e6:d8:30:6d:a1:6d:ca:23:d7:2c:
ad:2e:51:1d:0b:41:66:cd:a2:fc:ec:4b:69:6d:3d:fa:d7:0a:
c7:f1:23:fe:35:45:81:1d:fd:7c:64:ec:ac:c6:40:af:73:54:
42:00:81:ce:19:dc:b6:4f:e9:fe:8a:1d:6a:c5:13:af:81:54:
5a:71:11:fc:5a:1e:37:30:77:7b:dc:88:5e:7e:c7:8a:e8:57:
5b:06:03:4d:c8:79:39:3b:de:b2:12:a9:0d:d7:7d:aa:6d:f2:
e5:aa:ef:ef:8a:31:0d:2a:3b:69:2d:3a:1c:7c:11:83:e6:0b:
54:66:56:81:1f:c2:e4:a4:7a:6e:6f:be:4e:08:ec:20:44:fa:
30:26:dd:2f:b2:45:c3:cd:3c:dd:c4:ae:e9:d7:3f:7e:d3:7c:
35:bf:c2:91
-----BEGIN CERTIFICATE-----
MIIE9jCCA96gAwIBAgIEAWhNIDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MzE2MzE4MjQ3ZDIxMTg0MWY5NjIwYTlhMTEzMDAxMGRkYjQ4NmYyMB4XDTIyMDYy
NDA4MDk0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmIwMGI0MGJjMTc0
ODIyOTQxMmI3OWViMWEwYmYyZGFkODAwM2Q1MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIKd5MJc5bZ/jrBLUzDwjT8xTUZANJtSsbjE8+kZfPIN2BoX
i3GCyvQQwU0Q17Z+0lOag0B3mlyIyr24mDNs2NdEFTa3hsxGet4OKGHTFgHP8nNd
tuYDKLoFNsg8Z+SDYYE7+PpLLsEezZg/u9EgCx+91DrfHn2duM4wtNqvS3FyfoKZ
+JM6hGYYyMGvvyrY6s3mhVuuj5Ex3a1ihwmNxxkiRm4zNkOvYlG1gS/fM9xVrV2Z
MsA61P8PWo4TG1lpqsdrROucKPhtzTbtobcm7VLKDsmulmvcZyZAXwtGhVJWD3bN
1Q4018Dg6b+0hC2RULFulghyqeJthhHxCQPVgSsCAwEAAaOCAhAwggIMMB0GA1Ud
DgQWBBT7ALQLwXSCKUEreesaC/La2AA9UzAfBgNVHSMEGDAWgBTjFjGCR9IRhB+W
IKmhEwAQ3bSG8jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzR4WXhna2ZTRVlRZmxpQ3BvUk1BRU4yMGh2SS5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTkvZWU0MmJiLTFlNDktNGMyMS1hNGQ2LWVjMjg3ZTFkMzdlNS8x
LzEtd0MwQzhGMGdpbEJLM25yR2d2eTJ0Z0FQVk0ucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk5
L2VlNDJiYi0xZTQ5LTRjMjEtYTRkNi1lYzI4N2UxZDM3ZTUvMS80eFl4Z2tmU0VZ
UWZsaUNwb1JNQUVOMjBodkkuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
JQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBABb55wDBABb6GMwDQYJKoZIhvcN
AQELBQADggEBAGVTKYs6RE+ZT42/10dolgP7hWtltoOAfPVNmDz+G9G0LH6VnBYO
+iM/mZu9843c98fKzZp3CL2g7/2PrYbC8mlOVSx4bzKgzREFCvpcF2BgFpM8GSJf
94NmdAKjZBMO895V5tgwbaFtyiPXLK0uUR0LQWbNovzsS2ltPfrXCsfxI/41RYEd
/Xxk7KzGQK9zVEIAgc4Z3LZP6f6KHWrFE6+BVFpxEfxaHjcwd3vciF5+x4roV1sG
A03IeTk73rISqQ3Xfapt8uWq7++KMQ0qO2ktOhx8EYPmC1RmVoEfwuSkem5vvk4I
7CBE+jAm3S+yRcPNPN3ErunXP37TfDW/wpE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:25 2024 by rpki-client on console-fra.rpki-client.org