Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/AEZmooAEFE-1cFDKJxS8BkfGkRs.roa
File: AEZmooAEFE-1cFDKJxS8BkfGkRs.roa (raw, json)
Hash identifier: mOC1zNtrrFXGNrZHYgLeb9abckBlDcjSncBDu90K0fM=
Subject key identifier: 00:46:66:A2:80:04:14:4F:B5:70:50:CA:27:14:BC:06:47:C6:91:1B
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 449949
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/AEZmooAEFE-1cFDKJxS8BkfGkRs.roa
Signing time: Tue 15 Feb 2022 19:00:21 +0000
ROA not before: Tue 15 Feb 2022 19:00:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 91.232.99.0/24 maxlen: 24
91.231.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4495689 (0x449949)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Feb 15 19:00:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=004666a28004144fb57050ca2714bc0647c6911b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d1:e7:80:bd:b9:c1:29:6f:b7:d0:2a:0b:98:
58:94:fc:2f:58:82:3b:64:29:6e:a7:53:f8:f7:b2:
89:a9:62:de:be:01:3d:81:e4:98:64:ff:b5:da:a5:
d7:b3:f6:2d:c3:e7:f4:73:da:d6:7c:8f:c5:fa:6b:
d3:74:60:e9:97:19:5c:fe:dd:31:51:d9:f7:8a:1c:
5d:68:ab:c1:6d:7e:9d:65:42:d1:8f:96:7e:54:fd:
8a:d0:04:5c:eb:2d:09:9a:25:c9:f0:a5:e7:a6:fb:
80:77:da:e7:ed:93:f9:06:74:09:c0:75:d4:b6:22:
22:c6:89:6a:77:d6:77:ea:e4:df:bf:ac:d9:f5:e7:
d1:db:e0:fc:f0:c3:e9:84:b2:e3:6d:f7:09:cf:ec:
18:93:3e:8a:ff:2c:0e:71:84:74:12:82:ee:8f:36:
ae:62:b3:47:18:12:14:01:85:46:41:e5:2c:73:21:
17:71:57:1b:68:70:6b:17:dd:58:4b:9b:5a:61:be:
39:e9:0b:e9:f0:91:33:06:aa:6e:16:35:ac:e8:ce:
2a:32:c0:29:e5:2d:8f:b0:8f:c4:8f:bf:69:59:3e:
b9:2b:cd:03:5a:ef:0a:a6:5f:34:c0:df:54:7e:76:
c8:b4:eb:34:9c:8f:43:10:fd:a5:bf:d5:7d:66:74:
1d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:46:66:A2:80:04:14:4F:B5:70:50:CA:27:14:BC:06:47:C6:91:1B
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/AEZmooAEFE-1cFDKJxS8BkfGkRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.156.0/24
91.232.99.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:e9:d4:27:64:a7:1d:1a:76:bb:47:96:a3:71:6a:6b:db:42:
25:e3:2e:70:f2:4b:76:be:b4:a0:93:30:b6:80:ca:62:cb:70:
ea:09:96:94:36:bd:08:21:0a:97:80:11:dc:a7:78:68:de:58:
48:fc:90:30:dd:96:37:f0:ad:d0:ac:42:c0:be:36:ff:4c:45:
cf:79:b0:ca:af:46:1a:a2:9f:7f:f1:4c:9f:c4:df:fe:61:5f:
b2:4d:86:74:17:ef:b7:57:8e:f0:02:9c:a9:33:de:e1:fc:02:
58:c1:a2:26:f4:fd:9d:ba:e5:85:74:c5:3d:70:96:bf:ee:76:
4d:ba:8a:8a:64:ff:4d:d6:47:1d:56:58:5f:19:e9:42:1f:ad:
65:ae:d3:97:50:46:60:b5:12:ca:96:fd:69:01:db:da:c2:c9:
1c:68:11:07:fb:94:a7:8c:4d:3e:55:96:91:49:53:f9:9a:53:
01:d3:53:7e:fe:0e:fd:3b:eb:d4:e0:de:58:3f:44:ae:d9:5c:
a1:1a:c5:bf:b3:18:cb:f6:65:46:a3:5d:2f:1c:e7:f6:a4:35:
55:fd:01:b7:07:77:95:1f:f3:5a:2e:21:e2:8e:1b:2d:0f:fe:
c5:bc:5f:eb:5e:56:10:cf:3d:28:87:d0:9a:c0:74:44:13:6f:
35:41:96:17
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIDRJlJMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGUz
MTYzMTgyNDdkMjExODQxZjk2MjBhOWExMTMwMDEwZGRiNDg2ZjIwHhcNMjIwMjE1
MTkwMDIxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwMDQ2NjZhMjgwMDQx
NDRmYjU3MDUwY2EyNzE0YmMwNjQ3YzY5MTFiMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAk9HngL25wSlvt9AqC5hYlPwvWII7ZClup1P497KJqWLevgE9
geSYZP+12qXXs/Ytw+f0c9rWfI/F+mvTdGDplxlc/t0xUdn3ihxdaKvBbX6dZULR
j5Z+VP2K0ARc6y0JmiXJ8KXnpvuAd9rn7ZP5BnQJwHXUtiIixolqd9Z36uTfv6zZ
9efR2+D88MPphLLjbfcJz+wYkz6K/ywOcYR0EoLujzauYrNHGBIUAYVGQeUscyEX
cVcbaHBrF91YS5taYb456Qvp8JEzBqpuFjWs6M4qMsAp5S2PsI/Ej79pWT65K80D
Wu8Kpl80wN9UfnbItOs0nI9DEP2lv9V9ZnQdFwIDAQABo4ICDzCCAgswHQYDVR0O
BBYEFABGZqKABBRPtXBQyicUvAZHxpEbMB8GA1UdIwQYMBaAFOMWMYJH0hGEH5Yg
qaETABDdtIbyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NHhZeGdrZlNFWVFmbGlDcG9STUFFTjIwaHZJLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC85OS9lZTQyYmItMWU0OS00YzIxLWE0ZDYtZWMyODdlMWQzN2U1LzEv
QUVabW9vQUVGRS0xY0ZES0p4UzhCa2ZHa1JzLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9l
ZTQyYmItMWU0OS00YzIxLWE0ZDYtZWMyODdlMWQzN2U1LzEvNHhZeGdrZlNFWVFm
bGlDcG9STUFFTjIwaHZJLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUG
CCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW+ecAwQAW+hjMA0GCSqGSIb3DQEB
CwUAA4IBAQBO6dQnZKcdGna7R5ajcWpr20Il4y5w8kt2vrSgkzC2gMpiy3DqCZaU
Nr0IIQqXgBHcp3ho3lhI/JAw3ZY38K3QrELAvjb/TEXPebDKr0Yaop9/8UyfxN/+
YV+yTYZ0F++3V47wApypM97h/AJYwaIm9P2duuWFdMU9cJa/7nZNuoqKZP9N1kcd
VlhfGelCH61lrtOXUEZgtRLKlv1pAdvawskcaBEH+5SnjE0+VZaRSVP5mlMB01N+
/g79O+vU4N5YP0Su2VyhGsW/sxjL9mVGo10vHOf2pDVV/QG3B3eVH/NaLiHijhst
D/7FvF/rXlYQzz0oh9CawHREE281QZYX
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:21 2024 by rpki-client on console-ams.rpki-client.org