Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/84e3f6-6931-4693-9579-1b3235babe27/1/STzS8itfbnyC3GPWdTUrmU-kPd0.roa
File: STzS8itfbnyC3GPWdTUrmU-kPd0.roa (raw, json)
Hash identifier: 8zavtglxTaHrRlRoFl/scYc3I52Snt8apih73mmGeSs=
Subject key identifier: 49:3C:D2:F2:2B:5F:6E:7C:82:DC:63:D6:75:35:2B:99:4F:A4:3D:DD
Certificate issuer: /CN=cbf6f8aeabeb3167d1192d628480c7e2bfd97248
Certificate serial: 06138B25
Authority key identifier: CB:F6:F8:AE:AB:EB:31:67:D1:19:2D:62:84:80:C7:E2:BF:D9:72:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y_b4rqvrMWfRGS1ihIDH4r_Zckg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/84e3f6-6931-4693-9579-1b3235babe27/1/STzS8itfbnyC3GPWdTUrmU-kPd0.roa
Signing time: Sat 01 Jan 2022 15:06:31 +0000
ROA not before: Sat 01 Jan 2022 15:06:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200062
IP address blocks: 91.103.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101944101 (0x6138b25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbf6f8aeabeb3167d1192d628480c7e2bfd97248
Validity
Not Before: Jan 1 15:06:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=493cd2f22b5f6e7c82dc63d675352b994fa43ddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0b:5b:55:39:c0:6e:1b:5b:7d:00:26:04:c7:
e4:42:03:08:61:e9:32:cf:06:f2:67:b4:e6:e1:33:
81:53:dd:02:0a:c8:8d:01:db:48:23:19:b4:7d:fa:
80:38:2b:21:18:1f:73:35:3f:2a:77:1b:07:a1:0e:
06:14:9c:6e:e3:12:a5:86:df:b0:ba:a3:13:6c:d3:
fc:1c:fb:84:c7:bc:d3:40:85:e2:54:1f:31:d4:e6:
6b:25:b5:f3:d9:94:4c:a5:22:65:1f:09:dd:fc:44:
e6:c3:50:97:13:49:9a:74:69:35:04:d8:61:54:e7:
68:5a:b8:48:bd:8d:82:bc:98:b1:98:63:b2:97:76:
ab:9a:66:a7:19:4f:e4:a9:f5:d1:a3:ff:cb:9f:8d:
45:86:d9:1e:2b:23:0f:2a:b0:87:c9:7d:e5:31:66:
fa:3f:27:cd:98:68:4b:4f:5e:d8:aa:86:45:4d:20:
a1:46:11:82:df:46:f1:e9:6d:c8:a2:84:47:d8:61:
29:23:67:95:0e:36:b2:42:f2:5c:20:0a:72:2e:3b:
94:7e:98:c0:f1:86:db:3f:3d:1c:16:f7:5f:ab:95:
21:b0:64:2a:8b:14:39:67:4f:69:4a:2c:52:77:ca:
75:13:eb:c5:7c:a5:bf:4b:08:7d:8f:68:ec:d9:de:
e2:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:3C:D2:F2:2B:5F:6E:7C:82:DC:63:D6:75:35:2B:99:4F:A4:3D:DD
X509v3 Authority Key Identifier:
keyid:CB:F6:F8:AE:AB:EB:31:67:D1:19:2D:62:84:80:C7:E2:BF:D9:72:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_b4rqvrMWfRGS1ihIDH4r_Zckg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/84e3f6-6931-4693-9579-1b3235babe27/1/STzS8itfbnyC3GPWdTUrmU-kPd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/84e3f6-6931-4693-9579-1b3235babe27/1/y_b4rqvrMWfRGS1ihIDH4r_Zckg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.12.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:20:e1:4a:19:16:38:4b:8b:2a:36:f1:28:9a:35:b8:b5:ab:
d0:98:40:9e:fc:a1:ee:92:8f:49:3c:0e:52:e7:a1:13:b2:f8:
04:fb:c0:7e:59:3c:8c:e7:47:d3:34:94:37:73:64:73:a2:ca:
23:0d:01:ea:27:88:55:28:3e:e5:d1:bb:f0:0e:41:b5:36:40:
1d:b5:18:86:74:40:36:f9:e0:c8:35:16:e6:91:f7:66:f5:ce:
fa:6f:8b:5b:36:e6:64:d2:b5:ae:2f:70:64:1c:50:ac:65:fa:
c3:2b:fd:b1:e8:97:b1:65:9f:da:73:7e:49:e4:c4:1f:db:1d:
a3:86:a8:75:ed:39:83:9b:86:3e:fc:9b:8a:ac:8c:3b:96:5c:
18:6c:41:06:1e:23:13:e9:82:f2:76:9d:3f:4b:ae:e8:a2:d1:
17:40:6d:83:84:98:8b:88:35:ec:e6:1b:73:6b:58:2b:e8:6e:
97:74:b3:b4:65:ec:6c:78:d4:86:ba:4f:0e:c1:c6:9e:78:a7:
f2:6a:b1:09:51:fe:54:de:54:d0:93:d9:68:05:61:b2:5e:3c:
19:c7:7d:16:32:e7:47:2e:05:f5:28:59:23:60:ee:47:0b:6a:
14:52:1a:b2:f7:fb:a2:9e:0d:a3:a3:85:cf:56:99:d8:bd:73:
d3:16:ff:48
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBhOLJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
YmY2ZjhhZWFiZWIzMTY3ZDExOTJkNjI4NDgwYzdlMmJmZDk3MjQ4MB4XDTIyMDEw
MTE1MDYzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDkzY2QyZjIyYjVm
NmU3YzgyZGM2M2Q2NzUzNTJiOTk0ZmE0M2RkZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANgLW1U5wG4bW30AJgTH5EIDCGHpMs8G8me05uEzgVPdAgrI
jQHbSCMZtH36gDgrIRgfczU/KncbB6EOBhScbuMSpYbfsLqjE2zT/Bz7hMe800CF
4lQfMdTmayW189mUTKUiZR8J3fxE5sNQlxNJmnRpNQTYYVTnaFq4SL2NgryYsZhj
spd2q5pmpxlP5Kn10aP/y5+NRYbZHisjDyqwh8l95TFm+j8nzZhoS09e2KqGRU0g
oUYRgt9G8eltyKKER9hhKSNnlQ42skLyXCAKci47lH6YwPGG2z89HBb3X6uVIbBk
KosUOWdPaUosUnfKdRPrxXylv0sIfY9o7Nne4uUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRJPNLyK19ufILcY9Z1NSuZT6Q93TAfBgNVHSMEGDAWgBTL9viuq+sxZ9EZ
LWKEgMfiv9lySDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lfYjRycXZyTVdmUkdTMWloSURINHJfWmNrZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvODRlM2Y2LTY5MzEtNDY5My05NTc5LTFiMzIzNWJhYmUyNy8x
L1NUelM4aXRmYm55QzNHUFdkVFVybVUta1BkMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
ODRlM2Y2LTY5MzEtNDY5My05NTc5LTFiMzIzNWJhYmUyNy8xL3lfYjRycXZyTVdm
UkdTMWloSURINHJfWmNrZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAltnDDANBgkqhkiG9w0BAQsFAAOC
AQEAuyDhShkWOEuLKjbxKJo1uLWr0JhAnvyh7pKPSTwOUuehE7L4BPvAflk8jOdH
0zSUN3Nkc6LKIw0B6ieIVSg+5dG78A5BtTZAHbUYhnRANvngyDUW5pH3ZvXO+m+L
WzbmZNK1ri9wZBxQrGX6wyv9seiXsWWf2nN+SeTEH9sdo4aode05g5uGPvybiqyM
O5ZcGGxBBh4jE+mC8nadP0uu6KLRF0Btg4SYi4g17OYbc2tYK+hul3SztGXsbHjU
hrpPDsHGnnin8mqxCVH+VN5U0JPZaAVhsl48Gcd9FjLnRy4F9ShZI2DuRwtqFFIa
svf7op4No6OFz1aZ2L1z0xb/SA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:08 2024 by rpki-client on console-fra.rpki-client.org