Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5f575f-992c-48e9-9158-d80f5ea62d44/1/comTqOOht0zvmUV1RPc8eQqrDcM.roa
File: comTqOOht0zvmUV1RPc8eQqrDcM.roa (raw, json)
Hash identifier: qicqVK/W8c4PPu2Tu2ogxUpWVrPCnbJD3zaU0VdgTCg=
Subject key identifier: 72:89:93:A8:E3:A1:B7:4C:EF:99:45:75:44:F7:3C:79:0A:AB:0D:C3
Certificate issuer: /CN=30be52bae4d48dddc9cbec2076aba91c953ae12e
Certificate serial: 01856266CA529016B0CB0B3E516B4A4FD8BF
Authority key identifier: 30:BE:52:BA:E4:D4:8D:DD:C9:CB:EC:20:76:AB:A9:1C:95:3A:E1:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ML5SuuTUjd3Jy-wgdqupHJU64S4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5f575f-992c-48e9-9158-d80f5ea62d44/1/comTqOOht0zvmUV1RPc8eQqrDcM.roa
Signing time: Fri 30 Dec 2022 09:39:41 +0000
ROA not before: Fri 30 Dec 2022 09:39:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43305
IP address blocks: 91.198.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:66:ca:52:90:16:b0:cb:0b:3e:51:6b:4a:4f:d8:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30be52bae4d48dddc9cbec2076aba91c953ae12e
Validity
Not Before: Dec 30 09:39:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=728993a8e3a1b74cef99457544f73c790aab0dc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:86:50:48:0d:27:47:fd:c9:73:ba:31:0a:fa:
69:09:91:ac:4e:4f:96:cd:b4:ac:6f:8a:a1:34:0f:
d0:8e:d7:6f:6b:cb:87:f9:57:37:a6:87:4b:b7:b7:
d6:6c:d8:fe:95:ed:8b:81:59:6f:d0:a2:a4:80:ee:
1a:d5:dd:2b:54:40:68:4e:eb:5f:65:17:9e:35:5c:
47:56:78:15:cf:b2:6b:79:13:99:6d:02:a8:ad:82:
8d:f6:11:a3:6d:d5:1c:24:47:2d:c1:87:84:ff:09:
21:28:32:22:48:f2:e6:6a:79:a0:a6:9c:50:08:cc:
68:22:f8:65:ad:e7:8a:c8:37:0a:61:b2:1e:c3:5e:
57:78:64:eb:8c:79:ce:e9:0c:e4:36:0d:c2:1e:eb:
b5:23:43:b8:ad:a2:48:ff:51:8b:45:f6:06:78:2c:
e1:7d:ce:07:15:bc:2a:09:c5:bb:fb:1c:f3:5e:cb:
24:5a:5c:6a:50:fb:71:21:7f:25:9b:34:e3:0d:96:
28:a7:2f:08:4c:98:c4:94:5b:72:63:3e:8b:c9:73:
26:8b:39:65:74:33:8b:3b:18:ca:e1:68:db:5b:7d:
20:6d:c9:a3:b1:7e:07:27:60:5a:68:b6:06:86:22:
91:e8:3a:63:3f:38:ac:07:df:55:c3:c4:cd:aa:26:
8a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:89:93:A8:E3:A1:B7:4C:EF:99:45:75:44:F7:3C:79:0A:AB:0D:C3
X509v3 Authority Key Identifier:
keyid:30:BE:52:BA:E4:D4:8D:DD:C9:CB:EC:20:76:AB:A9:1C:95:3A:E1:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ML5SuuTUjd3Jy-wgdqupHJU64S4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5f575f-992c-48e9-9158-d80f5ea62d44/1/comTqOOht0zvmUV1RPc8eQqrDcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5f575f-992c-48e9-9158-d80f5ea62d44/1/ML5SuuTUjd3Jy-wgdqupHJU64S4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.35.0/24
Signature Algorithm: sha256WithRSAEncryption
75:e6:36:c2:12:c5:72:34:1e:1a:3c:62:a8:c8:26:64:b0:f9:
d4:9b:34:44:63:fd:ad:fc:bf:9b:02:d9:70:a2:71:56:64:e2:
97:6f:cd:81:e8:56:96:51:8a:d9:90:ff:d9:ff:68:ae:c6:e9:
37:5a:05:eb:53:10:3e:90:d9:29:77:46:b3:77:46:60:33:82:
4e:a6:c3:11:59:af:09:ea:9d:b7:41:70:d8:c2:03:47:a9:90:
5f:02:f2:17:1b:1c:0d:eb:44:c3:0b:9c:b6:1e:67:58:16:db:
75:b8:e2:32:f5:02:2e:2b:6d:fd:fa:53:1e:e7:43:d8:7e:a1:
e9:a7:80:e4:0b:f9:b8:c8:d2:77:4e:74:f8:37:3b:b1:25:76:
60:fe:86:65:ab:cd:e5:ae:28:92:9d:c3:2a:e0:85:49:b6:0e:
59:28:58:ba:d1:af:3c:90:2b:29:56:40:c7:68:54:ae:6d:05:
ba:c0:af:05:d4:fe:09:06:03:bb:24:4a:35:e0:ec:b1:3c:71:
c3:66:d9:96:de:5d:2b:f3:4a:ae:e2:c3:c8:07:2c:ea:5f:2c:
da:37:ae:8e:4b:f4:da:96:16:65:e6:b1:d4:85:c3:a5:54:14:
1b:05:2e:92:dc:83:b6:24:f7:ed:d8:e5:cf:57:b1:99:37:48:
e5:f4:fc:5f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYViZspSkBawyws+UWtKT9i/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwYmU1MmJhZTRkNDhkZGRjOWNiZWMyMDc2YWJhOTFjOTUz
YWUxMmUwHhcNMjIxMjMwMDkzOTQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Mjg5OTNhOGUzYTFiNzRjZWY5OTQ1NzU0NGY3M2M3OTBhYWIwZGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlYZQSA0nR/3Jc7oxCvppCZGsTk+W
zbSsb4qhNA/Qjtdva8uH+Vc3podLt7fWbNj+le2LgVlv0KKkgO4a1d0rVEBoTutf
ZReeNVxHVngVz7JreROZbQKorYKN9hGjbdUcJEctwYeE/wkhKDIiSPLmanmgppxQ
CMxoIvhlreeKyDcKYbIew15XeGTrjHnO6QzkNg3CHuu1I0O4raJI/1GLRfYGeCzh
fc4HFbwqCcW7+xzzXsskWlxqUPtxIX8lmzTjDZYopy8ITJjElFtyYz6LyXMmizll
dDOLOxjK4WjbW30gbcmjsX4HJ2BaaLYGhiKR6DpjPzisB99Vw8TNqiaKnQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHKJk6jjobdM75lFdUT3PHkKqw3DMB8GA1UdIwQY
MBaAFDC+Urrk1I3dycvsIHarqRyVOuEuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUw1U3V1VFVqZDNKeS13Z2RxdXBISlU2NFM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC81ZjU3NWYtOTkyYy00OGU5LTkxNTgt
ZDgwZjVlYTYyZDQ0LzEvY29tVHFPT2h0MHp2bVVWMVJQYzhlUXFyRGNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC81ZjU3NWYtOTkyYy00OGU5LTkxNTgtZDgwZjVlYTYyZDQ0
LzEvTUw1U3V1VFVqZDNKeS13Z2RxdXBISlU2NFM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8YjMA0G
CSqGSIb3DQEBCwUAA4IBAQB15jbCEsVyNB4aPGKoyCZksPnUmzREY/2t/L+bAtlw
onFWZOKXb82B6FaWUYrZkP/Z/2iuxuk3WgXrUxA+kNkpd0azd0ZgM4JOpsMRWa8J
6p23QXDYwgNHqZBfAvIXGxwN60TDC5y2HmdYFtt1uOIy9QIuK239+lMe50PYfqHp
p4DkC/m4yNJ3TnT4NzuxJXZg/oZlq83lriiSncMq4IVJtg5ZKFi60a88kCspVkDH
aFSubQW6wK8F1P4JBgO7JEo14OyxPHHDZtmW3l0r80qu4sPIByzqXyzaN66OS/Ta
lhZl5rHUhcOlVBQbBS6S3IO2JPft2OXPV7GZN0jl9Pxf
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:39 2024 by rpki-client on console-ams.rpki-client.org