Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/913cd7-593f-4e99-b5ee-0d050358e656/1/L_16ZdiHMQ_9pg_Wyd1oAjoxWfY.roa
File: L_16ZdiHMQ_9pg_Wyd1oAjoxWfY.roa (raw, json)
Hash identifier: N3D0ppD+YpsVO0qdFLnY/2141lA3WQvlh0C8FiQ7y3I=
Subject key identifier: 2F:FD:7A:65:D8:87:31:0F:FD:A6:0F:D6:C9:DD:68:02:3A:31:59:F6
Certificate issuer: /CN=8e7fced4f34e7f37e751b5b45f30b99c6311f97e
Certificate serial: 18A6CF19
Authority key identifier: 8E:7F:CE:D4:F3:4E:7F:37:E7:51:B5:B4:5F:30:B9:9C:63:11:F9:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jn_O1PNOfzfnUbW0XzC5nGMR-X4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/913cd7-593f-4e99-b5ee-0d050358e656/1/L_16ZdiHMQ_9pg_Wyd1oAjoxWfY.roa
Signing time: Sat 01 Jan 2022 03:53:58 +0000
ROA not before: Sat 01 Jan 2022 03:53:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198126
IP address blocks: 91.231.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 413585177 (0x18a6cf19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e7fced4f34e7f37e751b5b45f30b99c6311f97e
Validity
Not Before: Jan 1 03:53:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ffd7a65d887310ffda60fd6c9dd68023a3159f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4a:65:6c:2d:ad:6f:89:2d:25:00:23:c1:cc:
df:3c:e2:dd:8f:be:e4:0a:c7:e7:01:f0:02:1f:15:
92:1d:81:d3:96:c4:23:b4:6d:c4:d0:ae:64:f7:c8:
25:a5:50:53:6e:87:42:03:66:65:e3:84:f9:62:6a:
c2:5a:fb:8b:a9:d1:66:00:b2:27:59:d7:81:53:d3:
20:93:21:bf:c6:0d:b0:3f:25:e4:6b:cd:21:a4:f1:
22:7b:c9:28:43:a5:ec:c2:0b:3f:d9:dd:fa:1f:92:
d2:26:99:fc:f0:89:6f:a9:a7:ce:41:33:1d:35:58:
07:02:83:d8:ef:ed:35:d3:42:5d:84:88:5c:73:a9:
7c:21:50:c6:8a:15:55:71:25:b2:78:a7:bc:82:d7:
00:af:8d:81:2f:a9:2c:48:37:24:21:67:60:4d:10:
75:36:b8:7c:83:33:00:ec:82:a7:77:82:61:83:15:
eb:13:82:65:81:89:f4:3b:e8:e0:a6:8e:68:72:d3:
45:2e:91:15:b6:4b:79:31:82:85:d7:37:7e:ff:f6:
7d:a6:04:f8:d9:a9:f0:e4:5b:cf:f0:79:fe:6a:4c:
e2:11:8b:6d:a0:b4:1e:bb:fa:8a:22:3b:d2:6c:a1:
25:cf:de:12:cf:05:5f:53:8b:71:6d:be:b5:27:90:
57:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:FD:7A:65:D8:87:31:0F:FD:A6:0F:D6:C9:DD:68:02:3A:31:59:F6
X509v3 Authority Key Identifier:
keyid:8E:7F:CE:D4:F3:4E:7F:37:E7:51:B5:B4:5F:30:B9:9C:63:11:F9:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jn_O1PNOfzfnUbW0XzC5nGMR-X4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/913cd7-593f-4e99-b5ee-0d050358e656/1/L_16ZdiHMQ_9pg_Wyd1oAjoxWfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/913cd7-593f-4e99-b5ee-0d050358e656/1/jn_O1PNOfzfnUbW0XzC5nGMR-X4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.228.0/24
Signature Algorithm: sha256WithRSAEncryption
55:a6:6d:8d:c5:ab:81:a7:18:ca:92:26:42:ff:62:9a:b9:d3:
d3:7f:47:55:7b:82:dc:5e:d0:93:aa:7d:bd:fe:00:1f:11:30:
5f:f7:01:ca:a1:38:08:3b:4d:2c:ca:74:5b:a6:24:6b:50:71:
ba:8d:f5:01:c5:8f:95:e6:3b:77:e9:12:70:2a:f6:20:7e:e2:
e6:8e:ca:71:66:9b:5b:7d:9e:e5:b9:6e:27:5e:dc:aa:92:8b:
39:b5:10:8b:b9:f8:92:fc:4e:d9:93:ac:28:d1:94:e9:b8:28:
db:26:86:68:8c:0d:98:ce:79:6f:35:5b:63:a5:39:fc:e7:7d:
63:d0:52:8b:ed:f7:19:ea:78:1a:63:9a:df:de:88:3a:80:12:
c3:21:06:29:2a:3b:5c:fd:33:b3:89:8b:ae:53:73:bd:4d:89:
f6:6a:d7:b0:e1:23:4a:55:0f:7e:1c:56:ff:a5:6e:b7:10:30:
c6:4d:07:9f:38:3f:f9:3c:38:fb:29:2a:03:d7:79:c6:50:d8:
43:3c:de:37:dd:4e:d3:92:32:0a:d6:d6:ca:89:18:e3:47:3e:
78:87:2e:fc:de:a8:f0:17:14:c7:69:13:87:d5:68:2d:c4:27:
b7:e7:03:de:52:15:7e:1a:3c:99:88:a1:c6:96:41:57:b4:4f:
e9:45:2d:ca
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGKbPGTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZTdmY2VkNGYzNGU3ZjM3ZTc1MWI1YjQ1ZjMwYjk5YzYzMTFmOTdlMB4XDTIyMDEw
MTAzNTM1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmZmZDdhNjVkODg3
MzEwZmZkYTYwZmQ2YzlkZDY4MDIzYTMxNTlmNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKVKZWwtrW+JLSUAI8HM3zzi3Y++5ArH5wHwAh8Vkh2B05bE
I7RtxNCuZPfIJaVQU26HQgNmZeOE+WJqwlr7i6nRZgCyJ1nXgVPTIJMhv8YNsD8l
5GvNIaTxInvJKEOl7MILP9nd+h+S0iaZ/PCJb6mnzkEzHTVYBwKD2O/tNdNCXYSI
XHOpfCFQxooVVXElsninvILXAK+NgS+pLEg3JCFnYE0QdTa4fIMzAOyCp3eCYYMV
6xOCZYGJ9Dvo4KaOaHLTRS6RFbZLeTGChdc3fv/2faYE+Nmp8ORbz/B5/mpM4hGL
baC0Hrv6iiI70myhJc/eEs8FX1OLcW2+tSeQVxkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQv/Xpl2IcxD/2mD9bJ3WgCOjFZ9jAfBgNVHSMEGDAWgBSOf87U805/N+dR
tbRfMLmcYxH5fjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2puX08xUE5PZnpmblViVzBYekM1bkdNUi1YNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjkvOTEzY2Q3LTU5M2YtNGU5OS1iNWVlLTBkMDUwMzU4ZTY1Ni8x
L0xfMTZaZGlITVFfOXBnX1d5ZDFvQWpveFdmWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkv
OTEzY2Q3LTU5M2YtNGU5OS1iNWVlLTBkMDUwMzU4ZTY1Ni8xL2puX08xUE5PZnpm
blViVzBYekM1bkdNUi1YNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvn5DANBgkqhkiG9w0BAQsFAAOC
AQEAVaZtjcWrgacYypImQv9imrnT039HVXuC3F7Qk6p9vf4AHxEwX/cByqE4CDtN
LMp0W6Yka1Bxuo31AcWPleY7d+kScCr2IH7i5o7KcWabW32e5bluJ17cqpKLObUQ
i7n4kvxO2ZOsKNGU6bgo2yaGaIwNmM55bzVbY6U5/Od9Y9BSi+33Gep4GmOa396I
OoASwyEGKSo7XP0zs4mLrlNzvU2J9mrXsOEjSlUPfhxW/6VutxAwxk0Hnzg/+Tw4
+ykqA9d5xlDYQzzeN91O05IyCtbWyokY40c+eIcu/N6o8BcUx2kTh9VoLcQnt+cD
3lIVfho8mYihxpZBV7RP6UUtyg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 11:00:49 2025 by rpki-client