Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/v7KAPwyzgJoNmhFCEWP4i8w2DbI.roa
File: v7KAPwyzgJoNmhFCEWP4i8w2DbI.roa (raw, json)
Hash identifier: q4cm7BWXP1KGiPfLQ0K/Wxsz+hZMexpYobojoNfI/gk=
Subject key identifier: BF:B2:80:3F:0C:B3:80:9A:0D:9A:11:42:11:63:F8:8B:CC:36:0D:B2
Certificate issuer: /CN=10721ead6a4575643cb703062c0968755e8281eb
Certificate serial: 0190253E
Authority key identifier: 10:72:1E:AD:6A:45:75:64:3C:B7:03:06:2C:09:68:75:5E:82:81:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHIerWpFdWQ8twMGLAlodV6Cges.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/v7KAPwyzgJoNmhFCEWP4i8w2DbI.roa
Signing time: Thu 09 Jun 2022 12:28:02 +0000
ROA not before: Thu 09 Jun 2022 12:28:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47967
IP address blocks: 91.236.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26223934 (0x190253e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10721ead6a4575643cb703062c0968755e8281eb
Validity
Not Before: Jun 9 12:28:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfb2803f0cb3809a0d9a11421163f88bcc360db2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:34:e2:5a:34:f2:d0:18:91:30:b7:c7:2e:1d:
a1:99:e6:32:db:c6:11:44:f7:88:a4:e3:5a:e4:07:
b9:2e:81:b8:ad:cf:a4:de:99:23:18:34:bb:2f:74:
97:d5:a3:d8:83:4d:b0:a5:d6:78:6b:79:5f:9e:96:
81:2a:8b:37:c8:97:59:09:0f:ee:25:5c:64:3e:f0:
40:00:6c:ab:a5:82:d4:c6:a0:19:c2:a8:e1:53:25:
2b:7a:c7:75:e8:cb:9e:29:96:20:5f:78:3b:c0:79:
df:36:b7:f8:98:f1:1e:3e:6b:db:14:58:13:83:f2:
8d:78:6d:da:3f:5b:fa:25:8e:55:6b:12:5f:af:bb:
9e:3b:45:ad:46:5c:30:ef:63:87:7a:25:cf:22:75:
cf:17:6b:b8:55:c8:eb:5c:05:6c:9e:09:4b:bb:c6:
c4:df:a8:7f:8f:3f:51:94:37:92:dc:4c:d2:91:34:
fd:fc:86:d8:97:60:45:d1:a5:e6:59:31:30:dc:76:
15:91:d7:5b:8c:b1:d2:28:3f:ea:cf:60:91:79:ab:
fd:e6:00:6e:b3:4d:ca:c0:04:b8:f7:1c:79:aa:89:
4d:c0:b5:63:fe:23:da:5c:79:1a:75:b3:dd:5d:ba:
1e:ab:ac:76:a1:fb:a4:b0:84:8d:94:9a:c7:c9:59:
57:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:B2:80:3F:0C:B3:80:9A:0D:9A:11:42:11:63:F8:8B:CC:36:0D:B2
X509v3 Authority Key Identifier:
keyid:10:72:1E:AD:6A:45:75:64:3C:B7:03:06:2C:09:68:75:5E:82:81:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHIerWpFdWQ8twMGLAlodV6Cges.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/v7KAPwyzgJoNmhFCEWP4i8w2DbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/EHIerWpFdWQ8twMGLAlodV6Cges.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.216.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:a9:0f:51:f1:d2:a8:4b:39:f1:a3:54:64:73:8d:1a:e4:db:
71:9e:09:cc:c1:c1:e3:20:af:1d:8f:77:8b:28:45:9f:07:5b:
54:1f:7f:02:b2:e6:56:07:e3:47:b8:5a:94:e1:7e:ff:e9:18:
29:76:7e:25:68:3e:0a:b5:82:08:99:19:5e:21:6e:97:69:82:
49:22:27:48:52:d2:9b:98:ce:d2:b0:1e:7f:cd:3b:98:0f:53:
c4:bb:07:b4:9f:ab:ae:99:e0:44:61:dc:08:83:33:76:57:53:
69:a6:62:6d:d5:4b:c7:8e:20:68:80:ed:7f:6e:5d:83:a7:f3:
2b:1f:b0:a5:f5:25:41:21:1e:00:f4:6b:9c:f1:64:22:3a:1c:
29:07:41:a1:b9:aa:a5:1e:e3:29:08:b2:96:da:ab:04:41:cc:
dd:56:a6:21:36:d3:19:ea:6c:89:3d:c7:d6:7a:a7:c4:bb:1c:
4d:bf:e2:05:ae:73:70:62:18:f4:36:69:5c:7c:95:92:8c:f2:
2b:bc:65:a9:0e:fe:2b:e0:8b:be:0e:da:5d:26:c9:80:54:06:
be:d6:8d:5b:89:c7:ec:ae:5c:8c:14:5d:60:f3:14:16:90:04:
85:00:db:e2:41:be:1d:ec:ab:eb:95:4f:8c:c1:77:30:8b:b1:
a1:d6:86:bd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAZAlPjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MDcyMWVhZDZhNDU3NTY0M2NiNzAzMDYyYzA5Njg3NTVlODI4MWViMB4XDTIyMDYw
OTEyMjgwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmZiMjgwM2YwY2Iz
ODA5YTBkOWExMTQyMTE2M2Y4OGJjYzM2MGRiMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANc04lo08tAYkTC3xy4doZnmMtvGEUT3iKTjWuQHuS6BuK3P
pN6ZIxg0uy90l9Wj2INNsKXWeGt5X56WgSqLN8iXWQkP7iVcZD7wQABsq6WC1Mag
GcKo4VMlK3rHdejLnimWIF94O8B53za3+JjxHj5r2xRYE4PyjXht2j9b+iWOVWsS
X6+7njtFrUZcMO9jh3olzyJ1zxdruFXI61wFbJ4JS7vGxN+of48/UZQ3ktxM0pE0
/fyG2JdgRdGl5lkxMNx2FZHXW4yx0ig/6s9gkXmr/eYAbrNNysAEuPcceaqJTcC1
Y/4j2lx5GnWz3V26HqusdqH7pLCEjZSax8lZV68CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS/soA/DLOAmg2aEUIRY/iLzDYNsjAfBgNVHSMEGDAWgBQQch6takV1ZDy3
AwYsCWh1XoKB6zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VISWVyV3BGZFdROHR3TUdMQWxvZFY2Q2dlcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmIvY2E5MzViLTI0ODQtNDAyMC1iODE0LTNkNGFlODBmYzQ1ZC8x
L3Y3S0FQd3l6Z0pvTm1oRkNFV1A0aTh3MkRiSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmIv
Y2E5MzViLTI0ODQtNDAyMC1iODE0LTNkNGFlODBmYzQ1ZC8xL0VISWVyV3BGZFdR
OHR3TUdMQWxvZFY2Q2dlcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlvs2DANBgkqhkiG9w0BAQsFAAOC
AQEAPKkPUfHSqEs58aNUZHONGuTbcZ4JzMHB4yCvHY93iyhFnwdbVB9/ArLmVgfj
R7halOF+/+kYKXZ+JWg+CrWCCJkZXiFul2mCSSInSFLSm5jO0rAef807mA9TxLsH
tJ+rrpngRGHcCIMzdldTaaZibdVLx44gaIDtf25dg6fzKx+wpfUlQSEeAPRrnPFk
IjocKQdBobmqpR7jKQiyltqrBEHM3VamITbTGepsiT3H1nqnxLscTb/iBa5zcGIY
9DZpXHyVkozyK7xlqQ7+K+CLvg7aXSbJgFQGvtaNW4nH7K5cjBRdYPMUFpAEhQDb
4kG+Heyr65VPjMF3MIuxodaGvQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:37 2024 by rpki-client on console-fra.rpki-client.org