Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/BuaRhgmpZPfltr_S6wrMgGNzc2M.roa
File: BuaRhgmpZPfltr_S6wrMgGNzc2M.roa (raw, json)
Hash identifier: 9VH3XaSrHRF/4bEJQwAlmoX3IfhLgiZtnSbeB8Fea4k=
Subject key identifier: 06:E6:91:86:09:A9:64:F7:E5:B6:BF:D2:EB:0A:CC:80:63:73:73:63
Certificate issuer: /CN=7870561798e5c8a26707620df082ef3778d7163d
Certificate serial: 052F0C54
Authority key identifier: 78:70:56:17:98:E5:C8:A2:67:07:62:0D:F0:82:EF:37:78:D7:16:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHBWF5jlyKJnB2IN8ILvN3jXFj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/BuaRhgmpZPfltr_S6wrMgGNzc2M.roa
Signing time: Sat 01 Jan 2022 09:54:16 +0000
ROA not before: Sat 01 Jan 2022 09:54:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6696
IP address blocks: 91.220.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86969428 (0x52f0c54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7870561798e5c8a26707620df082ef3778d7163d
Validity
Not Before: Jan 1 09:54:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06e6918609a964f7e5b6bfd2eb0acc8063737363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:de:ae:09:1b:f0:80:66:b6:15:93:cb:c6:cc:
b1:b6:56:ea:47:7b:7a:e3:f6:26:ea:31:2a:b7:b2:
3a:45:bb:12:d1:b4:82:0b:8f:94:7b:75:06:69:7f:
aa:a6:25:88:10:4a:54:10:2a:a9:04:50:43:c7:34:
66:25:e9:f0:c9:aa:e9:d4:01:0e:36:72:d2:6c:f2:
8a:fa:56:74:57:9e:11:a8:de:74:66:9d:0b:85:06:
be:41:bb:e3:fa:f8:00:90:2a:54:ec:09:56:5b:bf:
54:cd:e7:ab:0c:03:1b:22:a0:b1:49:61:d5:9e:18:
58:5c:80:c1:6d:d1:65:0a:5c:5e:ff:1a:1b:53:51:
75:cc:2d:00:30:99:35:e3:7c:b9:76:4a:8a:8c:17:
bb:4a:8a:6d:99:9f:0e:96:39:76:64:46:dc:77:60:
f3:bc:c3:6e:3d:85:56:3d:be:cd:ea:52:26:ae:06:
2c:fd:5b:2a:8f:66:06:17:d9:1b:0d:9d:db:68:8c:
b3:74:f8:4d:52:b4:60:3b:31:d4:1e:cc:52:d4:f1:
51:98:d0:75:6d:d4:1f:44:06:7d:37:38:11:5a:25:
79:0a:ec:c0:e8:9a:03:ce:91:3b:a4:20:84:82:6e:
11:fe:6d:c0:1c:92:ef:6a:93:9f:ea:1d:eb:d3:25:
fd:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:E6:91:86:09:A9:64:F7:E5:B6:BF:D2:EB:0A:CC:80:63:73:73:63
X509v3 Authority Key Identifier:
keyid:78:70:56:17:98:E5:C8:A2:67:07:62:0D:F0:82:EF:37:78:D7:16:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHBWF5jlyKJnB2IN8ILvN3jXFj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/BuaRhgmpZPfltr_S6wrMgGNzc2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/eHBWF5jlyKJnB2IN8ILvN3jXFj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.102.0/24
Signature Algorithm: sha256WithRSAEncryption
92:24:36:ec:e2:64:74:b2:31:41:d7:bd:05:3d:3a:c9:a5:1a:
67:4c:62:26:75:7e:d3:34:d7:f2:76:11:e1:80:5e:6f:8a:7c:
a1:30:5e:56:0e:86:14:c2:12:87:a0:70:41:f2:07:50:2e:02:
be:73:b2:21:17:05:9b:c0:ed:e2:c0:43:83:de:e8:82:2b:73:
71:7e:5a:90:08:cb:a6:25:e2:b2:5e:68:54:f6:c9:b0:67:0f:
58:0c:fe:a8:77:1d:94:b4:ec:b7:14:de:a0:b1:30:0a:a9:2f:
ef:a4:bf:b9:40:b4:be:21:ac:c1:47:59:5d:33:62:1f:22:21:
03:45:54:20:b4:ac:ea:48:23:8b:6d:81:37:3b:2d:33:5c:da:
79:dc:2f:9f:b6:9b:4c:1d:89:ce:dd:79:40:68:53:97:3c:61:
ef:40:03:e1:1c:76:0f:64:82:4f:90:87:fc:cc:f7:86:6d:d4:
1d:fb:bf:ea:a0:c6:a3:e7:69:5c:81:e3:0e:2a:3f:44:4b:2e:
e8:38:9f:52:3d:90:7b:02:fc:07:6a:2d:75:2a:3c:f2:99:20:
8f:9e:8a:66:45:93:dc:e5:0e:8c:eb:1e:fe:45:86:14:b5:a4:
9a:dc:0c:70:72:14:da:f4:87:47:59:7a:41:19:26:84:92:6c:
e8:90:21:93
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBS8MVDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ODcwNTYxNzk4ZTVjOGEyNjcwNzYyMGRmMDgyZWYzNzc4ZDcxNjNkMB4XDTIyMDEw
MTA5NTQxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDZlNjkxODYwOWE5
NjRmN2U1YjZiZmQyZWIwYWNjODA2MzczNzM2MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMTergkb8IBmthWTy8bMsbZW6kd7euP2JuoxKreyOkW7EtG0
gguPlHt1Bml/qqYliBBKVBAqqQRQQ8c0ZiXp8Mmq6dQBDjZy0mzyivpWdFeeEaje
dGadC4UGvkG74/r4AJAqVOwJVlu/VM3nqwwDGyKgsUlh1Z4YWFyAwW3RZQpcXv8a
G1NRdcwtADCZNeN8uXZKiowXu0qKbZmfDpY5dmRG3Hdg87zDbj2FVj2+zepSJq4G
LP1bKo9mBhfZGw2d22iMs3T4TVK0YDsx1B7MUtTxUZjQdW3UH0QGfTc4EVoleQrs
wOiaA86RO6QghIJuEf5twByS72qTn+od69Ml/bcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQG5pGGCalk9+W2v9LrCsyAY3NzYzAfBgNVHSMEGDAWgBR4cFYXmOXIomcH
Yg3wgu83eNcWPTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VIQldGNWpseUtKbkIySU44SUx2TjNqWEZqMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzQvZmVlZTg5LTE4MDUtNGJiZS1hN2RkLWRhY2ZiZjM2N2IxYS8x
L0J1YVJoZ21wWlBmbHRyX1M2d3JNZ0dOemMyTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQv
ZmVlZTg5LTE4MDUtNGJiZS1hN2RkLWRhY2ZiZjM2N2IxYS8xL2VIQldGNWpseUtK
bkIySU44SUx2TjNqWEZqMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvcZjANBgkqhkiG9w0BAQsFAAOC
AQEAkiQ27OJkdLIxQde9BT06yaUaZ0xiJnV+0zTX8nYR4YBeb4p8oTBeVg6GFMIS
h6BwQfIHUC4CvnOyIRcFm8Dt4sBDg97ogitzcX5akAjLpiXisl5oVPbJsGcPWAz+
qHcdlLTstxTeoLEwCqkv76S/uUC0viGswUdZXTNiHyIhA0VUILSs6kgji22BNzst
M1zaedwvn7abTB2Jzt15QGhTlzxh70AD4Rx2D2SCT5CH/Mz3hm3UHfu/6qDGo+dp
XIHjDio/REsu6DifUj2QewL8B2otdSo88pkgj56KZkWT3OUOjOse/kWGFLWkmtwM
cHIU2vSHR1l6QRkmhJJs6JAhkw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:02 2024 by rpki-client on console-fra.rpki-client.org