Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/411877-b51a-464a-ad9e-104b14f5b0f8/1/REHgrRGSZ2DvidZ1qDszlXUn3Hg.roa
File: REHgrRGSZ2DvidZ1qDszlXUn3Hg.roa (raw, json)
Hash identifier: 4SXisZM4SJJoxNt0Tq5MfO2hPdsiwPGyNlk+AfgIQLM=
Subject key identifier: 44:41:E0:AD:11:92:67:60:EF:89:D6:75:A8:3B:33:95:75:27:DC:78
Certificate issuer: /CN=3d65564a8954d6ae952f8a1f7af6c1cfba78094a
Certificate serial: 052E4BCF
Authority key identifier: 3D:65:56:4A:89:54:D6:AE:95:2F:8A:1F:7A:F6:C1:CF:BA:78:09:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PWVWSolU1q6VL4ofevbBz7p4CUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/411877-b51a-464a-ad9e-104b14f5b0f8/1/REHgrRGSZ2DvidZ1qDszlXUn3Hg.roa
Signing time: Sat 01 Jan 2022 13:56:44 +0000
ROA not before: Sat 01 Jan 2022 13:56:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49964
IP address blocks: 91.216.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86920143 (0x52e4bcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d65564a8954d6ae952f8a1f7af6c1cfba78094a
Validity
Not Before: Jan 1 13:56:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4441e0ad11926760ef89d675a83b33957527dc78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:71:03:58:6c:77:4d:4e:3e:d9:b1:5a:18:53:
97:8f:c2:71:a2:b7:67:38:22:15:3c:ce:2b:d1:ee:
f7:f1:35:a3:16:3f:6d:a5:46:cf:d5:34:76:d6:54:
1a:54:a2:82:2f:53:25:0a:3c:0f:99:99:23:9e:86:
7e:33:db:0d:18:6b:d8:a0:96:e4:5e:d4:f2:62:43:
91:57:c7:bd:cf:e6:d1:10:47:3d:c7:17:6f:93:b5:
ad:48:48:26:52:0b:ff:81:73:8c:07:3e:90:a7:69:
c3:19:de:6b:43:39:5b:69:4e:91:e3:24:58:3d:af:
0a:11:fa:78:51:c5:bf:b7:cc:aa:c4:fd:26:d0:24:
6a:33:f8:e9:e2:9f:f9:aa:3e:9a:5d:a3:a8:ae:4c:
24:81:1a:0a:f4:d8:e2:24:0c:d4:5f:e7:52:20:c8:
50:20:8a:e7:01:7c:09:10:da:dc:28:ef:40:94:f9:
2d:d3:18:3d:f9:b0:24:2e:d2:1d:1a:da:1f:6c:72:
95:5a:44:ef:96:25:fe:6e:0c:83:87:c5:ea:4b:9e:
f7:37:3d:be:86:cc:75:ee:7c:d8:11:9f:af:95:fd:
8f:5b:b0:d5:19:73:36:6e:d3:28:d3:94:cb:82:49:
f3:37:36:22:65:5f:f2:9d:df:b1:77:dd:27:71:77:
1b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:41:E0:AD:11:92:67:60:EF:89:D6:75:A8:3B:33:95:75:27:DC:78
X509v3 Authority Key Identifier:
keyid:3D:65:56:4A:89:54:D6:AE:95:2F:8A:1F:7A:F6:C1:CF:BA:78:09:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PWVWSolU1q6VL4ofevbBz7p4CUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/411877-b51a-464a-ad9e-104b14f5b0f8/1/REHgrRGSZ2DvidZ1qDszlXUn3Hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/411877-b51a-464a-ad9e-104b14f5b0f8/1/PWVWSolU1q6VL4ofevbBz7p4CUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.145.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:73:9b:b7:da:61:a4:cc:57:8f:8b:6e:ab:0d:b5:95:3b:a2:
e1:68:2a:fa:b5:d4:1f:02:3c:91:43:38:60:d0:d6:40:a7:89:
19:5f:41:b2:bd:c4:59:9a:15:4d:71:11:93:f2:e3:d0:1a:5c:
3b:57:fa:e8:65:2a:90:d6:97:da:ea:ee:a4:d6:7a:ff:e6:d2:
4a:a0:0e:c6:7c:33:f6:99:7b:52:06:fa:14:b3:5d:9a:e4:45:
f4:cd:58:67:28:53:8a:6a:ef:97:ea:bc:68:00:2d:d1:7e:5a:
b4:80:5b:6b:18:be:7d:25:76:e9:ed:cd:9b:50:c1:54:86:b0:
17:80:14:40:40:e1:1d:6c:0f:64:b5:16:e0:b8:4d:4a:e6:b9:
ea:7c:9a:7e:d1:6a:2e:c2:4b:95:2e:f1:c9:5b:45:db:59:57:
7f:35:4c:da:ca:42:ff:68:28:28:5c:71:43:34:e7:9c:c3:6b:
fe:2d:4b:ca:44:84:55:85:31:73:a9:21:c3:56:9a:2f:82:ec:
b5:a8:b6:8a:d9:b2:45:24:a8:dc:06:5a:9a:d8:d9:8b:87:a8:
1b:2a:a4:e4:e6:32:d2:e6:2e:63:c1:0f:9f:1b:b6:6b:49:05:
52:0f:db:85:4c:b4:fa:a2:81:e6:54:7f:33:43:1c:5f:b1:7b:
0f:52:95:04
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBS5LzzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZDY1NTY0YTg5NTRkNmFlOTUyZjhhMWY3YWY2YzFjZmJhNzgwOTRhMB4XDTIyMDEw
MTEzNTY0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDQ0MWUwYWQxMTky
Njc2MGVmODlkNjc1YTgzYjMzOTU3NTI3ZGM3ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMtxA1hsd01OPtmxWhhTl4/CcaK3ZzgiFTzOK9Hu9/E1oxY/
baVGz9U0dtZUGlSigi9TJQo8D5mZI56GfjPbDRhr2KCW5F7U8mJDkVfHvc/m0RBH
PccXb5O1rUhIJlIL/4FzjAc+kKdpwxnea0M5W2lOkeMkWD2vChH6eFHFv7fMqsT9
JtAkajP46eKf+ao+ml2jqK5MJIEaCvTY4iQM1F/nUiDIUCCK5wF8CRDa3CjvQJT5
LdMYPfmwJC7SHRraH2xylVpE75Yl/m4Mg4fF6kue9zc9vobMde582BGfr5X9j1uw
1RlzNm7TKNOUy4JJ8zc2ImVf8p3fsXfdJ3F3G0kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBREQeCtEZJnYO+J1nWoOzOVdSfceDAfBgNVHSMEGDAWgBQ9ZVZKiVTWrpUv
ih969sHPungJSjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BXVldTb2xVMXE2Vkw0b2ZldmJCejdwNENVby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTAvNDExODc3LWI1MWEtNDY0YS1hZDllLTEwNGIxNGY1YjBmOC8x
L1JFSGdyUkdTWjJEdmlkWjFxRHN6bFhVbjNIZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTAv
NDExODc3LWI1MWEtNDY0YS1hZDllLTEwNGIxNGY1YjBmOC8xL1BXVldTb2xVMXE2
Vkw0b2ZldmJCejdwNENVby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvYkTANBgkqhkiG9w0BAQsFAAOC
AQEAW3Obt9phpMxXj4tuqw21lTui4Wgq+rXUHwI8kUM4YNDWQKeJGV9Bsr3EWZoV
TXERk/Lj0BpcO1f66GUqkNaX2urupNZ6/+bSSqAOxnwz9pl7Ugb6FLNdmuRF9M1Y
ZyhTimrvl+q8aAAt0X5atIBbaxi+fSV26e3Nm1DBVIawF4AUQEDhHWwPZLUW4LhN
Sua56nyaftFqLsJLlS7xyVtF21lXfzVM2spC/2goKFxxQzTnnMNr/i1LykSEVYUx
c6khw1aaL4Lstai2itmyRSSo3AZamtjZi4eoGyqk5OYy0uYuY8EPnxu2a0kFUg/b
hUy0+qKB5lR/M0McX7F7D1KVBA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:37 2024 by rpki-client on console-ams.rpki-client.org