Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/ibaqR8rijeTahEVmlhDSXyShpLM.roa
File: ibaqR8rijeTahEVmlhDSXyShpLM.roa (raw, json)
Hash identifier: XboOt+VjGi3zFfjZDfNI2iE55gRyaEpXcEMSS4xtcSM=
Subject key identifier: 89:B6:AA:47:CA:E2:8D:E4:DA:84:45:66:96:10:D2:5F:24:A1:A4:B3
Certificate issuer: /CN=a4f8436003d37602026b65531755ca8fcd31bed2
Certificate serial: 104AD9B3
Authority key identifier: A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/ibaqR8rijeTahEVmlhDSXyShpLM.roa
Signing time: Sat 01 Jan 2022 15:00:49 +0000
ROA not before: Sat 01 Jan 2022 15:00:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44508
IP address blocks: 91.198.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273340851 (0x104ad9b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f8436003d37602026b65531755ca8fcd31bed2
Validity
Not Before: Jan 1 15:00:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89b6aa47cae28de4da8445669610d25f24a1a4b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5a:92:ef:f2:ba:7f:2f:a9:54:d6:01:4c:5b:
9c:df:5c:e4:8d:f9:65:a0:b5:c6:f4:c3:09:63:fb:
93:f2:29:22:bb:af:0f:11:61:58:8d:71:8b:33:b1:
c6:d9:e2:c9:28:52:8e:f8:76:b5:6c:b5:df:48:d5:
ee:86:00:a4:ae:57:56:5b:64:32:99:7f:5d:dd:8a:
b1:ff:1d:d1:e7:42:58:f7:e2:e5:f0:5e:93:6e:c2:
75:c6:6c:9e:19:ef:00:fb:10:63:aa:b0:37:ce:bc:
04:0b:1a:a6:ef:b6:8b:24:38:89:88:69:87:5f:84:
4b:ed:12:90:53:fb:45:9a:a0:ca:16:9f:84:a7:a0:
be:4b:1f:3e:cf:87:c0:66:29:02:db:3a:44:4b:5a:
59:70:ce:16:9a:e2:72:bd:60:b2:32:47:72:03:52:
40:8a:24:e5:22:6e:69:9e:aa:0e:6e:21:c7:b1:75:
30:ab:fb:88:9b:3a:53:6b:46:05:64:f5:b8:eb:62:
12:ba:2e:ad:ad:95:74:aa:5e:98:77:4f:e4:c9:cb:
8e:4e:52:38:59:86:70:cf:16:c5:9b:e1:9b:f1:37:
11:d2:fe:dd:6f:8d:b6:4a:aa:11:41:bd:03:03:ce:
41:fe:3f:84:e8:78:af:ff:de:79:71:d9:b3:ce:08:
e2:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B6:AA:47:CA:E2:8D:E4:DA:84:45:66:96:10:D2:5F:24:A1:A4:B3
X509v3 Authority Key Identifier:
keyid:A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/ibaqR8rijeTahEVmlhDSXyShpLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.227.0/24
Signature Algorithm: sha256WithRSAEncryption
37:23:0f:f8:bb:26:c2:c9:73:b4:7c:76:f3:f0:57:54:fe:41:
f3:2f:57:dd:f1:69:33:2b:2e:6f:80:5f:a8:99:07:b7:ba:96:
af:c6:9d:84:fa:95:ac:1b:95:da:bc:ab:ae:4c:03:0d:fc:35:
ac:7f:11:bf:f8:be:5a:71:66:31:df:12:76:69:80:83:1d:23:
a8:52:e8:b8:dd:72:b9:d5:5f:37:8a:5e:b5:26:26:e7:96:27:
34:0a:7a:2e:3f:38:ad:08:10:c2:86:ae:9b:58:a8:74:17:81:
73:37:ec:bc:a2:65:96:39:ba:49:e0:f7:5f:85:19:25:7e:b0:
f8:04:8b:13:8a:90:f7:1c:89:3b:bc:65:1c:f1:35:47:42:2e:
22:ef:a2:05:84:9a:ca:f8:2f:cd:37:3c:1e:e3:b7:10:37:5d:
ea:df:8d:b3:64:ab:44:e8:15:e4:f4:9c:d0:4b:20:b9:18:7a:
1f:50:4f:0c:f2:6e:ad:66:42:8e:bd:4e:e5:50:48:ab:88:fa:
d2:1a:ce:13:c5:82:42:c1:21:9d:35:62:a6:6d:0f:38:35:b6:
58:5d:be:e9:32:b0:90:64:90:cd:db:79:c6:c2:ab:fb:ba:fd:
fc:fb:ba:46:36:47:7a:9e:a4:45:26:f8:e1:a7:68:61:b2:58:
de:de:bb:e2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEErZszANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NGY4NDM2MDAzZDM3NjAyMDI2YjY1NTMxNzU1Y2E4ZmNkMzFiZWQyMB4XDTIyMDEw
MTE1MDA0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODliNmFhNDdjYWUy
OGRlNGRhODQ0NTY2OTYxMGQyNWYyNGExYTRiMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL1aku/yun8vqVTWAUxbnN9c5I35ZaC1xvTDCWP7k/IpIruv
DxFhWI1xizOxxtniyShSjvh2tWy130jV7oYApK5XVltkMpl/Xd2Ksf8d0edCWPfi
5fBek27CdcZsnhnvAPsQY6qwN868BAsapu+2iyQ4iYhph1+ES+0SkFP7RZqgyhaf
hKegvksfPs+HwGYpAts6REtaWXDOFpricr1gsjJHcgNSQIok5SJuaZ6qDm4hx7F1
MKv7iJs6U2tGBWT1uOtiEroura2VdKpemHdP5MnLjk5SOFmGcM8WxZvhm/E3EdL+
3W+NtkqqEUG9AwPOQf4/hOh4r//eeXHZs84I4oUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSJtqpHyuKN5NqERWaWENJfJKGkszAfBgNVHSMEGDAWgBSk+ENgA9N2AgJr
ZVMXVcqPzTG+0jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BQaERZQVBUZGdJQ2EyVlRGMVhLajgweHZ0SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWUvNTE1NjA4LTUwMTItNGE0MC1iMzI0LTI3YmY4M2NkZWQ2Yi8x
L2liYXFSOHJpamVUYWhFVm1saERTWHlTaHBMTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWUv
NTE1NjA4LTUwMTItNGE0MC1iMzI0LTI3YmY4M2NkZWQ2Yi8xL3BQaERZQVBUZGdJ
Q2EyVlRGMVhLajgweHZ0SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvG4zANBgkqhkiG9w0BAQsFAAOC
AQEANyMP+LsmwslztHx28/BXVP5B8y9X3fFpMysub4BfqJkHt7qWr8adhPqVrBuV
2ryrrkwDDfw1rH8Rv/i+WnFmMd8SdmmAgx0jqFLouN1yudVfN4petSYm55YnNAp6
Lj84rQgQwoaum1iodBeBczfsvKJlljm6SeD3X4UZJX6w+ASLE4qQ9xyJO7xlHPE1
R0IuIu+iBYSayvgvzTc8HuO3EDdd6t+Ns2SrROgV5PSc0EsguRh6H1BPDPJurWZC
jr1O5VBIq4j60hrOE8WCQsEhnTVipm0PODW2WF2+6TKwkGSQzdt5xsKr+7r9/Pu6
RjZHep6kRSb44adoYbJY3t674g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:25 2024 by rpki-client on console-ams.rpki-client.org