Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/0aXi26NZu_NiracfaKBIsU8ueXU.roa
File: 0aXi26NZu_NiracfaKBIsU8ueXU.roa (raw, json)
Hash identifier: XJMjanq522kiK1UIltwrvkoKnh7sL8m1p8eE2ZFc13M=
Subject key identifier: D1:A5:E2:DB:A3:59:BB:F3:62:AD:A7:1F:68:A0:48:B1:4F:2E:79:75
Certificate issuer: /CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Certificate serial: 37D93D46
Authority key identifier: B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/0aXi26NZu_NiracfaKBIsU8ueXU.roa
Signing time: Sat 01 Jan 2022 15:57:13 +0000
ROA not before: Sat 01 Jan 2022 15:57:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34226
IP address blocks: 89.107.248.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 936983878 (0x37d93d46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Validity
Not Before: Jan 1 15:57:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1a5e2dba359bbf362ada71f68a048b14f2e7975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ec:67:05:02:7c:27:ac:fb:71:da:ae:22:13:
4f:2a:61:1a:b7:db:9f:af:36:94:59:65:f1:ed:e6:
da:26:3d:26:7e:9f:c7:8b:ee:bf:d2:33:7c:2e:7c:
b2:9a:a4:3b:52:ce:81:d5:05:cd:3f:0b:d1:a6:a4:
73:d0:4d:88:4d:9e:5f:af:00:69:aa:12:f4:cb:6e:
97:f7:fa:65:2e:7d:fb:bd:b1:97:b2:08:80:b4:73:
22:05:92:14:89:6f:d3:82:82:d5:09:0e:32:3c:e7:
d6:f0:dd:6c:db:98:c8:c1:f3:31:c7:14:21:28:23:
fd:a0:1e:fc:86:6e:18:50:5b:83:7b:76:19:92:0d:
47:2a:c9:01:d1:09:b3:0a:51:67:d5:cb:57:83:f4:
21:19:e1:a3:48:2c:d0:ac:6f:05:de:7d:5c:a3:0a:
3f:6b:c9:59:a8:cc:bb:28:17:54:bb:58:e5:c6:fe:
71:a9:5d:1d:b4:ff:bb:d3:12:e0:66:e4:f1:ea:02:
40:84:c2:90:bf:56:7e:a5:ef:43:c7:22:ff:20:16:
a5:e2:d1:95:6a:b7:07:d2:04:16:9f:b5:b5:a9:53:
f5:e4:f0:65:3e:65:1f:44:59:21:1e:bc:8e:e9:11:
06:51:fd:fc:2f:e6:39:3f:02:0b:2d:32:5d:39:11:
da:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:A5:E2:DB:A3:59:BB:F3:62:AD:A7:1F:68:A0:48:B1:4F:2E:79:75
X509v3 Authority Key Identifier:
keyid:B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/0aXi26NZu_NiracfaKBIsU8ueXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.248.0/21
Signature Algorithm: sha256WithRSAEncryption
1b:0c:4f:03:80:34:ea:e4:6c:8d:e3:23:68:e3:76:17:e6:ac:
80:01:a3:05:c9:d8:07:33:9c:02:ab:4f:04:a0:ea:82:6e:40:
a4:d9:11:c8:9b:cf:9e:c5:a0:3d:21:e7:49:77:b7:39:56:a3:
6c:b9:1c:50:38:41:f5:7c:f3:67:7e:c1:65:c8:83:cd:23:c2:
ad:ed:76:8e:f6:7c:05:12:39:6e:85:6f:1b:9d:e9:b7:f5:4a:
00:0e:cf:36:d6:15:2a:c4:2f:8f:1b:a2:76:5f:5d:a2:1c:b6:
7f:a3:11:8a:a7:d8:20:20:5a:e3:49:23:fc:8c:e3:39:4a:c1:
4e:13:80:d2:75:2a:13:7f:1f:9b:3c:8b:d8:d9:4e:34:34:8a:
6c:d8:2f:e2:a6:fb:50:d1:07:79:0f:cf:b1:ab:7e:8c:5f:05:
af:c4:af:b2:70:f5:23:df:b1:75:ab:91:f8:d6:f9:2a:07:6b:
6c:49:49:36:f9:21:0d:05:a7:99:e7:cf:5a:a3:ca:d6:2e:dc:
35:0a:1c:46:9e:27:29:1f:50:24:27:83:c6:fd:f3:e6:0b:3d:
d0:2d:cf:cd:e0:9f:9e:90:6e:01:a8:15:b6:f5:f8:3a:5f:c9:
ad:79:50:e5:2d:27:f8:7d:c0:53:89:3f:ba:e8:06:c0:bb:20:
0d:23:7e:e3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEN9k9RjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
OWIzNTBhMGFlMzJlNzNlNjYwYzQxNmMzZjE0MDZlZGQzNjE1ZjgyMB4XDTIyMDEw
MTE1NTcxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDFhNWUyZGJhMzU5
YmJmMzYyYWRhNzFmNjhhMDQ4YjE0ZjJlNzk3NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKvsZwUCfCes+3HariITTyphGrfbn682lFll8e3m2iY9Jn6f
x4vuv9IzfC58spqkO1LOgdUFzT8L0aakc9BNiE2eX68AaaoS9Mtul/f6ZS59+72x
l7IIgLRzIgWSFIlv04KC1QkOMjzn1vDdbNuYyMHzMccUISgj/aAe/IZuGFBbg3t2
GZINRyrJAdEJswpRZ9XLV4P0IRnho0gs0KxvBd59XKMKP2vJWajMuygXVLtY5cb+
caldHbT/u9MS4Gbk8eoCQITCkL9WfqXvQ8ci/yAWpeLRlWq3B9IEFp+1talT9eTw
ZT5lH0RZIR68jukRBlH9/C/mOT8CCy0yXTkR2psCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTRpeLbo1m782Ktpx9ooEixTy55dTAfBgNVHSMEGDAWgBS5s1CgrjLnPmYM
QWw/FAbt02FfgjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ViTlFvSzR5NXo1bURFRnNQeFFHN2ROaFg0SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDEvNjI3ZTYwLTAwYTYtNGQyNi1iOTNhLWVmNzNiN2I0Y2EzYy8x
LzBhWGkyNk5adV9OaXJhY2ZhS0JJc1U4dWVYVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDEv
NjI3ZTYwLTAwYTYtNGQyNi1iOTNhLWVmNzNiN2I0Y2EzYy8xL3ViTlFvSzR5NXo1
bURFRnNQeFFHN2ROaFg0SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA1lr+DANBgkqhkiG9w0BAQsFAAOC
AQEAGwxPA4A06uRsjeMjaON2F+asgAGjBcnYBzOcAqtPBKDqgm5ApNkRyJvPnsWg
PSHnSXe3OVajbLkcUDhB9XzzZ37BZciDzSPCre12jvZ8BRI5boVvG53pt/VKAA7P
NtYVKsQvjxuidl9dohy2f6MRiqfYICBa40kj/IzjOUrBThOA0nUqE38fmzyL2NlO
NDSKbNgv4qb7UNEHeQ/Psat+jF8Fr8SvsnD1I9+xdauR+Nb5KgdrbElJNvkhDQWn
mefPWqPK1i7cNQocRp4nKR9QJCeDxv3z5gs90C3PzeCfnpBuAagVtvX4Ol/JrXlQ
5S0n+H3AU4k/uugGwLsgDSN+4w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:57 2024 by rpki-client on console-ams.rpki-client.org